$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: fEqrWk5yzRrIfC/NwZzR4O5o8YjE++0relBMS0Qsam4= Subject key identifier: 0D:4D:4A:06:2D:84:1F:24:A9:42:60:2C:72:E4:04:26:AD:24:1D:7E Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 3313105D961FE799E6064F0ECC0A2C17DC653EC1 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa Signing time: Tue 26 Aug 2025 12:00:01 +0000 ROA not before: Tue 26 Aug 2025 11:55:01 +0000 ROA not after: Tue 25 Aug 2026 12:00:01 +0000 asID: 138134 IP address blocks: 103.133.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:13:10:5d:96:1f:e7:99:e6:06:4f:0e:cc:0a:2c:17:dc:65:3e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Aug 26 11:55:01 2025 GMT Not After : Aug 25 12:00:01 2026 GMT Subject: CN=0D4D4A062D841F24A942602C72E40426AD241D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:9b:90:38:1e:42:15:0d:df:f9:2c:df:b2: c8:a8:af:1a:d9:7e:e1:31:c3:8b:23:29:78:80:88: e1:58:19:e3:e3:70:d9:82:22:b2:1e:f4:84:04:40: a4:63:74:de:76:dc:f0:93:75:13:c1:9c:0f:31:7e: 39:7a:52:98:eb:2a:b1:09:b8:07:b9:dd:c2:4c:62: 79:5e:b0:80:57:f5:f9:2d:b8:7a:64:4f:18:81:b3: 4e:e4:29:4a:a3:ea:2a:90:61:0e:1d:f7:a3:30:2b: 8a:15:fc:6e:5d:59:5e:ca:cc:c6:ef:a0:60:d6:ef: 43:de:ef:b9:55:4f:0e:fd:6f:91:1f:40:24:7e:c8: 19:a0:5e:76:1e:45:3a:d0:1f:f1:71:71:6d:33:52: 11:38:64:5e:a7:2f:48:58:c3:3e:f3:d4:19:83:23: 86:e1:3b:f1:40:91:42:bb:a0:3e:01:71:b0:c7:53: f2:94:24:41:c8:ed:7a:d3:e1:04:9b:3e:2e:30:0c: 51:e8:90:62:fe:a6:bd:14:30:44:6e:41:81:85:e6: 59:6c:1b:e1:ac:be:72:23:29:28:8f:b4:a8:77:07: e0:1b:c8:0f:b7:cc:8b:d7:d1:dd:04:f1:d6:56:cb: bb:25:fe:80:5a:d6:a1:a4:8d:a9:b8:83:61:28:d2: ed:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4D:4A:06:2D:84:1F:24:A9:42:60:2C:72:E4:04:26:AD:24:1D:7E X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.61.0/24 Signature Algorithm: sha256WithRSAEncryption ac:77:a3:89:8f:36:18:53:d9:f2:e7:71:b9:8b:12:98:31:6c: 11:ed:67:86:59:74:e2:6f:0b:ec:62:cd:a1:ca:1e:d2:aa:69: 88:a2:20:7b:80:7c:41:a5:20:9b:be:df:1a:5e:f6:6e:be:6d: 7a:a2:53:10:4a:d6:98:af:0d:32:66:be:42:b3:09:c0:87:f5: 0b:18:19:bd:b2:6d:df:e5:20:82:83:8a:74:18:bb:d0:11:60: 73:96:0b:04:4a:6f:af:de:97:28:c9:8a:e5:f0:0d:eb:63:54: 52:cc:16:06:3c:c6:19:d9:30:43:99:49:08:5b:a9:3c:29:f4: e1:4d:17:fc:bb:6f:c8:a4:38:43:ce:3c:6d:7d:d3:3c:19:fd: 11:3a:97:fa:4e:77:80:b6:5a:72:bb:48:4a:53:ba:43:62:ab: 36:ce:30:bb:01:72:80:78:10:a7:d8:e0:26:bf:a9:3f:5f:ad: f5:b4:8e:35:ec:51:28:5f:77:b3:e6:d1:48:3a:ea:e8:48:2b: fd:a5:10:04:bc:11:9e:78:ec:c2:54:4c:bf:12:21:9c:16:c0: ac:66:e9:95:2d:75:0b:b3:02:23:ec:f8:5c:a1:83:cc:39:2f: 42:f1:aa:8c:99:e2:59:3f:0c:3f:e7:ee:ce:b2:c3:71:c9:2c: 82:4a:20:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMxMQXZYf55nmBk8OzAosF9xlPsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNTA4MjYxMTU1MDFaFw0yNjA4MjUxMjAwMDFaMDMxMTAvBgNV BAMTKDBENEQ0QTA2MkQ4NDFGMjRBOTQyNjAyQzcyRTQwNDI2QUQyNDFEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMSZuQOB5CFQ3f+SzfssiorxrZ fuExw4sjKXiAiOFYGePjcNmCIrIe9IQEQKRjdN523PCTdRPBnA8xfjl6UpjrKrEJ uAe53cJMYnlesIBX9fktuHpkTxiBs07kKUqj6iqQYQ4d96MwK4oV/G5dWV7KzMbv oGDW70Pe77lVTw79b5EfQCR+yBmgXnYeRTrQH/FxcW0zUhE4ZF6nL0hYwz7z1BmD I4bhO/FAkUK7oD4BcbDHU/KUJEHI7XrT4QSbPi4wDFHokGL+pr0UMERuQYGF5lls G+GsvnIjKSiPtKh3B+AbyA+3zIvX0d0E8dZWy7sl/oBa1qGkjam4g2Eo0u05AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDU1KBi2EHySpQmAscuQEJq0kHX4wHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U9MA0GCSqG SIb3DQEBCwUAA4IBAQCsd6OJjzYYU9ny53G5ixKYMWwR7WeGWXTibwvsYs2hyh7S qmmIoiB7gHxBpSCbvt8aXvZuvm16olMQStaYrw0yZr5CswnAh/ULGBm9sm3f5SCC g4p0GLvQEWBzlgsESm+v3pcoyYrl8A3rY1RSzBYGPMYZ2TBDmUkIW6k8KfThTRf8 u2/IpDhDzjxtfdM8Gf0ROpf6TneAtlpyu0hKU7pDYqs2zjC7AXKAeBCn2OAmv6k/ X631tI417FEoX3ez5tFIOuroSCv9pRAEvBGeeOzCVEy/EiGcFsCsZumVLXULswIj 7PhcoYPMOS9C8aqMmeJZPww/5+7OssNxySyCSiAQ -----END CERTIFICATE-----Generated at Mon Sep 8 12:34:51 2025 by rpki-client