$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: hXWJa8fVoj0vzNayNv76Qv76zEys5r5KfZWHwpWNqSA= Subject key identifier: D0:B8:76:8B:FE:1B:B6:36:23:EC:BF:A1:F9:2D:02:29:BE:7D:99:2B Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 4E6146D6C14A6326A196AF753C60BEC12E5F1949 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa Signing time: Tue 26 Aug 2025 12:00:01 +0000 ROA not before: Tue 26 Aug 2025 11:55:01 +0000 ROA not after: Tue 25 Aug 2026 12:00:01 +0000 asID: 138134 IP address blocks: 103.133.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:61:46:d6:c1:4a:63:26:a1:96:af:75:3c:60:be:c1:2e:5f:19:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Aug 26 11:55:01 2025 GMT Not After : Aug 25 12:00:01 2026 GMT Subject: CN=D0B8768BFE1BB63623ECBFA1F92D0229BE7D992B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c2:78:d9:ec:6f:fb:25:6b:93:be:1e:7b:b7: 6a:e9:2b:82:e3:6b:e8:89:29:83:db:e4:18:04:b8: a3:c6:d8:c6:54:a6:5d:b9:a9:2b:a2:26:4b:28:61: 48:e8:3a:03:84:b7:2f:e2:cc:06:05:5e:b3:3d:04: 86:bb:20:98:04:83:61:40:12:4c:cf:cf:8e:1a:04: 56:c4:66:86:84:6e:cf:bb:da:54:92:4f:5b:ff:9e: df:24:30:d3:0d:84:61:2e:e9:08:da:32:0d:86:65: e8:ce:73:95:ca:02:0f:15:e4:96:6c:4b:23:50:ce: ec:75:44:d6:11:24:52:bb:de:08:22:05:41:f4:09: 95:35:cf:5a:83:f4:d2:be:1d:04:1d:b0:47:f9:5b: 7c:02:fe:ca:15:9c:71:dd:3e:62:1c:55:2d:1d:95: 2a:ba:f9:af:20:af:76:ad:44:cf:8a:80:64:16:a1: 1a:b9:d0:ef:2d:50:89:8d:6b:8c:20:f8:0f:c4:ec: 0f:0a:2d:2f:d0:b5:ab:84:60:e4:53:8b:1b:49:57: 9f:40:3d:cb:0b:35:5c:2d:a2:42:ea:50:02:62:60: cc:6d:16:0b:53:20:97:a4:8b:04:37:45:c0:2c:55: f6:12:11:72:fe:30:39:c7:95:9a:da:75:a9:03:b5: db:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B8:76:8B:FE:1B:B6:36:23:EC:BF:A1:F9:2D:02:29:BE:7D:99:2B X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.62.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:76:ff:a6:46:cd:21:6f:48:cd:83:34:ef:26:24:87:c1:59: 88:c2:93:4c:ff:c8:34:f3:fe:68:a3:5b:e2:40:26:63:27:fa: bc:5c:98:d0:fa:d0:f2:ab:48:13:78:e5:35:70:44:99:9c:cc: c3:de:46:08:d3:27:b9:db:87:e4:c5:64:2d:74:cf:b3:1a:a4: 12:31:e1:ba:dc:fe:a0:01:f2:c0:33:9e:a2:fd:0a:98:68:e2: e1:96:f7:1a:3b:0b:11:94:94:c7:de:a3:48:9d:5b:01:5f:4c: 43:82:d9:07:1d:57:ac:b1:5e:de:24:40:cf:a6:ba:98:6d:23: d4:a2:63:1d:e3:be:8a:df:14:fe:89:ba:5d:d2:80:b3:ca:f4: de:de:75:1a:b9:83:a4:f0:d7:2d:ee:9f:33:d7:7e:5b:f4:d3: 72:ad:3d:b7:6d:ca:14:14:ac:35:a7:99:c7:e5:82:29:0c:1d: 0d:ec:7d:dd:5d:62:6d:ce:0a:c0:57:7f:ed:49:af:0a:d1:20: c9:69:9e:60:4c:53:7d:39:9f:57:75:92:09:59:8d:2c:15:68: a9:b5:48:6c:ac:93:77:fd:e1:2e:c7:1a:7b:94:f0:a3:2c:0c: fe:8b:10:d7:8b:7f:ba:49:ae:02:2d:5b:7d:0c:41:1a:c2:06: 34:28:c6:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTmFG1sFKYyahlq91PGC+wS5fGUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNTA4MjYxMTU1MDFaFw0yNjA4MjUxMjAwMDFaMDMxMTAvBgNV BAMTKEQwQjg3NjhCRkUxQkI2MzYyM0VDQkZBMUY5MkQwMjI5QkU3RDk5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChwnjZ7G/7JWuTvh57t2rpK4Lj a+iJKYPb5BgEuKPG2MZUpl25qSuiJksoYUjoOgOEty/izAYFXrM9BIa7IJgEg2FA EkzPz44aBFbEZoaEbs+72lSST1v/nt8kMNMNhGEu6QjaMg2GZejOc5XKAg8V5JZs SyNQzux1RNYRJFK73ggiBUH0CZU1z1qD9NK+HQQdsEf5W3wC/soVnHHdPmIcVS0d lSq6+a8gr3atRM+KgGQWoRq50O8tUImNa4wg+A/E7A8KLS/QtauEYORTixtJV59A PcsLNVwtokLqUAJiYMxtFgtTIJekiwQ3RcAsVfYSEXL+MDnHlZradakDtdvbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0Lh2i/4btjYj7L+h+S0CKb59mSswHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U+MA0GCSqG SIb3DQEBCwUAA4IBAQBcdv+mRs0hb0jNgzTvJiSHwVmIwpNM/8g08/5oo1viQCZj J/q8XJjQ+tDyq0gTeOU1cESZnMzD3kYI0ye524fkxWQtdM+zGqQSMeG63P6gAfLA M56i/QqYaOLhlvcaOwsRlJTH3qNInVsBX0xDgtkHHVessV7eJEDPprqYbSPUomMd 476K3xT+ibpd0oCzyvTe3nUauYOk8Nct7p8z135b9NNyrT23bcoUFKw1p5nH5YIp DB0N7H3dXWJtzgrAV3/tSa8K0SDJaZ5gTFN9OZ9XdZIJWY0sFWiptUhsrJN3/eEu xxp7lPCjLAz+ixDXi3+6Sa4CLVt9DEEawgY0KMbH -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:21 2025 by rpki-client