$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: M4zMEE4gM9B2z9mzotuldgSgaCKFtNvfP7tGSiFjQks= Subject key identifier: A9:A1:D5:E0:4F:F9:2D:3E:B0:F5:A4:A9:A5:EB:8B:14:29:12:26:48 Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 154D2AB70F39DA00515A027308FF113CB2669EEA Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa Signing time: Tue 26 Aug 2025 12:00:01 +0000 ROA not before: Tue 26 Aug 2025 11:55:01 +0000 ROA not after: Tue 25 Aug 2026 12:00:01 +0000 asID: 138134 IP address blocks: 103.133.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:4d:2a:b7:0f:39:da:00:51:5a:02:73:08:ff:11:3c:b2:66:9e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Aug 26 11:55:01 2025 GMT Not After : Aug 25 12:00:01 2026 GMT Subject: CN=A9A1D5E04FF92D3EB0F5A4A9A5EB8B1429122648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:83:34:cb:78:0e:30:32:6d:47:91:5f:e0:bd: 28:b3:e4:d7:22:af:93:15:65:eb:75:18:16:7b:a8: 54:12:fa:97:66:36:d5:91:32:6a:75:8f:1f:98:2d: 02:45:ee:5f:99:75:32:b9:92:0e:d1:b6:46:0c:f5: 6b:58:d4:55:a5:3a:16:f5:50:21:1a:2b:f0:1d:67: 2d:c4:cb:f2:60:68:80:da:78:36:79:05:01:4c:91: 0a:1d:91:cd:b5:c4:6a:d3:11:49:e8:d6:98:a4:e5: 28:d6:4b:f5:bb:6b:29:84:ed:5d:59:59:6e:2a:d2: 9c:01:ce:20:54:60:50:a0:0f:4d:8e:3b:b1:12:6d: e1:d1:7c:36:63:b4:2d:db:19:8b:b5:cf:eb:0a:f0: 75:89:c2:10:a3:ef:f5:55:fa:54:b0:0a:90:af:a3: e9:12:34:f2:fb:68:2f:6d:78:89:92:38:ce:80:94: f3:e1:98:73:72:9a:ea:b4:7f:b1:4f:32:b8:c2:6d: 7d:73:6f:3a:50:d2:bb:74:79:79:c2:b5:46:1c:35: 3d:e7:1c:b5:55:e5:63:07:be:ec:d7:46:7d:e8:e4: de:73:e2:b3:64:a6:52:85:78:3d:cd:db:0b:15:9a: 1e:49:92:f5:80:33:cd:3d:10:41:69:eb:76:82:8e: 43:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A1:D5:E0:4F:F9:2D:3E:B0:F5:A4:A9:A5:EB:8B:14:29:12:26:48 X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.63.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:72:c5:80:5f:61:94:5b:e4:68:a4:cc:7d:55:e1:6c:d1:5d: 6b:7c:5e:8b:f2:43:50:2f:0d:dc:e2:c5:d4:b5:4e:ca:92:1f: 09:7a:c8:59:7d:cb:3f:cc:e4:cb:e1:5d:dc:39:ad:5d:ee:82: 04:ea:cd:d6:7b:e9:e4:dd:48:d4:f3:81:a7:26:31:4d:c4:d9: 9f:80:02:24:a7:7f:4a:41:27:c2:4a:81:db:54:7e:a0:e4:4e: 98:82:8b:bc:c2:41:51:0b:e6:8c:6b:2e:42:3c:84:cc:a5:68: 6c:d0:e2:5b:f9:d8:31:88:50:1e:e9:76:a1:0c:1c:3b:fd:28: 04:10:e9:1e:5c:ac:5e:d0:92:c4:16:21:b7:00:b8:e6:36:0d: f5:71:87:a7:f4:5d:8d:e7:83:20:d1:1b:3c:3f:d0:8e:10:bc: 57:dc:1c:4f:ef:5f:b0:f6:29:a0:01:fa:b3:42:2f:f7:bd:78: 95:ae:be:ca:34:dd:7f:bd:02:95:3b:bc:94:56:34:1b:4f:de: c9:b3:9d:26:63:64:48:5b:a2:7c:c9:58:72:51:d2:93:ec:02: fe:de:48:f0:ff:ca:23:31:60:67:22:42:23:11:b2:a7:2b:03: a7:48:17:33:67:99:47:72:ee:19:05:da:3f:80:b9:0b:63:58: 43:43:62:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFU0qtw852gBRWgJzCP8RPLJmnuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNTA4MjYxMTU1MDFaFw0yNjA4MjUxMjAwMDFaMDMxMTAvBgNV BAMTKEE5QTFENUUwNEZGOTJEM0VCMEY1QTRBOUE1RUI4QjE0MjkxMjI2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUgzTLeA4wMm1HkV/gvSiz5Nci r5MVZet1GBZ7qFQS+pdmNtWRMmp1jx+YLQJF7l+ZdTK5kg7RtkYM9WtY1FWlOhb1 UCEaK/AdZy3Ey/JgaIDaeDZ5BQFMkQodkc21xGrTEUno1pik5SjWS/W7aymE7V1Z WW4q0pwBziBUYFCgD02OO7ESbeHRfDZjtC3bGYu1z+sK8HWJwhCj7/VV+lSwCpCv o+kSNPL7aC9teImSOM6AlPPhmHNymuq0f7FPMrjCbX1zbzpQ0rt0eXnCtUYcNT3n HLVV5WMHvuzXRn3o5N5z4rNkplKFeD3N2wsVmh5JkvWAM809EEFp63aCjkM3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqaHV4E/5LT6w9aSppeuLFCkSJkgwHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U/MA0GCSqG SIb3DQEBCwUAA4IBAQCMcsWAX2GUW+RopMx9VeFs0V1rfF6L8kNQLw3c4sXUtU7K kh8JeshZfcs/zOTL4V3cOa1d7oIE6s3We+nk3UjU84GnJjFNxNmfgAIkp39KQSfC SoHbVH6g5E6Ygou8wkFRC+aMay5CPITMpWhs0OJb+dgxiFAe6XahDBw7/SgEEOke XKxe0JLEFiG3ALjmNg31cYen9F2N54Mg0Rs8P9COELxX3BxP71+w9imgAfqzQi/3 vXiVrr7KNN1/vQKVO7yUVjQbT97Js50mY2RIW6J8yVhyUdKT7AL+3kjw/8ojMWBn IkIjEbKnKwOnSBczZ5lHcu4ZBdo/gLkLY1hDQ2Li -----END CERTIFICATE-----Generated at Mon Sep 8 12:32:42 2025 by rpki-client