$ rpki-client -vvf repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36342e302f32342d3234203d3e20313337333733.roa File: 3130332e3132302e36342e302f32342d3234203d3e20313337333733.roa (raw, json) Hash identifier: pCJYjvXonKex+skSqmImkbu4oPl5fBK9Q5SIxdeC0qw= Subject key identifier: 1D:0B:AA:11:48:46:3E:F1:2D:C8:25:16:5D:D9:01:DC:30:DE:7A:B0 Certificate issuer: /CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Certificate serial: 443E1DCD9786A3972A9EEB3811BE247CFB8563A5 Authority key identifier: 6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36342e302f32342d3234203d3e20313337333733.roa Signing time: Tue 26 Aug 2025 11:34:11 +0000 ROA not before: Tue 26 Aug 2025 11:29:11 +0000 ROA not after: Tue 25 Aug 2026 11:34:11 +0000 asID: 137373 IP address blocks: 103.120.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 05:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:3e:1d:cd:97:86:a3:97:2a:9e:eb:38:11:be:24:7c:fb:85:63:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Validity Not Before: Aug 26 11:29:11 2025 GMT Not After : Aug 25 11:34:11 2026 GMT Subject: CN=1D0BAA1148463EF12DC825165DD901DC30DE7AB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cb:fb:e3:29:67:20:e3:6f:7a:31:d6:86:c1: 49:f5:69:00:19:fb:c2:23:09:0c:3b:8d:a8:24:f1: 40:eb:79:92:a4:1a:8e:ba:5a:88:bb:fe:91:65:ad: 91:36:1f:d3:63:c0:54:2a:64:08:5f:92:b5:1b:ae: 01:2b:d0:43:68:39:95:83:c1:2c:dc:29:33:59:ce: 78:7a:d5:2a:f0:9c:f1:bf:a3:01:bc:da:83:04:e6: f8:20:73:fb:be:78:3f:47:4a:ee:38:2f:e0:a0:97: 20:1d:fa:6c:8a:2c:59:f3:2f:85:3b:c4:c0:69:c4: 09:0e:12:65:ab:b1:40:e5:a9:18:9b:bf:d0:01:7c: d8:55:5c:82:da:92:6a:36:22:b3:6a:35:68:e6:2f: 38:35:26:e1:4b:15:be:56:b3:22:dc:05:73:d5:78: cf:91:ba:b1:33:04:bc:f0:09:db:fa:2d:c5:9c:3a: ad:27:a9:63:c6:3e:10:a5:66:7d:20:51:1f:42:03: ad:e5:84:a6:7e:70:99:13:38:4d:96:36:c5:aa:3d: aa:83:a6:2d:37:36:72:66:7a:0a:b0:af:bd:83:26: c5:94:7f:a5:53:c7:dc:07:12:7c:55:ce:df:3b:f8: 05:82:ee:26:7e:95:02:3c:54:84:a7:a2:d0:f4:b2: 7c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0B:AA:11:48:46:3E:F1:2D:C8:25:16:5D:D9:01:DC:30:DE:7A:B0 X509v3 Authority Key Identifier: keyid:6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36342e302f32342d3234203d3e20313337333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.64.0/24 Signature Algorithm: sha256WithRSAEncryption 71:52:b7:06:b6:29:f7:74:32:cc:9a:4e:a1:87:a7:1d:4e:8d: d4:db:48:0a:9f:db:74:6b:ea:d4:ab:96:4f:a5:69:db:3f:73: 5d:12:d9:9f:b0:52:87:e6:e2:be:4f:d9:fc:14:b1:f9:80:94: c5:f0:d2:7b:32:ad:a5:84:a3:0c:7c:bc:e0:d9:fb:76:27:6b: 13:86:0b:dd:78:60:2b:58:84:b6:8b:ab:7a:61:e9:32:27:4f: 1e:e0:16:0e:13:57:cf:b7:68:2d:6a:86:0e:3c:ba:56:dd:3d: c6:0e:7d:02:2f:00:1c:30:68:a4:98:6c:ce:f0:09:5e:77:b4: 84:10:ef:e7:ae:d4:6a:8e:7d:94:0b:83:ee:e2:d5:c4:63:65: fd:d1:f9:49:01:9c:47:20:a3:cd:e4:cb:78:14:1c:20:c0:60: ac:2c:71:51:92:d0:23:9f:fd:95:d7:83:99:a5:9f:e0:b4:6c: 05:6c:cf:a4:ad:59:c1:03:9a:cc:d0:b3:06:d7:3c:74:99:4e: 99:4c:4d:70:4e:ca:e7:ce:a6:32:de:3d:b7:73:e3:0c:76:9a: 8f:b3:34:62:58:ca:95:fe:81:7f:d4:ff:08:b1:7d:e3:fd:3c: 76:4e:49:b8:61:a5:6d:74:c9:18:c9:c0:36:08:54:d7:b7:17: 73:19:d7:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURD4dzZeGo5cqnus4Eb4kfPuFY6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVF NTY2Rjk0RTAeFw0yNTA4MjYxMTI5MTFaFw0yNjA4MjUxMTM0MTFaMDMxMTAvBgNV BAMTKDFEMEJBQTExNDg0NjNFRjEyREM4MjUxNjVERDkwMURDMzBERTdBQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxy/vjKWcg4296MdaGwUn1aQAZ +8IjCQw7jagk8UDreZKkGo66Woi7/pFlrZE2H9NjwFQqZAhfkrUbrgEr0ENoOZWD wSzcKTNZznh61SrwnPG/owG82oME5vggc/u+eD9HSu44L+CglyAd+myKLFnzL4U7 xMBpxAkOEmWrsUDlqRibv9ABfNhVXILakmo2IrNqNWjmLzg1JuFLFb5WsyLcBXPV eM+RurEzBLzwCdv6LcWcOq0nqWPGPhClZn0gUR9CA63lhKZ+cJkTOE2WNsWqPaqD pi03NnJmegqwr72DJsWUf6VTx9wHEnxVzt87+AWC7iZ+lQI8VISnotD0sny3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHQuqEUhGPvEtyCUWXdkB3DDeerAwHwYDVR0j BBgwFoAUa2R/aWqbtccYYF6JIr7xvuVm+U4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODZlNDZlYy1kZjVjLTRiNGQtYTMwZS0xMGIyYzY4OGMyZmMvMC82QjY0N0Y2OTZB OUJCNUM3MTg2MDVFODkyMkJFRjFCRUU1NjZGOTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVFNTY2 Rjk0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NmU0NmVjLWRmNWMtNGI0ZC1h MzBlLTEwYjJjNjg4YzJmYy8wLzMxMzAzMzJlMzEzMjMwMmUzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3hAMA0GCSqG SIb3DQEBCwUAA4IBAQBxUrcGtin3dDLMmk6hh6cdTo3U20gKn9t0a+rUq5ZPpWnb P3NdEtmfsFKH5uK+T9n8FLH5gJTF8NJ7Mq2lhKMMfLzg2ft2J2sThgvdeGArWIS2 i6t6YekyJ08e4BYOE1fPt2gtaoYOPLpW3T3GDn0CLwAcMGikmGzO8Aled7SEEO/n rtRqjn2UC4Pu4tXEY2X90flJAZxHIKPN5Mt4FBwgwGCsLHFRktAjn/2V14OZpZ/g tGwFbM+krVnBA5rM0LMG1zx0mU6ZTE1wTsrnzqYy3j23c+MMdpqPszRiWMqV/oF/ 1P8IsX3j/Tx2Tkm4YaVtdMkYycA2CFTXtxdzGdej -----END CERTIFICATE-----Generated at Fri Sep 19 14:28:33 2025 by rpki-client