$ rpki-client -vvf repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/3130332e37382e3233352e302f32342d3234203d3e203634333032.roa File: 3130332e37382e3233352e302f32342d3234203d3e203634333032.roa (raw, json) Hash identifier: 2H20WDiLKraA5nZo1WLQY+1jKj2wwmLh+BUhMHSZcKQ= Subject key identifier: 99:3D:9F:0C:1F:BC:BB:53:E7:AA:86:46:28:6B:C2:59:7F:0A:50:67 Certificate issuer: /CN=9F1E176A521C3CEFE1D787F898211547A2D65955 Certificate serial: 71420EC9A8517EF3B15F60EC66D12BD71D3ED3E9 Authority key identifier: 9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/3130332e37382e3233352e302f32342d3234203d3e203634333032.roa Signing time: Sat 06 Sep 2025 04:02:28 +0000 ROA not before: Sat 06 Sep 2025 03:57:28 +0000 ROA not after: Sat 05 Sep 2026 04:02:28 +0000 asID: 64302 IP address blocks: 103.78.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 07:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:42:0e:c9:a8:51:7e:f3:b1:5f:60:ec:66:d1:2b:d7:1d:3e:d3:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F1E176A521C3CEFE1D787F898211547A2D65955 Validity Not Before: Sep 6 03:57:28 2025 GMT Not After : Sep 5 04:02:28 2026 GMT Subject: CN=993D9F0C1FBCBB53E7AA8646286BC2597F0A5067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:27:17:f5:56:69:36:97:83:d1:12:2d:94:4c: fa:1f:e0:fe:37:10:f1:f4:ab:57:2c:b6:38:82:eb: 47:af:da:5f:03:d4:95:97:70:4a:6f:48:31:bf:5d: 02:0f:de:17:cc:2a:41:64:22:2d:ba:71:ae:2c:4d: ed:fe:32:87:66:48:7a:cc:b6:f2:82:77:70:40:cc: 70:91:a1:64:a5:02:71:8e:b1:68:bb:2c:2e:cd:20: 6b:9b:08:c9:e5:17:38:f9:dd:7f:4a:dd:ff:56:ae: 2a:a3:1f:b4:d4:06:f9:60:b1:bb:6b:e8:e9:5a:29: 12:fa:24:c3:54:34:ee:98:25:64:6e:a4:bd:9a:8b: 7d:0a:58:ca:b3:5e:2f:d7:2f:05:a8:00:16:cb:b1: 0d:0e:ff:f5:af:1c:a9:6d:aa:e3:98:59:7e:be:e6: a3:ec:68:cc:a6:b0:a4:f1:f8:1f:a0:28:53:52:4c: c1:47:21:b7:a4:35:21:33:fe:fc:f2:96:4d:7a:12: 9a:a6:cc:57:fc:ef:89:ee:77:f9:3b:56:36:0d:d7: 60:58:d3:af:ec:32:6d:73:ce:74:a9:c3:fa:5d:55: 64:d7:64:a0:ec:5c:82:7f:af:21:d5:37:a9:64:82: 4a:fb:09:21:87:27:f5:02:9a:50:b3:ee:a5:4c:19: 94:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:3D:9F:0C:1F:BC:BB:53:E7:AA:86:46:28:6B:C2:59:7F:0A:50:67 X509v3 Authority Key Identifier: keyid:9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/3130332e37382e3233352e302f32342d3234203d3e203634333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.235.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:db:41:e4:76:60:b6:d8:08:d0:38:71:ed:fa:3a:e2:af:04: 16:0a:51:43:8f:bc:3c:cc:68:8d:ce:53:85:12:a1:0b:dd:01: ee:2f:4b:95:b0:c0:c7:69:df:e4:5e:8b:01:b0:e8:86:7c:3c: 97:86:09:e7:21:36:7f:c6:3b:03:b5:c6:7d:3f:6f:4f:e9:cb: 44:d2:6f:29:87:ce:1e:30:fa:9c:29:ea:32:15:a2:ec:85:ea: a4:d6:33:22:e7:c6:da:00:49:74:f9:d7:78:e8:53:63:03:53: d6:fd:67:fb:1c:07:41:6f:7b:71:04:e5:b1:5a:35:38:59:1d: 8f:a3:06:59:13:20:c3:99:9e:b4:5a:3a:52:40:eb:0b:56:62: b2:e6:7d:db:d8:fa:bd:20:57:82:fb:7a:86:e7:88:ae:e8:d3: cd:47:17:a1:28:5d:34:93:f6:59:68:7a:2e:06:bc:bf:7d:2e: 71:a8:60:81:b8:1b:95:79:9c:24:1f:c3:05:5c:9a:51:26:7a: d4:8a:cd:cd:e1:29:ac:03:34:b1:fb:78:dc:51:27:b8:93:c5: 38:5a:c8:e5:f1:55:d5:2e:5f:95:00:e6:0e:4c:66:b8:d6:d6: c1:9c:d7:0a:15:a7:3d:5b:ad:e4:9c:35:70:84:e4:fa:a9:af: 63:bb:aa:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcUIOyahRfvOxX2DsZtEr1x0+0+kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUYxRTE3NkE1MjFDM0NFRkUxRDc4N0Y4OTgyMTE1NDdB MkQ2NTk1NTAeFw0yNTA5MDYwMzU3MjhaFw0yNjA5MDUwNDAyMjhaMDMxMTAvBgNV BAMTKDk5M0Q5RjBDMUZCQ0JCNTNFN0FBODY0NjI4NkJDMjU5N0YwQTUwNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAJxf1Vmk2l4PREi2UTPof4P43 EPH0q1cstjiC60ev2l8D1JWXcEpvSDG/XQIP3hfMKkFkIi26ca4sTe3+ModmSHrM tvKCd3BAzHCRoWSlAnGOsWi7LC7NIGubCMnlFzj53X9K3f9WriqjH7TUBvlgsbtr 6OlaKRL6JMNUNO6YJWRupL2ai30KWMqzXi/XLwWoABbLsQ0O//WvHKltquOYWX6+ 5qPsaMymsKTx+B+gKFNSTMFHIbekNSEz/vzylk16EpqmzFf874nud/k7VjYN12BY 06/sMm1zznSpw/pdVWTXZKDsXIJ/ryHVN6lkgkr7CSGHJ/UCmlCz7qVMGZSPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmT2fDB+8u1PnqoZGKGvCWX8KUGcwHwYDVR0j BBgwFoAUnx4XalIcPO/h14f4mCEVR6LWWVUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGRlOGZiOC0zYTc3LTQ4N2UtOWRmYy1mNDc5ZDZiMzM4MDkvMC85RjFFMTc2QTUy MUMzQ0VGRTFENzg3Rjg5ODIxMTU0N0EyRDY1OTU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUYxRTE3NkE1MjFDM0NFRkUxRDc4N0Y4OTgyMTE1NDdBMkQ2 NTk1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZGU4ZmI4LTNhNzctNDg3ZS05 ZGZjLWY0NzlkNmIzMzgwOS8wLzMxMzAzMzJlMzczODJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzNDMzMzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdO6zANBgkqhkiG 9w0BAQsFAAOCAQEAittB5HZgttgI0Dhx7fo64q8EFgpRQ4+8PMxojc5ThRKhC90B 7i9LlbDAx2nf5F6LAbDohnw8l4YJ5yE2f8Y7A7XGfT9vT+nLRNJvKYfOHjD6nCnq MhWi7IXqpNYzIufG2gBJdPnXeOhTYwNT1v1n+xwHQW97cQTlsVo1OFkdj6MGWRMg w5metFo6UkDrC1ZisuZ929j6vSBXgvt6hueIrujTzUcXoShdNJP2WWh6Lga8v30u cahggbgblXmcJB/DBVyaUSZ61IrNzeEprAM0sft43FEnuJPFOFrI5fFV1S5flQDm DkxmuNbWwZzXChWnPVut5Jw1cITk+qmvY7uqIw== -----END CERTIFICATE-----Generated at Sun Sep 7 15:16:57 2025 by rpki-client