$ rpki-client -vvf repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa File: 3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: JP1YqhEOJY1Cdv/h1dRSKlUNEpZlyXiIJsuj7P3SVio= Subject key identifier: 46:6A:F7:A7:0A:80:CF:34:82:8C:95:CC:F3:C0:F9:71:1B:F5:8B:FA Certificate issuer: /CN=F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF Certificate serial: 66AB9870BCF9FA53966C7A876AA1657EDA84D3F2 Authority key identifier: F1:0D:F0:FD:3D:45:5B:BA:95:D0:CE:9E:AA:27:EE:38:3E:44:D6:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa Signing time: Tue 22 Jul 2025 08:00:01 +0000 ROA not before: Tue 22 Jul 2025 07:55:01 +0000 ROA not after: Tue 21 Jul 2026 08:00:01 +0000 asID: 58821 IP address blocks: 103.169.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.crl rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 12:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ab:98:70:bc:f9:fa:53:96:6c:7a:87:6a:a1:65:7e:da:84:d3:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF Validity Not Before: Jul 22 07:55:01 2025 GMT Not After : Jul 21 08:00:01 2026 GMT Subject: CN=466AF7A70A80CF34828C95CCF3C0F9711BF58BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:33:ad:a0:b4:08:0c:ff:e9:13:de:1f:0a: 72:24:ce:62:f7:a9:00:91:39:3d:39:8c:c3:a3:3d: 42:4b:7e:c4:c6:ec:ee:b0:31:2d:fe:10:1b:9d:8d: b2:4d:d0:5e:bf:5d:68:07:44:74:23:11:29:d1:6f: 4d:30:94:6e:8a:7b:aa:48:82:93:3e:fe:b9:b7:a3: d8:48:25:91:ef:e9:65:72:01:89:a5:88:16:82:e4: 16:d7:9f:a8:a9:9b:0a:b9:0f:d2:6a:38:7c:97:a5: ff:fd:6f:c7:41:30:5d:2e:83:ca:75:10:09:89:6d: 59:df:c7:0d:eb:30:b7:be:fd:f5:b2:b4:e7:fa:12: 47:f3:b4:fa:f6:ef:dd:b2:47:cb:ae:ea:47:d0:c5: b4:6f:e9:c6:4b:3f:23:2b:2a:a7:fc:7b:d2:08:1b: bb:0f:9a:07:8a:af:17:b7:a1:5a:c6:d7:bd:84:e4: 49:51:6d:30:73:24:bb:42:12:0c:20:86:66:0e:69: 05:10:6d:06:6b:2f:57:04:ac:9f:66:9d:39:ea:5b: 68:a5:0e:fe:59:e1:aa:3c:ef:ff:7b:f2:08:e2:c8: 06:b1:c5:e7:0d:b2:e4:c1:60:c0:bb:c5:2b:da:5b: 46:d6:bc:48:a8:ab:22:aa:42:69:b8:c7:1a:69:24: 97:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6A:F7:A7:0A:80:CF:34:82:8C:95:CC:F3:C0:F9:71:1B:F5:8B:FA X509v3 Authority Key Identifier: keyid:F1:0D:F0:FD:3D:45:5B:BA:95:D0:CE:9E:AA:27:EE:38:3E:44:D6:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.136.0/23 Signature Algorithm: sha256WithRSAEncryption 34:ea:d1:06:fe:29:0f:88:80:c9:4a:62:8f:3b:ef:aa:e5:37: d8:16:a9:a8:94:3f:88:74:0d:29:0b:ac:c5:92:07:9d:2c:52: 52:46:63:3f:70:d3:91:b2:2f:09:40:dc:9c:ca:61:92:b3:41: 2d:ed:11:2f:64:9b:7f:d2:58:46:4f:51:3c:f0:43:d8:5b:6b: e3:64:5a:fc:d0:5f:65:de:ce:63:c6:48:f4:cd:43:3e:0f:24: 45:96:ba:c7:2e:17:62:ef:6c:a4:50:e2:29:da:41:2c:b0:9c: 93:41:ff:e2:47:de:a0:c7:5f:85:13:ab:75:e7:d0:4b:f5:6c: 94:7a:5f:ac:60:cc:5b:50:fb:85:72:68:73:0b:fa:25:48:b8: 6a:8d:bc:f2:3f:2e:28:a9:e9:86:56:da:78:c5:88:96:f5:2a: c1:11:72:ed:ff:93:31:17:6a:cb:79:c9:d0:4c:de:22:0a:5b: 4b:46:74:db:27:a8:e7:00:c0:0e:66:a2:4f:e5:77:cc:b9:6c: 78:c9:7e:33:6e:96:b7:25:cb:53:26:10:a3:01:d7:0e:d0:4b: e9:60:83:91:54:88:7c:8f:52:95:96:70:47:52:df:07:ea:c9: ff:55:fd:0f:cd:c9:72:d2:d8:2d:58:61:86:20:46:32:36:9b: f7:35:7c:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZquYcLz5+lOWbHqHaqFlftqE0/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREYwRkQzRDQ1NUJCQTk1RDBDRTlFQUEyN0VFMzgz RTQ0RDZBRjAeFw0yNTA3MjIwNzU1MDFaFw0yNjA3MjEwODAwMDFaMDMxMTAvBgNV BAMTKDQ2NkFGN0E3MEE4MENGMzQ4MjhDOTVDQ0YzQzBGOTcxMUJGNThCRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4CjOtoLQIDP/pE94fCnIkzmL3 qQCROT05jMOjPUJLfsTG7O6wMS3+EBudjbJN0F6/XWgHRHQjESnRb00wlG6Ke6pI gpM+/rm3o9hIJZHv6WVyAYmliBaC5BbXn6ipmwq5D9JqOHyXpf/9b8dBMF0ug8p1 EAmJbVnfxw3rMLe+/fWytOf6EkfztPr2792yR8uu6kfQxbRv6cZLPyMrKqf8e9II G7sPmgeKrxe3oVrG172E5ElRbTBzJLtCEgwghmYOaQUQbQZrL1cErJ9mnTnqW2il Dv5Z4ao87/978gjiyAaxxecNsuTBYMC7xSvaW0bWvEioqyKqQmm4xxppJJcNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURmr3pwqAzzSCjJXM88D5cRv1i/owHwYDVR0j BBgwFoAU8Q3w/T1FW7qV0M6eqifuOD5E1q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWNiMmU4ZS1hMWEyLTRjYTAtODBiMC0yMjU1MThmZmFlMTQvMC9GMTBERjBGRDNE NDU1QkJBOTVEMENFOUVBQTI3RUUzODNFNDRENkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREYwRkQzRDQ1NUJCQTk1RDBDRTlFQUEyN0VFMzgzRTQ0 RDZBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxY2IyZThlLWExYTItNGNhMC04 MGIwLTIyNTUxOGZmYWUxNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6mIMA0GCSqG SIb3DQEBCwUAA4IBAQA06tEG/ikPiIDJSmKPO++q5TfYFqmolD+IdA0pC6zFkged LFJSRmM/cNORsi8JQNycymGSs0Et7REvZJt/0lhGT1E88EPYW2vjZFr80F9l3s5j xkj0zUM+DyRFlrrHLhdi72ykUOIp2kEssJyTQf/iR96gx1+FE6t159BL9WyUel+s YMxbUPuFcmhzC/olSLhqjbzyPy4oqemGVtp4xYiW9SrBEXLt/5MxF2rLecnQTN4i CltLRnTbJ6jnAMAOZqJP5XfMuWx4yX4zbpa3JctTJhCjAdcO0EvpYIORVIh8j1KV lnBHUt8H6sn/Vf0Pzcly0tgtWGGGIEYyNpv3NXyc -----END CERTIFICATE-----Generated at Tue Oct 28 06:19:00 2025 by rpki-client