$ rpki-client -vvf repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa File: 3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa (raw, json) Hash identifier: lHTn8z38a4raxygkZHiK5olLO1hmwWy67YSOaXSHPY8= Subject key identifier: 55:0C:A8:86:FE:05:D2:24:8A:0B:27:92:5D:CA:13:6B:2F:A0:B3:A3 Certificate issuer: /CN=3BB7346C991B689223BADC6F82DD19BE3B017704 Certificate serial: 31135C90645CE7A1B36582896113BC23D1805B6B Authority key identifier: 3B:B7:34:6C:99:1B:68:92:23:BA:DC:6F:82:DD:19:BE:3B:01:77:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa Signing time: Sun 24 Aug 2025 14:00:01 +0000 ROA not before: Sun 24 Aug 2025 13:55:01 +0000 ROA not after: Sun 23 Aug 2026 14:00:01 +0000 asID: 134643 IP address blocks: 103.207.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.crl rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:13:5c:90:64:5c:e7:a1:b3:65:82:89:61:13:bc:23:d1:80:5b:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BB7346C991B689223BADC6F82DD19BE3B017704 Validity Not Before: Aug 24 13:55:01 2025 GMT Not After : Aug 23 14:00:01 2026 GMT Subject: CN=550CA886FE05D2248A0B27925DCA136B2FA0B3A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b8:92:4d:4f:70:58:0a:51:08:c8:3b:03:c4: e2:09:30:e7:a0:52:c3:2e:69:0f:f6:8a:15:87:0a: 51:15:32:48:2e:9b:f3:f8:12:4d:30:27:d7:bf:01: 23:43:1d:9e:15:76:5e:00:b3:50:62:1e:df:51:e9: a4:15:25:85:c2:15:d6:cb:67:46:87:d2:cc:ee:ee: ae:e3:be:e5:23:f4:36:ab:30:4f:21:09:7b:8c:95: 01:fa:5a:c7:55:40:1f:78:18:79:7f:9a:10:dc:eb: c9:dc:fd:23:d1:95:f2:29:a8:88:b7:97:f2:8e:a6: 8f:ab:65:a9:38:09:a6:eb:d3:42:0e:c0:dd:a7:54: 42:9e:51:39:e9:65:1e:98:73:40:4f:ff:da:8e:18: 7c:fc:d5:f3:6a:4a:26:9f:a8:a5:a0:03:ec:cc:83: 3e:82:7d:08:b9:5c:cb:8e:13:de:57:df:ce:71:cd: 7c:2c:1f:a2:b5:db:7a:f2:53:57:9e:4d:a2:28:cf: 83:06:4a:dc:ef:d1:89:a3:07:42:f6:65:ae:4a:ec: 5f:7d:c9:99:97:f4:20:1b:01:c9:fc:bc:f7:8c:e1: 9c:27:cd:f4:08:7c:c6:d4:49:62:e8:52:11:c4:28: 43:c3:6c:ed:17:f8:38:bb:53:1f:94:49:69:d9:64: f3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0C:A8:86:FE:05:D2:24:8A:0B:27:92:5D:CA:13:6B:2F:A0:B3:A3 X509v3 Authority Key Identifier: keyid:3B:B7:34:6C:99:1B:68:92:23:BA:DC:6F:82:DD:19:BE:3B:01:77:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.96.0/22 Signature Algorithm: sha256WithRSAEncryption 09:ff:ea:77:12:61:1e:0e:64:e3:f5:8b:3b:17:46:02:17:dc: f3:0f:3c:aa:ff:30:af:6e:18:20:5a:7f:54:cd:ee:8c:5d:df: 0c:1a:ba:83:98:ce:7d:2e:b5:69:fa:ac:be:75:d5:b0:38:9b: d7:69:cd:e8:21:81:60:0c:e1:b5:b6:b6:bc:0d:63:c6:12:e1: ad:4f:bd:89:de:c9:5c:6a:be:42:47:fd:43:af:86:89:f4:17: 17:9b:0a:56:bb:9d:a6:64:22:d3:20:f2:ee:59:40:42:ea:26: 09:82:42:fe:5f:3e:36:d5:7d:c2:7d:8e:46:6b:3b:f4:63:ce: c4:e3:1c:10:3e:9a:37:9a:d4:30:15:d3:92:c4:7e:11:4c:2b: de:e6:87:ab:3c:53:a0:8c:49:bb:11:1f:ac:a3:c5:e1:5c:ef: f9:09:e8:4a:b7:57:65:83:0f:ea:58:c3:fc:c8:98:ab:ac:04: c7:31:4a:6b:21:d0:09:8b:8e:6d:98:10:cf:1b:1f:44:ed:91: 6c:9b:df:a5:c5:5d:2c:5a:6c:7f:5c:e4:07:e7:54:ae:96:39: e6:f2:e8:70:56:f2:23:6d:c9:14:1c:49:6d:8e:e5:d7:05:dc: 9d:4b:19:54:e6:81:a2:24:02:07:a7:64:de:0b:0e:23:b5:a0: b7:98:9e:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMRNckGRc56GzZYKJYRO8I9GAW2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JCNzM0NkM5OTFCNjg5MjIzQkFEQzZGODJERDE5QkUz QjAxNzcwNDAeFw0yNTA4MjQxMzU1MDFaFw0yNjA4MjMxNDAwMDFaMDMxMTAvBgNV BAMTKDU1MENBODg2RkUwNUQyMjQ4QTBCMjc5MjVEQ0ExMzZCMkZBMEIzQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUuJJNT3BYClEIyDsDxOIJMOeg UsMuaQ/2ihWHClEVMkgum/P4Ek0wJ9e/ASNDHZ4Vdl4As1BiHt9R6aQVJYXCFdbL Z0aH0szu7q7jvuUj9DarME8hCXuMlQH6WsdVQB94GHl/mhDc68nc/SPRlfIpqIi3 l/KOpo+rZak4Cabr00IOwN2nVEKeUTnpZR6Yc0BP/9qOGHz81fNqSiafqKWgA+zM gz6CfQi5XMuOE95X385xzXwsH6K123ryU1eeTaIoz4MGStzv0YmjB0L2Za5K7F99 yZmX9CAbAcn8vPeM4ZwnzfQIfMbUSWLoUhHEKEPDbO0X+Di7Ux+USWnZZPM9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVQyohv4F0iSKCyeSXcoTay+gs6MwHwYDVR0j BBgwFoAUO7c0bJkbaJIjutxvgt0ZvjsBdwQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MjZlNDU2NC00OGYyLTQzYjUtODUwNS05M2I0OThlN2Q4YWIvMC8zQkI3MzQ2Qzk5 MUI2ODkyMjNCQURDNkY4MkREMTlCRTNCMDE3NzA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JCNzM0NkM5OTFCNjg5MjIzQkFEQzZGODJERDE5QkUzQjAx NzcwNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNmU0NTY0LTQ4ZjItNDNiNS04 NTA1LTkzYjQ5OGU3ZDhhYi8wLzMxMzAzMzJlMzIzMDM3MmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ89gMA0GCSqG SIb3DQEBCwUAA4IBAQAJ/+p3EmEeDmTj9Ys7F0YCF9zzDzyq/zCvbhggWn9Uze6M Xd8MGrqDmM59LrVp+qy+ddWwOJvXac3oIYFgDOG1tra8DWPGEuGtT72J3slcar5C R/1Dr4aJ9BcXmwpWu52mZCLTIPLuWUBC6iYJgkL+Xz421X3CfY5Gazv0Y87E4xwQ Ppo3mtQwFdOSxH4RTCve5oerPFOgjEm7ER+so8XhXO/5CehKt1dlgw/qWMP8yJir rATHMUprIdAJi45tmBDPGx9E7ZFsm9+lxV0sWmx/XOQH51Suljnm8uhwVvIjbckU HEltjuXXBdydSxlU5oGiJAIHp2TeCw4jtaC3mJ52 -----END CERTIFICATE-----Generated at Sun Sep 7 15:17:49 2025 by rpki-client