$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3234362e302e302f32322d3234203d3e2039343232.roa File: 3130332e3234362e302e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: nhGmrbnsJZJKbXEVM2224rOUYqSyOnxXP3J6DVLRP58= Subject key identifier: EE:F8:6A:73:02:F7:B5:D1:1D:06:3B:3F:08:4C:B6:70:6F:B6:FB:42 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 137BEF0D27703E5AB2078B9C42DEC50C0C258935 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3234362e302e302f32322d3234203d3e2039343232.roa Signing time: Mon 02 Jun 2025 02:04:20 +0000 ROA not before: Mon 02 Jun 2025 01:59:20 +0000 ROA not after: Mon 01 Jun 2026 02:04:20 +0000 asID: 9422 IP address blocks: 103.246.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:7b:ef:0d:27:70:3e:5a:b2:07:8b:9c:42:de:c5:0c:0c:25:89:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:20 2025 GMT Not After : Jun 1 02:04:20 2026 GMT Subject: CN=EEF86A7302F7B5D11D063B3F084CB6706FB6FB42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5a:75:60:bb:a4:0f:38:c5:da:dd:5e:e7:e8: ef:22:84:fe:7a:d3:8f:a7:4e:9c:20:dd:ac:fa:8f: 2f:6b:c2:48:92:bc:10:64:08:1b:7b:c0:37:80:9b: 9a:20:62:20:06:59:7e:f3:ca:f4:38:2e:88:35:0e: e2:91:b7:b6:cb:0c:a9:68:16:26:ad:20:2f:3f:14: 6f:51:4d:60:8f:03:8d:d8:5f:e2:e1:e3:82:98:ce: d8:dd:2b:20:60:a6:16:6b:7e:1c:20:3e:92:05:4f: 18:ce:66:d3:39:0c:01:98:2b:85:4e:2b:36:61:9c: f8:6c:55:eb:59:77:da:71:0f:e9:8b:9a:cb:ea:4f: 71:ec:4d:89:63:ef:52:e4:44:23:56:2a:a8:6c:d8: 8b:56:e7:a2:b6:f4:38:c7:2d:06:f3:14:08:2e:e4: 6c:1f:b0:5f:95:07:fd:c8:44:06:24:50:45:7c:0d: 80:83:fc:03:54:a4:06:81:a0:83:73:cb:de:8c:68: fd:46:70:53:f8:9d:28:9f:2e:38:29:a8:5e:1b:9f: f8:a7:64:31:92:36:10:8c:22:3b:ff:c5:1b:a5:1b: 50:10:f6:fd:9d:3b:fa:68:00:9d:42:bc:7b:ad:4f: 21:1f:73:56:6a:72:df:7e:20:4d:6c:06:61:38:d5: 17:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F8:6A:73:02:F7:B5:D1:1D:06:3B:3F:08:4C:B6:70:6F:B6:FB:42 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3234362e302e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.0.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:75:e2:96:3c:6d:6f:b0:92:b6:a5:1c:4d:fd:87:b2:d2:4f: 35:62:52:c4:94:32:43:43:82:27:a4:c0:b3:63:8f:c3:99:fe: a5:29:cf:72:d7:59:37:7f:73:f9:4c:28:1b:19:39:d1:db:4b: 31:0f:62:e4:d8:82:47:04:e3:2d:61:4f:9a:48:da:82:e7:3b: d6:4e:64:e6:92:f2:38:84:c4:0b:73:22:8d:b6:a5:5d:2c:df: d0:4b:dd:f6:00:ca:aa:fe:e9:9b:e0:27:56:6c:74:9a:97:95: b9:e9:90:a0:76:e9:84:b7:be:29:6e:8d:d1:37:7c:b7:cc:e0: dc:83:52:e9:95:cb:a3:91:4a:f7:8b:b3:da:de:92:d6:b4:9a: 32:68:70:8e:73:da:b9:aa:0d:fe:2d:ef:5a:05:c3:ba:d0:94: 01:26:4b:9b:d7:c8:e6:61:ff:ca:59:f7:fa:74:b2:40:ff:99: a5:e6:3c:f7:3e:7b:27:27:38:88:bb:87:4d:a0:aa:fd:19:f8: b9:01:aa:33:cd:25:e0:c0:a8:95:27:36:da:69:c3:ae:95:9b: ca:14:b0:47:ba:74:06:ae:01:69:0b:41:00:a8:65:53:73:d9: 99:be:65:68:9f:5a:15:a9:d0:14:d3:ab:79:f2:95:7b:1b:b0: 63:38:03:8d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUE3vvDSdwPlqyB4ucQt7FDAwliTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjBaFw0yNjA2MDEwMjA0MjBaMDMxMTAvBgNV BAMTKEVFRjg2QTczMDJGN0I1RDExRDA2M0IzRjA4NENCNjcwNkZCNkZCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVWnVgu6QPOMXa3V7n6O8ihP56 04+nTpwg3az6jy9rwkiSvBBkCBt7wDeAm5ogYiAGWX7zyvQ4Log1DuKRt7bLDKlo FiatIC8/FG9RTWCPA43YX+Lh44KYztjdKyBgphZrfhwgPpIFTxjOZtM5DAGYK4VO KzZhnPhsVetZd9pxD+mLmsvqT3HsTYlj71LkRCNWKqhs2ItW56K29DjHLQbzFAgu 5GwfsF+VB/3IRAYkUEV8DYCD/ANUpAaBoINzy96MaP1GcFP4nSifLjgpqF4bn/in ZDGSNhCMIjv/xRulG1AQ9v2dO/poAJ1CvHutTyEfc1Zqct9+IE1sBmE41RdtAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU7vhqcwL3tdEdBjs/CEy2cG+2+0IwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg3ZDc5YmEtZmI1NS00OWE1LTk2 N2ItMWVkYzc0OWQwMTI4LzAvMzEzMDMzMmUzMjM0MzYyZTMwMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzNDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn9gAwDQYJKoZIhvcNAQEL BQADggEBAA514pY8bW+wkralHE39h7LSTzViUsSUMkNDgiekwLNjj8OZ/qUpz3LX WTd/c/lMKBsZOdHbSzEPYuTYgkcE4y1hT5pI2oLnO9ZOZOaS8jiExAtzIo22pV0s 39BL3fYAyqr+6ZvgJ1ZsdJqXlbnpkKB26YS3vilujdE3fLfM4NyDUumVy6ORSveL s9rekta0mjJocI5z2rmqDf4t71oFw7rQlAEmS5vXyOZh/8pZ9/p0skD/maXmPPc+ eycnOIi7h02gqv0Z+LkBqjPNJeDAqJUnNtppw66Vm8oUsEe6dAauAWkLQQCoZVNz 2Zm+ZWifWhWp0BTTq3nylXsbsGM4A40= -----END CERTIFICATE-----Generated at Thu Oct 23 23:57:17 2025 by rpki-client