$ rpki-client -vvf repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/3130332e38342e3230312e302f32342d3234203d3e20313336303935.roa File: 3130332e38342e3230312e302f32342d3234203d3e20313336303935.roa (raw, json) Hash identifier: 6UTk6qTE+l33r+zdpJdYayRwLX5BpaOtu0Am/wxoORw= Subject key identifier: DB:9E:8E:AC:53:B8:89:D6:75:52:92:82:1F:C5:5F:49:07:42:AB:BC Certificate issuer: /CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Certificate serial: 16760E0D26AAFD708E9C31A4974262CD60825327 Authority key identifier: D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/3130332e38342e3230312e302f32342d3234203d3e20313336303935.roa Signing time: Thu 10 Jul 2025 10:02:21 +0000 ROA not before: Thu 10 Jul 2025 09:57:21 +0000 ROA not after: Thu 09 Jul 2026 10:02:21 +0000 asID: 136095 IP address blocks: 103.84.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:29:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:76:0e:0d:26:aa:fd:70:8e:9c:31:a4:97:42:62:cd:60:82:53:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Validity Not Before: Jul 10 09:57:21 2025 GMT Not After : Jul 9 10:02:21 2026 GMT Subject: CN=DB9E8EAC53B889D6755292821FC55F490742ABBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:54:88:c4:87:1b:50:8b:9c:6f:b5:d9:6d:a3: 9d:4f:27:68:7d:15:91:79:fc:98:49:ee:54:9c:3d: d0:2f:8f:62:e2:64:37:8e:81:74:bf:10:2a:4d:34: 06:24:b8:7e:5e:1d:46:b4:dc:fd:bc:9e:5e:d0:71: 53:cf:e0:4d:6a:2b:d9:fb:cf:3c:77:83:52:7d:72: e0:2b:cc:4f:91:bf:28:b0:96:6e:90:91:c7:a3:7f: 36:fb:6c:b1:ba:82:90:62:33:c6:83:47:31:60:4e: 8a:8f:55:f0:5a:85:70:aa:a2:11:7c:a5:c5:4b:f8: ce:a4:b6:16:76:8c:12:58:e3:40:a9:cb:70:d2:86: 64:63:94:d4:a6:6a:18:7f:c3:64:f6:9f:9d:b7:c1: ff:b3:3c:21:c7:cf:1e:f1:47:ff:cb:7e:8f:ec:56: 12:be:df:af:80:59:3b:e3:da:15:f7:a9:9f:f0:13: ec:cd:5a:8c:ae:cd:5d:85:4f:08:55:af:44:c0:88: a9:37:f8:14:cc:10:7d:b1:2e:cf:76:2a:0c:89:36: ef:e8:70:b7:dd:9b:00:f1:0c:3a:0d:03:f2:13:c5: 1b:7c:fb:57:02:66:ec:7e:1d:53:95:17:87:d6:c0: 54:b3:15:12:06:8e:05:c1:90:e6:70:f0:2c:8c:d0: f6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9E:8E:AC:53:B8:89:D6:75:52:92:82:1F:C5:5F:49:07:42:AB:BC X509v3 Authority Key Identifier: keyid:D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/3130332e38342e3230312e302f32342d3234203d3e20313336303935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.201.0/24 Signature Algorithm: sha256WithRSAEncryption 81:eb:3c:ba:8d:31:e1:96:a7:54:28:b0:dc:7e:7c:f7:9f:4e: b9:85:ad:35:ab:d8:e7:fc:fb:27:f6:84:41:d6:5d:b9:d3:b3: f0:dd:8c:34:1b:38:05:a3:5f:28:b7:62:21:b7:bf:fb:c7:74: 98:c2:ed:8a:7d:94:c5:df:ea:17:fd:23:a3:e1:6e:be:06:54: 37:0b:b1:3f:61:9c:a9:c5:c1:e7:18:31:49:fc:a9:2b:c2:2e: e8:a1:17:ff:7c:89:ba:19:79:26:d5:b9:c9:eb:ec:20:b8:30: 5b:e6:29:e2:90:68:5f:f1:b5:8a:82:78:d4:ef:08:78:08:70: 77:47:a0:f4:8b:76:30:45:27:e4:ce:56:5f:a3:bd:91:ee:56: a3:19:8c:67:0f:4b:1b:9f:2f:91:43:ce:b5:f0:67:a9:a3:10: 5d:54:84:18:56:0b:95:e8:db:a6:c7:0d:9d:43:1d:2c:94:31: ec:9a:ef:be:82:46:11:d7:67:89:16:18:d0:ca:21:8b:65:87: 4c:62:71:e7:e3:30:f5:10:15:26:06:50:2d:76:c1:42:0d:1d: 00:cb:03:f6:42:17:43:15:78:89:fe:80:42:a7:bc:42:43:bc: 00:73:0b:d3:1d:ab:99:6b:56:33:5c:55:ab:64:9c:e5:e8:ae: 80:39:be:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFnYODSaq/XCOnDGkl0JizWCCUycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI4QkE5RDVFMzIxOTNERUUyOUVCNEMxOTQ0RjM1RkMz MkQ4QjE5QjAeFw0yNTA3MTAwOTU3MjFaFw0yNjA3MDkxMDAyMjFaMDMxMTAvBgNV BAMTKERCOUU4RUFDNTNCODg5RDY3NTUyOTI4MjFGQzU1RjQ5MDc0MkFCQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6VIjEhxtQi5xvtdlto51PJ2h9 FZF5/JhJ7lScPdAvj2LiZDeOgXS/ECpNNAYkuH5eHUa03P28nl7QcVPP4E1qK9n7 zzx3g1J9cuArzE+Rvyiwlm6Qkcejfzb7bLG6gpBiM8aDRzFgToqPVfBahXCqohF8 pcVL+M6kthZ2jBJY40Cpy3DShmRjlNSmahh/w2T2n523wf+zPCHHzx7xR//Lfo/s VhK+36+AWTvj2hX3qZ/wE+zNWoyuzV2FTwhVr0TAiKk3+BTMEH2xLs92KgyJNu/o cLfdmwDxDDoNA/ITxRt8+1cCZux+HVOVF4fWwFSzFRIGjgXBkOZw8CyM0PbFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU256OrFO4idZ1UpKCH8VfSQdCq7wwHwYDVR0j BBgwFoAU0oup1eMhk97inrTBlE81/DLYsZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWUyNDE1Yy03ZDRmLTQ0MjctODMyZC01OWI0Yzc5YWFlNWEvMC9EMjhCQTlENUUz MjE5M0RFRTI5RUI0QzE5NDRGMzVGQzMyRDhCMTlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI4QkE5RDVFMzIxOTNERUUyOUVCNEMxOTQ0RjM1RkMzMkQ4 QjE5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1ZTI0MTVjLTdkNGYtNDQyNy04 MzJkLTU5YjRjNzlhYWU1YS8wLzMxMzAzMzJlMzgzNDJlMzIzMDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TJMA0GCSqG SIb3DQEBCwUAA4IBAQCB6zy6jTHhlqdUKLDcfnz3n065ha01q9jn/Psn9oRB1l25 07Pw3Yw0GzgFo18ot2Iht7/7x3SYwu2KfZTF3+oX/SOj4W6+BlQ3C7E/YZypxcHn GDFJ/Kkrwi7ooRf/fIm6GXkm1bnJ6+wguDBb5inikGhf8bWKgnjU7wh4CHB3R6D0 i3YwRSfkzlZfo72R7lajGYxnD0sbny+RQ8618GepoxBdVIQYVguV6Numxw2dQx0s lDHsmu++gkYR12eJFhjQyiGLZYdMYnHn4zD1EBUmBlAtdsFCDR0AywP2QhdDFXiJ /oBCp7xCQ7wAcwvTHauZa1YzXFWrZJzl6K6AOb4H -----END CERTIFICATE-----Generated at Mon Jul 21 18:08:09 2025 by rpki-client