$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa File: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: jH+vIlrKU7PfFq1iZrO7cUj2zjNXd2QDgqmIURJ9hHo= Subject key identifier: 36:FE:42:92:A8:96:DB:9E:2B:0B:FF:81:1E:89:F0:51:15:5F:1F:02 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 6178A38BBB9DC9A5FE610FEB784A994545DD15A3 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa Signing time: Tue 22 Jul 2025 06:02:24 +0000 ROA not before: Tue 22 Jul 2025 05:57:24 +0000 ROA not after: Tue 21 Jul 2026 06:02:24 +0000 asID: 136052 IP address blocks: 103.28.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:78:a3:8b:bb:9d:c9:a5:fe:61:0f:eb:78:4a:99:45:45:dd:15:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Jul 22 05:57:24 2025 GMT Not After : Jul 21 06:02:24 2026 GMT Subject: CN=36FE4292A896DB9E2B0BFF811E89F051155F1F02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e2:0f:f7:ac:16:93:64:db:6c:f6:20:1c:64: c1:b3:56:32:0c:a9:cc:82:a3:8c:ec:11:8d:ae:09: 38:92:8e:99:f1:ee:06:45:19:91:59:77:f2:ca:3e: d4:de:49:91:32:b9:e4:ea:16:78:53:c1:b3:3d:4a: a4:09:8d:ff:2a:c9:0d:a8:bb:73:ba:a8:4f:1f:07: bc:cb:32:5e:b4:72:92:a9:84:ce:c7:90:3d:fe:59: 22:3f:31:0c:da:c1:1e:3e:86:1a:99:f7:04:ca:e7: 9d:9a:80:90:e3:10:8e:e0:27:64:b2:2a:39:ec:84: c2:05:c5:99:4d:08:f7:70:88:47:da:f6:a0:d5:45: fd:69:50:31:26:25:a1:e4:ba:80:d0:f9:94:ab:eb: 61:02:3a:96:a0:d4:13:69:0d:f1:04:44:8c:62:96: 32:ea:d7:0b:81:ef:1d:aa:59:0b:eb:34:2b:88:9c: 11:2e:4c:de:b5:b0:e2:89:05:19:00:d9:7b:61:2e: 12:0c:c7:32:3b:21:3f:e8:3e:a1:ed:17:1c:54:08: 84:5c:bc:de:11:a7:cc:34:12:fc:cf:d6:93:ff:48: ea:31:ae:88:4b:19:e7:ea:7d:a0:ab:03:24:85:c6: 15:43:61:40:72:17:d3:a0:6a:9d:2f:09:35:b2:20: 28:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FE:42:92:A8:96:DB:9E:2B:0B:FF:81:1E:89:F0:51:15:5F:1F:02 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.52.0/23 Signature Algorithm: sha256WithRSAEncryption 14:e8:35:22:2a:04:28:93:25:b6:35:64:2b:42:48:57:cc:cd: 1b:36:1d:98:20:e2:3d:80:3d:d1:7a:29:26:2e:d8:14:7b:4a: a6:1c:52:7c:06:8e:b0:ff:53:ec:21:65:e9:a8:23:1e:38:79: 65:a3:64:2f:a4:60:b2:ac:e5:f9:2d:f3:3d:2e:4b:14:4e:60: b7:21:5f:39:d9:19:22:39:1f:5d:fa:a0:15:f8:2a:20:20:0b: 7f:14:8f:2f:1e:53:4d:cb:a9:01:ef:32:20:bd:9e:db:ed:cf: 08:95:68:c3:f2:25:ca:d7:05:22:a6:44:ae:f2:26:ed:2d:56: 15:eb:d1:5b:c1:01:dc:07:50:cf:e4:ef:b1:f8:0a:39:46:a3: 60:1d:94:0e:bb:03:24:7e:9c:00:7e:80:d8:e9:77:35:95:14: 29:dc:09:30:a9:94:f1:d7:7c:64:ae:85:c4:bf:51:5e:b0:ab: de:b1:d6:df:c4:b2:a2:b2:20:c0:32:a5:ad:3c:00:ee:44:71: ba:a6:34:5e:49:d1:0e:49:58:4f:1a:29:35:88:f5:f4:92:89: e7:67:b4:30:83:f6:45:1f:d2:03:64:14:ea:a7:26:e3:69:98: 16:d6:ca:35:e2:c7:6b:50:e8:fe:9e:00:ab:36:0d:7b:d9:ec: 82:6d:c1:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYXiji7udyaX+YQ/reEqZRUXdFaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTA3MjIwNTU3MjRaFw0yNjA3MjEwNjAyMjRaMDMxMTAvBgNV BAMTKDM2RkU0MjkyQTg5NkRCOUUyQjBCRkY4MTFFODlGMDUxMTU1RjFGMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt4g/3rBaTZNts9iAcZMGzVjIM qcyCo4zsEY2uCTiSjpnx7gZFGZFZd/LKPtTeSZEyueTqFnhTwbM9SqQJjf8qyQ2o u3O6qE8fB7zLMl60cpKphM7HkD3+WSI/MQzawR4+hhqZ9wTK552agJDjEI7gJ2Sy KjnshMIFxZlNCPdwiEfa9qDVRf1pUDEmJaHkuoDQ+ZSr62ECOpag1BNpDfEERIxi ljLq1wuB7x2qWQvrNCuInBEuTN61sOKJBRkA2XthLhIMxzI7IT/oPqHtFxxUCIRc vN4Rp8w0EvzP1pP/SOoxrohLGefqfaCrAySFxhVDYUByF9Ogap0vCTWyIChNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNv5CkqiW254rC/+BHonwURVfHwIwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzODJlMzUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWccNDANBgkqhkiG 9w0BAQsFAAOCAQEAFOg1IioEKJMltjVkK0JIV8zNGzYdmCDiPYA90XopJi7YFHtK phxSfAaOsP9T7CFl6agjHjh5ZaNkL6Rgsqzl+S3zPS5LFE5gtyFfOdkZIjkfXfqg FfgqICALfxSPLx5TTcupAe8yIL2e2+3PCJVow/IlytcFIqZErvIm7S1WFevRW8EB 3AdQz+TvsfgKOUajYB2UDrsDJH6cAH6A2Ol3NZUUKdwJMKmU8dd8ZK6FxL9RXrCr 3rHW38SyorIgwDKlrTwA7kRxuqY0XknRDklYTxopNYj19JKJ52e0MIP2RR/SA2QU 6qcm42mYFtbKNeLHa1Do/p4AqzYNe9nsgm3B9w== -----END CERTIFICATE-----Generated at Wed Jul 23 12:04:18 2025 by rpki-client