$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa File: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (raw, json) Hash identifier: 778Q5HjUkZ/WVTVzYaqPWOxb/BdNeOK8Id+aBKl0ego= Subject key identifier: 40:E1:8C:0B:DC:43:14:43:83:40:38:11:DB:71:B4:64:5C:C2:B5:34 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 6112AD5EECF2F0B958D9E3A825DB72BA226DAD17 Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa Signing time: Fri 18 Jul 2025 04:00:00 +0000 ROA not before: Fri 18 Jul 2025 03:55:00 +0000 ROA not after: Fri 17 Jul 2026 04:00:00 +0000 asID: 38756 IP address blocks: 103.212.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:12:ad:5e:ec:f2:f0:b9:58:d9:e3:a8:25:db:72:ba:22:6d:ad:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Jul 18 03:55:00 2025 GMT Not After : Jul 17 04:00:00 2026 GMT Subject: CN=40E18C0BDC43144383403811DB71B4645CC2B534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c2:81:72:f7:23:d8:6b:88:28:bc:ca:7c:f9: fd:dc:31:93:7c:58:9e:52:f4:c7:c2:e6:84:76:33: 83:9a:a2:e4:8f:d2:65:f4:54:09:9e:ce:13:41:11: cc:a1:83:06:2d:20:c1:63:75:51:55:d0:d3:a7:bf: 44:1f:cd:47:11:1c:ce:12:6f:f2:66:5d:c2:38:ab: c9:24:4c:38:f6:0b:4b:6a:d7:40:69:af:e3:d1:63: 1c:92:6d:91:09:48:e8:22:11:a5:c1:59:7f:33:3e: a6:b3:59:c0:f5:f6:7a:9f:59:d0:aa:17:ac:46:7e: 3b:bb:b3:97:67:48:89:67:90:46:96:b8:e4:40:2f: 34:cb:94:af:eb:5b:e0:34:48:de:c2:9b:9f:20:38: db:86:8c:e0:f3:29:1a:c4:5e:a7:67:20:c9:fb:85: 10:19:b6:c9:7d:c1:fb:11:4e:09:08:c8:0b:e4:38: 1b:c2:a5:e6:9a:ca:ad:14:3c:de:d0:80:39:25:66: 22:02:51:aa:df:ec:24:d3:ce:cf:6b:1e:5a:0e:b1: 66:15:62:a1:20:98:20:61:5b:ca:73:ad:bc:b0:75: 6e:4c:95:63:34:30:db:71:63:b3:0f:b5:05:19:9a: 3e:89:83:7a:ee:b6:b8:b4:77:e2:1c:0f:44:b6:a5: f3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E1:8C:0B:DC:43:14:43:83:40:38:11:DB:71:B4:64:5C:C2:B5:34 X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.236.0/23 Signature Algorithm: sha256WithRSAEncryption 92:65:42:8f:fe:db:02:37:a7:01:a4:54:ce:a0:05:46:b0:0d: c3:ba:c3:62:01:bb:da:83:0d:94:83:23:96:bd:14:50:af:54: 83:98:c2:61:9e:c3:3d:73:e8:31:59:fa:19:24:60:39:6d:1d: 16:55:d0:9e:29:21:b2:57:2b:d0:43:0b:cf:f6:d7:4c:79:c6: 3b:23:df:6e:7a:fd:f5:30:7c:1b:6f:79:4e:dc:8c:43:18:0c: 8e:76:e6:f7:7c:43:d1:02:8a:e5:f6:e9:ab:b2:3a:b0:9d:d9: 8f:73:8b:4c:f9:0c:19:5d:bf:05:06:1b:1e:55:64:5f:d5:f2: 38:8a:08:40:61:d1:05:31:77:0f:58:72:36:39:67:bd:f4:17: 8b:eb:f1:de:28:de:ff:98:4e:60:21:d2:fe:77:70:cd:56:a2: 35:d2:32:41:f4:44:e4:04:41:dc:2f:5e:90:8f:3a:71:ed:19: 2e:97:3c:b9:61:68:71:8f:26:44:70:41:55:08:18:f2:8d:a4: 52:0a:69:ca:f4:99:74:2e:1d:fe:0e:23:ee:9f:ef:3f:d4:65: f1:cb:76:74:4e:7b:67:1b:ac:a4:f4:4b:84:8e:2c:6b:37:41: d5:02:05:e4:a8:8d:bb:ca:21:94:70:7d:15:b5:35:1d:a8:12: c7:e8:1a:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYRKtXuzy8LlY2eOoJdtyuiJtrRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNTA3MTgwMzU1MDBaFw0yNjA3MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDQwRTE4QzBCREM0MzE0NDM4MzQwMzgxMURCNzFCNDY0NUNDMkI1MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDwoFy9yPYa4govMp8+f3cMZN8 WJ5S9MfC5oR2M4OaouSP0mX0VAmezhNBEcyhgwYtIMFjdVFV0NOnv0QfzUcRHM4S b/JmXcI4q8kkTDj2C0tq10Bpr+PRYxySbZEJSOgiEaXBWX8zPqazWcD19nqfWdCq F6xGfju7s5dnSIlnkEaWuORALzTLlK/rW+A0SN7Cm58gONuGjODzKRrEXqdnIMn7 hRAZtsl9wfsRTgkIyAvkOBvCpeaayq0UPN7QgDklZiICUarf7CTTzs9rHloOsWYV YqEgmCBhW8pzrbywdW5MlWM0MNtxY7MPtQUZmj6Jg3rutri0d+IcD0S2pfNnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQOGMC9xDFEODQDgR23G0ZFzCtTQwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9TsMA0GCSqG SIb3DQEBCwUAA4IBAQCSZUKP/tsCN6cBpFTOoAVGsA3DusNiAbvagw2UgyOWvRRQ r1SDmMJhnsM9c+gxWfoZJGA5bR0WVdCeKSGyVyvQQwvP9tdMecY7I99uev31MHwb b3lO3IxDGAyOdub3fEPRAorl9umrsjqwndmPc4tM+QwZXb8FBhseVWRf1fI4ighA YdEFMXcPWHI2OWe99BeL6/HeKN7/mE5gIdL+d3DNVqI10jJB9ETkBEHcL16Qjzpx 7Rkulzy5YWhxjyZEcEFVCBjyjaRSCmnK9Jl0Lh3+DiPun+8/1GXxy3Z0TntnG6yk 9EuEjixrN0HVAgXkqI27yiGUcH0VtTUdqBLH6BpH -----END CERTIFICATE-----Generated at Wed Jul 23 12:24:04 2025 by rpki-client