$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa File: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (raw, json) Hash identifier: VWZBwU3RWnROUShcpW3L74G67TSj+wYP3BWSlSltpjo= Subject key identifier: B2:95:56:3C:16:5F:15:31:9F:C0:77:74:61:58:03:57:10:7D:A3:F9 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 70A837798032D9F9AFB59EFF6AA61271C1834498 Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa Signing time: Fri 18 Jul 2025 05:00:00 +0000 ROA not before: Fri 18 Jul 2025 04:55:00 +0000 ROA not after: Fri 17 Jul 2026 05:00:00 +0000 asID: 38756 IP address blocks: 103.212.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a8:37:79:80:32:d9:f9:af:b5:9e:ff:6a:a6:12:71:c1:83:44:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Jul 18 04:55:00 2025 GMT Not After : Jul 17 05:00:00 2026 GMT Subject: CN=B295563C165F15319FC0777461580357107DA3F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5f:9a:0b:7c:35:2e:d6:14:d8:0b:f8:75:ee: 5a:1c:4e:73:19:fe:d5:14:12:00:6f:ae:f7:7d:cb: f4:47:a4:80:0b:62:c4:51:64:1f:c5:78:b5:b4:75: ce:ec:f4:74:b5:51:21:a5:ae:d4:f6:97:3e:21:f4: c5:84:30:4b:14:38:87:68:16:e3:a7:f4:b1:3a:3a: 22:0a:e7:38:a3:5b:d9:44:a0:69:cb:46:d3:22:29: e8:a5:45:46:1a:e8:d1:d5:54:24:28:06:cc:56:72: f4:bf:5e:d6:0c:71:4a:c3:f3:5a:69:2a:0c:a7:1a: b1:44:52:ff:4f:82:60:89:95:2a:25:a4:a1:0d:e1: 61:90:98:3c:fc:20:c7:a5:47:7c:64:ad:ad:e5:f7: 2e:53:38:b8:81:aa:5c:46:9f:38:cf:27:4e:68:52: 48:79:dd:92:c9:7b:12:8a:c8:61:53:64:22:57:93: 4a:74:a3:96:5b:ec:32:53:d6:28:31:f3:8c:68:68: bc:aa:01:29:c8:29:a9:db:b9:95:cf:76:67:56:88: 3e:0d:5a:f3:bb:1b:b3:53:7b:07:d6:58:20:e8:36: af:01:54:37:59:aa:73:02:fc:6e:8d:e5:a1:7d:b8: 2d:91:4c:dd:89:6b:81:d5:91:dc:1d:c4:cc:b1:ec: 3d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:95:56:3C:16:5F:15:31:9F:C0:77:74:61:58:03:57:10:7D:A3:F9 X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.238.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:c2:c5:a9:73:4f:2b:99:5c:f7:9f:52:86:e3:f0:d2:fc:db: 57:7d:18:3b:a0:31:9b:b5:67:c3:ba:a6:f2:69:9e:5f:47:a8: 85:26:e6:40:7d:bd:06:8e:e7:18:2d:e7:38:a6:95:79:84:d2: 76:3a:89:c3:7f:70:89:c9:82:a5:b9:57:75:6a:a9:0c:ca:8a: 97:31:9b:21:47:4d:39:23:e2:1c:ac:42:a6:c8:25:86:e1:3d: 5a:b4:cc:5a:06:99:f7:45:c6:7e:0a:ac:48:e3:5b:1b:f4:8a: ec:d7:ee:9b:14:bb:00:ab:20:bd:cf:7c:f6:b7:e4:47:0b:70: bd:d9:e2:d6:af:f2:1d:6d:ab:0a:31:c5:c1:da:bf:aa:ee:fa: c5:b5:ce:b1:39:1a:65:40:eb:ec:89:31:6e:66:05:84:9e:9b: 96:f1:fe:01:a0:3e:00:52:61:00:23:21:b3:52:8c:bc:c2:82: 65:a4:81:48:48:c5:21:61:30:6b:f8:01:fe:4b:93:38:06:b5: df:b6:88:bc:64:a1:ef:5b:f5:96:13:0e:44:7a:5f:69:fe:06: 9e:b0:8e:80:88:20:36:e5:9a:86:39:32:3e:f8:85:c9:78:f7: 89:93:3d:ff:9c:5c:7c:90:89:fa:ea:e7:b8:6c:d4:cd:20:1e: c3:f9:a5:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcKg3eYAy2fmvtZ7/aqYSccGDRJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNTA3MTgwNDU1MDBaFw0yNjA3MTcwNTAwMDBaMDMxMTAvBgNV BAMTKEIyOTU1NjNDMTY1RjE1MzE5RkMwNzc3NDYxNTgwMzU3MTA3REEzRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFX5oLfDUu1hTYC/h17locTnMZ /tUUEgBvrvd9y/RHpIALYsRRZB/FeLW0dc7s9HS1USGlrtT2lz4h9MWEMEsUOIdo FuOn9LE6OiIK5zijW9lEoGnLRtMiKeilRUYa6NHVVCQoBsxWcvS/XtYMcUrD81pp KgynGrFEUv9PgmCJlSolpKEN4WGQmDz8IMelR3xkra3l9y5TOLiBqlxGnzjPJ05o Ukh53ZLJexKKyGFTZCJXk0p0o5Zb7DJT1igx84xoaLyqASnIKanbuZXPdmdWiD4N WvO7G7NTewfWWCDoNq8BVDdZqnMC/G6N5aF9uC2RTN2Ja4HVkdwdxMyx7D33AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUspVWPBZfFTGfwHd0YVgDVxB9o/kwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9TuMA0GCSqG SIb3DQEBCwUAA4IBAQCfwsWpc08rmVz3n1KG4/DS/NtXfRg7oDGbtWfDuqbyaZ5f R6iFJuZAfb0GjucYLec4ppV5hNJ2OonDf3CJyYKluVd1aqkMyoqXMZshR005I+Ic rEKmyCWG4T1atMxaBpn3RcZ+CqxI41sb9Irs1+6bFLsAqyC9z3z2t+RHC3C92eLW r/IdbasKMcXB2r+q7vrFtc6xORplQOvsiTFuZgWEnpuW8f4BoD4AUmEAIyGzUoy8 woJlpIFISMUhYTBr+AH+S5M4BrXftoi8ZKHvW/WWEw5Eel9p/gaesI6AiCA25ZqG OTI++IXJePeJkz3/nFx8kIn66ue4bNTNIB7D+aV/ -----END CERTIFICATE-----Generated at Wed Jul 23 12:12:38 2025 by rpki-client