$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa File: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (raw, json) Hash identifier: 34Zwk2rQxI6/8F/IkX/shAQb+olpsRnc3h6OinfJJ/w= Subject key identifier: D1:CB:80:52:EA:BA:AD:62:9F:49:B5:2D:0D:F5:C9:3A:09:8A:DD:B1 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 29768B397CAECED7EABBAE0F3316578803DEAD1A Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa Signing time: Sun 13 Jul 2025 05:00:00 +0000 ROA not before: Sun 13 Jul 2025 04:55:00 +0000 ROA not after: Sun 12 Jul 2026 05:00:00 +0000 asID: 138889 IP address blocks: 103.212.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:76:8b:39:7c:ae:ce:d7:ea:bb:ae:0f:33:16:57:88:03:de:ad:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Jul 13 04:55:00 2025 GMT Not After : Jul 12 05:00:00 2026 GMT Subject: CN=D1CB8052EABAAD629F49B52D0DF5C93A098ADDB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ff:80:af:ca:59:a9:0b:35:2a:10:14:98:f6: ae:5b:5a:b9:dd:bd:19:82:ef:52:32:62:a1:8c:49: 1b:d5:6b:25:ee:e7:47:cd:a8:98:e3:17:95:ed:05: 65:b5:66:35:6c:69:2c:e9:2a:29:94:2c:69:aa:a3: 4d:db:5a:7c:e9:59:c6:d9:e1:d5:1f:00:9a:40:fd: 66:f4:f3:cb:db:f0:64:28:da:87:d8:83:3c:22:9c: 26:77:19:97:c5:f7:5d:f6:68:15:73:29:16:cf:3f: f6:d9:19:cf:fb:fc:ea:84:01:a5:49:09:a1:b5:f1: a8:cb:85:52:49:0b:94:0d:3d:d7:24:9f:fb:ff:83: 56:4a:5a:bf:b8:4b:7b:8e:2a:68:29:23:9b:79:52: 70:43:50:71:29:7c:21:8d:15:b6:f2:dc:93:e2:64: b6:e3:00:8a:03:5b:30:c9:3a:e6:ce:d1:43:26:27: 27:ff:d5:55:4c:4a:f3:98:e9:d3:6a:0a:c4:1b:79: 7f:46:78:8c:f7:8c:af:cf:96:e6:4e:13:f0:5c:43: f8:a0:69:e4:e9:d2:28:ad:37:ce:a4:47:71:42:5e: 91:b7:59:e4:99:62:32:b3:e1:a6:05:f4:1f:35:42: 54:64:60:00:c5:f7:b5:f2:42:f6:8a:57:9d:e7:01: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CB:80:52:EA:BA:AD:62:9F:49:B5:2D:0D:F5:C9:3A:09:8A:DD:B1 X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.239.0/24 Signature Algorithm: sha256WithRSAEncryption 60:43:4d:ed:2e:c7:7c:4a:77:4a:30:27:bf:27:db:d2:9f:29: f7:19:98:58:c9:8b:7f:d7:fd:62:e9:ae:11:c5:f2:b1:5d:48: 93:50:c3:3c:6d:95:d1:33:27:ec:e7:8a:da:68:57:36:dc:d3: b9:41:90:bb:85:18:16:fa:ce:ae:92:7b:d0:07:eb:99:0f:0f: 06:06:d0:a1:43:a7:40:ed:e6:40:06:90:7d:a6:aa:77:70:29: f5:27:31:4c:c8:6f:ea:1a:e6:c7:9a:be:35:1a:bb:3c:a3:a5: a4:68:10:b4:11:80:6b:1a:6a:f2:7b:03:27:c6:65:cf:3f:47: e7:6e:cd:67:eb:b0:60:f2:9b:d7:7e:cf:5b:eb:f2:b7:04:c9: 42:3b:0e:57:de:62:f5:da:1d:84:60:cd:e1:29:73:2a:26:38: f1:d6:d0:8c:4b:68:e9:de:8d:14:11:63:23:2c:c7:c1:d6:4c: 44:65:dd:20:94:cb:19:17:e3:8a:70:0f:1a:0b:27:3c:d6:72: 5f:7d:e7:a2:be:3f:f7:2b:3c:aa:bc:b6:a5:8b:cc:22:6e:96: 86:2f:5d:ad:38:78:00:b5:21:51:6d:63:61:33:57:ef:14:35: 95:bb:ca:14:d7:86:d3:a4:76:07:74:a7:cf:87:6c:cf:f1:0c: c4:d1:97:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKXaLOXyuztfqu64PMxZXiAPerRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNTA3MTMwNDU1MDBaFw0yNjA3MTIwNTAwMDBaMDMxMTAvBgNV BAMTKEQxQ0I4MDUyRUFCQUFENjI5RjQ5QjUyRDBERjVDOTNBMDk4QUREQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr/4CvylmpCzUqEBSY9q5bWrnd vRmC71IyYqGMSRvVayXu50fNqJjjF5XtBWW1ZjVsaSzpKimULGmqo03bWnzpWcbZ 4dUfAJpA/Wb088vb8GQo2ofYgzwinCZ3GZfF9132aBVzKRbPP/bZGc/7/OqEAaVJ CaG18ajLhVJJC5QNPdckn/v/g1ZKWr+4S3uOKmgpI5t5UnBDUHEpfCGNFbby3JPi ZLbjAIoDWzDJOubO0UMmJyf/1VVMSvOY6dNqCsQbeX9GeIz3jK/PluZOE/BcQ/ig aeTp0iitN86kR3FCXpG3WeSZYjKz4aYF9B81QlRkYADF97XyQvaKV53nAZ0nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0cuAUuq6rWKfSbUtDfXJOgmK3bEwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1O8wDQYJ KoZIhvcNAQELBQADggEBAGBDTe0ux3xKd0owJ78n29KfKfcZmFjJi3/X/WLprhHF 8rFdSJNQwzxtldEzJ+znitpoVzbc07lBkLuFGBb6zq6Se9AH65kPDwYG0KFDp0Dt 5kAGkH2mqndwKfUnMUzIb+oa5seavjUauzyjpaRoELQRgGsaavJ7AyfGZc8/R+du zWfrsGDym9d+z1vr8rcEyUI7DlfeYvXaHYRgzeEpcyomOPHW0IxLaOnejRQRYyMs x8HWTERl3SCUyxkX44pwDxoLJzzWcl9956K+P/crPKq8tqWLzCJuloYvXa04eAC1 IVFtY2EzV+8UNZW7yhTXhtOkdgd0p8+HbM/xDMTRlyg= -----END CERTIFICATE-----Generated at Wed Jul 23 12:26:20 2025 by rpki-client