$ rpki-client -vvf repo-rpki.idnic.net/repo/8e9abb1a-d6c0-454f-870a-8beedd81fcd2/0/3130332e35322e3231332e302f32342d3234203d3e20313333383136.roa File: 3130332e35322e3231332e302f32342d3234203d3e20313333383136.roa (raw, json) Hash identifier: ddnEDu4ujzH2U+wrCuFYzTTZ0z5ZKNzjOcLkosVrgEM= Subject key identifier: 42:61:CB:E7:CC:82:5D:5D:9D:12:37:F4:1E:31:9B:9F:A4:61:AA:22 Certificate issuer: /CN=DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F Certificate serial: 086A57684FE82022BB7FC473700F3B409732EDC0 Authority key identifier: DB:9B:4D:12:79:E6:C6:4B:0C:DD:F5:93:FB:00:6B:39:92:D5:DF:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e9abb1a-d6c0-454f-870a-8beedd81fcd2/0/3130332e35322e3231332e302f32342d3234203d3e20313333383136.roa Signing time: Sat 19 Jul 2025 12:48:27 +0000 ROA not before: Sat 19 Jul 2025 12:43:27 +0000 ROA not after: Sat 18 Jul 2026 12:48:27 +0000 asID: 133816 IP address blocks: 103.52.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e9abb1a-d6c0-454f-870a-8beedd81fcd2/0/DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F.crl rsync://repo-rpki.idnic.net/repo/8e9abb1a-d6c0-454f-870a-8beedd81fcd2/0/DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:6a:57:68:4f:e8:20:22:bb:7f:c4:73:70:0f:3b:40:97:32:ed:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F Validity Not Before: Jul 19 12:43:27 2025 GMT Not After : Jul 18 12:48:27 2026 GMT Subject: CN=4261CBE7CC825D5D9D1237F41E319B9FA461AA22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:03:57:09:68:82:3d:71:93:a7:20:f3:cf:5d: db:84:41:a7:cc:e2:65:a0:f4:ea:58:08:2a:bc:17: 94:7b:f4:9a:3b:33:58:e8:a5:0c:ff:f5:01:ee:ef: 0d:e6:22:e4:b2:69:2f:9f:d5:e1:70:ed:bb:81:a6: f8:4b:cc:6e:c2:cd:bd:41:fd:bf:68:ea:28:1a:e5: 2a:17:07:26:e5:73:90:ea:c7:99:ac:c5:88:0d:9b: f4:03:64:eb:ac:dc:14:d4:c9:94:49:8c:a8:51:fe: b3:e0:18:7e:57:53:50:c9:c6:da:85:4a:f3:26:3b: b2:a7:67:d1:9d:72:6e:b4:60:f2:af:d6:d8:e1:4b: fe:fe:4b:80:8f:07:e3:00:19:40:07:ac:97:b8:ff: a9:05:2b:f8:8b:77:fa:a6:df:bb:8a:41:58:4d:9f: 99:fa:68:cd:c2:44:9b:40:12:a3:48:f9:c4:a2:4e: 89:9a:f2:49:b2:7c:ca:96:24:80:84:33:54:af:14: 18:c5:02:3a:ea:52:e0:3b:e5:e9:0d:13:df:30:7c: 53:a4:e9:13:c3:5f:65:34:e3:72:72:61:bf:13:4d: 72:f6:d5:69:23:ab:0d:70:4d:27:8f:22:d2:bf:0b: 19:63:d5:0f:c4:52:1f:65:90:f6:c8:96:09:ef:ce: 8a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:61:CB:E7:CC:82:5D:5D:9D:12:37:F4:1E:31:9B:9F:A4:61:AA:22 X509v3 Authority Key Identifier: keyid:DB:9B:4D:12:79:E6:C6:4B:0C:DD:F5:93:FB:00:6B:39:92:D5:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e9abb1a-d6c0-454f-870a-8beedd81fcd2/0/DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB9B4D1279E6C64B0CDDF593FB006B3992D5DF6F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e9abb1a-d6c0-454f-870a-8beedd81fcd2/0/3130332e35322e3231332e302f32342d3234203d3e20313333383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.213.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:d3:21:46:49:a8:06:93:1c:aa:c7:12:c4:8d:66:69:21:e7: 73:12:7d:0b:2e:37:18:71:c3:b1:66:ff:8b:59:40:c7:7e:4c: c4:e3:be:a3:44:f6:1f:6e:07:24:0e:f0:06:62:b6:07:48:68: b6:91:26:6e:af:40:ff:1a:83:b6:43:e1:ad:c9:85:db:69:44: 2b:b7:1a:b5:39:94:95:57:aa:5b:ad:eb:ff:76:38:e3:fb:f2: 56:9b:6b:a8:bc:8d:83:c0:c9:ff:94:6e:2c:82:f4:0b:6a:7d: 6e:06:60:a6:0b:80:90:ef:db:4f:78:e3:c4:40:2b:1f:45:cc: 2d:2e:86:73:df:ec:14:9a:95:93:3d:6a:d8:41:45:8c:3b:a8: 61:18:36:4e:60:0c:21:ce:6c:bb:0c:b8:d4:a4:0e:ee:8c:26: 5d:d4:c7:64:41:c9:26:ef:c5:9b:03:cf:45:31:da:2f:2e:2a: 93:a7:4a:80:72:60:ad:fa:20:eb:88:09:f6:20:ef:73:23:03: 4b:38:95:f2:e8:54:68:3e:6c:0a:0c:91:e7:5e:b0:1b:d4:27: 99:0b:e8:c4:2d:e5:0f:4c:27:f8:36:dd:c1:47:bd:ff:e3:9e: 1f:a1:7a:ab:a6:38:d4:d3:47:48:30:f8:32:43:f9:22:52:92: 29:df:b2:2b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCGpXaE/oICK7f8RzcA87QJcy7cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI5QjREMTI3OUU2QzY0QjBDRERGNTkzRkIwMDZCMzk5 MkQ1REY2RjAeFw0yNTA3MTkxMjQzMjdaFw0yNjA3MTgxMjQ4MjdaMDMxMTAvBgNV BAMTKDQyNjFDQkU3Q0M4MjVENUQ5RDEyMzdGNDFFMzE5QjlGQTQ2MUFBMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoA1cJaII9cZOnIPPPXduEQafM 4mWg9OpYCCq8F5R79Jo7M1jopQz/9QHu7w3mIuSyaS+f1eFw7buBpvhLzG7Czb1B /b9o6iga5SoXByblc5Dqx5msxYgNm/QDZOus3BTUyZRJjKhR/rPgGH5XU1DJxtqF SvMmO7KnZ9Gdcm60YPKv1tjhS/7+S4CPB+MAGUAHrJe4/6kFK/iLd/qm37uKQVhN n5n6aM3CRJtAEqNI+cSiToma8kmyfMqWJICEM1SvFBjFAjrqUuA75ekNE98wfFOk 6RPDX2U043JyYb8TTXL21Wkjqw1wTSePItK/Cxlj1Q/EUh9lkPbIlgnvzooNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQmHL58yCXV2dEjf0HjGbn6RhqiIwHwYDVR0j BBgwFoAU25tNEnnmxksM3fWT+wBrOZLV328wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTlhYmIxYS1kNmMwLTQ1NGYtODcwYS04YmVlZGQ4MWZjZDIvMC9EQjlCNEQxMjc5 RTZDNjRCMENEREY1OTNGQjAwNkIzOTkyRDVERjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI5QjREMTI3OUU2QzY0QjBDRERGNTkzRkIwMDZCMzk5MkQ1 REY2Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlOWFiYjFhLWQ2YzAtNDU0Zi04 NzBhLThiZWVkZDgxZmNkMi8wLzMxMzAzMzJlMzUzMjJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzTVMA0GCSqG SIb3DQEBCwUAA4IBAQBr0yFGSagGkxyqxxLEjWZpIedzEn0LLjcYccOxZv+LWUDH fkzE476jRPYfbgckDvAGYrYHSGi2kSZur0D/GoO2Q+GtyYXbaUQrtxq1OZSVV6pb rev/djjj+/JWm2uovI2DwMn/lG4sgvQLan1uBmCmC4CQ79tPeOPEQCsfRcwtLoZz 3+wUmpWTPWrYQUWMO6hhGDZOYAwhzmy7DLjUpA7ujCZd1MdkQckm78WbA89FMdov LiqTp0qAcmCt+iDriAn2IO9zIwNLOJXy6FRoPmwKDJHnXrAb1CeZC+jELeUPTCf4 Nt3BR73/454foXqrpjjU00dIMPgyQ/kiUpIp37Ir -----END CERTIFICATE-----Generated at Mon Jul 21 18:42:55 2025 by rpki-client