$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31342e302f32342d3234203d3e20313331373336.roa File: 3130332e3133322e31342e302f32342d3234203d3e20313331373336.roa (raw, json) Hash identifier: XPqP92iiEQWlwXCwRpR2WN8Lt9Zye6dCVSvcRgh/30k= Subject key identifier: 8A:96:5B:1B:A9:1F:D7:53:6A:B3:99:55:90:96:DD:43:75:39:47:FD Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 05ED6DFAFB422F0FD59EF86573DE8A6607B720D2 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31342e302f32342d3234203d3e20313331373336.roa Signing time: Wed 18 Jun 2025 16:16:28 +0000 ROA not before: Wed 18 Jun 2025 16:11:28 +0000 ROA not after: Wed 17 Jun 2026 16:16:28 +0000 asID: 131736 IP address blocks: 103.132.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ed:6d:fa:fb:42:2f:0f:d5:9e:f8:65:73:de:8a:66:07:b7:20:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jun 18 16:11:28 2025 GMT Not After : Jun 17 16:16:28 2026 GMT Subject: CN=8A965B1BA91FD7536AB399559096DD43753947FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:86:f9:ba:b0:ee:7c:12:b9:b0:47:ab:50:e9: 0a:52:eb:54:68:4d:79:8b:5b:e4:4f:dc:f7:34:b7: e0:e9:71:49:95:a2:3e:82:a8:0d:46:c3:7b:61:9e: 61:ab:d8:32:d5:9d:3e:d2:84:ad:be:a7:33:59:31: 11:40:98:24:85:ab:c4:f6:92:64:a9:ec:53:ea:f0: 41:12:18:fe:0a:80:4a:47:41:7a:66:c4:7f:bc:5f: fb:b1:f2:63:93:96:22:a1:d0:f6:74:53:7b:92:a8: 61:21:30:11:9e:47:0d:2e:e7:25:84:21:96:ef:b1: 5e:81:15:58:10:02:e3:f3:c5:cd:13:c7:2b:5e:20: 01:88:23:4d:6e:70:bf:03:c7:85:3f:e0:9a:e0:cc: 19:d0:85:41:c4:e9:b1:e8:dc:1d:81:db:fd:a4:08: 33:10:69:19:5e:89:cc:be:9f:09:ec:a7:b3:fe:37: 46:83:71:25:28:bc:44:1d:1d:6a:28:1b:b1:e1:e0: b2:cd:7d:39:ea:ad:69:f0:56:2a:93:75:0d:6d:93: 10:31:fa:5e:b0:73:f4:8d:ad:b2:b0:ab:f4:ce:29: 26:70:fb:19:f6:59:80:20:b5:84:f5:1c:df:a0:93: 4e:1a:96:db:0f:91:92:95:bc:b6:22:69:a2:57:45: e5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:96:5B:1B:A9:1F:D7:53:6A:B3:99:55:90:96:DD:43:75:39:47:FD X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31342e302f32342d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.14.0/24 Signature Algorithm: sha256WithRSAEncryption c8:cd:3f:2e:4c:cf:ff:99:47:59:80:4b:32:c1:69:97:95:32: 32:76:52:63:4b:90:82:1f:03:22:7e:a3:6d:76:9f:5d:33:46: 5b:3a:cc:cc:87:7e:be:a2:07:76:c8:fd:f0:71:f3:a3:3c:62: 84:76:70:ef:ec:b9:35:9c:fa:b8:0b:48:96:f2:94:22:48:81: 20:8f:6f:4e:23:29:9a:40:3b:01:9f:86:fd:75:1d:67:d4:b1: 42:2c:f1:d9:36:50:3d:9c:3c:25:0d:e4:6e:e1:2b:78:ef:c6: b8:03:48:1c:f8:0f:35:4f:8b:f8:bc:b9:e7:0b:98:9e:82:25: 31:49:84:04:0a:1e:74:df:68:19:6c:bc:fa:a1:7e:af:a7:f4: 46:1d:69:8b:bd:95:2f:8b:7c:24:0c:c3:ce:98:30:23:ce:ab: af:11:73:5c:bb:02:d2:33:12:d7:75:b4:a9:8b:0f:a0:d7:87: 3e:c2:ac:2f:97:2b:31:3c:7d:0f:8f:aa:d8:b5:05:81:03:5f: cd:a4:24:a7:b1:38:69:69:f6:76:6a:67:6b:e0:96:72:9f:bc: 1b:75:75:9a:c9:c9:d7:4f:f1:79:98:33:5f:f5:8b:93:2f:f8: 8e:06:21:ff:2a:ef:c1:44:b6:95:68:3f:0d:71:c4:03:0e:d2: ec:91:af:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBe1t+vtCLw/Vnvhlc96KZge3INIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA2MTgxNjExMjhaFw0yNjA2MTcxNjE2MjhaMDMxMTAvBgNV BAMTKDhBOTY1QjFCQTkxRkQ3NTM2QUIzOTk1NTkwOTZERDQzNzUzOTQ3RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5hvm6sO58ErmwR6tQ6QpS61Ro TXmLW+RP3Pc0t+DpcUmVoj6CqA1Gw3thnmGr2DLVnT7ShK2+pzNZMRFAmCSFq8T2 kmSp7FPq8EESGP4KgEpHQXpmxH+8X/ux8mOTliKh0PZ0U3uSqGEhMBGeRw0u5yWE IZbvsV6BFVgQAuPzxc0TxyteIAGII01ucL8Dx4U/4JrgzBnQhUHE6bHo3B2B2/2k CDMQaRleicy+nwnsp7P+N0aDcSUovEQdHWooG7Hh4LLNfTnqrWnwViqTdQ1tkxAx +l6wc/SNrbKwq/TOKSZw+xn2WYAgtYT1HN+gk04altsPkZKVvLYiaaJXReWJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUipZbG6kf11Nqs5lVkJbdQ3U5R/0wHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMxMzAzMzJlMzEzMzMyMmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4QOMA0GCSqG SIb3DQEBCwUAA4IBAQDIzT8uTM//mUdZgEsywWmXlTIydlJjS5CCHwMifqNtdp9d M0ZbOszMh36+ogd2yP3wcfOjPGKEdnDv7Lk1nPq4C0iW8pQiSIEgj29OIymaQDsB n4b9dR1n1LFCLPHZNlA9nDwlDeRu4St478a4A0gc+A81T4v4vLnnC5iegiUxSYQE Ch5032gZbLz6oX6vp/RGHWmLvZUvi3wkDMPOmDAjzquvEXNcuwLSMxLXdbSpiw+g 14c+wqwvlysxPH0Pj6rYtQWBA1/NpCSnsThpafZ2amdr4JZyn7wbdXWaycnXT/F5 mDNf9YuTL/iOBiH/Ku/BRLaVaD8NccQDDtLska8z -----END CERTIFICATE-----Generated at Mon Jul 21 06:54:20 2025 by rpki-client