$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa File: 3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: 4gtV8ZXJhBLgP6alnZmazQL9Du+oKvqI/MvatS0Bbyw= Subject key identifier: 2F:C2:48:36:5F:ED:C6:73:A2:5B:E9:70:96:FE:F7:78:8E:7D:E0:6C Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA Certificate serial: 3E509B7C0141AD5CB6E5DAE138A47ECA983F5E90 Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa Signing time: Sun 13 Jul 2025 11:46:15 +0000 ROA not before: Sun 13 Jul 2025 11:41:15 +0000 ROA not after: Sun 12 Jul 2026 11:46:15 +0000 asID: 59282 IP address blocks: 103.228.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:50:9b:7c:01:41:ad:5c:b6:e5:da:e1:38:a4:7e:ca:98:3f:5e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA Validity Not Before: Jul 13 11:41:15 2025 GMT Not After : Jul 12 11:46:15 2026 GMT Subject: CN=2FC248365FEDC673A25BE97096FEF7788E7DE06C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:00:6b:da:c6:9d:cd:f4:fb:03:3e:5c:a1:c3: 67:24:95:2d:38:8e:19:20:20:d6:1d:5a:61:7d:b3: d3:91:19:85:eb:ee:1f:ce:67:4e:df:ce:c7:a5:45: 01:4d:15:0f:47:a7:dd:2d:d3:6b:98:e7:1a:28:92: 05:9a:55:f3:bb:1f:ef:99:6f:ab:8e:5f:89:d9:cf: 90:10:40:d9:a5:52:cd:d2:6d:c1:a0:df:cb:5d:5f: f3:6f:ee:11:c8:94:cd:45:d1:0a:6d:57:7d:f0:1a: ce:67:bf:b4:df:8d:81:95:64:e8:31:06:fb:a7:80: 0a:48:c4:ae:ce:4d:22:a9:47:99:78:d4:14:f7:7e: 8c:8f:27:40:39:76:28:2a:b2:5e:dd:11:26:72:df: 02:9c:89:e0:b7:d3:af:66:3a:61:ba:47:e8:20:5b: 83:c6:69:c0:b2:67:32:5c:67:ac:5b:4a:ed:b8:01: 0b:d5:4f:6c:b8:ed:36:d2:01:36:9b:37:f3:36:8b: e5:43:7a:8e:0e:e0:d7:85:cc:e2:db:50:d9:93:96: 45:37:f9:96:d3:57:c9:6d:29:20:a1:51:52:06:cf: fa:93:7a:0a:59:0a:a7:5b:27:8c:9c:16:f3:ae:ae: aa:cc:80:15:67:59:3b:22:e8:42:75:1f:c6:77:48: bc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C2:48:36:5F:ED:C6:73:A2:5B:E9:70:96:FE:F7:78:8E:7D:E0:6C X509v3 Authority Key Identifier: keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.247.0/24 Signature Algorithm: sha256WithRSAEncryption 74:6a:50:3d:af:41:52:1a:e1:d3:a0:70:56:26:52:48:b6:b1: 86:eb:d6:9b:b0:6d:0f:1d:5b:f8:1b:aa:6e:ad:11:a2:0e:96: bd:ce:2e:23:28:d0:58:02:a8:40:9d:a0:20:aa:dc:6c:08:9d: 32:ea:29:39:56:8e:6e:39:e3:d0:bf:a9:3c:4d:35:2c:cc:51: 38:dc:93:fd:49:7f:ac:cf:3f:12:23:b8:cf:86:c1:85:66:45: e8:d4:e0:ef:31:72:44:3d:22:0a:52:07:08:fd:40:52:ba:9e: 26:0f:43:8f:bc:41:21:12:4e:0e:15:5a:15:8f:cf:b5:5d:0c: 2a:5f:82:fb:27:2a:d1:2b:c2:7b:f6:40:bb:82:b2:e9:2d:7a: a0:07:49:56:72:7f:65:43:dd:27:cd:8f:e8:5f:1f:c4:7e:51: ab:31:31:90:33:03:fe:fb:9f:41:b7:10:a2:9a:5c:74:4d:99: b4:ab:b0:46:60:68:fc:f1:98:c8:82:a9:4a:a3:93:2f:35:70: 77:9e:32:7b:5d:f9:a1:be:dd:d7:3c:9f:cf:e0:93:18:a2:8b: f5:a5:c5:fe:01:91:68:27:9f:01:1e:7a:88:02:b4:ce:53:00: dd:60:02:5f:1d:ae:b8:b4:d6:82:ca:5e:71:1c:9c:ec:91:b6: ad:da:03:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPlCbfAFBrVy25drhOKR+ypg/XpAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG MDBFNzFBQTAeFw0yNTA3MTMxMTQxMTVaFw0yNjA3MTIxMTQ2MTVaMDMxMTAvBgNV BAMTKDJGQzI0ODM2NUZFREM2NzNBMjVCRTk3MDk2RkVGNzc4OEU3REUwNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOAGvaxp3N9PsDPlyhw2cklS04 jhkgINYdWmF9s9ORGYXr7h/OZ07fzselRQFNFQ9Hp90t02uY5xookgWaVfO7H++Z b6uOX4nZz5AQQNmlUs3SbcGg38tdX/Nv7hHIlM1F0QptV33wGs5nv7TfjYGVZOgx BvungApIxK7OTSKpR5l41BT3foyPJ0A5digqsl7dESZy3wKcieC3069mOmG6R+gg W4PGacCyZzJcZ6xbSu24AQvVT2y47TbSATabN/M2i+VDeo4O4NeFzOLbUNmTlkU3 +ZbTV8ltKSChUVIGz/qTegpZCqdbJ4ycFvOurqrMgBVnWTsi6EJ1H8Z3SLzLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL8JINl/txnOiW+lwlv73eI594GwwHwYDVR0j BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+T3MA0GCSqG SIb3DQEBCwUAA4IBAQB0alA9r0FSGuHToHBWJlJItrGG69absG0PHVv4G6purRGi Dpa9zi4jKNBYAqhAnaAgqtxsCJ0y6ik5Vo5uOePQv6k8TTUszFE43JP9SX+szz8S I7jPhsGFZkXo1ODvMXJEPSIKUgcI/UBSup4mD0OPvEEhEk4OFVoVj8+1XQwqX4L7 JyrRK8J79kC7grLpLXqgB0lWcn9lQ90nzY/oXx/EflGrMTGQMwP++59BtxCimlx0 TZm0q7BGYGj88ZjIgqlKo5MvNXB3njJ7Xfmhvt3XPJ/P4JMYoov1pcX+AZFoJ58B HnqIArTOUwDdYAJfHa64tNaCyl5xHJzskbat2gN4 -----END CERTIFICATE-----Generated at Mon Jul 21 14:31:25 2025 by rpki-client