$ rpki-client -vvf repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa File: 3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa (raw, json) Hash identifier: NXw6s+JjAkZ3fTUdDSEG0NXOT3+x5+RONGyWOxolXSA= Subject key identifier: 32:4D:AF:8C:15:F8:9A:DC:1A:9D:E3:5B:D3:71:9B:BF:02:1B:7A:59 Certificate issuer: /CN=CE118685D363E20B6D3B3955972062D9581B9E43 Certificate serial: 497B139E1C4E4CF1CCC0B5C8F7EF7277877127D4 Authority key identifier: CE:11:86:85:D3:63:E2:0B:6D:3B:39:55:97:20:62:D9:58:1B:9E:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE118685D363E20B6D3B3955972062D9581B9E43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa Signing time: Tue 08 Jul 2025 16:00:00 +0000 ROA not before: Tue 08 Jul 2025 15:55:00 +0000 ROA not after: Tue 07 Jul 2026 16:00:00 +0000 asID: 150197 IP address blocks: 103.224.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/CE118685D363E20B6D3B3955972062D9581B9E43.crl rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/CE118685D363E20B6D3B3955972062D9581B9E43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE118685D363E20B6D3B3955972062D9581B9E43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7b:13:9e:1c:4e:4c:f1:cc:c0:b5:c8:f7:ef:72:77:87:71:27:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE118685D363E20B6D3B3955972062D9581B9E43 Validity Not Before: Jul 8 15:55:00 2025 GMT Not After : Jul 7 16:00:00 2026 GMT Subject: CN=324DAF8C15F89ADC1A9DE35BD3719BBF021B7A59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7b:b4:bb:0d:4b:c2:c2:bc:69:a5:7c:25:e3: 5d:91:65:04:e4:21:c4:97:cf:bf:11:23:7d:d2:ea: a2:f5:0b:21:68:fd:75:d2:38:90:40:1a:0c:62:2c: 67:a8:14:b8:57:4e:af:33:ec:0b:5b:0f:f2:87:a4: 52:01:98:2d:8e:66:af:48:f5:06:e3:f8:dc:71:fb: 1b:a3:a0:37:43:11:09:4d:16:e4:6f:c5:26:25:48: 15:19:53:a2:6b:d7:cd:01:7d:64:8f:1e:fb:ff:be: 1e:2d:6a:41:fd:de:99:6c:49:53:c1:88:aa:65:45: a8:77:61:0e:44:38:45:ff:8c:73:a6:5e:e6:09:a6: 96:89:08:e9:6f:d9:0c:aa:86:6a:0d:14:85:b9:0e: ec:c2:3f:3c:29:45:53:13:cf:1f:e8:eb:cf:40:f5: 67:77:9d:16:58:fd:be:44:31:68:2a:88:91:0b:d9: 35:16:a3:df:dd:ba:47:a4:16:1e:38:dc:63:6f:42: ee:51:1f:77:72:67:c7:12:2f:4a:74:1e:9d:1d:ef: b5:0f:cc:26:aa:3a:b2:e3:27:fe:48:cc:51:ec:9c: 4c:22:15:d9:3c:8e:99:75:45:cb:4d:27:5f:c5:ba: 2c:cf:a6:53:16:41:9c:92:fe:1f:32:fd:0f:79:0d: 03:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4D:AF:8C:15:F8:9A:DC:1A:9D:E3:5B:D3:71:9B:BF:02:1B:7A:59 X509v3 Authority Key Identifier: keyid:CE:11:86:85:D3:63:E2:0B:6D:3B:39:55:97:20:62:D9:58:1B:9E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/CE118685D363E20B6D3B3955972062D9581B9E43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE118685D363E20B6D3B3955972062D9581B9E43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.124.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:6c:8a:a3:bf:fa:4a:a9:09:33:e1:ae:87:44:4e:17:76:e7: 68:67:01:d4:c3:2a:b7:95:71:2e:de:97:ca:cc:85:a8:08:7b: 64:af:e7:27:5e:57:7e:93:f9:de:3d:fa:c4:01:c2:7e:b2:d2: ee:22:80:b9:02:bb:10:b5:64:af:82:99:64:76:24:e5:db:76: 06:8a:fe:c8:fd:49:af:50:53:ee:71:d1:41:42:06:f9:09:ef: 15:30:f9:33:29:da:b9:a4:3d:4c:74:1b:57:a2:4f:8b:9d:12: 63:6d:ea:26:ca:e1:20:53:e1:bf:dc:50:d2:08:7e:2a:3a:4c: 0e:20:bb:63:f3:2c:6d:6c:c0:6e:bd:db:99:18:e5:eb:3b:b2: 7e:78:5b:ac:de:88:80:91:6e:eb:ac:e0:14:ba:29:a0:ea:65: 3b:67:b9:45:33:97:63:7f:f6:e9:48:31:fa:d2:a7:6d:4b:d4: 32:7a:ba:fe:66:6d:8c:79:1d:d8:62:28:10:33:2e:0f:91:db: f6:b4:a0:cc:e8:e7:ae:02:17:cf:db:40:83:7b:0b:1e:13:9f: 19:a7:cd:a8:d7:d0:45:4c:48:51:02:ff:d7:35:30:8d:e2:c8: 66:b5:62:eb:80:89:0e:ff:96:70:23:4b:3a:e5:81:24:37:e2: 63:42:7d:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSXsTnhxOTPHMwLXI9+9yd4dxJ9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UxMTg2ODVEMzYzRTIwQjZEM0IzOTU1OTcyMDYyRDk1 ODFCOUU0MzAeFw0yNTA3MDgxNTU1MDBaFw0yNjA3MDcxNjAwMDBaMDMxMTAvBgNV BAMTKDMyNERBRjhDMTVGODlBREMxQTlERTM1QkQzNzE5QkJGMDIxQjdBNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHe7S7DUvCwrxppXwl412RZQTk IcSXz78RI33S6qL1CyFo/XXSOJBAGgxiLGeoFLhXTq8z7AtbD/KHpFIBmC2OZq9I 9Qbj+Nxx+xujoDdDEQlNFuRvxSYlSBUZU6Jr180BfWSPHvv/vh4takH93plsSVPB iKplRah3YQ5EOEX/jHOmXuYJppaJCOlv2QyqhmoNFIW5DuzCPzwpRVMTzx/o689A 9Wd3nRZY/b5EMWgqiJEL2TUWo9/dukekFh443GNvQu5RH3dyZ8cSL0p0Hp0d77UP zCaqOrLjJ/5IzFHsnEwiFdk8jpl1RctNJ1/FuizPplMWQZyS/h8y/Q95DQNHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMk2vjBX4mtwaneNb03GbvwIbelkwHwYDVR0j BBgwFoAUzhGGhdNj4gttOzlVlyBi2VgbnkMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDgwOGY2Ny05YWJjLTQ2ZGQtOTgxNy1iOTMzOTA5M2Y4OGUvMC9DRTExODY4NUQz NjNFMjBCNkQzQjM5NTU5NzIwNjJEOTU4MUI5RTQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0UxMTg2ODVEMzYzRTIwQjZEM0IzOTU1OTcyMDYyRDk1ODFC OUU0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkODA4ZjY3LTlhYmMtNDZkZC05 ODE3LWI5MzM5MDkzZjg4ZS8wLzMxMzAzMzJlMzIzMjM0MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn4HwwDQYJ KoZIhvcNAQELBQADggEBAG9siqO/+kqpCTPhrodEThd252hnAdTDKreVcS7el8rM hagIe2Sv5ydeV36T+d49+sQBwn6y0u4igLkCuxC1ZK+CmWR2JOXbdgaK/sj9Sa9Q U+5x0UFCBvkJ7xUw+TMp2rmkPUx0G1eiT4udEmNt6ibK4SBT4b/cUNIIfio6TA4g u2PzLG1swG6925kY5es7sn54W6zeiICRbuus4BS6KaDqZTtnuUUzl2N/9ulIMfrS p21L1DJ6uv5mbYx5HdhiKBAzLg+R2/a0oMzo564CF8/bQIN7Cx4TnxmnzajX0EVM SFEC/9c1MI3iyGa1YuuAiQ7/lnAjSzrlgSQ34mNCfck= -----END CERTIFICATE-----Generated at Thu Jul 24 17:18:30 2025 by rpki-client