$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32332d3233203d3e20313331373735.roa File: 3130332e31362e3139382e302f32332d3233203d3e20313331373735.roa (raw, json) Hash identifier: 04eyxXbv9jngQdgYmmSjLsuCye8qiexJidy0wMhDXkQ= Subject key identifier: 06:34:4D:BF:19:53:E0:25:AA:F4:34:94:72:63:1C:34:BA:06:65:62 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 6103F514C3FABD81666CA108857FA6B7A76A0E6B Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32332d3233203d3e20313331373735.roa Signing time: Sat 12 Jul 2025 15:00:01 +0000 ROA not before: Sat 12 Jul 2025 14:55:01 +0000 ROA not after: Sat 11 Jul 2026 15:00:01 +0000 asID: 131775 IP address blocks: 103.16.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 19:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:03:f5:14:c3:fa:bd:81:66:6c:a1:08:85:7f:a6:b7:a7:6a:0e:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 12 14:55:01 2025 GMT Not After : Jul 11 15:00:01 2026 GMT Subject: CN=06344DBF1953E025AAF4349472631C34BA066562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:53:63:8d:14:58:6b:fe:c2:e1:80:67:d7:2e: e1:94:4d:a2:d9:61:6a:8e:46:32:36:2a:bc:13:b3: cf:51:65:00:2a:65:f0:a7:a1:08:8f:bb:b3:c3:78: 26:2d:ae:62:e3:88:ff:be:fd:8c:7a:9f:45:ed:1e: c7:d7:1e:86:06:08:7c:7a:fc:46:ea:0e:41:ae:95: be:5f:c6:39:4f:d6:20:96:81:56:2f:13:0d:89:a5: db:e6:b5:8d:fc:e3:55:9a:a3:a4:b6:d3:18:b0:2c: 5c:f4:0f:0c:a0:2e:14:64:41:8f:2e:0a:d1:20:72: 90:8c:a3:46:9c:66:01:c0:c1:c5:c0:eb:74:8f:28: a2:c3:88:d7:80:f7:a6:11:4b:b7:84:de:76:43:d5: 97:e2:b8:9f:39:54:26:16:d6:64:0a:66:2a:67:8f: df:12:80:54:99:f8:2c:f4:05:d1:3a:21:e4:e7:31: ab:aa:a7:84:e1:f9:ee:22:8a:93:c3:c8:4a:b7:0a: 6c:e4:11:df:75:5b:46:ea:c0:e3:e4:3c:a0:01:a7: 4c:35:8e:89:88:3d:3d:09:d5:86:de:3b:b9:87:3f: 99:19:b6:6e:bb:8f:62:70:4a:b1:92:7b:c3:c4:5c: 66:09:0d:2c:74:fd:fe:f1:4d:93:44:66:37:8f:74: 6c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:34:4D:BF:19:53:E0:25:AA:F4:34:94:72:63:1C:34:BA:06:65:62 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32332d3233203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.198.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:aa:e1:aa:7e:45:f3:66:d0:b2:78:3e:05:ff:f9:67:2e:c2: b8:f0:95:ab:de:0f:1c:b1:0d:60:37:09:3f:69:41:78:78:05: 9e:11:8d:90:46:0d:e1:d3:02:8f:42:29:ec:87:63:da:7f:aa: 46:e7:0b:d7:79:39:a4:1f:da:6f:cd:bb:ed:af:46:d3:c4:b7: 9b:82:07:b1:d6:10:aa:b7:26:9a:28:af:9d:33:56:bd:54:da: 2c:7c:e5:35:0d:9d:8d:f5:67:2d:75:14:3e:31:26:2c:94:ef: c7:d0:e4:30:0d:9e:10:a1:9d:28:d8:1d:b3:98:2a:a2:47:9c: d8:7d:68:ba:d1:7d:5d:1e:09:d3:09:03:ce:4a:ee:98:10:01: 78:71:5a:1d:57:99:37:e1:22:ff:4e:94:6c:9f:af:ca:18:98: b0:21:8e:f0:27:8a:3b:d8:fe:cd:3f:9b:0b:bc:0e:25:cf:a7: 89:a4:9e:22:4c:6c:67:31:a9:ff:2a:45:23:bf:5b:58:db:db: 24:4d:ad:f9:4d:89:68:db:3b:1c:a6:3c:c7:08:56:44:73:00: 86:43:0e:86:cf:aa:1b:ff:ea:f5:a7:ff:6c:b1:9f:6f:5c:33: df:1f:93:a7:b0:16:da:12:ea:d1:8c:f8:d1:71:4a:b4:2d:0d: 86:df:8f:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYQP1FMP6vYFmbKEIhX+mt6dqDmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA3MTIxNDU1MDFaFw0yNjA3MTExNTAwMDFaMDMxMTAvBgNV BAMTKDA2MzQ0REJGMTk1M0UwMjVBQUY0MzQ5NDcyNjMxQzM0QkEwNjY1NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVU2ONFFhr/sLhgGfXLuGUTaLZ YWqORjI2KrwTs89RZQAqZfCnoQiPu7PDeCYtrmLjiP++/Yx6n0XtHsfXHoYGCHx6 /EbqDkGulb5fxjlP1iCWgVYvEw2JpdvmtY3841Wao6S20xiwLFz0DwygLhRkQY8u CtEgcpCMo0acZgHAwcXA63SPKKLDiNeA96YRS7eE3nZD1ZfiuJ85VCYW1mQKZipn j98SgFSZ+Cz0BdE6IeTnMauqp4Th+e4iipPDyEq3CmzkEd91W0bqwOPkPKABp0w1 jomIPT0J1YbeO7mHP5kZtm67j2JwSrGSe8PEXGYJDSx0/f7xTZNEZjePdGw1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBjRNvxlT4CWq9DSUcmMcNLoGZWIwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzEzNjJlMzEzOTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxDGMA0GCSqG SIb3DQEBCwUAA4IBAQBKquGqfkXzZtCyeD4F//lnLsK48JWr3g8csQ1gNwk/aUF4 eAWeEY2QRg3h0wKPQinsh2Paf6pG5wvXeTmkH9pvzbvtr0bTxLebggex1hCqtyaa KK+dM1a9VNosfOU1DZ2N9WctdRQ+MSYslO/H0OQwDZ4QoZ0o2B2zmCqiR5zYfWi6 0X1dHgnTCQPOSu6YEAF4cVodV5k34SL/TpRsn6/KGJiwIY7wJ4o72P7NP5sLvA4l z6eJpJ4iTGxnMan/KkUjv1tY29skTa35TYlo2zscpjzHCFZEcwCGQw6Gz6ob/+r1 p/9ssZ9vXDPfH5OnsBbaEurRjPjRcUq0LQ2G34+k -----END CERTIFICATE-----Generated at Wed Jul 23 12:26:03 2025 by rpki-client