$ rpki-client -vvf repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa File: 3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa (raw, json) Hash identifier: NAu4MIqb2SIHlGa2lR/f4p07SuQ7a/mw3Vk71QHChF8= Subject key identifier: DC:D0:90:33:FB:3B:12:E1:7F:88:87:02:5D:BA:24:E2:4B:67:58:92 Certificate issuer: /CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Certificate serial: 059DDF08F0A35E0721DD1096330D7934F3E7C652 Authority key identifier: 86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa Signing time: Sun 24 Aug 2025 15:00:02 +0000 ROA not before: Sun 24 Aug 2025 14:55:02 +0000 ROA not after: Sun 23 Aug 2026 15:00:02 +0000 asID: 58495 IP address blocks: 103.190.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 16:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:9d:df:08:f0:a3:5e:07:21:dd:10:96:33:0d:79:34:f3:e7:c6:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Validity Not Before: Aug 24 14:55:02 2025 GMT Not After : Aug 23 15:00:02 2026 GMT Subject: CN=DCD09033FB3B12E17F8887025DBA24E24B675892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bc:ba:73:f8:03:1a:f5:c4:9a:c4:a4:0a:62: 24:cc:94:17:3e:bb:13:9b:26:ee:58:8e:9d:81:db: df:cc:44:2e:86:73:b5:d2:6e:60:26:3a:c2:f5:9c: 56:52:e5:67:7f:a4:19:b4:21:12:78:ee:e0:21:d4: 9d:07:f1:37:0a:d7:76:18:1b:15:f8:7e:3b:09:f1: f1:9b:16:ba:83:d9:96:0e:00:3f:67:1d:f0:4b:0f: c0:21:2b:15:4d:ba:c2:d8:86:c2:02:b3:af:52:43: c5:c2:4c:48:a3:a5:77:5e:88:3f:87:f9:6e:8b:99: 5b:8f:50:96:65:15:8f:45:b3:f5:70:31:d7:bb:d6: 0c:73:44:d0:87:3d:02:7f:00:cf:a7:18:71:f6:16: ec:a3:d6:3c:63:4f:d7:34:ec:a3:3d:96:0b:49:c0: b3:22:9e:d0:28:23:82:45:bd:bc:e2:04:3e:1b:f1: 62:55:4d:b8:a3:05:dc:e3:56:d4:d7:ef:e1:7a:34: d8:91:38:29:26:22:ed:6b:b3:a1:ba:0f:c4:12:b3: 3e:a6:ca:d1:8f:fb:c8:47:13:5b:2d:b3:5c:90:11: 87:cb:74:e3:f9:ee:6b:80:45:2b:86:da:00:75:54: b2:88:6e:6b:05:f4:15:84:16:be:86:51:ec:23:25: b5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D0:90:33:FB:3B:12:E1:7F:88:87:02:5D:BA:24:E2:4B:67:58:92 X509v3 Authority Key Identifier: keyid:86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.134.0/23 Signature Algorithm: sha256WithRSAEncryption 31:6e:8a:6b:44:32:2c:56:80:dd:15:8a:17:4a:b8:38:e4:59: 11:40:4f:cd:a8:b0:92:0a:80:5d:f2:b3:fc:3e:e0:bb:12:b4: 9e:2f:98:84:39:02:c1:43:02:3a:3a:c5:6e:e0:cb:22:a7:86: d0:9e:0f:07:de:60:09:eb:4d:97:78:e7:2d:0c:fa:e1:03:96: d1:7a:a5:07:c4:04:c1:58:a1:c0:68:73:8a:3c:5c:f3:14:52: e6:49:eb:80:74:86:c0:5e:59:71:3e:7d:d5:9b:b9:15:dc:e5: d5:df:28:20:38:9e:ea:94:e7:b3:b7:3a:4e:0f:84:8b:84:f0: ec:23:2f:94:9c:40:dd:2c:4c:46:df:ce:fd:c2:b4:74:e7:2f: 58:5e:0d:74:73:3c:94:83:82:53:e3:90:9d:cd:44:c5:ce:9b: 9d:49:c1:02:7e:81:39:7f:17:a0:ec:f0:25:fd:86:0a:f2:9d: c8:60:94:93:db:13:22:9d:50:e6:25:83:21:21:66:45:79:00: 89:9a:b0:df:95:67:04:73:16:26:b4:dc:f8:09:be:2c:af:ff: e2:0b:c8:5f:e8:70:b7:68:e8:03:b4:f0:e5:80:12:0f:51:06: 5b:7c:bc:b5:98:f2:97:8f:e8:e4:55:e3:1a:b2:7b:8d:dd:d1: 0a:d6:e4:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBZ3fCPCjXgch3RCWMw15NPPnxlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5 NUE0MjhERDAeFw0yNTA4MjQxNDU1MDJaFw0yNjA4MjMxNTAwMDJaMDMxMTAvBgNV BAMTKERDRDA5MDMzRkIzQjEyRTE3Rjg4ODcwMjVEQkEyNEUyNEI2NzU4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPvLpz+AMa9cSaxKQKYiTMlBc+ uxObJu5Yjp2B29/MRC6Gc7XSbmAmOsL1nFZS5Wd/pBm0IRJ47uAh1J0H8TcK13YY GxX4fjsJ8fGbFrqD2ZYOAD9nHfBLD8AhKxVNusLYhsICs69SQ8XCTEijpXdeiD+H +W6LmVuPUJZlFY9Fs/VwMde71gxzRNCHPQJ/AM+nGHH2Fuyj1jxjT9c07KM9lgtJ wLMintAoI4JFvbziBD4b8WJVTbijBdzjVtTX7+F6NNiROCkmIu1rs6G6D8QSsz6m ytGP+8hHE1sts1yQEYfLdOP57muARSuG2gB1VLKIbmsF9BWEFr6GUewjJbVTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3NCQM/s7EuF/iIcCXbok4ktnWJIwHwYDVR0j BBgwFoAUhsjjpLSW65Om7vaEFQNiwpWkKN0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTYzYjdkNy1lYTgzLTRiZTktYjJmYy1iMzBlYjBiNDRkMGEvMC84NkM4RTNBNEI0 OTZFQjkzQTZFRUY2ODQxNTAzNjJDMjk1QTQyOERELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5NUE0 MjhERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNjNiN2Q3LWVhODMtNGJlOS1i MmZjLWIzMGViMGI0NGQwYS8wLzMxMzAzMzJlMzEzOTMwMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzQzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ76GMA0GCSqG SIb3DQEBCwUAA4IBAQAxboprRDIsVoDdFYoXSrg45FkRQE/NqLCSCoBd8rP8PuC7 ErSeL5iEOQLBQwI6OsVu4Msip4bQng8H3mAJ602XeOctDPrhA5bReqUHxATBWKHA aHOKPFzzFFLmSeuAdIbAXllxPn3Vm7kV3OXV3yggOJ7qlOeztzpOD4SLhPDsIy+U nEDdLExG3879wrR05y9YXg10czyUg4JT45CdzUTFzpudScECfoE5fxeg7PAl/YYK 8p3IYJST2xMinVDmJYMhIWZFeQCJmrDflWcEcxYmtNz4Cb4sr//iC8hf6HC3aOgD tPDlgBIPUQZbfLy1mPKXj+jkVeMasnuN3dEK1uRE -----END CERTIFICATE-----Generated at Sun Sep 7 16:14:44 2025 by rpki-client