$ rpki-client -vvf repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa File: 3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa (raw, json) Hash identifier: ZekBegmwkGhtEq1kwIjaVxEJBaW+y/p+5uyfM78H6mk= Subject key identifier: 3B:72:D6:4D:26:9F:DC:D1:BD:0C:17:A1:25:27:F3:73:40:56:E6:46 Certificate issuer: /CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Certificate serial: 6E838A6357952BD2B739C570E80EC55E7614586D Authority key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa Signing time: Sat 30 Aug 2025 10:02:26 +0000 ROA not before: Sat 30 Aug 2025 09:57:26 +0000 ROA not after: Sat 29 Aug 2026 10:02:26 +0000 asID: 140392 IP address blocks: 103.150.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 15:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:83:8a:63:57:95:2b:d2:b7:39:c5:70:e8:0e:c5:5e:76:14:58:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Validity Not Before: Aug 30 09:57:26 2025 GMT Not After : Aug 29 10:02:26 2026 GMT Subject: CN=3B72D64D269FDCD1BD0C17A12527F3734056E646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:49:89:93:76:ea:09:e6:91:ec:e5:3e:19: b2:cb:52:f7:54:78:1f:c3:a1:33:b6:6e:37:15:72: 8c:ed:fe:9b:5e:e5:b4:0d:68:e5:7d:c0:e6:5a:47: 6b:c0:a9:92:15:6f:54:d9:2a:eb:3d:20:15:09:fc: c7:a6:91:a0:b2:9f:0a:83:d4:c4:a1:fe:33:2f:cc: 3d:a3:af:bc:bf:6e:6f:63:4c:77:ef:10:b5:88:67: 1b:a2:87:aa:b2:3e:3b:4b:fa:3e:3a:78:8f:ad:66: c3:02:77:dc:28:05:ba:01:36:90:71:8b:72:82:6c: 03:2f:f9:ef:95:e6:be:ba:e4:c2:4d:28:58:bf:bd: 2f:aa:7f:82:22:d4:dc:01:cf:49:9d:14:6e:4b:a1: a6:a5:43:8e:32:07:44:f6:c1:7a:1e:b1:a2:65:df: 13:83:da:47:85:f8:bd:e9:af:7c:77:20:f9:f4:bb: 9c:9e:ec:e6:b8:00:83:0f:8c:a2:f1:cd:38:2d:8c: 8d:cb:d2:19:47:bb:15:0c:5c:a6:41:47:98:b0:53: 5b:85:df:ae:15:51:b9:df:d2:a9:65:d4:53:50:83: 1f:fb:4e:18:ba:30:28:16:61:47:88:5f:be:ce:de: 57:0f:46:3c:9c:94:73:bb:97:dd:32:eb:09:76:bc: ae:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:72:D6:4D:26:9F:DC:D1:BD:0C:17:A1:25:27:F3:73:40:56:E6:46 X509v3 Authority Key Identifier: keyid:8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:b2:15:86:f6:65:c9:52:f3:cb:61:1b:73:d3:43:d3:1c:d2: ff:56:aa:70:01:4e:42:bc:6e:83:04:48:3d:d5:cf:13:36:01: 48:41:2d:e4:2c:fc:3b:ba:c3:d9:0f:d3:dc:15:11:dc:08:78: 96:ab:95:16:b2:27:85:fb:61:39:4a:a7:c3:54:02:08:06:98: 0a:72:d1:fc:9a:81:99:e4:b0:a1:fd:4c:ca:f2:e3:d7:b3:b6: e0:a7:93:18:77:28:4a:27:d3:d8:2c:ef:71:24:9d:04:b2:05: 3f:3f:8d:f6:c2:af:c1:c8:c9:83:1b:99:fe:07:0d:14:49:45: a9:2e:b4:5b:97:52:4d:80:5d:53:a2:be:05:74:64:9e:70:8d: 56:a7:f3:85:25:49:c8:f5:05:25:90:85:66:2f:16:09:b8:4b: 34:20:9d:7f:39:82:55:0b:08:27:da:06:7c:c4:9a:3e:bf:2c: 66:6b:44:03:6f:c8:89:9f:8f:9d:5a:61:6d:68:e7:b7:d8:d3: 4d:1b:47:9e:c4:d8:bf:0c:9d:6c:42:e4:59:bf:53:08:b5:8a: 56:2a:bf:a8:66:01:4c:25:25:da:9d:0f:40:b9:64:67:51:f2: 39:b0:73:b5:48:2c:01:21:22:28:b4:07:ff:4a:67:2b:fc:91: 96:5b:80:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUboOKY1eVK9K3OcVw6A7FXnYUWG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY1ODg5M0IxQ0UxREI4NTU1RDdCRUNCNjNERTM0MkQy MzhCNjc3OTAeFw0yNTA4MzAwOTU3MjZaFw0yNjA4MjkxMDAyMjZaMDMxMTAvBgNV BAMTKDNCNzJENjREMjY5RkRDRDFCRDBDMTdBMTI1MjdGMzczNDA1NkU2NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUHUmJk3bqCeaR7OU+GbLLUvdU eB/DoTO2bjcVcozt/pte5bQNaOV9wOZaR2vAqZIVb1TZKus9IBUJ/MemkaCynwqD 1MSh/jMvzD2jr7y/bm9jTHfvELWIZxuih6qyPjtL+j46eI+tZsMCd9woBboBNpBx i3KCbAMv+e+V5r665MJNKFi/vS+qf4Ii1NwBz0mdFG5LoaalQ44yB0T2wXoesaJl 3xOD2keF+L3pr3x3IPn0u5ye7Oa4AIMPjKLxzTgtjI3L0hlHuxUMXKZBR5iwU1uF 364VUbnf0qll1FNQgx/7Thi6MCgWYUeIX77O3lcPRjyclHO7l90y6wl2vK4tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUO3LWTSaf3NG9DBehJSfzc0BW5kYwHwYDVR0j BBgwFoAUj1iJOxzh24VV177LY940LSOLZ3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRlOTM2Yi01M2NmLTRiMDgtYjVmNy0yYjkwZGUyMWZlOTQvMC84RjU4ODkzQjFD RTFEQjg1NTVEN0JFQ0I2M0RFMzQyRDIzOEI2Nzc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY1ODg5M0IxQ0UxREI4NTU1RDdCRUNCNjNERTM0MkQyMzhC Njc3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZiLTUzY2YtNGIwOC1i NWY3LTJiOTBkZTIxZmU5NC8wLzMxMzAzMzJlMzEzNTMwMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMzM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlpQwDQYJ KoZIhvcNAQELBQADggEBAAyyFYb2ZclS88thG3PTQ9Mc0v9WqnABTkK8boMESD3V zxM2AUhBLeQs/Du6w9kP09wVEdwIeJarlRayJ4X7YTlKp8NUAggGmApy0fyagZnk sKH9TMry49eztuCnkxh3KEon09gs73EknQSyBT8/jfbCr8HIyYMbmf4HDRRJRaku tFuXUk2AXVOivgV0ZJ5wjVan84UlScj1BSWQhWYvFgm4SzQgnX85glULCCfaBnzE mj6/LGZrRANvyImfj51aYW1o57fY000bR57E2L8MnWxC5Fm/Uwi1ilYqv6hmAUwl JdqdD0C5ZGdR8jmwc7VILAEhIii0B/9KZyv8kZZbgOk= -----END CERTIFICATE-----Generated at Sun Sep 7 15:36:42 2025 by rpki-client