$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa File: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (raw, json) Hash identifier: 1I55HZV9ASBX91G1gmKkN8XsoZ52BjLH6TscAGFfb1w= Subject key identifier: 24:F8:D6:35:F2:FF:C9:5A:3A:F1:84:77:2E:17:9B:6E:16:2C:A6:4B Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 7024E1C6A265BE87D2D635F08192F5694E388C0A Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa Signing time: Sat 30 Aug 2025 22:00:02 +0000 ROA not before: Sat 30 Aug 2025 21:55:02 +0000 ROA not after: Sat 29 Aug 2026 22:00:02 +0000 asID: 139438 IP address blocks: 103.145.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 20:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:24:e1:c6:a2:65:be:87:d2:d6:35:f0:81:92:f5:69:4e:38:8c:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Aug 30 21:55:02 2025 GMT Not After : Aug 29 22:00:02 2026 GMT Subject: CN=24F8D635F2FFC95A3AF184772E179B6E162CA64B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:d2:39:4b:74:83:99:c4:0d:1a:34:7b:1b: aa:4d:84:dd:c7:aa:55:49:8f:7a:5e:3c:3a:61:df: fa:e6:d2:16:c2:6e:32:7e:cc:c0:e9:67:fa:1d:1c: 34:15:c3:3c:3d:0c:6a:6e:37:1e:73:43:55:cb:3a: 74:e2:05:9a:5b:21:2a:b8:4e:bd:c8:2b:d0:0e:d7: fb:ed:ca:9c:77:6c:4b:c4:84:e0:94:16:0f:10:38: ad:43:5f:7a:7f:a1:55:22:e6:08:d4:80:41:35:ea: da:cd:9a:f8:7a:eb:39:4b:2e:ea:93:81:87:ea:50: 45:f1:2f:91:47:8d:87:95:90:12:05:1d:bb:b5:83: 1b:f9:c4:18:ad:12:59:94:f3:dd:25:e4:b2:d7:cc: 19:7c:e7:c6:ea:fd:ae:31:41:a9:31:4f:26:e9:77: 4d:0e:d9:c7:4c:9e:61:54:8f:fc:95:58:c5:dc:83: 9d:2a:73:60:d8:62:74:e0:27:1a:64:8f:5b:a5:9f: 0c:93:fe:70:47:c7:71:33:4e:6d:a9:18:99:29:40: 7f:53:56:56:77:20:45:9c:0e:d1:d7:81:30:db:24: 36:a5:35:68:51:5c:00:3d:eb:0f:8e:f2:c7:f8:4a: 81:56:a0:84:50:64:32:da:ae:c1:f7:fc:ab:93:48: d5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F8:D6:35:F2:FF:C9:5A:3A:F1:84:77:2E:17:9B:6E:16:2C:A6:4B X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.14.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:d9:3e:e6:01:ec:67:77:0f:27:35:14:af:99:4e:51:03:d2: ca:68:96:77:25:4d:59:23:9a:a0:de:f7:f1:b9:30:4a:79:76: 39:af:6c:a9:3a:d0:0a:a9:4d:fb:4e:6c:01:83:02:c1:52:44: 60:fc:a8:2a:91:11:de:f1:3c:7e:bb:6f:43:f6:d2:54:ad:3d: 28:3e:84:67:60:05:cb:ad:ab:b7:7c:d0:53:ef:97:c4:4f:bc: 02:85:f1:29:0a:5e:4e:10:cf:87:5d:37:0d:d3:45:10:07:6f: 64:17:57:0b:c8:72:51:96:18:57:cf:0a:24:d8:80:2f:44:99: 81:6d:ce:5c:76:01:53:3d:50:70:d7:1e:6d:ee:7a:c4:f7:0b: c0:76:f8:cf:57:d5:ee:51:19:91:01:b2:ef:13:07:04:41:90: 66:f4:d6:83:0b:b7:19:c7:76:50:4b:7e:71:82:60:6f:dd:14: aa:83:b2:39:9d:b9:82:02:34:88:7e:4f:d6:8f:c2:4f:7b:d1: 68:11:8e:f0:2b:ae:15:61:a8:b1:3b:98:ed:09:12:9b:ce:97: e4:a1:c2:a1:42:81:20:79:39:c3:80:84:5c:34:9d:37:b8:c5: 28:37:fc:ee:0b:64:5b:ca:79:30:a4:60:9f:24:17:65:42:40: 83:45:3f:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcCThxqJlvofS1jXwgZL1aU44jAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNTA4MzAyMTU1MDJaFw0yNjA4MjkyMjAwMDJaMDMxMTAvBgNV BAMTKDI0RjhENjM1RjJGRkM5NUEzQUYxODQ3NzJFMTc5QjZFMTYyQ0E2NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtC9I5S3SDmcQNGjR7G6pNhN3H qlVJj3pePDph3/rm0hbCbjJ+zMDpZ/odHDQVwzw9DGpuNx5zQ1XLOnTiBZpbISq4 Tr3IK9AO1/vtypx3bEvEhOCUFg8QOK1DX3p/oVUi5gjUgEE16trNmvh66zlLLuqT gYfqUEXxL5FHjYeVkBIFHbu1gxv5xBitElmU890l5LLXzBl858bq/a4xQakxTybp d00O2cdMnmFUj/yVWMXcg50qc2DYYnTgJxpkj1ulnwyT/nBHx3EzTm2pGJkpQH9T VlZ3IEWcDtHXgTDbJDalNWhRXAA96w+O8sf4SoFWoIRQZDLarsH3/KuTSNV5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJPjWNfL/yVo68YR3LhebbhYspkswHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5EOMA0GCSqG SIb3DQEBCwUAA4IBAQAb2T7mAexndw8nNRSvmU5RA9LKaJZ3JU1ZI5qg3vfxuTBK eXY5r2ypOtAKqU37TmwBgwLBUkRg/KgqkRHe8Tx+u29D9tJUrT0oPoRnYAXLrau3 fNBT75fET7wChfEpCl5OEM+HXTcN00UQB29kF1cLyHJRlhhXzwok2IAvRJmBbc5c dgFTPVBw1x5t7nrE9wvAdvjPV9XuURmRAbLvEwcEQZBm9NaDC7cZx3ZQS35xgmBv 3RSqg7I5nbmCAjSIfk/Wj8JPe9FoEY7wK64VYaixO5jtCRKbzpfkocKhQoEgeTnD gIRcNJ03uMUoN/zuC2RbynkwpGCfJBdlQkCDRT8C -----END CERTIFICATE-----Generated at Thu Sep 18 23:06:06 2025 by rpki-client