$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa File: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (raw, json) Hash identifier: voGeHKK4ikA3uaKs2J+WeJLtpIfTnr3JdLSLAJpRJmc= Subject key identifier: AA:2B:C2:16:74:36:70:0E:16:14:20:46:E7:47:B6:82:28:DB:6B:41 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 52CCBBCAE7D74DC3DC0D911C044A7817EB83A26D Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa Signing time: Sat 30 Aug 2025 22:00:01 +0000 ROA not before: Sat 30 Aug 2025 21:55:01 +0000 ROA not after: Sat 29 Aug 2026 22:00:01 +0000 asID: 139438 IP address blocks: 103.145.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 20:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:cc:bb:ca:e7:d7:4d:c3:dc:0d:91:1c:04:4a:78:17:eb:83:a2:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Aug 30 21:55:01 2025 GMT Not After : Aug 29 22:00:01 2026 GMT Subject: CN=AA2BC2167436700E16142046E747B68228DB6B41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dd:35:1d:5b:10:d5:c2:69:c3:d5:6b:50:d6: 25:6b:6c:2f:f6:cd:8f:80:5d:02:63:d3:03:9f:f3: 46:77:90:58:b3:86:d0:3b:8a:4b:87:cb:84:61:4d: fb:21:15:b8:46:91:69:82:4c:8e:f5:49:f9:7c:c3: 59:01:43:9c:ed:c2:f0:82:6e:9c:30:e7:1c:de:7c: a5:70:00:4a:76:87:d3:f8:5e:34:30:3d:76:fa:1d: 79:c6:b8:cc:3f:52:81:bb:49:94:55:7b:27:c9:b8: 7a:8d:95:e0:4b:8a:88:f3:14:4b:53:a3:60:27:6a: 48:59:a4:03:cf:66:16:6f:25:77:72:db:f1:50:3d: 8a:1a:52:81:86:a9:01:09:a1:48:ae:03:3f:6d:b1: 8d:d9:1f:6f:95:09:5a:ae:da:ad:dc:b0:49:55:32: aa:28:4b:6a:94:d9:b8:3f:50:20:04:68:1b:37:cf: 49:1b:2a:2f:2b:38:7c:93:5f:62:35:da:1f:1e:cf: 03:e5:69:26:07:4e:12:b5:9e:34:c5:2f:02:a5:b2: 03:6a:90:cc:fc:25:f4:06:36:8d:aa:a7:50:30:7e: 25:d5:d4:51:13:fa:b5:b9:b9:af:b3:71:ef:49:59: 0a:d5:4a:c5:4b:46:e6:82:00:25:c3:ad:88:97:0d: f6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2B:C2:16:74:36:70:0E:16:14:20:46:E7:47:B6:82:28:DB:6B:41 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.14.0/24 Signature Algorithm: sha256WithRSAEncryption a7:96:46:41:d3:eb:6a:a1:64:59:b4:2c:57:63:f8:66:eb:3a: d7:c7:29:59:d7:53:b6:08:85:18:45:55:9f:0b:51:71:57:fe: 9d:cc:20:3f:c7:72:d2:1d:59:f0:ed:ed:4c:38:dc:62:03:3b: 21:fb:4a:c7:f7:38:84:18:ef:14:c7:39:d1:5e:02:f8:1d:cf: 3f:c9:06:52:eb:4e:3e:bd:50:35:cf:78:5f:e2:02:e6:bf:2a: 3c:a7:db:47:bf:be:fe:9f:92:a8:62:bd:c4:66:de:a4:8b:7c: 3f:44:ae:c9:e0:b8:f9:6c:d2:ce:f7:80:d1:13:1f:8b:87:e3: cb:78:59:ec:71:17:d4:d6:69:5e:d5:bf:a7:df:68:0d:c7:3a: 05:34:8c:36:ea:c0:0b:db:dc:55:7e:14:c3:ab:e0:62:86:46: 4d:52:4c:28:bc:ba:cb:15:67:78:b7:45:c2:8e:56:5b:61:5b: 97:9a:0f:b2:83:43:ed:d0:50:1e:31:26:e8:76:c3:61:ee:96: f4:db:20:56:ad:d2:07:f2:ce:29:74:77:2a:ad:75:40:c5:b3: ad:0f:e8:ef:8b:24:e7:97:46:ff:20:fe:37:4f:76:20:1a:aa: 2a:ac:21:be:da:7e:66:83:d1:3d:bf:ee:db:f6:58:5a:b4:27: 84:84:91:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUsy7yufXTcPcDZEcBEp4F+uDom0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNTA4MzAyMTU1MDFaFw0yNjA4MjkyMjAwMDFaMDMxMTAvBgNV BAMTKEFBMkJDMjE2NzQzNjcwMEUxNjE0MjA0NkU3NDdCNjgyMjhEQjZCNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC03TUdWxDVwmnD1WtQ1iVrbC/2 zY+AXQJj0wOf80Z3kFizhtA7ikuHy4RhTfshFbhGkWmCTI71Sfl8w1kBQ5ztwvCC bpww5xzefKVwAEp2h9P4XjQwPXb6HXnGuMw/UoG7SZRVeyfJuHqNleBLiojzFEtT o2AnakhZpAPPZhZvJXdy2/FQPYoaUoGGqQEJoUiuAz9tsY3ZH2+VCVqu2q3csElV MqooS2qU2bg/UCAEaBs3z0kbKi8rOHyTX2I12h8ezwPlaSYHThK1njTFLwKlsgNq kMz8JfQGNo2qp1AwfiXV1FET+rW5ua+zce9JWQrVSsVLRuaCACXDrYiXDfaNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqivCFnQ2cA4WFCBG50e2gijba0EwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5EOMA0GCSqG SIb3DQEBCwUAA4IBAQCnlkZB0+tqoWRZtCxXY/hm6zrXxylZ11O2CIUYRVWfC1Fx V/6dzCA/x3LSHVnw7e1MONxiAzsh+0rH9ziEGO8UxznRXgL4Hc8/yQZS604+vVA1 z3hf4gLmvyo8p9tHv77+n5KoYr3EZt6ki3w/RK7J4Lj5bNLO94DREx+Lh+PLeFns cRfU1mle1b+n32gNxzoFNIw26sAL29xVfhTDq+BihkZNUkwovLrLFWd4t0XCjlZb YVuXmg+yg0Pt0FAeMSbodsNh7pb02yBWrdIH8s4pdHcqrXVAxbOtD+jviyTnl0b/ IP43T3YgGqoqrCG+2n5mg9E9v+7b9lhatCeEhJH4 -----END CERTIFICATE-----Generated at Fri Sep 19 00:34:30 2025 by rpki-client