$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa File: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (raw, json) Hash identifier: VKvXvb3BP6384nLUH1LdjT/mbF098hu6bIg7H4DeDLk= Subject key identifier: C3:29:B5:06:47:08:CC:F9:57:2A:E6:CE:38:77:B0:2B:B4:AA:78:F2 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 63893579A67F2C2C0E59BF906513831BAB7FC380 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa Signing time: Sat 30 Aug 2025 22:00:02 +0000 ROA not before: Sat 30 Aug 2025 21:55:02 +0000 ROA not after: Sat 29 Aug 2026 22:00:02 +0000 asID: 139438 IP address blocks: 103.145.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 20:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:89:35:79:a6:7f:2c:2c:0e:59:bf:90:65:13:83:1b:ab:7f:c3:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Aug 30 21:55:02 2025 GMT Not After : Aug 29 22:00:02 2026 GMT Subject: CN=C329B5064708CCF9572AE6CE3877B02BB4AA78F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:23:70:63:7d:04:3b:9f:22:6f:e8:fd:ae:a5: 50:63:c4:df:a6:89:30:1c:a1:4e:e6:6a:3e:2e:22: 6c:2c:dc:4b:f2:94:d6:11:7b:07:c4:71:1e:05:96: ca:31:ae:29:92:90:24:c4:72:0a:8a:81:ef:da:a9: e1:2e:6d:d8:e2:78:3d:a8:a5:9a:50:f3:69:f9:b5: 03:96:b2:d1:b4:38:bc:c4:4f:56:a6:f0:86:16:2c: cb:c8:a1:e2:52:5d:39:70:7c:05:7b:d5:13:a2:3f: a2:37:6a:1f:03:3c:9b:f5:1b:ec:9f:a7:ff:5a:12: 7c:3d:ee:80:85:6c:06:8d:08:f1:cf:f3:88:85:41: 19:f2:4c:25:a4:04:58:64:6f:af:fb:d3:d0:cb:56: 2f:5e:76:6c:ea:69:61:bc:be:e0:32:35:46:1d:56: 8b:6b:98:cc:20:b4:7c:14:0b:8f:2e:22:5d:70:25: db:73:34:4c:16:9b:82:30:f9:49:6d:56:2a:19:fc: e4:b8:13:b9:72:53:48:29:f4:14:c5:45:e8:85:75: a3:e4:4f:b6:2e:c3:13:99:59:85:d3:98:55:b3:9d: 95:79:ba:a0:27:e7:93:17:a1:83:23:80:c2:7a:24: e5:bc:dd:5d:91:e3:56:e1:8d:f0:d5:2e:2b:79:72: 55:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:29:B5:06:47:08:CC:F9:57:2A:E6:CE:38:77:B0:2B:B4:AA:78:F2 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.15.0/24 Signature Algorithm: sha256WithRSAEncryption 19:10:3d:8b:28:ba:3e:de:bc:fd:58:98:f7:81:55:09:24:fb: 59:55:b2:b3:89:79:da:5e:a7:42:4f:07:0a:9b:db:b3:a9:0e: cc:3b:d7:26:84:3c:3d:92:2d:61:ce:f9:49:2b:0e:12:12:bd: c4:bd:fa:73:c3:8c:d1:a5:c1:51:e3:50:fe:9a:fa:ae:f8:18: 2a:e3:9a:ba:7a:71:64:34:09:e5:5c:f6:47:3c:cf:f8:d0:5e: 1d:f9:24:e0:5a:5c:34:f7:e9:b0:6b:dd:d9:81:92:54:21:fe: be:08:7a:14:ec:7b:ef:57:0f:bf:4e:a7:0c:be:1c:75:74:c8: 9a:bd:5d:60:f1:1b:65:ad:6e:b8:a9:e6:ca:d0:b7:74:e8:37: 49:ea:02:c1:2f:1d:d8:7c:f3:79:6f:c4:26:98:7c:af:ee:33: fb:e6:54:fc:76:25:c0:6e:ce:98:5d:5a:08:ab:cb:43:67:be: a1:b3:9f:d7:e9:3d:1e:69:fa:07:05:1a:83:a7:21:f9:c8:fb: 89:0c:2a:66:93:a1:ee:a3:6e:08:d5:10:c1:8f:e7:60:11:4b: 68:99:6d:2a:eb:47:e2:a9:dc:85:a4:37:4a:1d:18:a5:01:77: 9b:11:38:d1:a2:d2:3d:d3:d1:24:8f:08:f8:6e:9d:48:7c:ca: b1:17:d6:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY4k1eaZ/LCwOWb+QZRODG6t/w4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNTA4MzAyMTU1MDJaFw0yNjA4MjkyMjAwMDJaMDMxMTAvBgNV BAMTKEMzMjlCNTA2NDcwOENDRjk1NzJBRTZDRTM4NzdCMDJCQjRBQTc4RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyI3BjfQQ7nyJv6P2upVBjxN+m iTAcoU7maj4uImws3EvylNYRewfEcR4FlsoxrimSkCTEcgqKge/aqeEubdjieD2o pZpQ82n5tQOWstG0OLzET1am8IYWLMvIoeJSXTlwfAV71ROiP6I3ah8DPJv1G+yf p/9aEnw97oCFbAaNCPHP84iFQRnyTCWkBFhkb6/709DLVi9edmzqaWG8vuAyNUYd VotrmMwgtHwUC48uIl1wJdtzNEwWm4Iw+UltVioZ/OS4E7lyU0gp9BTFReiFdaPk T7YuwxOZWYXTmFWznZV5uqAn55MXoYMjgMJ6JOW83V2R41bhjfDVLit5clX7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwym1BkcIzPlXKubOOHewK7SqePIwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5EPMA0GCSqG SIb3DQEBCwUAA4IBAQAZED2LKLo+3rz9WJj3gVUJJPtZVbKziXnaXqdCTwcKm9uz qQ7MO9cmhDw9ki1hzvlJKw4SEr3Evfpzw4zRpcFR41D+mvqu+Bgq45q6enFkNAnl XPZHPM/40F4d+STgWlw09+mwa93ZgZJUIf6+CHoU7HvvVw+/TqcMvhx1dMiavV1g 8RtlrW64qebK0Ld06DdJ6gLBLx3YfPN5b8QmmHyv7jP75lT8diXAbs6YXVoIq8tD Z76hs5/X6T0eafoHBRqDpyH5yPuJDCpmk6Huo24I1RDBj+dgEUtomW0q60fiqdyF pDdKHRilAXebETjRotI909Ekjwj4bp1IfMqxF9aO -----END CERTIFICATE-----Generated at Thu Sep 18 23:05:58 2025 by rpki-client