$ rpki-client -vvf repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa File: 3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa (raw, json) Hash identifier: cp44WBbEQPeVS1mAfPisCHMGvuQWDdPCMl7LdQCGp3k= Subject key identifier: 72:18:AF:9B:04:1B:CA:B8:54:EE:AE:AE:64:5A:D1:ED:6B:EB:61:9D Certificate issuer: /CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Certificate serial: 5158E94324F1E1B90783B8C6A690749BE5985981 Authority key identifier: 80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa Signing time: Mon 08 Sep 2025 05:00:02 +0000 ROA not before: Mon 08 Sep 2025 04:55:02 +0000 ROA not after: Mon 07 Sep 2026 05:00:02 +0000 asID: 134651 IP address blocks: 103.208.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 12:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:58:e9:43:24:f1:e1:b9:07:83:b8:c6:a6:90:74:9b:e5:98:59:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Validity Not Before: Sep 8 04:55:02 2025 GMT Not After : Sep 7 05:00:02 2026 GMT Subject: CN=7218AF9B041BCAB854EEAEAE645AD1ED6BEB619D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1f:48:35:ef:fa:e3:0d:e7:c3:aa:eb:54:1c: da:aa:52:93:51:5c:d6:cb:38:ef:c9:cb:ba:a0:fc: 8c:6f:79:eb:a1:f8:07:26:65:5f:82:ae:7d:5f:35: 68:2e:83:84:09:97:ce:95:ab:e7:34:31:42:45:06: d4:85:01:8f:bd:ac:b2:97:15:03:2b:55:ae:20:95: 08:4a:81:46:41:3a:e6:af:a6:c4:10:a2:62:15:b5: b2:7d:73:32:df:1f:13:18:33:ea:9b:6d:70:04:02: 18:5c:f1:52:b6:a7:13:0f:b8:22:f7:7c:a0:90:ac: 4f:fb:59:73:44:7c:0d:76:a0:2a:6c:12:11:39:e3: b2:07:e8:30:cb:1d:30:31:00:72:51:46:14:69:d8: af:11:4e:80:ac:c8:74:b7:34:55:29:1c:0a:82:22: 0b:bc:ba:ec:6a:45:1b:78:b0:d0:29:57:95:6e:a6: 85:41:f8:12:82:4c:1b:4f:01:8e:51:65:94:66:87: 5b:7a:c9:07:91:57:91:0e:31:40:3e:61:98:2c:97: 4d:86:85:65:ca:bb:f9:38:d5:e5:8b:2a:27:2c:ca: 4f:4b:d8:bf:7b:54:15:b1:5f:53:39:2d:d3:53:83: 19:00:70:09:c3:d4:1a:ae:60:78:3c:13:92:34:c1: a7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:18:AF:9B:04:1B:CA:B8:54:EE:AE:AE:64:5A:D1:ED:6B:EB:61:9D X509v3 Authority Key Identifier: keyid:80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.204.0/22 Signature Algorithm: sha256WithRSAEncryption cf:18:b5:1d:00:e9:23:cf:da:a7:2b:39:09:1a:e1:42:21:7f: 90:40:27:20:10:c1:a7:2e:64:d2:7c:5c:19:d7:41:41:d4:5e: aa:8d:00:ef:9a:20:a5:19:5e:e1:ef:e9:31:0b:25:3e:2a:2f: 22:24:c3:58:df:ec:48:84:cd:a9:b4:d7:41:17:ec:fd:75:9b: ca:ef:ce:87:09:2d:bd:ba:8b:cc:31:22:a7:21:e8:a9:6a:4b: 7c:5e:a6:b2:a8:d1:0e:61:5d:25:cc:50:e8:56:f6:34:b4:ca: 29:82:e2:97:23:ee:05:d1:4a:96:8e:45:42:9f:14:59:1b:18: 82:8b:8e:46:dd:ec:43:b2:24:d5:6e:91:ba:78:14:89:99:02: ff:60:ea:94:ab:b1:ee:43:eb:ef:59:b4:84:ad:9a:e3:c8:1d: 61:59:5f:38:31:12:47:e4:9f:99:69:ee:8a:30:b8:1c:95:1d: 39:24:d1:11:8a:bb:e1:3c:8c:07:93:c7:15:d7:07:41:a1:28: 81:e2:a2:f0:bb:d1:52:bd:f1:d0:43:9d:55:24:16:bc:a1:44: 6a:85:9a:57:d5:d5:22:cb:71:bb:71:8d:60:ec:3d:da:9a:db: 71:c1:a2:e8:95:c2:9b:8f:c3:89:1c:65:07:19:4b:e5:da:4c: 02:f3:29:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUVjpQyTx4bkHg7jGppB0m+WYWYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5 MkUyNkFGMzAeFw0yNTA5MDgwNDU1MDJaFw0yNjA5MDcwNTAwMDJaMDMxMTAvBgNV BAMTKDcyMThBRjlCMDQxQkNBQjg1NEVFQUVBRTY0NUFEMUVENkJFQjYxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpH0g17/rjDefDqutUHNqqUpNR XNbLOO/Jy7qg/Ixveeuh+AcmZV+Crn1fNWgug4QJl86Vq+c0MUJFBtSFAY+9rLKX FQMrVa4glQhKgUZBOuavpsQQomIVtbJ9czLfHxMYM+qbbXAEAhhc8VK2pxMPuCL3 fKCQrE/7WXNEfA12oCpsEhE547IH6DDLHTAxAHJRRhRp2K8RToCsyHS3NFUpHAqC Igu8uuxqRRt4sNApV5VupoVB+BKCTBtPAY5RZZRmh1t6yQeRV5EOMUA+YZgsl02G hWXKu/k41eWLKicsyk9L2L97VBWxX1M5LdNTgxkAcAnD1BquYHg8E5I0waelAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUchivmwQbyrhU7q6uZFrR7WvrYZ0wHwYDVR0j BBgwFoAUgDyf8QKDbOyM7EnwH8+qDpLiavMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NzcyN2MzZS05YzFhLTQ2ZGUtYTJiOC1jODhiOTAzOTlmM2QvMC84MDNDOUZGMTAy ODM2Q0VDOENFQzQ5RjAxRkNGQUEwRTkyRTI2QUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5MkUy NkFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3NzI3YzNlLTljMWEtNDZkZS1h MmI4LWM4OGI5MDM5OWYzZC8wLzMxMzAzMzJlMzIzMDM4MmUzMjMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0MwwDQYJ KoZIhvcNAQELBQADggEBAM8YtR0A6SPP2qcrOQka4UIhf5BAJyAQwacuZNJ8XBnX QUHUXqqNAO+aIKUZXuHv6TELJT4qLyIkw1jf7EiEzam010EX7P11m8rvzocJLb26 i8wxIqch6KlqS3xeprKo0Q5hXSXMUOhW9jS0yimC4pcj7gXRSpaORUKfFFkbGIKL jkbd7EOyJNVukbp4FImZAv9g6pSrse5D6+9ZtIStmuPIHWFZXzgxEkfkn5lp7oow uByVHTkk0RGKu+E8jAeTxxXXB0GhKIHiovC70VK98dBDnVUkFryhRGqFmlfV1SLL cbtxjWDsPdqa23HBouiVwpuPw4kcZQcZS+XaTALzKYY= -----END CERTIFICATE-----Generated at Mon Sep 8 10:35:26 2025 by rpki-client