$ rpki-client -vvf repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa File: 3130332e39312e35352e302f32342d3234203d3e20313530323538.roa (raw, json) Hash identifier: hrEA+sbnpkWh5dltJTQ7io5F8zxoqQPqvRB5+Ub+z3c= Subject key identifier: B9:9D:16:E8:DD:CF:6E:4C:E2:AB:06:A2:EB:CC:A7:EB:B1:3F:B4:73 Certificate issuer: /CN=248C652A73F35EA32B7EC526D977784EB15D2C7D Certificate serial: 7610CE53E29CCD0A7B7C12CF2B7729F8D6930BA2 Authority key identifier: 24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa Signing time: Mon 25 Aug 2025 11:00:00 +0000 ROA not before: Mon 25 Aug 2025 10:55:00 +0000 ROA not after: Mon 24 Aug 2026 11:00:00 +0000 asID: 150258 IP address blocks: 103.91.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 09:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:10:ce:53:e2:9c:cd:0a:7b:7c:12:cf:2b:77:29:f8:d6:93:0b:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=248C652A73F35EA32B7EC526D977784EB15D2C7D Validity Not Before: Aug 25 10:55:00 2025 GMT Not After : Aug 24 11:00:00 2026 GMT Subject: CN=B99D16E8DDCF6E4CE2AB06A2EBCCA7EBB13FB473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:ff:ce:4f:98:33:66:67:62:3f:1b:9e:74: 22:97:ba:01:0b:3d:99:02:47:90:81:17:3e:d1:c9: 7d:7f:b9:e8:a7:6a:59:67:86:e1:9e:b0:1a:b4:95: e7:8b:4a:20:4b:b4:0d:7e:00:21:3a:e8:b9:e6:f0: aa:5e:5c:d3:8b:46:7e:7c:e5:09:8f:c8:0d:63:cd: cd:48:4a:ad:ac:0c:b0:83:b2:1a:fd:9a:54:1b:f7: c7:e4:a7:0f:6f:71:8c:43:5a:ff:ad:15:1f:13:18: 32:c7:b9:f9:8b:cc:fc:f2:c7:f3:4e:36:19:3e:60: 48:d3:97:af:be:3b:a9:6e:00:00:ce:5b:e3:9a:92: 94:fd:9a:7b:62:a0:17:73:11:5f:a5:78:f4:ef:71: e3:fd:12:8d:2f:5d:14:96:eb:c4:a1:f2:06:0a:09: 7b:08:a5:d1:5c:ac:cd:fe:2c:c1:98:59:00:26:66: e4:b7:85:35:c8:b2:89:4d:45:74:58:9e:e3:a1:d1: 64:22:fa:68:66:65:e5:2a:7f:ae:52:8a:ea:9e:0f: d0:5c:b5:0c:5d:6d:77:de:9b:06:b8:4a:27:1e:1d: f5:22:2e:7d:38:80:77:b9:8c:9b:72:bc:80:cd:7c: a1:76:aa:01:91:b2:5e:41:1c:85:c7:ec:a5:27:5f: 0a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:9D:16:E8:DD:CF:6E:4C:E2:AB:06:A2:EB:CC:A7:EB:B1:3F:B4:73 X509v3 Authority Key Identifier: keyid:24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.55.0/24 Signature Algorithm: sha256WithRSAEncryption a3:69:d1:7c:23:af:ff:e7:76:bd:fd:7b:be:2d:30:9f:ea:65: 66:64:51:c5:5c:77:37:77:ee:54:dd:12:06:cc:6c:c4:6d:0e: 64:ee:57:81:76:5a:5c:17:8a:32:be:cf:05:65:ac:16:18:25: 3d:4c:c5:f0:0f:16:e0:c8:13:a5:e3:d4:76:8f:98:dd:4b:ea: 28:c4:cb:c8:2e:10:e4:e9:d6:89:36:ab:2b:64:45:b9:7b:e2: f1:64:89:c1:1c:d8:cc:0f:b6:2a:e4:9b:a3:75:6e:8a:86:a7: 02:f5:f9:0a:d4:16:16:2c:72:d8:f2:3f:5f:f5:87:73:c8:97: 8c:88:fa:eb:3a:4f:88:bb:26:0e:c1:d0:54:f8:a3:a2:e7:35: b6:3e:bb:5c:c6:a6:1d:2e:47:bb:75:c5:c5:2c:3f:db:b9:bb: ea:03:39:15:6b:bd:32:7b:b8:a3:f4:07:cf:8a:fd:7c:82:ba: 6f:a9:a0:bb:22:a5:24:b9:14:06:7a:47:d7:43:5e:e6:b1:58: 13:d3:12:f8:cb:a6:16:34:d8:fa:36:1b:ae:c3:33:a6:7e:1c: 75:2c:88:13:9a:a0:62:c2:c2:e0:2d:db:a3:07:ea:a0:15:f4: eb:2c:21:31:ca:7a:38:3d:5f:f6:7f:1a:43:3f:dc:47:b9:ba: 57:a6:c2:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdhDOU+KczQp7fBLPK3cp+NaTC6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQ4QzY1MkE3M0YzNUVBMzJCN0VDNTI2RDk3Nzc4NEVC MTVEMkM3RDAeFw0yNTA4MjUxMDU1MDBaFw0yNjA4MjQxMTAwMDBaMDMxMTAvBgNV BAMTKEI5OUQxNkU4RERDRjZFNENFMkFCMDZBMkVCQ0NBN0VCQjEzRkI0NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNTP/OT5gzZmdiPxuedCKXugEL PZkCR5CBFz7RyX1/ueinallnhuGesBq0leeLSiBLtA1+ACE66Lnm8KpeXNOLRn58 5QmPyA1jzc1ISq2sDLCDshr9mlQb98fkpw9vcYxDWv+tFR8TGDLHufmLzPzyx/NO Nhk+YEjTl6++O6luAADOW+OakpT9mntioBdzEV+lePTvceP9Eo0vXRSW68Sh8gYK CXsIpdFcrM3+LMGYWQAmZuS3hTXIsolNRXRYnuOh0WQi+mhmZeUqf65SiuqeD9Bc tQxdbXfemwa4SiceHfUiLn04gHe5jJtyvIDNfKF2qgGRsl5BHIXH7KUnXwo1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuZ0W6N3Pbkziqwai68yn67E/tHMwHwYDVR0j BBgwFoAUJIxlKnPzXqMrfsUm2Xd4TrFdLH0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmZiYWY3MS0yZDU3LTRlNGEtOTFkMC1jYWM4YWIwYWNlZmUvMC8yNDhDNjUyQTcz RjM1RUEzMkI3RUM1MjZEOTc3Nzg0RUIxNUQyQzdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjQ4QzY1MkE3M0YzNUVBMzJCN0VDNTI2RDk3Nzc4NEVCMTVE MkM3RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZmJhZjcxLTJkNTctNGU0YS05 MWQwLWNhYzhhYjBhY2VmZS8wLzMxMzAzMzJlMzkzMTJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdbNzANBgkqhkiG 9w0BAQsFAAOCAQEAo2nRfCOv/+d2vf17vi0wn+plZmRRxVx3N3fuVN0SBsxsxG0O ZO5XgXZaXBeKMr7PBWWsFhglPUzF8A8W4MgTpePUdo+Y3UvqKMTLyC4Q5OnWiTar K2RFuXvi8WSJwRzYzA+2KuSbo3VuioanAvX5CtQWFixy2PI/X/WHc8iXjIj66zpP iLsmDsHQVPijouc1tj67XMamHS5Hu3XFxSw/27m76gM5FWu9Mnu4o/QHz4r9fIK6 b6mguyKlJLkUBnpH10Ne5rFYE9MS+MumFjTY+jYbrsMzpn4cdSyIE5qgYsLC4C3b owfqoBX06ywhMcp6OD1f9n8aQz/cR7m6V6bC4A== -----END CERTIFICATE-----Generated at Mon Sep 8 09:32:11 2025 by rpki-client