$ rpki-client -vvf repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313431353931.roa File: 3130332e34332e32352e302f32342d3234203d3e20313431353931.roa (raw, json) Hash identifier: wqJtSQHwbnqm8jiqozWh9r8aZJIccaguRYiH+0smDl0= Subject key identifier: 86:8E:E4:C5:62:E5:00:30:F4:82:04:68:AE:D0:9A:5A:C7:2A:94:D2 Certificate issuer: /CN=08A94FD7F0E8A287AD318D7A26254192431E175F Certificate serial: 18666E333567B290D1E60E8A3B9D0B85F36F85AC Authority key identifier: 08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313431353931.roa Signing time: Thu 28 Aug 2025 03:35:03 +0000 ROA not before: Thu 28 Aug 2025 03:30:03 +0000 ROA not after: Thu 27 Aug 2026 03:35:03 +0000 asID: 141591 IP address blocks: 103.43.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 11:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:66:6e:33:35:67:b2:90:d1:e6:0e:8a:3b:9d:0b:85:f3:6f:85:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08A94FD7F0E8A287AD318D7A26254192431E175F Validity Not Before: Aug 28 03:30:03 2025 GMT Not After : Aug 27 03:35:03 2026 GMT Subject: CN=868EE4C562E50030F4820468AED09A5AC72A94D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:21:5c:7a:b8:de:7e:01:e2:61:18:7a:e2:5c: bf:96:fc:25:83:0c:e2:e5:f5:09:52:d2:6d:b7:a0: 78:de:3a:6e:2d:08:e3:b1:7c:04:dd:80:94:45:fc: d6:04:c5:d5:43:06:c5:b5:6e:a4:ac:0f:6a:59:dd: ad:b2:e3:51:24:26:16:37:20:f7:a2:06:08:9a:82: b2:1c:87:9e:08:6d:c2:20:29:39:1b:dc:37:63:ea: 82:3a:3c:0e:f3:a1:32:d5:86:0c:ff:a2:ed:a7:ff: 3a:62:b6:12:cc:06:c9:d0:dc:c4:1b:10:bd:fb:19: d0:53:2a:4f:77:f5:ef:71:ea:74:a1:47:eb:b5:27: 6e:c0:c3:ba:4a:73:ad:9c:55:f2:5a:1b:a0:db:42: be:8e:f5:a5:19:4f:ce:7c:80:f5:cc:5c:7f:1e:59: c4:93:78:9b:89:0f:58:4f:a1:2d:36:6c:e3:ee:68: 5b:db:ea:39:f8:08:e7:92:ac:a4:ee:ac:25:06:72: b5:a6:6a:0c:fb:02:32:e6:b6:09:ff:65:4f:3d:19: 59:35:eb:43:c7:ed:8b:d1:ca:99:9f:9a:6a:12:e5: eb:09:a4:cd:08:bb:e1:6b:b0:f4:64:4a:82:8a:b8: 56:57:44:ae:ca:80:5c:9d:88:ad:30:44:39:cd:c7: a3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8E:E4:C5:62:E5:00:30:F4:82:04:68:AE:D0:9A:5A:C7:2A:94:D2 X509v3 Authority Key Identifier: keyid:08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.25.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:81:be:da:b6:88:cf:d2:86:8a:01:fe:28:fd:f2:29:4d:35: c1:3e:5d:74:13:d2:16:7f:41:66:24:cd:24:6d:4d:a3:0b:3a: 14:ec:fa:c7:dc:f6:34:59:9d:ee:7b:af:b9:c9:bb:c1:d3:8b: 5e:19:a7:e1:7e:78:d5:04:6c:0c:34:24:85:3f:07:40:ea:a2: 96:1f:5d:e9:98:99:35:28:91:e4:27:5b:26:87:e7:97:b1:f0: d5:09:af:81:43:4f:5d:40:6c:53:c0:43:2a:5f:b7:27:ef:1a: 78:3e:a3:97:60:a5:e3:4a:f1:e1:30:40:46:53:c3:a2:ed:ee: 0c:52:1e:df:a2:2c:c3:bc:d1:4e:4b:b9:07:24:14:89:6c:f7: 2c:f9:78:f5:7d:f0:c6:07:cb:8c:5d:4f:36:c0:ff:69:eb:2f: b2:15:2a:c0:b9:db:e5:33:e7:13:34:5b:22:d0:62:4d:55:d3: b0:da:bc:4f:b2:15:de:d1:75:38:a2:0d:27:cd:12:ef:b9:4b: fd:1c:7a:0d:a1:41:70:7e:77:6f:3d:e8:51:1f:25:4f:1e:3a: 83:4b:7a:d4:e2:71:4d:c1:4b:97:0f:c4:fd:33:44:88:2c:80: 0a:ba:a2:0e:1c:c6:e8:32:77:b8:c5:1c:af:df:63:b2:69:fb: 1e:56:78:2a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGGZuMzVnspDR5g6KO50LhfNvhawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0 MzFFMTc1RjAeFw0yNTA4MjgwMzMwMDNaFw0yNjA4MjcwMzM1MDNaMDMxMTAvBgNV BAMTKDg2OEVFNEM1NjJFNTAwMzBGNDgyMDQ2OEFFRDA5QTVBQzcyQTk0RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7IVx6uN5+AeJhGHriXL+W/CWD DOLl9QlS0m23oHjeOm4tCOOxfATdgJRF/NYExdVDBsW1bqSsD2pZ3a2y41EkJhY3 IPeiBgiagrIch54IbcIgKTkb3Ddj6oI6PA7zoTLVhgz/ou2n/zpithLMBsnQ3MQb EL37GdBTKk939e9x6nShR+u1J27Aw7pKc62cVfJaG6DbQr6O9aUZT858gPXMXH8e WcSTeJuJD1hPoS02bOPuaFvb6jn4COeSrKTurCUGcrWmagz7AjLmtgn/ZU89GVk1 60PH7YvRypmfmmoS5esJpM0Iu+FrsPRkSoKKuFZXRK7KgFydiK0wRDnNx6PVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUho7kxWLlADD0ggRortCaWscqlNIwHwYDVR0j BBgwFoAUCKlP1/DoooetMY16JiVBkkMeF18wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjA4M2Q0NC03ODM1LTQ0M2QtODUzYS0wYTc5Y2YwMGU5NTAvMC8wOEE5NEZEN0Yw RThBMjg3QUQzMThEN0EyNjI1NDE5MjQzMUUxNzVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0MzFF MTc1Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMDgzZDQ0LTc4MzUtNDQzZC04 NTNhLTBhNzljZjAwZTk1MC8wLzMxMzAzMzJlMzQzMzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM1MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcrGTANBgkqhkiG 9w0BAQsFAAOCAQEAT4G+2raIz9KGigH+KP3yKU01wT5ddBPSFn9BZiTNJG1Nows6 FOz6x9z2NFmd7nuvucm7wdOLXhmn4X541QRsDDQkhT8HQOqilh9d6ZiZNSiR5Cdb Jofnl7Hw1QmvgUNPXUBsU8BDKl+3J+8aeD6jl2Cl40rx4TBARlPDou3uDFIe36Is w7zRTku5ByQUiWz3LPl49X3wxgfLjF1PNsD/aesvshUqwLnb5TPnEzRbItBiTVXT sNq8T7IV3tF1OKINJ80S77lL/Rx6DaFBcH53bz3oUR8lTx46g0t61OJxTcFLlw/E /TNEiCyACrqiDhzG6DJ3uMUcr99jsmn7HlZ4Kg== -----END CERTIFICATE-----Generated at Mon Sep 8 10:47:54 2025 by rpki-client