$ rpki-client -vvf repo-rpki.idnic.net/repo/44eb6edd-f13b-49f0-ad87-6b8ee614dc8f/0/3130332e3135302e34342e302f32332d3234203d3e20313430333838.roa File: 3130332e3135302e34342e302f32332d3234203d3e20313430333838.roa (raw, json) Hash identifier: 9wWnuvCPEe0C8U6UVGeFeb9Dd9afvhSHPrMKavtgge8= Subject key identifier: AE:97:56:D5:5D:6D:86:A0:17:CE:97:11:7E:D7:29:76:9A:95:B9:6F Certificate issuer: /CN=7CD524052467F22DD8E57E02A1C99EDE5A8CF249 Certificate serial: 1B4916AE73A47E39C57CFB169641588D1C0963E6 Authority key identifier: 7C:D5:24:05:24:67:F2:2D:D8:E5:7E:02:A1:C9:9E:DE:5A:8C:F2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CD524052467F22DD8E57E02A1C99EDE5A8CF249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44eb6edd-f13b-49f0-ad87-6b8ee614dc8f/0/3130332e3135302e34342e302f32332d3234203d3e20313430333838.roa Signing time: Sat 14 Jun 2025 12:00:01 +0000 ROA not before: Sat 14 Jun 2025 11:55:01 +0000 ROA not after: Sat 13 Jun 2026 12:00:01 +0000 asID: 140388 IP address blocks: 103.150.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44eb6edd-f13b-49f0-ad87-6b8ee614dc8f/0/7CD524052467F22DD8E57E02A1C99EDE5A8CF249.crl rsync://repo-rpki.idnic.net/repo/44eb6edd-f13b-49f0-ad87-6b8ee614dc8f/0/7CD524052467F22DD8E57E02A1C99EDE5A8CF249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CD524052467F22DD8E57E02A1C99EDE5A8CF249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 10:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:49:16:ae:73:a4:7e:39:c5:7c:fb:16:96:41:58:8d:1c:09:63:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CD524052467F22DD8E57E02A1C99EDE5A8CF249 Validity Not Before: Jun 14 11:55:01 2025 GMT Not After : Jun 13 12:00:01 2026 GMT Subject: CN=AE9756D55D6D86A017CE97117ED729769A95B96F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1c:60:2b:b7:4a:9f:79:37:fa:18:96:80:ad: 66:2a:a0:6c:10:cc:91:02:a9:e2:c5:b8:b3:6c:62: 96:b4:35:cb:9e:82:bd:1a:97:99:95:03:a1:a5:0b: 0e:52:1e:82:71:16:5f:dc:45:5c:5c:e9:3d:44:56: 75:97:86:22:3d:a2:e9:a9:54:bf:b3:89:99:a1:ca: ed:00:8c:64:d8:3f:e0:bf:a2:88:8d:31:63:7f:ad: 83:94:a9:53:32:39:a5:30:01:b0:a6:0f:bf:66:1b: c8:c2:d8:ab:48:69:18:1f:f8:40:b5:99:b0:a2:1c: 3b:22:f1:f3:95:6d:55:a9:e5:85:40:bc:ac:ae:00: e6:ae:bf:bf:b4:c3:fc:51:cd:cf:5e:85:d0:30:88: 05:1c:ee:07:c4:db:89:75:23:a6:fe:ac:aa:7f:d0: 3d:82:57:73:9f:46:1e:e7:87:0b:90:d4:ac:c5:56: 5a:32:35:96:7c:fe:e2:f9:70:64:8e:c6:cc:41:2b: 8d:2d:de:d1:80:d4:9f:ce:98:a9:3e:b4:43:a2:a9: 10:ca:57:da:b9:0e:23:c2:db:ac:87:70:7e:b5:04: 6d:6d:1a:28:2e:7b:ee:98:43:b1:92:c1:28:c1:7c: f5:f0:8a:7e:29:74:fe:7d:30:93:b2:4d:ea:7f:34: b5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:97:56:D5:5D:6D:86:A0:17:CE:97:11:7E:D7:29:76:9A:95:B9:6F X509v3 Authority Key Identifier: keyid:7C:D5:24:05:24:67:F2:2D:D8:E5:7E:02:A1:C9:9E:DE:5A:8C:F2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44eb6edd-f13b-49f0-ad87-6b8ee614dc8f/0/7CD524052467F22DD8E57E02A1C99EDE5A8CF249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CD524052467F22DD8E57E02A1C99EDE5A8CF249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44eb6edd-f13b-49f0-ad87-6b8ee614dc8f/0/3130332e3135302e34342e302f32332d3234203d3e20313430333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.44.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:84:6a:54:a9:d5:a9:13:b2:13:c2:b8:a5:4f:f6:ad:15:1a: db:14:1b:a9:d7:fd:5c:c2:94:fb:3e:06:79:37:90:0c:bc:29: 89:b2:89:5f:dc:b3:b9:79:73:62:7a:4f:d7:5d:00:ad:9d:3f: 3c:8f:90:b9:d0:5e:75:7d:db:9b:7b:f7:ba:e9:ee:d0:ee:9b: 26:e9:7b:40:2f:89:5c:15:4f:2c:fe:9a:04:87:72:32:85:0e: f4:8c:8b:92:0e:e3:67:40:97:e0:37:59:31:78:a6:cf:a2:ab: c0:44:47:c2:e8:ca:8c:46:af:48:58:b0:e2:0a:9f:a2:71:2d: 1b:3f:eb:88:8b:31:e3:c4:2f:b3:e3:f5:21:d2:a3:a2:8b:a6: f5:50:ad:71:bc:00:06:17:93:4d:a4:de:05:33:41:03:a3:64: 0d:9d:ab:4e:67:72:3d:ee:02:26:3e:b8:91:61:63:17:52:60: 7d:23:fa:17:06:d7:e1:2d:b5:81:8f:ae:2b:50:28:2c:73:56: 62:cf:72:fc:65:a2:83:c5:67:fc:3e:51:85:fd:17:da:c3:c1: 85:37:6b:ae:92:e6:88:0f:93:33:de:3a:d1:a8:3a:7e:45:38: a4:2c:45:97:6b:eb:a7:d7:2f:a0:67:e3:c3:e5:0c:89:2d:63: b6:1e:5e:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG0kWrnOkfjnFfPsWlkFYjRwJY+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NENTI0MDUyNDY3RjIyREQ4RTU3RTAyQTFDOTlFREU1 QThDRjI0OTAeFw0yNTA2MTQxMTU1MDFaFw0yNjA2MTMxMjAwMDFaMDMxMTAvBgNV BAMTKEFFOTc1NkQ1NUQ2RDg2QTAxN0NFOTcxMTdFRDcyOTc2OUE5NUI5NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgHGArt0qfeTf6GJaArWYqoGwQ zJECqeLFuLNsYpa0Ncuegr0al5mVA6GlCw5SHoJxFl/cRVxc6T1EVnWXhiI9oump VL+ziZmhyu0AjGTYP+C/ooiNMWN/rYOUqVMyOaUwAbCmD79mG8jC2KtIaRgf+EC1 mbCiHDsi8fOVbVWp5YVAvKyuAOauv7+0w/xRzc9ehdAwiAUc7gfE24l1I6b+rKp/ 0D2CV3OfRh7nhwuQ1KzFVloyNZZ8/uL5cGSOxsxBK40t3tGA1J/OmKk+tEOiqRDK V9q5DiPC26yHcH61BG1tGigue+6YQ7GSwSjBfPXwin4pdP59MJOyTep/NLWfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrpdW1V1thqAXzpcRftcpdpqVuW8wHwYDVR0j BBgwFoAUfNUkBSRn8i3Y5X4Cocme3lqM8kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGViNmVkZC1mMTNiLTQ5ZjAtYWQ4Ny02YjhlZTYxNGRjOGYvMC83Q0Q1MjQwNTI0 NjdGMjJERDhFNTdFMDJBMUM5OUVERTVBOENGMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NENTI0MDUyNDY3RjIyREQ4RTU3RTAyQTFDOTlFREU1QThD RjI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0ZWI2ZWRkLWYxM2ItNDlmMC1h ZDg3LTZiOGVlNjE0ZGM4Zi8wLzMxMzAzMzJlMzEzNTMwMmUzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzMzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5YsMA0GCSqG SIb3DQEBCwUAA4IBAQB9hGpUqdWpE7ITwrilT/atFRrbFBup1/1cwpT7PgZ5N5AM vCmJsolf3LO5eXNiek/XXQCtnT88j5C50F51fdube/e66e7Q7psm6XtAL4lcFU8s /poEh3IyhQ70jIuSDuNnQJfgN1kxeKbPoqvAREfC6MqMRq9IWLDiCp+icS0bP+uI izHjxC+z4/Uh0qOii6b1UK1xvAAGF5NNpN4FM0EDo2QNnatOZ3I97gImPriRYWMX UmB9I/oXBtfhLbWBj64rUCgsc1Ziz3L8ZaKDxWf8PlGF/Rfaw8GFN2uukuaID5Mz 3jrRqDp+RTikLEWXa+un1y+gZ+PD5QyJLWO2Hl5j -----END CERTIFICATE-----Generated at Mon Nov 3 20:49:31 2025 by rpki-client