$ rpki-client -vvf repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138342e302f32342d3234203d3e203634303239.roa File: 3130332e3231342e3138342e302f32342d3234203d3e203634303239.roa (raw, json) Hash identifier: JEJ2gtjqR3xoAWSFfThnnAX4k9LDg24aEZrng1n0P04= Subject key identifier: C1:95:CB:75:34:B3:27:73:32:D0:8E:05:D9:B6:29:EF:49:0D:3D:1C Certificate issuer: /CN=C51F648FDD8891397EA20B34F6DE036DC2234E2F Certificate serial: 6A8C3371F92FEA61569EE8C129A652DAF0EDFE94 Authority key identifier: C5:1F:64:8F:DD:88:91:39:7E:A2:0B:34:F6:DE:03:6D:C2:23:4E:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138342e302f32342d3234203d3e203634303239.roa Signing time: Fri 29 Aug 2025 17:00:00 +0000 ROA not before: Fri 29 Aug 2025 16:55:00 +0000 ROA not after: Fri 28 Aug 2026 17:00:00 +0000 asID: 64029 IP address blocks: 103.214.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.crl rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:8c:33:71:f9:2f:ea:61:56:9e:e8:c1:29:a6:52:da:f0:ed:fe:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C51F648FDD8891397EA20B34F6DE036DC2234E2F Validity Not Before: Aug 29 16:55:00 2025 GMT Not After : Aug 28 17:00:00 2026 GMT Subject: CN=C195CB7534B3277332D08E05D9B629EF490D3D1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:d5:75:50:5a:16:b8:2a:d7:9d:df:67:85: fd:ff:62:b0:53:20:ba:cc:96:ad:0e:92:25:b0:6b: 93:37:e7:5a:09:a8:cc:fb:77:0b:5f:98:12:fd:33: 37:93:f0:45:c2:f4:b4:8a:51:6d:28:1e:c2:4a:32: a8:da:39:27:86:6c:48:c0:0c:cb:63:87:b5:37:65: b0:0f:7a:d1:8a:3e:d2:20:ee:20:27:62:20:f1:5d: a9:79:60:54:5e:1e:b8:73:5f:09:23:ce:fc:07:fb: 37:6c:47:95:b5:64:18:1f:e8:fe:9a:29:c6:3f:73: 2a:e1:06:0c:a5:58:f2:42:06:9c:5a:f7:d1:ee:09: a5:2b:8c:8e:9a:09:3b:ac:4c:45:3d:db:b7:5e:b2: 5c:41:9c:17:b0:c8:14:7b:b0:09:a8:e3:34:6b:14: a0:8e:ee:a6:f0:fc:a5:57:e3:3f:01:25:af:04:31: 01:a1:35:90:40:da:63:e6:88:a1:40:b9:b3:dc:b4: e1:0e:74:82:fc:6e:62:f0:4a:f7:1b:1d:15:76:d9: d4:21:59:78:de:fa:98:dd:0b:16:3b:53:3c:90:50: d4:56:a6:4a:7e:c2:cc:59:26:6b:74:f5:f3:7b:80: 8d:00:43:8c:ba:b4:57:68:8f:ac:25:b7:89:b0:b7: 16:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:95:CB:75:34:B3:27:73:32:D0:8E:05:D9:B6:29:EF:49:0D:3D:1C X509v3 Authority Key Identifier: keyid:C5:1F:64:8F:DD:88:91:39:7E:A2:0B:34:F6:DE:03:6D:C2:23:4E:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138342e302f32342d3234203d3e203634303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.184.0/24 Signature Algorithm: sha256WithRSAEncryption 45:05:ac:0a:a6:b2:0d:7b:bb:00:1b:f4:e5:db:6b:41:39:b4: c9:e0:88:ef:2a:35:df:5a:94:e3:cd:29:8e:57:b4:d1:5a:4b: 37:0d:23:18:10:8a:46:ca:2e:14:aa:ba:38:86:f1:3f:95:af: 0c:03:fd:f8:50:06:57:ec:88:8a:92:b5:4e:c5:e0:d9:e8:73: 8f:7a:00:e5:f0:f3:40:98:c9:f4:f2:4d:17:19:92:aa:f7:c6: 20:3d:b5:53:ae:a3:9c:7d:ae:de:93:60:d4:73:07:be:e9:92: 7a:59:98:ed:6d:f9:49:17:ea:75:ba:22:38:9a:77:bf:6a:d1: 2c:42:8e:67:af:90:58:b9:c3:66:02:81:85:9e:d0:df:52:93: 03:2a:f3:ea:cd:07:37:ca:bc:03:50:47:61:d8:9f:69:5f:2d: 48:2c:60:ed:6f:7b:e8:81:88:99:9f:fb:5b:7a:53:02:44:03: d2:f2:fc:03:fa:6a:83:31:0d:36:de:4e:04:76:3b:21:c7:d6: bf:87:fc:3a:2e:c2:93:32:a0:6a:f5:13:67:8c:e9:26:5f:ff: f6:04:f0:7c:9b:53:8b:e3:c4:19:ac:88:f6:df:cd:a3:42:0d: 26:82:89:1a:2b:bf:02:15:e9:67:bc:ea:52:4b:c1:77:aa:7f: 10:48:57:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaowzcfkv6mFWnujBKaZS2vDt/pQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUxRjY0OEZERDg4OTEzOTdFQTIwQjM0RjZERTAzNkRD MjIzNEUyRjAeFw0yNTA4MjkxNjU1MDBaFw0yNjA4MjgxNzAwMDBaMDMxMTAvBgNV BAMTKEMxOTVDQjc1MzRCMzI3NzMzMkQwOEUwNUQ5QjYyOUVGNDkwRDNEMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2SNV1UFoWuCrXnd9nhf3/YrBT ILrMlq0OkiWwa5M351oJqMz7dwtfmBL9MzeT8EXC9LSKUW0oHsJKMqjaOSeGbEjA DMtjh7U3ZbAPetGKPtIg7iAnYiDxXal5YFReHrhzXwkjzvwH+zdsR5W1ZBgf6P6a KcY/cyrhBgylWPJCBpxa99HuCaUrjI6aCTusTEU927deslxBnBewyBR7sAmo4zRr FKCO7qbw/KVX4z8BJa8EMQGhNZBA2mPmiKFAubPctOEOdIL8bmLwSvcbHRV22dQh WXje+pjdCxY7UzyQUNRWpkp+wsxZJmt09fN7gI0AQ4y6tFdoj6wlt4mwtxYxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwZXLdTSzJ3My0I4F2bYp70kNPRwwHwYDVR0j BBgwFoAUxR9kj92IkTl+ogs09t4DbcIjTi8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTA3ZmQ4YS0xNTBmLTQ1M2YtYTBmNS01N2VhZDQxZWQwMzIvMC9DNTFGNjQ4RkRE ODg5MTM5N0VBMjBCMzRGNkRFMDM2REMyMjM0RTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzUxRjY0OEZERDg4OTEzOTdFQTIwQjM0RjZERTAzNkRDMjIz NEUyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMDdmZDhhLTE1MGYtNDUzZi1h MGY1LTU3ZWFkNDFlZDAzMi8wLzMxMzAzMzJlMzIzMTM0MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9a4MA0GCSqG SIb3DQEBCwUAA4IBAQBFBawKprINe7sAG/Tl22tBObTJ4IjvKjXfWpTjzSmOV7TR Wks3DSMYEIpGyi4Uqro4hvE/la8MA/34UAZX7IiKkrVOxeDZ6HOPegDl8PNAmMn0 8k0XGZKq98YgPbVTrqOcfa7ek2DUcwe+6ZJ6WZjtbflJF+p1uiI4mne/atEsQo5n r5BYucNmAoGFntDfUpMDKvPqzQc3yrwDUEdh2J9pXy1ILGDtb3vogYiZn/tbelMC RAPS8vwD+mqDMQ023k4Edjshx9a/h/w6LsKTMqBq9RNnjOkmX//2BPB8m1OL48QZ rIj2382jQg0mgokaK78CFelnvOpSS8F3qn8QSFeD -----END CERTIFICATE-----Generated at Sun Sep 7 15:45:51 2025 by rpki-client