$ rpki-client -vvf repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa File: 3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa (raw, json) Hash identifier: c0jEtUhY3CCnihYNexzABK/peyf3Gx5R2jF1ZOsdS10= Subject key identifier: 65:7E:0E:42:4F:C7:BC:25:16:1C:55:20:97:28:54:D1:6C:06:F4:56 Certificate issuer: /CN=C51F648FDD8891397EA20B34F6DE036DC2234E2F Certificate serial: 63885E1B690425C35671CBE612D6396793B6B731 Authority key identifier: C5:1F:64:8F:DD:88:91:39:7E:A2:0B:34:F6:DE:03:6D:C2:23:4E:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa Signing time: Fri 29 Aug 2025 16:00:00 +0000 ROA not before: Fri 29 Aug 2025 15:55:00 +0000 ROA not after: Fri 28 Aug 2026 16:00:00 +0000 asID: 64029 IP address blocks: 103.214.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.crl rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:88:5e:1b:69:04:25:c3:56:71:cb:e6:12:d6:39:67:93:b6:b7:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C51F648FDD8891397EA20B34F6DE036DC2234E2F Validity Not Before: Aug 29 15:55:00 2025 GMT Not After : Aug 28 16:00:00 2026 GMT Subject: CN=657E0E424FC7BC25161C5520972854D16C06F456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4c:29:bf:64:57:b1:95:91:de:2e:b2:1d:08: 99:11:45:eb:ef:81:96:c8:f6:e2:6a:da:b9:85:b5: 63:21:f7:a6:af:e0:55:d1:9a:53:94:2b:39:86:68: 1c:ed:13:dd:57:a8:b8:b9:63:d3:e2:e5:94:a1:5c: 68:d5:30:05:0a:1e:a0:85:01:83:ab:9e:00:07:8c: 77:89:4d:ea:33:34:cb:0c:5a:3c:62:f5:8f:1b:fc: 34:35:18:75:4d:6f:8b:29:bf:90:f3:fb:f9:4d:be: 27:e5:ae:87:9f:8c:64:be:ea:b0:b3:fb:22:fb:31: 58:f7:14:87:f8:0a:d8:fb:13:b5:33:2b:f6:5c:d6: f0:2a:66:b6:b7:58:bd:4e:6f:2a:db:29:e5:71:99: 8a:4c:59:fd:fe:d1:f2:aa:05:f7:a0:e4:e6:6c:b8: 24:17:ce:32:78:e7:41:de:c6:de:99:2c:70:38:b5: 81:bd:e6:fe:26:a2:72:0c:2e:b2:54:a0:16:2c:49: a9:6e:65:03:45:7a:95:07:7d:5c:be:80:8b:9d:40: 6d:72:d9:9a:18:f5:ae:4d:a3:56:6c:89:12:57:ab: 5e:30:ac:b5:c9:83:64:9b:f3:82:72:7c:63:66:09: 03:76:45:fe:bc:c9:41:3b:46:92:fb:44:3b:bf:14: 43:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7E:0E:42:4F:C7:BC:25:16:1C:55:20:97:28:54:D1:6C:06:F4:56 X509v3 Authority Key Identifier: keyid:C5:1F:64:8F:DD:88:91:39:7E:A2:0B:34:F6:DE:03:6D:C2:23:4E:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.187.0/24 Signature Algorithm: sha256WithRSAEncryption b4:ed:72:7e:14:7d:5a:d8:f6:06:eb:10:7c:66:ee:90:b5:be: 3e:f1:f9:3d:8a:86:e0:09:97:30:92:18:0b:99:35:82:9f:c7: c0:f0:42:a8:16:c0:87:10:c0:f2:8b:7d:d2:1c:9e:70:11:80: 41:cc:c9:ab:d8:6e:ad:20:52:53:4f:57:f8:2b:35:63:61:ee: 92:f6:59:13:d6:07:bb:d8:f7:34:b8:e8:ab:20:48:b3:44:98: 3e:6d:21:a9:a7:69:d8:66:b1:4f:3e:4d:80:8c:a7:ba:e7:0b: e0:2b:85:ae:43:ce:27:31:87:58:6d:6a:8b:f0:9c:ff:c8:d7: 13:69:c5:9b:32:bc:bd:e8:7d:3c:e5:13:d7:eb:28:35:0d:7f: 7c:ac:96:d3:91:74:2b:90:9f:e4:a9:97:80:49:31:69:ca:4f: c5:09:8c:4c:e2:90:44:ee:34:f0:96:89:b4:2a:34:65:1d:b6: 44:d1:df:3d:b6:9f:03:45:f3:ed:cd:34:18:cc:97:44:e6:0f: f9:f1:18:b3:c4:6e:bb:e3:f2:35:79:57:65:a5:8f:21:34:70: 58:0f:4a:73:f5:3e:83:9c:ab:54:c1:b3:10:d8:45:59:4f:86: 02:c6:39:64:a3:2f:ae:07:63:88:53:4e:1c:20:57:db:1c:22: bb:cd:bc:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY4heG2kEJcNWccvmEtY5Z5O2tzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUxRjY0OEZERDg4OTEzOTdFQTIwQjM0RjZERTAzNkRD MjIzNEUyRjAeFw0yNTA4MjkxNTU1MDBaFw0yNjA4MjgxNjAwMDBaMDMxMTAvBgNV BAMTKDY1N0UwRTQyNEZDN0JDMjUxNjFDNTUyMDk3Mjg1NEQxNkMwNkY0NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRTCm/ZFexlZHeLrIdCJkRRevv gZbI9uJq2rmFtWMh96av4FXRmlOUKzmGaBztE91XqLi5Y9Pi5ZShXGjVMAUKHqCF AYOrngAHjHeJTeozNMsMWjxi9Y8b/DQ1GHVNb4spv5Dz+/lNviflroefjGS+6rCz +yL7MVj3FIf4Ctj7E7UzK/Zc1vAqZra3WL1ObyrbKeVxmYpMWf3+0fKqBfeg5OZs uCQXzjJ450Hext6ZLHA4tYG95v4monIMLrJUoBYsSaluZQNFepUHfVy+gIudQG1y 2ZoY9a5No1ZsiRJXq14wrLXJg2Sb84JyfGNmCQN2Rf68yUE7RpL7RDu/FEN5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZX4OQk/HvCUWHFUglyhU0WwG9FYwHwYDVR0j BBgwFoAUxR9kj92IkTl+ogs09t4DbcIjTi8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTA3ZmQ4YS0xNTBmLTQ1M2YtYTBmNS01N2VhZDQxZWQwMzIvMC9DNTFGNjQ4RkRE ODg5MTM5N0VBMjBCMzRGNkRFMDM2REMyMjM0RTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzUxRjY0OEZERDg4OTEzOTdFQTIwQjM0RjZERTAzNkRDMjIz NEUyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMDdmZDhhLTE1MGYtNDUzZi1h MGY1LTU3ZWFkNDFlZDAzMi8wLzMxMzAzMzJlMzIzMTM0MmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9a7MA0GCSqG SIb3DQEBCwUAA4IBAQC07XJ+FH1a2PYG6xB8Zu6Qtb4+8fk9iobgCZcwkhgLmTWC n8fA8EKoFsCHEMDyi33SHJ5wEYBBzMmr2G6tIFJTT1f4KzVjYe6S9lkT1ge72Pc0 uOirIEizRJg+bSGpp2nYZrFPPk2AjKe65wvgK4WuQ84nMYdYbWqL8Jz/yNcTacWb Mry96H085RPX6yg1DX98rJbTkXQrkJ/kqZeASTFpyk/FCYxM4pBE7jTwlom0KjRl HbZE0d89tp8DRfPtzTQYzJdE5g/58RizxG674/I1eVdlpY8hNHBYD0pz9T6DnKtU wbMQ2EVZT4YCxjlkoy+uB2OIU04cIFfbHCK7zbyB -----END CERTIFICATE-----Generated at Sun Sep 7 15:45:53 2025 by rpki-client