$ rpki-client -vvf repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa File: 3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: /kG2XKRMgpHFqcmwADFIzCUj6H/leetgA+b7DMmSYLk= Subject key identifier: 4A:E8:6B:31:5F:23:8B:B6:E9:14:89:FC:6C:0E:BE:B0:CB:61:32:0A Certificate issuer: /CN=DEB4279F0D4CD8368462787573162FB753A9B04B Certificate serial: 38063F5E5DE196F8B4C80270F18754E8279D8411 Authority key identifier: DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa Signing time: Thu 28 Aug 2025 01:00:00 +0000 ROA not before: Thu 28 Aug 2025 00:55:00 +0000 ROA not after: Thu 27 Aug 2026 01:00:00 +0000 asID: 139952 IP address blocks: 103.31.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 19:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:06:3f:5e:5d:e1:96:f8:b4:c8:02:70:f1:87:54:e8:27:9d:84:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEB4279F0D4CD8368462787573162FB753A9B04B Validity Not Before: Aug 28 00:55:00 2025 GMT Not After : Aug 27 01:00:00 2026 GMT Subject: CN=4AE86B315F238BB6E91489FC6C0EBEB0CB61320A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:97:c9:f2:fd:19:21:f4:4d:56:26:4c:34:68: 6c:40:99:28:21:53:58:0f:93:ce:38:6b:74:a3:de: 9b:4f:ab:cd:57:eb:17:40:10:d2:05:1e:6e:25:74: 22:6d:9d:27:e2:e5:2f:a3:8d:b6:97:41:cf:c5:c9: 9e:da:33:f5:4f:86:1f:2a:79:ef:37:5f:84:98:4a: 28:2b:56:bb:34:aa:77:95:f5:eb:fc:03:80:20:3e: ff:7b:5c:2d:2d:53:df:ff:e4:20:70:ce:dc:c3:ed: 7f:35:4a:3c:73:8c:f9:46:6e:f2:5b:27:d6:48:fa: 35:b5:34:eb:f3:d8:90:1a:05:e2:ca:81:3f:57:48: 63:e4:79:46:ea:d5:30:9d:6b:62:c3:fd:5c:27:24: 2a:d1:c7:5b:10:63:49:74:d5:a1:f2:54:9a:ed:aa: 32:9d:ee:79:65:30:75:06:4d:8c:05:5c:59:fb:de: ae:72:82:a1:68:6a:a3:72:c4:2f:cf:39:c0:40:4e: 63:7f:98:32:a7:ef:62:57:cf:8b:e4:2d:0d:51:25: d4:84:74:56:da:ca:b4:59:4e:96:60:7f:79:95:d5: c4:e3:4c:2a:e9:3e:4f:c8:45:22:04:1c:03:e6:ac: c0:d0:3e:0c:d3:5d:6c:05:82:85:cf:4c:03:91:8c: d9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E8:6B:31:5F:23:8B:B6:E9:14:89:FC:6C:0E:BE:B0:CB:61:32:0A X509v3 Authority Key Identifier: keyid:DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.241.0/24 Signature Algorithm: sha256WithRSAEncryption d9:46:3b:69:0f:9a:e3:d9:ff:67:b7:b4:87:b2:b8:6a:9d:0f: 2f:12:5f:3f:b2:49:47:e0:2f:6a:05:81:16:17:74:1d:b1:2b: 31:18:cd:40:58:c7:d4:99:52:dc:54:b1:98:ea:1b:84:ce:aa: 04:52:41:35:95:24:99:7d:59:2e:01:33:b8:17:d6:d6:fe:6a: ea:35:8c:dd:bd:b3:86:16:36:18:76:29:98:ee:00:07:1b:23: 1b:1c:a8:c8:af:a9:0c:e7:2a:58:68:78:af:4a:4b:e2:ae:24: 9a:bf:7e:b7:75:20:96:6f:ce:23:81:9e:21:2b:bd:13:df:66: bd:e6:0b:22:e2:75:17:81:77:c9:01:cc:19:74:9a:9f:44:e7: 44:bb:05:57:03:d7:fc:00:d2:05:21:64:e0:68:99:13:01:8a: e1:69:77:85:47:68:7f:52:e9:4e:76:86:93:38:c1:23:81:e2: 31:6e:6d:8c:cb:05:4c:0a:83:c3:f3:31:fc:4f:2b:ff:31:d1: 07:48:68:3c:3d:42:b0:3e:e1:55:74:1f:74:f2:6c:09:2a:ff: 2f:87:69:c6:3f:e9:98:1d:95:d5:77:9c:d7:78:e6:35:90:32: c8:12:7c:43:a8:4c:5e:b4:a1:f6:2c:bd:d5:9d:d3:88:85:3c: 2a:0c:c7:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOAY/Xl3hlvi0yAJw8YdU6CedhBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1 M0E5QjA0QjAeFw0yNTA4MjgwMDU1MDBaFw0yNjA4MjcwMTAwMDBaMDMxMTAvBgNV BAMTKDRBRTg2QjMxNUYyMzhCQjZFOTE0ODlGQzZDMEVCRUIwQ0I2MTMyMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJl8ny/Rkh9E1WJkw0aGxAmSgh U1gPk844a3Sj3ptPq81X6xdAENIFHm4ldCJtnSfi5S+jjbaXQc/FyZ7aM/VPhh8q ee83X4SYSigrVrs0qneV9ev8A4AgPv97XC0tU9//5CBwztzD7X81SjxzjPlGbvJb J9ZI+jW1NOvz2JAaBeLKgT9XSGPkeUbq1TCda2LD/VwnJCrRx1sQY0l01aHyVJrt qjKd7nllMHUGTYwFXFn73q5ygqFoaqNyxC/POcBATmN/mDKn72JXz4vkLQ1RJdSE dFbayrRZTpZgf3mV1cTjTCrpPk/IRSIEHAPmrMDQPgzTXWwFgoXPTAORjNnRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSuhrMV8ji7bpFIn8bA6+sMthMgowHwYDVR0j BBgwFoAU3rQnnw1M2DaEYnh1cxYvt1OpsEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDMwMzRhYS1mMzljLTQ4ZjUtODUyZS1kMWJkN2YxN2FhNDIvMC9ERUI0Mjc5RjBE NENEODM2ODQ2Mjc4NzU3MzE2MkZCNzUzQTlCMDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1M0E5 QjA0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0MzAzNGFhLWYzOWMtNDhmNS04 NTJlLWQxYmQ3ZjE3YWE0Mi8wLzMxMzAzMzJlMzMzMTJlMzIzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/xMA0GCSqG SIb3DQEBCwUAA4IBAQDZRjtpD5rj2f9nt7SHsrhqnQ8vEl8/sklH4C9qBYEWF3Qd sSsxGM1AWMfUmVLcVLGY6huEzqoEUkE1lSSZfVkuATO4F9bW/mrqNYzdvbOGFjYY dimY7gAHGyMbHKjIr6kM5ypYaHivSkviriSav363dSCWb84jgZ4hK70T32a95gsi 4nUXgXfJAcwZdJqfROdEuwVXA9f8ANIFIWTgaJkTAYrhaXeFR2h/UulOdoaTOMEj geIxbm2MywVMCoPD8zH8Tyv/MdEHSGg8PUKwPuFVdB908mwJKv8vh2nGP+mYHZXV d5zXeOY1kDLIEnxDqExetKH2LL3VndOIhTwqDMcy -----END CERTIFICATE-----Generated at Sun Sep 7 15:40:12 2025 by rpki-client