$ rpki-client -vvf repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa File: 3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa (raw, json) Hash identifier: JArcqatJBrG0UJiwDi1c9yEOpb8Bk4EGWPIVKLKaIwQ= Subject key identifier: 4E:FB:80:62:01:C2:60:A3:89:F0:58:D6:56:C8:CE:14:2B:A3:58:B3 Certificate issuer: /CN=5AE19AE3FA86591042AE694640539C9669DEC801 Certificate serial: 149D1EEE25F3BDADC5061EEBA6991955AD6A2BB1 Authority key identifier: 5A:E1:9A:E3:FA:86:59:10:42:AE:69:46:40:53:9C:96:69:DE:C8:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa Signing time: Fri 04 Jul 2025 12:02:22 +0000 ROA not before: Fri 04 Jul 2025 11:57:22 +0000 ROA not after: Fri 03 Jul 2026 12:02:22 +0000 asID: 150199 IP address blocks: 103.220.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.crl rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 18:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:9d:1e:ee:25:f3:bd:ad:c5:06:1e:eb:a6:99:19:55:ad:6a:2b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AE19AE3FA86591042AE694640539C9669DEC801 Validity Not Before: Jul 4 11:57:22 2025 GMT Not After : Jul 3 12:02:22 2026 GMT Subject: CN=4EFB806201C260A389F058D656C8CE142BA358B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:98:0a:25:a1:9d:6d:56:a5:56:9e:cd:77:e4: ad:17:71:99:f6:eb:bc:2e:e1:42:69:10:99:d8:35: 38:ee:47:4d:9e:30:ab:dd:6e:1b:6b:14:87:67:3c: 82:1c:26:76:9a:44:4b:65:14:54:4d:ad:43:60:0e: 6d:54:03:2d:3e:23:ff:6e:5f:1c:65:13:91:f6:d9: e1:42:97:ef:f6:33:3e:d9:ad:a3:f9:ca:21:4c:1a: 7e:9d:bf:d2:3b:f2:98:1f:18:ae:6d:b4:d3:84:dd: 8d:18:c6:4a:cb:d0:d6:88:42:45:b2:fa:50:f4:22: 49:e2:3e:2e:cc:45:fc:4d:20:37:40:be:86:33:21: 94:b7:18:c2:e3:3e:b1:d8:e6:ad:d0:fc:b9:65:62: d9:08:3d:3e:b2:f7:b7:7e:e2:24:bc:68:f5:62:d2: 34:7b:2e:fe:91:06:06:47:36:62:9a:c6:de:f3:af: f1:bf:57:cd:5d:22:f7:19:de:f4:63:8f:a8:63:dc: 59:69:99:b3:a3:b9:eb:4e:78:b7:36:66:d1:9a:82: f8:d9:f4:6b:f8:c3:54:f4:b2:b7:c3:9a:92:3b:30: 1a:7b:10:cc:ac:e3:4b:ec:88:f9:0f:2a:8c:37:d9: 3b:12:e1:89:c9:6e:fd:e3:35:26:45:17:c9:8d:d4: e3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:FB:80:62:01:C2:60:A3:89:F0:58:D6:56:C8:CE:14:2B:A3:58:B3 X509v3 Authority Key Identifier: keyid:5A:E1:9A:E3:FA:86:59:10:42:AE:69:46:40:53:9C:96:69:DE:C8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.44.0/24 Signature Algorithm: sha256WithRSAEncryption 05:d2:6f:a9:fb:36:98:bb:24:12:82:56:d6:1a:1c:dc:60:d2: 18:af:ba:6d:51:61:00:7d:43:02:fb:45:7a:d3:40:65:33:69: eb:6a:b0:85:cc:8b:e8:4f:67:0f:2e:76:45:d5:2c:a8:e0:24: c9:1d:2d:8d:56:d2:13:dc:37:a4:f8:dc:f7:69:52:25:99:3b: 0e:bd:b6:34:0d:17:e8:a7:5f:1f:ae:b6:22:73:4b:3b:e2:91: e3:b9:e3:40:e8:a2:33:7f:5e:d9:4b:19:d6:2f:3f:f4:95:bc: fd:ed:42:d0:66:04:df:13:d4:27:14:75:78:1c:e9:67:83:71: 90:6d:c7:41:e5:0b:7a:c0:3d:56:52:5d:7a:cd:0f:fd:8c:58: 36:82:15:e0:8b:9c:7d:3c:11:49:10:ae:75:dc:56:a5:df:f2: b2:03:08:32:b7:b3:68:90:24:a6:2e:65:de:1b:e7:7e:ea:d4: 8f:00:aa:5a:84:29:b9:6f:56:55:b7:4d:ea:c6:8e:76:10:8a: 64:6f:56:56:22:fc:94:bc:50:34:3a:e1:37:83:0e:99:59:3c: 04:a6:c9:94:83:46:a9:75:6a:ac:ae:59:a3:42:04:1f:b2:24: c3:ed:1f:c5:ef:3e:98:6e:62:3c:33:d1:fd:4c:ad:dd:b1:45: fd:5d:cf:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFJ0e7iXzva3FBh7rppkZVa1qK7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFFMTlBRTNGQTg2NTkxMDQyQUU2OTQ2NDA1MzlDOTY2 OURFQzgwMTAeFw0yNTA3MDQxMTU3MjJaFw0yNjA3MDMxMjAyMjJaMDMxMTAvBgNV BAMTKDRFRkI4MDYyMDFDMjYwQTM4OUYwNThENjU2QzhDRTE0MkJBMzU4QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKmAoloZ1tVqVWns135K0XcZn2 67wu4UJpEJnYNTjuR02eMKvdbhtrFIdnPIIcJnaaREtlFFRNrUNgDm1UAy0+I/9u XxxlE5H22eFCl+/2Mz7ZraP5yiFMGn6dv9I78pgfGK5ttNOE3Y0YxkrL0NaIQkWy +lD0IkniPi7MRfxNIDdAvoYzIZS3GMLjPrHY5q3Q/LllYtkIPT6y97d+4iS8aPVi 0jR7Lv6RBgZHNmKaxt7zr/G/V81dIvcZ3vRjj6hj3FlpmbOjuetOeLc2ZtGagvjZ 9Gv4w1T0srfDmpI7MBp7EMys40vsiPkPKow32TsS4YnJbv3jNSZFF8mN1ONdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTvuAYgHCYKOJ8FjWVsjOFCujWLMwHwYDVR0j BBgwFoAUWuGa4/qGWRBCrmlGQFOclmneyAEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTcyOTI5MS1hMWE3LTRiMTktOTNmNi0xZDg0NTc0YTY3YWUvMC81QUUxOUFFM0ZB ODY1OTEwNDJBRTY5NDY0MDUzOUM5NjY5REVDODAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFFMTlBRTNGQTg2NTkxMDQyQUU2OTQ2NDA1MzlDOTY2OURF QzgwMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1NzI5MjkxLWExYTctNGIxOS05 M2Y2LTFkODQ1NzRhNjdhZS8wLzMxMzAzMzJlMzIzMjMwMmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wsMA0GCSqG SIb3DQEBCwUAA4IBAQAF0m+p+zaYuyQSglbWGhzcYNIYr7ptUWEAfUMC+0V600Bl M2nrarCFzIvoT2cPLnZF1Syo4CTJHS2NVtIT3Dek+Nz3aVIlmTsOvbY0DRfop18f rrYic0s74pHjueNA6KIzf17ZSxnWLz/0lbz97ULQZgTfE9QnFHV4HOlng3GQbcdB 5Qt6wD1WUl16zQ/9jFg2ghXgi5x9PBFJEK513Fal3/KyAwgyt7NokCSmLmXeG+d+ 6tSPAKpahCm5b1ZVt03qxo52EIpkb1ZWIvyUvFA0OuE3gw6ZWTwEpsmUg0apdWqs rlmjQgQfsiTD7R/F7z6YbmI8M9H9TK3dsUX9Xc/q -----END CERTIFICATE-----Generated at Mon Oct 27 11:56:53 2025 by rpki-client