$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232342e302f32342d3234203d3e203538343832.roa File: 3130332e32382e3232342e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: 6xVTWVhJwHlTuupRqckmEH+2N+SG40cJCesUx/LAQVI= Subject key identifier: 22:B6:66:5E:A5:F2:0E:2A:62:C8:25:75:7C:E6:6B:73:D1:EA:D7:95 Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 2AD25AAC8674B0FB75DFEC8A81408A87E9A54D76 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232342e302f32342d3234203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:04:21 +0000 ROA not before: Wed 03 Sep 2025 11:59:21 +0000 ROA not after: Wed 02 Sep 2026 12:04:21 +0000 asID: 58482 IP address blocks: 103.28.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d2:5a:ac:86:74:b0:fb:75:df:ec:8a:81:40:8a:87:e9:a5:4d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 11:59:21 2025 GMT Not After : Sep 2 12:04:21 2026 GMT Subject: CN=22B6665EA5F20E2A62C825757CE66B73D1EAD795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:7e:10:20:88:0c:d6:47:5a:8b:45:20:47:7e: 35:68:1e:b4:6b:6f:07:c9:a3:0b:5f:ce:21:79:73: f4:ce:de:d9:b0:c6:1b:c5:f0:d2:d5:19:eb:32:b6: fd:13:5a:8c:a4:e7:db:a7:b4:65:98:11:3a:14:1b: 03:2e:15:9c:a8:56:f9:d7:e3:58:90:ff:23:c0:5b: 97:d1:6e:a9:b1:a6:dd:74:45:d1:3e:1b:0d:4c:9d: 66:66:8a:7b:e9:df:a3:00:6c:92:aa:7c:e5:60:50: 55:79:af:2f:b5:b2:10:7c:47:ae:8e:88:0e:dd:14: 51:d9:0f:0f:1f:8e:be:33:11:cc:a8:7b:5d:1c:2f: dd:5c:c1:4a:99:9a:b2:c6:ed:41:2d:eb:76:1f:df: ae:4b:cb:36:ba:13:48:c2:e2:a7:22:34:4e:fa:7d: 23:08:6d:96:7b:4e:0e:6b:a7:0e:ff:94:1b:7b:93: b3:48:5c:be:26:99:ef:10:92:9b:5f:54:38:04:ba: cc:0e:8d:96:39:bc:71:1a:94:18:49:89:15:f8:1a: 4b:34:9f:65:00:7d:af:c0:45:aa:47:c3:bb:11:c1: c0:32:3b:0a:36:fa:77:93:af:29:53:fb:35:16:87: 25:44:d7:01:4c:69:7b:94:4e:a4:53:45:04:12:94: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B6:66:5E:A5:F2:0E:2A:62:C8:25:75:7C:E6:6B:73:D1:EA:D7:95 X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232342e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.224.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:bb:6b:c2:28:94:ac:90:fb:35:e3:4b:ff:df:21:84:7b:2f: 1c:da:f4:f2:fc:ad:3a:77:f2:81:b0:ae:e5:77:b3:70:11:5b: 9e:0b:33:96:26:7a:b0:cd:ef:63:6b:f9:39:65:08:87:ae:51: af:4c:57:d3:6d:b2:ba:0a:e7:97:0a:2d:f3:64:b4:ff:e3:83: db:df:30:c2:c4:57:a9:3e:30:11:c1:7d:00:21:ee:f2:a1:57: 26:c4:d2:fc:91:97:68:da:de:37:07:3f:b1:78:cb:e1:81:0f: 7b:12:ee:05:f0:48:81:de:21:bc:f4:6d:c8:3d:3e:c3:94:26: 3b:fa:5a:1b:30:c1:9d:58:aa:91:f5:99:f3:d3:44:ea:85:91: 64:bd:bf:f9:61:a1:12:60:40:a6:64:d8:f6:2f:99:05:ee:be: 93:57:2a:a5:2f:19:6d:00:77:a8:c3:b5:bf:8c:0a:2c:08:40: 6d:ae:72:4e:77:e7:12:d4:54:57:39:2f:ef:bb:9d:bf:91:ee: 21:a6:65:43:6c:c6:ad:86:0f:9d:9f:a1:f5:21:c7:f8:73:eb: 36:b8:98:92:1c:ac:f8:81:18:68:6c:ec:c9:03:6d:ba:ec:a1: 5c:31:72:08:bf:93:4a:72:90:fb:30:73:a2:5c:a9:05:de:5c: b4:3a:a2:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKtJarIZ0sPt13+yKgUCKh+mlTXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMTU5MjFaFw0yNjA5MDIxMjA0MjFaMDMxMTAvBgNV BAMTKDIyQjY2NjVFQTVGMjBFMkE2MkM4MjU3NTdDRTY2QjczRDFFQUQ3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7fhAgiAzWR1qLRSBHfjVoHrRr bwfJowtfziF5c/TO3tmwxhvF8NLVGesytv0TWoyk59untGWYEToUGwMuFZyoVvnX 41iQ/yPAW5fRbqmxpt10RdE+Gw1MnWZminvp36MAbJKqfOVgUFV5ry+1shB8R66O iA7dFFHZDw8fjr4zEcyoe10cL91cwUqZmrLG7UEt63Yf365Lyza6E0jC4qciNE76 fSMIbZZ7Tg5rpw7/lBt7k7NIXL4mme8QkptfVDgEuswOjZY5vHEalBhJiRX4Gks0 n2UAfa/ARapHw7sRwcAyOwo2+neTrylT+zUWhyVE1wFMaXuUTqRTRQQSlBXPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIrZmXqXyDipiyCV1fOZrc9Hq15UwHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzMxMzAzMzJlMzIzODJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcc4DANBgkqhkiG 9w0BAQsFAAOCAQEAK7trwiiUrJD7NeNL/98hhHsvHNr08vytOnfygbCu5XezcBFb ngszliZ6sM3vY2v5OWUIh65Rr0xX022yugrnlwot82S0/+OD298wwsRXqT4wEcF9 ACHu8qFXJsTS/JGXaNreNwc/sXjL4YEPexLuBfBIgd4hvPRtyD0+w5QmO/paGzDB nViqkfWZ89NE6oWRZL2/+WGhEmBApmTY9i+ZBe6+k1cqpS8ZbQB3qMO1v4wKLAhA ba5yTnfnEtRUVzkv77udv5HuIaZlQ2zGrYYPnZ+h9SHH+HPrNriYkhys+IEYaGzs yQNtuuyhXDFyCL+TSnKQ+zBzolypBd5ctDqiOQ== -----END CERTIFICATE-----Generated at Tue Sep 9 11:30:08 2025 by rpki-client