$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232352e302f32342d3234203d3e203538343832.roa File: 3130332e32382e3232352e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: BGVByiTWnar+G9klrtY285yoFDo2RjE2YjBcwnHtPF0= Subject key identifier: B4:57:A9:A6:7E:97:BB:DB:74:38:67:B1:13:E6:C7:36:13:B6:38:9A Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 60484CF83D2C2D89143C34067FB8C9F64D059685 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232352e302f32342d3234203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:04:45 +0000 ROA not before: Wed 03 Sep 2025 11:59:45 +0000 ROA not after: Wed 02 Sep 2026 12:04:45 +0000 asID: 58482 IP address blocks: 103.28.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:48:4c:f8:3d:2c:2d:89:14:3c:34:06:7f:b8:c9:f6:4d:05:96:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 11:59:45 2025 GMT Not After : Sep 2 12:04:45 2026 GMT Subject: CN=B457A9A67E97BBDB743867B113E6C73613B6389A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2f:d4:d4:8c:ed:20:d9:d0:59:04:8c:74:dc: 25:ed:85:d6:58:ec:9b:f7:75:5f:f9:8a:d1:60:a5: ee:56:83:39:d1:0a:a1:67:95:aa:0e:7b:cf:b2:16: 82:85:99:af:b1:f9:c7:bd:c1:20:3d:84:a3:46:7b: e1:5b:11:5f:8d:7e:98:47:8e:20:91:6a:7f:12:18: 41:86:3e:78:41:68:44:0b:3a:46:d8:ec:6e:ff:15: 2b:63:40:b7:50:9e:5c:42:0f:4f:7e:71:f4:21:83: 1a:03:31:a0:42:23:9d:bc:4a:ed:59:9a:0f:3b:9e: ba:6e:20:01:0f:e9:79:7b:b3:8a:78:63:20:aa:47: 93:42:25:8f:4a:9e:f9:b7:00:3a:da:b4:0a:6f:ae: e7:d0:78:82:b8:46:08:49:7f:81:eb:1d:72:0b:43: 74:12:74:b5:ac:e7:c2:34:8a:f0:05:b3:58:1c:a5: 03:8d:b2:62:0f:af:47:1c:5e:3b:46:fd:c5:ec:97: 3d:ec:cf:1d:aa:52:61:9e:f4:b5:e6:30:50:3f:a9: 37:cb:03:65:20:88:fa:e0:71:75:e7:3b:d0:dd:c7: fa:0f:14:26:35:4a:4a:29:75:e3:60:5f:a1:be:0e: 79:a1:c6:74:cd:05:f9:02:c2:b4:05:06:3e:fa:c5: dc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:57:A9:A6:7E:97:BB:DB:74:38:67:B1:13:E6:C7:36:13:B6:38:9A X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232352e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.225.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:6b:9f:10:8f:c4:8b:a5:0b:79:2b:f6:11:e1:6c:af:8b:1a: 3d:3f:a6:96:51:40:92:66:5d:4d:8f:9c:c4:08:24:94:0f:05: cb:6e:3e:2b:f3:fd:06:f3:2a:97:8b:c1:73:e5:a7:f6:6a:fe: f9:74:26:8c:fa:cd:82:85:d0:b3:a6:0d:de:7e:c6:6f:7b:82: 19:6f:39:45:ef:cc:4c:3d:5d:3e:32:10:e0:97:2b:96:12:19: e2:f6:dc:87:ae:2f:6e:21:52:0c:df:ee:c9:6a:4c:00:aa:ff: 1a:10:21:99:8e:f0:28:c1:53:10:0d:a4:9e:93:9b:8c:ab:08: f1:fa:82:53:db:51:be:1f:03:fa:1e:6b:0d:08:c1:17:e9:18: f0:65:12:41:2f:d3:6f:e3:44:06:be:c8:9d:f3:a2:26:59:d1: 19:9a:57:5e:90:cd:df:07:95:32:15:55:3a:7f:e3:c7:1c:cb: a0:17:3f:bf:8d:12:93:6f:d1:a6:d5:fd:82:ee:8f:00:92:66: bc:f7:cc:18:be:ea:8c:00:38:ad:1c:9b:12:4f:0f:32:07:09: 10:c1:0a:0e:6e:e7:0f:65:71:80:c5:cd:89:0b:53:f4:09:fa: 4b:0c:71:cf:d1:86:82:7b:62:6c:65:ab:dc:b7:10:eb:1e:fb: 39:b9:50:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYEhM+D0sLYkUPDQGf7jJ9k0FloUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMTU5NDVaFw0yNjA5MDIxMjA0NDVaMDMxMTAvBgNV BAMTKEI0NTdBOUE2N0U5N0JCREI3NDM4NjdCMTEzRTZDNzM2MTNCNjM4OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRL9TUjO0g2dBZBIx03CXthdZY 7Jv3dV/5itFgpe5WgznRCqFnlaoOe8+yFoKFma+x+ce9wSA9hKNGe+FbEV+NfphH jiCRan8SGEGGPnhBaEQLOkbY7G7/FStjQLdQnlxCD09+cfQhgxoDMaBCI528Su1Z mg87nrpuIAEP6Xl7s4p4YyCqR5NCJY9Knvm3ADratApvrufQeIK4RghJf4HrHXIL Q3QSdLWs58I0ivAFs1gcpQONsmIPr0ccXjtG/cXslz3szx2qUmGe9LXmMFA/qTfL A2UgiPrgcXXnO9Ddx/oPFCY1SkopdeNgX6G+DnmhxnTNBfkCwrQFBj76xdxvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtFeppn6Xu9t0OGexE+bHNhO2OJowHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzMxMzAzMzJlMzIzODJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcc4TANBgkqhkiG 9w0BAQsFAAOCAQEASmufEI/Ei6ULeSv2EeFsr4saPT+mllFAkmZdTY+cxAgklA8F y24+K/P9BvMql4vBc+Wn9mr++XQmjPrNgoXQs6YN3n7Gb3uCGW85Re/MTD1dPjIQ 4JcrlhIZ4vbch64vbiFSDN/uyWpMAKr/GhAhmY7wKMFTEA2knpObjKsI8fqCU9tR vh8D+h5rDQjBF+kY8GUSQS/Tb+NEBr7InfOiJlnRGZpXXpDN3weVMhVVOn/jxxzL oBc/v40Sk2/RptX9gu6PAJJmvPfMGL7qjAA4rRybEk8PMgcJEMEKDm7nD2VxgMXN iQtT9An6Swxxz9GGgntibGWr3LcQ6x77OblQQA== -----END CERTIFICATE-----Generated at Tue Sep 9 11:30:08 2025 by rpki-client