$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232362e302f32332d3233203d3e203538343832.roa File: 3130332e32382e3232362e302f32332d3233203d3e203538343832.roa (raw, json) Hash identifier: 4fMJzq8Nq1YJP9z1+S+a93o7lbnttq7OojId/hUDTmM= Subject key identifier: 3C:5B:58:A7:4A:07:9E:7C:81:44:3A:E0:3D:86:AD:54:57:EA:59:3D Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 385BF96A773B35B4CFB29BCADFDED63D2FE2DAD5 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232362e302f32332d3233203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:03:54 +0000 ROA not before: Wed 03 Sep 2025 11:58:54 +0000 ROA not after: Wed 02 Sep 2026 12:03:54 +0000 asID: 58482 IP address blocks: 103.28.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5b:f9:6a:77:3b:35:b4:cf:b2:9b:ca:df:de:d6:3d:2f:e2:da:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 11:58:54 2025 GMT Not After : Sep 2 12:03:54 2026 GMT Subject: CN=3C5B58A74A079E7C81443AE03D86AD5457EA593D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5a:83:84:b1:95:91:42:bc:eb:45:c1:35:e1: 35:fb:47:e7:8f:7e:25:35:5c:c8:d5:05:64:2b:61: dc:1e:80:e8:24:ff:2d:64:4f:8b:5a:53:5b:bf:ae: 65:4e:d6:2b:8e:63:f8:1e:33:30:2c:f0:13:4f:82: 4f:ec:6a:94:5b:ce:d7:9e:d4:2d:84:5e:dc:8d:db: a0:34:d8:03:24:41:73:cc:c6:41:c8:8d:ed:1d:bf: f8:0f:65:d5:d8:c2:df:a5:5f:23:59:f9:e7:85:57: 2b:8c:81:cf:31:4d:f8:d0:34:3e:78:57:de:cd:31: 7b:de:7e:43:15:18:2b:72:4f:2b:f8:d5:6a:8f:5b: df:94:8f:d6:19:54:70:f4:df:b1:e2:37:fd:7f:aa: 54:ee:fc:60:75:35:69:e3:40:d4:1d:75:34:99:9c: fc:cb:38:d3:5a:50:2f:78:36:26:ef:8e:a3:3c:e0: 54:29:9a:34:04:43:db:89:eb:44:14:40:da:b6:06: b5:39:5a:c9:57:ab:26:32:9f:d8:86:26:08:00:73: a0:84:04:cd:b7:2f:33:e5:b7:98:cc:69:8d:06:0c: a1:38:ce:9c:9f:49:f2:95:40:bd:a3:ee:4f:a8:38: ef:ca:28:cb:b1:e4:02:e1:9b:b6:69:1a:ed:5c:10: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5B:58:A7:4A:07:9E:7C:81:44:3A:E0:3D:86:AD:54:57:EA:59:3D X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232362e302f32332d3233203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.226.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:3d:fb:05:5e:0d:1a:ce:5b:22:31:d8:05:89:ec:5c:6b:66: 05:b7:44:62:3d:41:3c:e3:11:e9:6f:a0:52:99:a2:11:91:bf: d0:95:7f:32:fa:36:a6:9a:23:1e:11:22:67:69:b9:8a:a9:6c: 45:6e:4f:ca:42:ad:e9:43:4d:ef:92:c9:32:c6:05:00:6b:fc: a4:42:40:61:7f:e5:ce:5a:64:81:f8:5f:0c:50:53:2a:ab:eb: 77:a0:cc:3a:c3:45:4c:8e:e5:4e:79:3d:ce:2a:28:90:6f:74: 9b:17:cc:53:fa:77:41:96:12:55:dd:20:68:54:66:e8:b9:52: 17:31:1a:70:fc:05:31:5a:79:3e:38:e8:20:78:30:66:b2:57: 72:55:71:79:d0:97:74:f6:f5:08:c4:bc:a4:ce:db:db:24:59: 8d:7c:1e:1d:00:03:f0:e8:ab:e3:e8:46:ef:e6:07:f7:e1:cc: d3:a5:e5:74:9b:03:76:e3:6a:cd:9a:e1:bf:b2:5a:51:ab:4c: 61:d3:75:b6:74:ed:74:ff:d6:73:23:b8:15:9b:4b:3f:bf:8f: b2:45:71:6e:05:2d:bf:65:db:2a:ee:44:e6:05:03:05:fb:95: 9b:ed:df:56:e0:7a:77:02:23:14:80:42:85:9f:ae:25:72:22: 7d:38:98:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOFv5anc7NbTPspvK397WPS/i2tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMTU4NTRaFw0yNjA5MDIxMjAzNTRaMDMxMTAvBgNV BAMTKDNDNUI1OEE3NEEwNzlFN0M4MTQ0M0FFMDNEODZBRDU0NTdFQTU5M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8WoOEsZWRQrzrRcE14TX7R+eP fiU1XMjVBWQrYdwegOgk/y1kT4taU1u/rmVO1iuOY/geMzAs8BNPgk/sapRbztee 1C2EXtyN26A02AMkQXPMxkHIje0dv/gPZdXYwt+lXyNZ+eeFVyuMgc8xTfjQND54 V97NMXvefkMVGCtyTyv41WqPW9+Uj9YZVHD037HiN/1/qlTu/GB1NWnjQNQddTSZ nPzLONNaUC94NibvjqM84FQpmjQEQ9uJ60QUQNq2BrU5WslXqyYyn9iGJggAc6CE BM23LzPlt5jMaY0GDKE4zpyfSfKVQL2j7k+oOO/KKMux5ALhm7ZpGu1cEPNfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPFtYp0oHnnyBRDrgPYatVFfqWT0wHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzMxMzAzMzJlMzIzODJlMzIzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcc4jANBgkqhkiG 9w0BAQsFAAOCAQEAjj37BV4NGs5bIjHYBYnsXGtmBbdEYj1BPOMR6W+gUpmiEZG/ 0JV/Mvo2ppojHhEiZ2m5iqlsRW5PykKt6UNN75LJMsYFAGv8pEJAYX/lzlpkgfhf DFBTKqvrd6DMOsNFTI7lTnk9ziookG90mxfMU/p3QZYSVd0gaFRm6LlSFzEacPwF MVp5PjjoIHgwZrJXclVxedCXdPb1CMS8pM7b2yRZjXweHQAD8Oir4+hG7+YH9+HM 06XldJsDduNqzZrhv7JaUatMYdN1tnTtdP/WcyO4FZtLP7+PskVxbgUtv2XbKu5E 5gUDBfuVm+3fVuB6dwIjFIBChZ+uJXIifTiYVQ== -----END CERTIFICATE-----Generated at Tue Sep 9 11:29:02 2025 by rpki-client