$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232362e302f32342d3234203d3e203538343832.roa File: 3130332e32382e3232362e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: znVQQu+fIshyxf4G9mODoMFhYbJt3eH/0GuMVl8IwkA= Subject key identifier: F1:C0:0F:42:17:E4:64:CB:F5:5E:80:90:F0:87:ED:97:68:5D:A6:E3 Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 1860E366B0E22AE5B75977BB101F444F885746B2 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232362e302f32342d3234203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:05:00 +0000 ROA not before: Wed 03 Sep 2025 12:00:00 +0000 ROA not after: Wed 02 Sep 2026 12:05:00 +0000 asID: 58482 IP address blocks: 103.28.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:60:e3:66:b0:e2:2a:e5:b7:59:77:bb:10:1f:44:4f:88:57:46:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 12:00:00 2025 GMT Not After : Sep 2 12:05:00 2026 GMT Subject: CN=F1C00F4217E464CBF55E8090F087ED97685DA6E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:cb:92:50:fb:ac:b8:80:a7:21:4d:eb:92: df:15:db:1d:ee:c4:49:0c:14:7d:a8:fc:2c:0b:69: 2f:92:51:f7:81:d1:5f:93:61:7e:00:68:38:c0:39: 5a:0f:f9:4c:3b:1c:ad:43:53:4c:d9:e6:a0:b6:cd: 9c:2d:d3:92:f2:31:5e:7d:57:7b:0d:b2:86:46:0e: 33:ce:ef:c2:94:c5:3b:31:d1:d1:e5:61:b0:83:14: b6:5a:c0:d0:f0:1c:d1:ac:60:14:a5:11:8f:9f:51: 2d:67:3c:0a:cd:8d:e1:dd:9f:75:72:0f:44:6b:a6: ed:27:c0:6e:4d:08:07:3b:b1:7a:71:c6:39:a8:31: e3:af:b0:fc:8a:f1:97:f6:41:3f:01:ce:24:9a:57: 7b:e1:23:74:5b:6e:cc:d0:33:55:23:6a:8d:df:9f: f1:36:d7:a8:92:1d:96:5e:52:ba:06:1d:b9:ac:e3: 71:4e:f6:9b:54:ff:85:ba:f1:bd:73:16:56:0c:ef: 90:72:75:d9:ac:6d:d8:37:9f:cf:a5:a0:73:1a:d9: 8d:86:be:a5:4e:f9:10:b3:f0:07:45:b2:62:08:76: 96:45:2c:95:e9:ce:ea:be:09:15:94:60:59:40:7f: a4:4a:8d:67:52:8f:12:b8:80:22:c2:c5:a4:bc:35: d3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C0:0F:42:17:E4:64:CB:F5:5E:80:90:F0:87:ED:97:68:5D:A6:E3 X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/3130332e32382e3232362e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.226.0/24 Signature Algorithm: sha256WithRSAEncryption 08:3c:52:ae:71:8f:3a:c2:c5:2d:4a:0f:8b:5b:8f:8c:d6:84: ec:a6:cf:e1:72:70:97:1e:2f:fe:ed:6e:7b:47:c2:d8:75:97: 68:e9:b5:ac:8b:3b:28:f3:2a:1b:8d:ed:28:01:1c:2f:be:74: c2:1b:0d:ad:ba:42:ff:42:7d:00:56:f1:c7:24:d0:ee:2f:c6: 29:ad:25:61:6c:3b:ad:03:58:8a:63:16:b6:09:7c:5d:8c:70: 0d:05:ec:13:42:5d:b1:a7:76:30:c3:f0:14:f3:0c:30:13:2b: 1d:85:f7:41:d9:bf:7e:0c:60:c5:4c:41:c6:d3:22:46:a7:3a: 71:b5:a9:8f:c7:48:90:1c:cd:71:79:92:30:34:f5:c2:bd:62: 11:f4:23:bb:21:97:96:d9:c7:af:88:2d:86:52:31:51:f7:62: ca:0c:91:6d:e2:ac:ec:6f:7f:a6:96:b6:fe:b7:47:0b:7a:65: f5:36:93:48:09:84:51:73:c8:ae:0b:26:f1:e2:d8:4c:0a:09: 46:09:4c:46:13:a5:08:66:f4:97:4d:6f:46:fe:68:88:da:7c: 3a:8d:d8:1c:27:2d:9f:0c:1d:34:c1:22:95:e8:57:ff:a4:d7: a8:c5:a2:b3:17:22:80:87:62:28:a9:7e:b5:9d:07:a0:68:7c: 19:86:cf:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGGDjZrDiKuW3WXe7EB9ET4hXRrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMjAwMDBaFw0yNjA5MDIxMjA1MDBaMDMxMTAvBgNV BAMTKEYxQzAwRjQyMTdFNDY0Q0JGNTVFODA5MEYwODdFRDk3Njg1REE2RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBnsuSUPusuICnIU3rkt8V2x3u xEkMFH2o/CwLaS+SUfeB0V+TYX4AaDjAOVoP+Uw7HK1DU0zZ5qC2zZwt05LyMV59 V3sNsoZGDjPO78KUxTsx0dHlYbCDFLZawNDwHNGsYBSlEY+fUS1nPArNjeHdn3Vy D0Rrpu0nwG5NCAc7sXpxxjmoMeOvsPyK8Zf2QT8BziSaV3vhI3RbbszQM1Ujao3f n/E216iSHZZeUroGHbms43FO9ptU/4W68b1zFlYM75Byddmsbdg3n8+loHMa2Y2G vqVO+RCz8AdFsmIIdpZFLJXpzuq+CRWUYFlAf6RKjWdSjxK4gCLCxaS8NdMjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8cAPQhfkZMv1XoCQ8Iftl2hdpuMwHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzMxMzAzMzJlMzIzODJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcc4jANBgkqhkiG 9w0BAQsFAAOCAQEACDxSrnGPOsLFLUoPi1uPjNaE7KbP4XJwlx4v/u1ue0fC2HWX aOm1rIs7KPMqG43tKAEcL750whsNrbpC/0J9AFbxxyTQ7i/GKa0lYWw7rQNYimMW tgl8XYxwDQXsE0Jdsad2MMPwFPMMMBMrHYX3Qdm/fgxgxUxBxtMiRqc6cbWpj8dI kBzNcXmSMDT1wr1iEfQjuyGXltnHr4gthlIxUfdiygyRbeKs7G9/ppa2/rdHC3pl 9TaTSAmEUXPIrgsm8eLYTAoJRglMRhOlCGb0l01vRv5oiNp8Oo3YHCctnwwdNMEi lehX/6TXqMWisxcigIdiKKl+tZ0HoGh8GYbPjg== -----END CERTIFICATE-----Generated at Tue Sep 9 11:30:09 2025 by rpki-client