$ rpki-client -vvf repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa File: 3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa (raw, json) Hash identifier: Q9gcXsnmhgdIFiAoT+4PlNJP+vGRpaSMes16ABWpf6E= Subject key identifier: 91:C2:EC:AD:55:57:26:0A:5B:2A:5B:9E:19:63:F2:84:88:2D:BC:C9 Certificate issuer: /CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA Certificate serial: 695107281DC2A3D7432903473992EDAC2D0E2C55 Authority key identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa Signing time: Thu 28 Aug 2025 01:34:15 +0000 ROA not before: Thu 28 Aug 2025 01:29:15 +0000 ROA not after: Thu 27 Aug 2026 01:34:15 +0000 asID: 136841 IP address blocks: 103.41.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.crl rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 06:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:51:07:28:1d:c2:a3:d7:43:29:03:47:39:92:ed:ac:2d:0e:2c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA Validity Not Before: Aug 28 01:29:15 2025 GMT Not After : Aug 27 01:34:15 2026 GMT Subject: CN=91C2ECAD5557260A5B2A5B9E1963F284882DBCC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:ec:f3:af:da:5a:3f:04:a4:01:db:a1:c5: d6:e7:3d:28:d8:4b:12:63:72:22:74:8b:3d:7d:23: d8:f9:ef:7d:8d:0d:29:a5:2f:31:d5:9a:c0:6c:64: 9d:19:26:b0:de:3d:c3:ab:b8:a2:98:f1:81:63:05: 87:f4:c6:d4:af:cd:83:71:ff:a3:3f:4a:44:1b:5e: f1:67:ae:8c:05:af:30:48:3a:81:71:d8:b9:a4:97: 8d:ef:e1:f5:fb:a5:57:42:84:56:4d:42:23:5f:92: 96:dc:08:2b:fa:73:6e:99:c5:50:1c:5a:f3:ad:d2: f1:f2:3e:b9:7a:34:20:e0:af:7c:93:4d:11:1e:4b: 29:2d:99:24:07:58:2a:d5:1d:69:f2:0c:02:0e:45: 75:ad:90:43:f5:a0:96:b1:9f:1e:d8:b3:0a:c9:87: a9:a2:1b:02:62:06:1b:7b:30:45:4a:b3:71:bc:58: 43:af:57:b0:38:7f:92:3d:47:31:5b:58:86:90:af: 71:34:f9:58:a9:1e:21:9b:3c:83:62:b9:1d:27:d7: bf:63:a7:c3:9a:ec:b9:55:9d:12:0a:15:c0:69:37: 16:33:2b:ca:21:33:98:c7:29:49:41:11:62:94:1a: 6c:03:bb:fa:15:39:90:7a:7a:55:c4:ad:5f:d3:0b: cd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C2:EC:AD:55:57:26:0A:5B:2A:5B:9E:19:63:F2:84:88:2D:BC:C9 X509v3 Authority Key Identifier: keyid:D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.248.0/23 Signature Algorithm: sha256WithRSAEncryption 37:59:23:a5:cb:88:1e:7c:7e:5d:ee:a0:a8:fe:02:86:a1:39: f7:48:7d:4f:96:ca:a3:ae:b6:41:92:c1:07:af:a5:d9:18:ab: a1:e8:e3:bd:82:f7:9d:ce:27:f5:55:ae:84:3e:0c:23:63:c9: 71:52:44:0f:d5:b7:f3:49:77:38:0e:ee:29:3e:ac:f0:b9:32: 98:62:e1:70:d2:c5:85:88:e2:04:37:fd:05:e3:4e:fb:41:14: ee:b6:15:5f:67:52:0c:3d:a8:87:da:b7:33:17:37:e8:4a:a0: 32:bc:60:e9:4e:fc:12:ef:fe:c1:5b:17:6a:7b:e1:bf:d2:59: 6d:1a:b4:a1:1e:52:05:dd:a7:e2:51:4b:0f:88:e1:e5:d5:31: 60:16:c3:a0:a1:0b:7d:82:40:6e:2e:84:bb:89:dc:5b:5e:ac: 07:ef:21:99:92:cd:df:0d:13:be:07:45:c6:fd:07:d7:2a:80: 72:44:00:42:67:bf:b8:7d:70:82:83:bc:08:4e:db:c9:50:97: 8c:99:b4:dd:e8:da:6e:90:c3:06:86:c1:d5:67:32:66:4a:40: 8b:e4:08:b7:a7:6f:03:4e:88:75:cd:09:f1:67:92:73:9e:b2: 7b:a3:99:b2:bf:9b:42:a9:0a:93:7c:41:a2:95:c4:81:71:4c: 51:65:0c:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaVEHKB3Co9dDKQNHOZLtrC0OLFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ2OTkzN0JEMDMwNTc1QTYzODlCMUZGNENEQjE4NUVG QkM0QjFGQTAeFw0yNTA4MjgwMTI5MTVaFw0yNjA4MjcwMTM0MTVaMDMxMTAvBgNV BAMTKDkxQzJFQ0FENTU1NzI2MEE1QjJBNUI5RTE5NjNGMjg0ODgyREJDQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/w+zzr9paPwSkAduhxdbnPSjY SxJjciJ0iz19I9j5732NDSmlLzHVmsBsZJ0ZJrDePcOruKKY8YFjBYf0xtSvzYNx /6M/SkQbXvFnrowFrzBIOoFx2Lmkl43v4fX7pVdChFZNQiNfkpbcCCv6c26ZxVAc WvOt0vHyPrl6NCDgr3yTTREeSyktmSQHWCrVHWnyDAIORXWtkEP1oJaxnx7YswrJ h6miGwJiBht7MEVKs3G8WEOvV7A4f5I9RzFbWIaQr3E0+VipHiGbPINiuR0n179j p8Oa7LlVnRIKFcBpNxYzK8ohM5jHKUlBEWKUGmwDu/oVOZB6elXErV/TC83VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkcLsrVVXJgpbKlueGWPyhIgtvMkwHwYDVR0j BBgwFoAU1GmTe9AwV1pjibH/TNsYXvvEsfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NzUyNzdlOC03ZDBmLTQxODQtOWMyOC1hNjYzNWVmZWYyOWMvMC9ENDY5OTM3QkQw MzA1NzVBNjM4OUIxRkY0Q0RCMTg1RUZCQzRCMUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ2OTkzN0JEMDMwNTc1QTYzODlCMUZGNENEQjE4NUVGQkM0 QjFGQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3NTI3N2U4LTdkMGYtNDE4NC05 YzI4LWE2NjM1ZWZlZjI5Yy8wLzMxMzAzMzJlMzQzMTJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZyn4MA0GCSqG SIb3DQEBCwUAA4IBAQA3WSOly4gefH5d7qCo/gKGoTn3SH1PlsqjrrZBksEHr6XZ GKuh6OO9gvedzif1Va6EPgwjY8lxUkQP1bfzSXc4Du4pPqzwuTKYYuFw0sWFiOIE N/0F4077QRTuthVfZ1IMPaiH2rczFzfoSqAyvGDpTvwS7/7BWxdqe+G/0lltGrSh HlIF3afiUUsPiOHl1TFgFsOgoQt9gkBuLoS7idxbXqwH7yGZks3fDRO+B0XG/QfX KoByRABCZ7+4fXCCg7wITtvJUJeMmbTd6NpukMMGhsHVZzJmSkCL5Ai3p28DToh1 zQnxZ5JznrJ7o5myv5tCqQqTfEGilcSBcUxRZQyi -----END CERTIFICATE-----Generated at Sun Sep 7 15:43:10 2025 by rpki-client