$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa File: 3130332e3134332e342e302f32332d3233203d3e20313339343034.roa (raw, json) Hash identifier: 2HuZv4Ja6YvRs50s/AvvVTs4SzEqz98r1HP9GJBz7UE= Subject key identifier: AE:DF:2D:57:FA:A4:28:3C:4E:D3:45:FA:05:41:11:B7:0C:4C:36:21 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 1DBFA46D260FB3F38962F75FF8932AC9D7376A66 Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa Signing time: Mon 25 Aug 2025 10:00:00 +0000 ROA not before: Mon 25 Aug 2025 09:55:00 +0000 ROA not after: Mon 24 Aug 2026 10:00:00 +0000 asID: 139404 IP address blocks: 103.143.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 03:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:bf:a4:6d:26:0f:b3:f3:89:62:f7:5f:f8:93:2a:c9:d7:37:6a:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Aug 25 09:55:00 2025 GMT Not After : Aug 24 10:00:00 2026 GMT Subject: CN=AEDF2D57FAA4283C4ED345FA054111B70C4C3621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:80:86:86:5e:fc:6d:8f:21:68:cb:4b:e2:a3: 39:e4:fc:cb:3a:d8:39:e8:8d:2a:19:3a:b2:07:13: 03:c3:2c:0d:97:ca:16:f8:81:5c:6d:7d:a3:a5:45: f5:0e:b1:1f:b3:e5:fd:ef:85:41:58:01:6f:51:3a: 79:90:84:7d:8e:6f:4a:11:ef:05:a5:41:dd:b4:e1: ad:84:ca:46:cb:3c:80:a1:ca:c2:bd:09:bb:34:4b: 79:0e:e0:4d:45:30:16:f6:b0:fe:10:ff:1a:f6:d1: 3f:59:e5:02:f1:f2:71:ec:f2:54:ce:96:cd:c4:77: 23:3d:c6:16:d4:16:2f:fa:a7:e0:6c:e2:de:35:8e: 2f:95:b9:b8:d9:49:19:77:17:89:eb:9b:c1:e6:8e: 07:36:18:89:fb:1a:ae:e3:39:fe:7a:4a:fb:f5:61: 9f:65:9f:9a:25:95:8e:3d:3d:01:67:b0:72:a4:a8: fc:45:b2:5b:87:b4:c2:f5:7e:6c:39:15:52:00:00: 15:9b:40:a8:a4:02:1f:28:62:86:d2:f9:71:7a:86: 38:49:59:7c:5c:36:7a:8e:c9:3c:86:5d:c3:b9:cb: 20:31:0e:15:d9:9e:e4:0c:06:8c:6d:d5:9d:61:e6: 3e:e3:ce:6b:1c:55:0c:32:4e:0b:7b:8c:3a:9b:66: 37:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DF:2D:57:FA:A4:28:3C:4E:D3:45:FA:05:41:11:B7:0C:4C:36:21 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.4.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:ab:76:04:70:52:24:a6:71:bf:36:a9:3d:c9:db:84:17:d5: b8:a2:2e:da:7d:21:92:fe:0c:51:d3:9e:60:8f:74:e2:7d:47: 03:f0:7f:60:18:72:c6:cd:69:24:b0:2a:bc:01:ac:f2:35:34: 92:6e:65:94:ef:9f:bf:aa:07:55:03:0b:05:b5:d9:25:99:d3: 09:66:d7:09:5f:25:8c:fe:b0:fc:97:2d:85:a9:07:96:23:14: d0:0d:af:7e:ae:14:2b:5c:bb:5b:c3:72:f1:4f:10:1a:78:9b: 46:98:a7:53:c0:0f:0a:d5:92:58:06:f7:bf:f1:96:03:86:f8: dd:df:eb:e2:3f:4a:cf:da:f6:07:6d:fc:7c:43:12:7f:15:ea: 02:b0:ff:b9:3a:93:ca:aa:e6:cb:73:3d:11:de:83:36:e1:db: 18:99:90:e8:13:99:5e:38:b1:4a:c9:57:7b:98:8d:70:fc:30: 4a:ff:c9:e2:e7:59:1d:c8:b7:80:a9:bb:a6:c1:01:1d:e6:85: f2:c3:2f:71:58:20:55:72:3a:67:08:c2:c2:a8:67:bb:05:90: 65:0f:bf:e0:f7:90:b1:f5:11:d8:24:37:39:95:72:f9:63:24: 2e:20:2f:03:b6:5b:3a:ca:27:28:14:3f:33:1d:b0:6c:c9:a9: b3:37:90:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHb+kbSYPs/OJYvdf+JMqydc3amYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNTA4MjUwOTU1MDBaFw0yNjA4MjQxMDAwMDBaMDMxMTAvBgNV BAMTKEFFREYyRDU3RkFBNDI4M0M0RUQzNDVGQTA1NDExMUI3MEM0QzM2MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmgIaGXvxtjyFoy0vioznk/Ms6 2DnojSoZOrIHEwPDLA2Xyhb4gVxtfaOlRfUOsR+z5f3vhUFYAW9ROnmQhH2Ob0oR 7wWlQd204a2EykbLPIChysK9Cbs0S3kO4E1FMBb2sP4Q/xr20T9Z5QLx8nHs8lTO ls3EdyM9xhbUFi/6p+Bs4t41ji+VubjZSRl3F4nrm8Hmjgc2GIn7Gq7jOf56Svv1 YZ9ln5ollY49PQFnsHKkqPxFsluHtML1fmw5FVIAABWbQKikAh8oYobS+XF6hjhJ WXxcNnqOyTyGXcO5yyAxDhXZnuQMBoxt1Z1h5j7jzmscVQwyTgt7jDqbZje7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrt8tV/qkKDxO00X6BUERtwxMNiEwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWePBDANBgkqhkiG 9w0BAQsFAAOCAQEAGqt2BHBSJKZxvzapPcnbhBfVuKIu2n0hkv4MUdOeYI904n1H A/B/YBhyxs1pJLAqvAGs8jU0km5llO+fv6oHVQMLBbXZJZnTCWbXCV8ljP6w/Jct hakHliMU0A2vfq4UK1y7W8Ny8U8QGnibRpinU8APCtWSWAb3v/GWA4b43d/r4j9K z9r2B238fEMSfxXqArD/uTqTyqrmy3M9Ed6DNuHbGJmQ6BOZXjixSslXe5iNcPww Sv/J4udZHci3gKm7psEBHeaF8sMvcVggVXI6ZwjCwqhnuwWQZQ+/4PeQsfUR2CQ3 OZVy+WMkLiAvA7ZbOsonKBQ/Mx2wbMmpszeQEA== -----END CERTIFICATE-----Generated at Sun Sep 7 15:32:17 2025 by rpki-client