$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa File: 3130332e3134332e342e302f32342d3234203d3e20313339343034.roa (raw, json) Hash identifier: g83O77cuv/czxZuSd3skhM6J6984QBC8vJgtKHDY3UY= Subject key identifier: C9:5A:B7:CF:4E:C5:0B:65:EB:58:AC:40:7E:A2:43:69:CB:45:8C:31 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: ADFDE29C03F85999CB793EF7AE3EAB4103A5BF Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa Signing time: Mon 25 Aug 2025 10:00:00 +0000 ROA not before: Mon 25 Aug 2025 09:55:00 +0000 ROA not after: Mon 24 Aug 2026 10:00:00 +0000 asID: 139404 IP address blocks: 103.143.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 03:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ad:fd:e2:9c:03:f8:59:99:cb:79:3e:f7:ae:3e:ab:41:03:a5:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Aug 25 09:55:00 2025 GMT Not After : Aug 24 10:00:00 2026 GMT Subject: CN=C95AB7CF4EC50B65EB58AC407EA24369CB458C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:09:3b:ab:49:fb:26:01:9c:af:09:54:95: a2:bd:23:19:29:1d:0c:98:29:65:40:e1:38:9a:78: ee:1d:9d:35:5e:52:58:62:21:e0:f0:ee:69:3a:a5: 2d:e1:f7:bf:db:73:7b:6e:10:13:38:4c:dd:bd:29: c7:12:24:df:7e:7c:89:a5:75:13:55:a4:e8:fe:47: ca:54:63:c4:79:bb:c9:89:f3:0b:a2:e4:76:ed:27: 63:d6:95:29:20:80:11:f3:38:3f:25:07:67:31:ee: 72:31:71:32:1f:26:d6:24:33:cd:2a:c2:35:d6:b6: 2e:ce:9e:a2:54:86:bd:45:00:46:36:b3:4f:7f:9a: 3e:22:a0:bb:41:72:b0:fe:78:33:65:a3:ed:d4:80: 94:12:43:b2:c3:c9:2b:36:42:fa:6c:31:88:39:04: c3:40:30:39:ca:2b:41:26:cb:6e:1d:15:32:e5:d6: 3a:09:85:86:99:ff:e7:91:5a:68:ef:a4:61:23:f9: ae:08:71:61:41:12:b7:78:30:ad:48:7e:c8:99:c8: 88:8c:ac:bf:80:8c:95:47:6a:83:40:19:6b:cc:78: 53:73:13:7d:fb:5a:42:86:ec:93:f9:77:20:1a:85: 5b:9b:dd:ba:47:4b:3d:fc:f2:91:f9:f7:3a:e3:36: ff:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5A:B7:CF:4E:C5:0B:65:EB:58:AC:40:7E:A2:43:69:CB:45:8C:31 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.4.0/24 Signature Algorithm: sha256WithRSAEncryption 29:12:52:3a:1a:c5:40:d1:8f:cb:ce:d9:dd:85:c8:7c:03:bc: e8:29:9a:3a:52:5a:53:19:43:04:aa:2b:1b:a8:a7:ac:63:fd: 29:dc:0c:47:fc:b7:06:6d:8f:ee:3e:43:ad:7f:68:68:7f:28: 69:1c:54:d2:e1:b4:fe:02:c0:06:9a:c4:ef:e9:fc:75:2f:b4: c2:2a:a6:7a:8a:9c:4e:67:5d:58:bf:ca:b7:5a:bf:f6:90:59: 6d:db:33:f0:ea:4e:d3:e3:1c:53:c2:d7:2b:d0:46:ef:68:64: 35:e9:cd:34:14:e5:79:99:bf:76:99:6b:37:13:0d:a1:68:ec: d0:f9:0f:27:10:0a:cf:15:1a:56:f4:3c:da:43:6d:08:cc:89: fb:5b:6c:1b:91:82:70:d3:94:a0:2c:d4:4a:67:e3:ac:c7:4f: bc:66:1b:a9:1f:7f:c3:e1:67:d9:ac:2f:57:6f:23:12:49:c3: f4:26:58:1b:90:6e:ed:1a:a3:ab:6a:c9:ff:53:2d:dc:29:34: 77:1f:1e:89:80:88:64:e7:f8:f9:7b:e9:d5:82:11:d5:d5:cb: 02:b8:35:bb:f0:69:dd:bc:98:fc:cb:e4:1e:78:31:c8:13:cd: ae:22:9d:e1:1b:b3:e6:e1:da:05:0e:e5:79:58:ed:f9:67:da: 23:2f:a5:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAK394pwD+FmZy3k+964+q0EDpb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNTA4MjUwOTU1MDBaFw0yNjA4MjQxMDAwMDBaMDMxMTAvBgNV BAMTKEM5NUFCN0NGNEVDNTBCNjVFQjU4QUM0MDdFQTI0MzY5Q0I0NThDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2Qk7q0n7JgGcrwlUlaK9Ixkp HQyYKWVA4TiaeO4dnTVeUlhiIeDw7mk6pS3h97/bc3tuEBM4TN29KccSJN9+fIml dRNVpOj+R8pUY8R5u8mJ8wui5HbtJ2PWlSkggBHzOD8lB2cx7nIxcTIfJtYkM80q wjXWti7OnqJUhr1FAEY2s09/mj4ioLtBcrD+eDNlo+3UgJQSQ7LDySs2QvpsMYg5 BMNAMDnKK0Emy24dFTLl1joJhYaZ/+eRWmjvpGEj+a4IcWFBErd4MK1IfsiZyIiM rL+AjJVHaoNAGWvMeFNzE337WkKG7JP5dyAahVub3bpHSz388pH59zrjNv8tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyVq3z07FC2XrWKxAfqJDactFjDEwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePBDANBgkqhkiG 9w0BAQsFAAOCAQEAKRJSOhrFQNGPy87Z3YXIfAO86CmaOlJaUxlDBKorG6inrGP9 KdwMR/y3Bm2P7j5DrX9oaH8oaRxU0uG0/gLABprE7+n8dS+0wiqmeoqcTmddWL/K t1q/9pBZbdsz8OpO0+McU8LXK9BG72hkNenNNBTleZm/dplrNxMNoWjs0PkPJxAK zxUaVvQ82kNtCMyJ+1tsG5GCcNOUoCzUSmfjrMdPvGYbqR9/w+Fn2awvV28jEknD 9CZYG5Bu7Rqjq2rJ/1Mt3Ck0dx8eiYCIZOf4+Xvp1YIR1dXLArg1u/Bp3byY/Mvk HngxyBPNriKd4Ruz5uHaBQ7leVjt+WfaIy+l+g== -----END CERTIFICATE-----Generated at Sun Sep 7 15:37:20 2025 by rpki-client