$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e352e302f32342d3234203d3e20313339343034.roa File: 3130332e3134332e352e302f32342d3234203d3e20313339343034.roa (raw, json) Hash identifier: q2zoM+wvljCJma+BNVrs4roku1rpn2bEEOd2FS2g3aQ= Subject key identifier: A2:9E:83:7C:90:9D:4F:77:7D:5D:E3:3E:EE:99:A8:44:3A:56:6E:33 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 2458E4BA9AD2142CCBCF4262E66BAE1DDEE5155C Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e352e302f32342d3234203d3e20313339343034.roa Signing time: Mon 25 Aug 2025 10:00:00 +0000 ROA not before: Mon 25 Aug 2025 09:55:00 +0000 ROA not after: Mon 24 Aug 2026 10:00:00 +0000 asID: 139404 IP address blocks: 103.143.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 03:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:58:e4:ba:9a:d2:14:2c:cb:cf:42:62:e6:6b:ae:1d:de:e5:15:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Aug 25 09:55:00 2025 GMT Not After : Aug 24 10:00:00 2026 GMT Subject: CN=A29E837C909D4F777D5DE33EEE99A8443A566E33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bb:3f:67:b3:53:4b:17:ad:74:8e:c0:22:a4: 63:fe:93:74:ec:53:7a:32:c7:ad:7a:3b:2d:bd:4d: 5c:64:f0:88:48:0a:96:e4:1a:c8:01:64:d4:ce:a7: 2c:a4:e3:4f:d2:83:81:04:e7:9f:a4:cc:87:68:41: 27:a0:cf:73:81:a3:10:d1:ac:fc:e2:ed:e2:ee:88: 4b:97:aa:07:55:3a:19:51:c6:a5:02:9b:8f:bf:c9: 8b:91:ef:1b:74:ba:a9:07:e2:9b:e6:d3:15:86:91: 95:15:a0:84:94:36:55:9a:e6:3a:2b:b0:2c:93:34: 0c:11:ac:54:88:12:0f:4a:1c:0a:6b:54:c7:dc:d3: e5:04:51:d0:2d:56:d1:31:e7:c6:53:61:41:2b:c2: 0b:e5:3b:4d:25:4f:76:a2:71:bc:70:aa:79:c2:3b: a7:4d:42:85:02:5c:53:d0:c0:bb:e7:4b:74:f8:f2: e2:91:7f:0c:77:3a:f6:80:85:34:ea:84:0f:be:17: 6f:33:4e:af:6f:c9:b7:61:3c:0f:92:bc:58:58:db: 2e:d7:cb:2c:b7:b7:2a:99:de:63:3e:18:b3:ee:13: 67:ff:23:c8:c8:97:92:91:65:c2:2d:85:51:35:18: ef:be:6b:69:39:14:ab:b7:d7:83:71:c1:1b:89:ed: 43:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9E:83:7C:90:9D:4F:77:7D:5D:E3:3E:EE:99:A8:44:3A:56:6E:33 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e352e302f32342d3234203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.5.0/24 Signature Algorithm: sha256WithRSAEncryption 87:0c:b3:1e:b4:51:bb:74:63:13:a7:f2:87:60:6f:b5:0f:cb: a4:25:d4:e6:e4:a8:86:f8:3f:78:bf:66:ab:be:7c:e6:ac:fe: 52:5e:a1:b6:3c:aa:a2:9f:ec:5b:a8:89:b4:86:e8:21:51:0c: 10:43:c2:7e:13:cb:53:e7:b9:de:29:2f:92:02:d5:be:34:72: 77:c0:56:1f:9a:98:60:52:55:31:1c:c9:54:93:a9:cf:d2:c2: 6e:3d:26:1e:49:ee:0a:75:c7:bd:ba:7d:4e:c9:8c:9d:b7:e8: 11:b5:c5:6a:31:c4:70:28:7e:90:fa:ee:96:ae:6d:e3:7b:43: 0e:0c:1b:dd:c7:f8:b4:89:73:a1:1e:b8:f5:5e:5d:46:e5:5e: a8:1d:3a:9f:f0:a2:72:af:1b:13:59:41:bd:4d:38:d6:fb:18: 46:70:3b:06:46:a4:07:96:e7:2f:58:c7:d5:17:e6:85:d9:71: 3f:ab:24:a7:03:4a:2b:d3:be:ed:db:88:1d:29:2d:bc:7f:35: d2:5f:dd:93:48:2d:78:06:07:25:d6:2f:1b:05:34:ee:65:0a: e4:b9:dc:58:68:fc:ae:59:41:33:67:58:d2:0d:a2:25:88:a1: 72:0f:b5:41:25:55:6c:e9:fe:f0:0d:5c:9c:c9:fd:95:63:b7: da:f2:d3:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJFjkuprSFCzLz0Ji5muuHd7lFVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNTA4MjUwOTU1MDBaFw0yNjA4MjQxMDAwMDBaMDMxMTAvBgNV BAMTKEEyOUU4MzdDOTA5RDRGNzc3RDVERTMzRUVFOTlBODQ0M0E1NjZFMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmuz9ns1NLF610jsAipGP+k3Ts U3oyx616Oy29TVxk8IhICpbkGsgBZNTOpyyk40/Sg4EE55+kzIdoQSegz3OBoxDR rPzi7eLuiEuXqgdVOhlRxqUCm4+/yYuR7xt0uqkH4pvm0xWGkZUVoISUNlWa5jor sCyTNAwRrFSIEg9KHAprVMfc0+UEUdAtVtEx58ZTYUErwgvlO00lT3aicbxwqnnC O6dNQoUCXFPQwLvnS3T48uKRfwx3OvaAhTTqhA++F28zTq9vybdhPA+SvFhY2y7X yyy3tyqZ3mM+GLPuE2f/I8jIl5KRZcIthVE1GO++a2k5FKu314NxwRuJ7UMXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUop6DfJCdT3d9XeM+7pmoRDpWbjMwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePBTANBgkqhkiG 9w0BAQsFAAOCAQEAhwyzHrRRu3RjE6fyh2BvtQ/LpCXU5uSohvg/eL9mq7585qz+ Ul6htjyqop/sW6iJtIboIVEMEEPCfhPLU+e53ikvkgLVvjRyd8BWH5qYYFJVMRzJ VJOpz9LCbj0mHknuCnXHvbp9TsmMnbfoEbXFajHEcCh+kPrulq5t43tDDgwb3cf4 tIlzoR649V5dRuVeqB06n/Cicq8bE1lBvU041vsYRnA7BkakB5bnL1jH1Rfmhdlx P6skpwNKK9O+7duIHSktvH810l/dk0gteAYHJdYvGwU07mUK5LncWGj8rllBM2dY 0g2iJYihcg+1QSVVbOn+8A1cnMn9lWO32vLTGQ== -----END CERTIFICATE-----Generated at Sun Sep 7 15:37:22 2025 by rpki-client