$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa File: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (raw, json) Hash identifier: WtVfPZfCZ+ZExAyfqDCdWvXE48LKmIllvsd8uUvXohQ= Subject key identifier: D1:7C:F4:B6:1D:06:1A:D5:5C:86:FC:EC:FF:C6:1E:C5:03:1F:00:12 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 58511299AD9400A993679C9C794571FC1260A819 Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa Signing time: Thu 04 Sep 2025 04:01:07 +0000 ROA not before: Thu 04 Sep 2025 03:56:07 +0000 ROA not after: Thu 03 Sep 2026 04:01:07 +0000 asID: 151556 IP address blocks: 103.250.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 02:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:51:12:99:ad:94:00:a9:93:67:9c:9c:79:45:71:fc:12:60:a8:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Sep 4 03:56:07 2025 GMT Not After : Sep 3 04:01:07 2026 GMT Subject: CN=D17CF4B61D061AD55C86FCECFFC61EC5031F0012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:e8:ec:91:96:7d:75:c3:04:0d:75:32:96: 54:0d:de:39:4c:b0:7d:a5:16:3e:cd:44:ee:6a:ea: b5:3b:4c:c4:9a:93:d7:ab:c0:51:d6:f8:f5:c3:9c: d8:cf:2f:54:22:5d:f7:2c:f9:8e:7b:a9:10:85:d6: 6f:ff:c0:b6:5a:89:1d:bc:25:a3:8b:13:f8:b4:aa: c4:5b:cd:87:22:66:b3:ff:65:2f:b7:af:92:99:10: 95:19:c0:ca:17:19:ff:68:74:34:62:17:81:1a:88: a9:a2:3e:17:d0:6f:71:48:b6:e4:26:8c:ef:e7:8b: 96:92:ad:8e:9b:01:64:d9:d4:21:ab:7c:5c:11:2b: c1:09:63:9c:b8:d3:1a:aa:bb:23:f8:60:56:b3:ae: 76:62:7f:ee:25:ee:09:03:a5:59:15:ee:39:fb:35: 58:94:12:98:b9:aa:a5:93:a2:b0:8f:2d:e8:69:65: ef:9b:45:8e:ed:70:0d:42:25:f0:24:21:f4:a9:88: 69:3f:f1:76:30:a9:ed:76:07:c0:4a:f7:4f:e7:2a: ea:f5:2c:db:ca:8f:5b:06:a4:a0:e7:df:db:7c:95: 47:cf:2d:58:e5:d3:7c:98:d8:91:47:67:7f:bf:a7: af:b5:56:7a:af:bd:d7:61:c7:a3:18:4e:35:4f:9a: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7C:F4:B6:1D:06:1A:D5:5C:86:FC:EC:FF:C6:1E:C5:03:1F:00:12 X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption a7:2b:48:08:84:8c:27:0b:64:49:6d:37:db:39:10:1a:e6:4f: 40:e4:52:04:7d:82:11:e4:4a:62:bf:e1:f2:61:39:8b:be:ed: 96:66:03:5b:51:65:00:c4:60:8a:ac:ff:cd:46:09:38:d2:c7: 2e:72:39:a8:9a:b4:8d:e1:9f:4c:80:1b:ef:2d:6a:e6:35:ad: 50:06:e4:91:af:97:ca:c3:18:ff:f4:fd:7a:d4:5a:51:a7:54: 5e:68:bc:dc:ee:cd:29:e7:b6:a8:db:30:b5:4f:1c:c7:5c:31: 6b:ad:86:c7:09:cb:6c:7c:32:d6:ac:9d:9b:32:46:dc:e0:d8: 78:6e:5c:38:4d:54:16:d6:be:cd:07:05:b2:09:f5:e4:d9:c3: f9:b2:3c:21:5e:76:f3:8d:14:c1:2a:d4:d9:a1:47:a2:13:7e: 75:96:17:2b:45:1a:d7:7d:9c:d0:7a:19:28:b3:27:1f:86:76: 51:c7:68:91:20:60:59:fd:be:a4:45:f2:1d:b7:5e:64:ba:b2: 23:f8:6f:d8:e4:66:27:21:3d:21:09:ed:27:af:5f:89:a1:d5: 32:c3:6a:05:d2:fd:f4:64:e6:ed:b7:ba:02:4b:7f:ec:f7:53: 4e:7e:b6:bf:33:58:8b:c8:83:61:40:02:b5:51:0d:80:71:05: 93:89:fa:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWFESma2UAKmTZ5yceUVx/BJgqBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNTA5MDQwMzU2MDdaFw0yNjA5MDMwNDAxMDdaMDMxMTAvBgNV BAMTKEQxN0NGNEI2MUQwNjFBRDU1Qzg2RkNFQ0ZGQzYxRUM1MDMxRjAwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVOOjskZZ9dcMEDXUyllQN3jlM sH2lFj7NRO5q6rU7TMSak9erwFHW+PXDnNjPL1QiXfcs+Y57qRCF1m//wLZaiR28 JaOLE/i0qsRbzYciZrP/ZS+3r5KZEJUZwMoXGf9odDRiF4EaiKmiPhfQb3FItuQm jO/ni5aSrY6bAWTZ1CGrfFwRK8EJY5y40xqquyP4YFazrnZif+4l7gkDpVkV7jn7 NViUEpi5qqWTorCPLehpZe+bRY7tcA1CJfAkIfSpiGk/8XYwqe12B8BK90/nKur1 LNvKj1sGpKDn39t8lUfPLVjl03yY2JFHZ3+/p6+1Vnqvvddhx6MYTjVPmqrHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0Xz0th0GGtVchvzs/8YexQMfABIwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMWQ5YWJjLTQ5ODctNGRiYy05 NzZkLTNmMzJiMjkxNzE1ZC8wLzMxMzAzMzJlMzIzNTMwMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+oEwDQYJ KoZIhvcNAQELBQADggEBAKcrSAiEjCcLZEltN9s5EBrmT0DkUgR9ghHkSmK/4fJh OYu+7ZZmA1tRZQDEYIqs/81GCTjSxy5yOaiatI3hn0yAG+8tauY1rVAG5JGvl8rD GP/0/XrUWlGnVF5ovNzuzSnntqjbMLVPHMdcMWuthscJy2x8MtasnZsyRtzg2Hhu XDhNVBbWvs0HBbIJ9eTZw/myPCFedvONFMEq1NmhR6ITfnWWFytFGtd9nNB6GSiz Jx+GdlHHaJEgYFn9vqRF8h23XmS6siP4b9jkZichPSEJ7SevX4mh1TLDagXS/fRk 5u23ugJLf+z3U05+tr8zWIvIg2FAArVRDYBxBZOJ+oU= -----END CERTIFICATE-----Generated at Mon Sep 8 10:44:17 2025 by rpki-client