$ rpki-client -vvf repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/3130332e3132322e3230322e302f32342d3234203d3e20313338303733.roa File: 3130332e3132322e3230322e302f32342d3234203d3e20313338303733.roa (raw, json) Hash identifier: aT4sPsuUHGCwovR739Li5BdnPvrvVcM3Uvv4Wg0jO00= Subject key identifier: 85:1B:D8:A5:C0:F1:27:48:B2:36:A1:82:7C:27:9F:73:13:85:AD:21 Certificate issuer: /CN=92602F1E83161157794444495C715B352240982F Certificate serial: 0DEDF470D1C420C9A4921997843D74D94CC46548 Authority key identifier: 92:60:2F:1E:83:16:11:57:79:44:44:49:5C:71:5B:35:22:40:98:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92602F1E83161157794444495C715B352240982F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/3130332e3132322e3230322e302f32342d3234203d3e20313338303733.roa Signing time: Wed 03 Sep 2025 09:00:01 +0000 ROA not before: Wed 03 Sep 2025 08:55:01 +0000 ROA not after: Wed 02 Sep 2026 09:00:01 +0000 asID: 138073 IP address blocks: 103.122.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/92602F1E83161157794444495C715B352240982F.crl rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/92602F1E83161157794444495C715B352240982F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92602F1E83161157794444495C715B352240982F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 22:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ed:f4:70:d1:c4:20:c9:a4:92:19:97:84:3d:74:d9:4c:c4:65:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92602F1E83161157794444495C715B352240982F Validity Not Before: Sep 3 08:55:01 2025 GMT Not After : Sep 2 09:00:01 2026 GMT Subject: CN=851BD8A5C0F12748B236A1827C279F731385AD21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5b:bf:76:f7:3d:3c:6e:59:ac:8f:b5:40:0c: 0f:f1:e6:c9:55:5c:23:d8:c1:64:0f:43:ee:27:73: e7:bc:e9:a0:23:10:02:f7:9d:cf:b5:21:ff:66:f6: d3:68:21:cf:2d:18:7a:cd:c5:be:79:6e:fb:f3:e7: 3b:31:ab:d2:6f:d1:ff:55:f4:84:4d:be:34:ec:db: 40:30:6b:e2:27:75:be:39:44:f6:da:7f:b1:dc:7a: 4e:ec:67:b9:5b:0c:b2:db:dc:f7:4c:4a:dd:c3:20: 9f:12:9d:f6:5e:0b:7b:b2:d9:78:34:b6:d3:f4:5c: 86:e1:ca:30:48:4d:d0:15:e8:8c:68:c6:b7:e6:1d: 52:ab:1f:20:76:3a:9f:f1:e6:49:ac:7b:35:fd:ba: 55:38:38:56:44:41:9b:d0:0c:1b:aa:0f:26:5c:59: 39:3f:96:55:a4:62:e6:70:a0:70:9b:d7:75:f0:b5: ba:39:8d:42:62:23:23:f9:32:22:be:1f:c3:8f:9d: c4:c8:47:6c:f0:d2:54:52:64:24:ba:f5:b4:ed:9d: 67:fc:8a:9c:8e:6e:c5:1a:da:ab:b1:6a:d2:5d:af: d7:63:7e:cf:92:09:8a:f4:9f:ab:3c:a8:b0:01:53: 74:94:f4:40:8a:3f:6e:1e:9f:bb:db:75:fc:8e:e9: bf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1B:D8:A5:C0:F1:27:48:B2:36:A1:82:7C:27:9F:73:13:85:AD:21 X509v3 Authority Key Identifier: keyid:92:60:2F:1E:83:16:11:57:79:44:44:49:5C:71:5B:35:22:40:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/92602F1E83161157794444495C715B352240982F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92602F1E83161157794444495C715B352240982F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/3130332e3132322e3230322e302f32342d3234203d3e20313338303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.202.0/24 Signature Algorithm: sha256WithRSAEncryption bd:af:15:48:41:02:10:fd:d4:90:a7:d3:c5:ad:99:f0:6a:3c: 2c:a4:c0:21:16:a0:5b:bb:14:86:14:76:52:02:7a:1f:19:a0: e3:6e:6b:32:6b:15:49:99:cb:28:4d:4f:93:d0:64:f9:83:1f: 71:bb:b7:2a:d5:5b:4f:53:a8:32:98:64:08:a6:46:3e:2c:a8: 8f:5a:fc:0c:cb:e6:d6:d4:ba:86:49:f1:a6:40:a3:34:cf:10: 1f:04:96:97:47:08:9e:41:40:87:26:ad:5c:cb:c2:67:84:b0: c7:f9:49:00:5a:44:cb:63:94:af:c1:e3:2e:c1:61:c1:22:37: cd:07:11:94:7a:7c:fe:60:27:5d:19:88:30:30:ba:a3:ec:22: 2a:48:d0:ab:b8:17:0c:1a:5e:9c:db:3d:41:bc:4b:54:eb:ae: f9:34:c7:57:c7:73:70:52:57:ab:11:7a:72:6e:93:51:c2:d9: 3e:dc:c8:29:f2:fb:87:18:b7:a7:3f:86:07:5d:f0:fc:0e:b8: ce:a5:2c:aa:8d:c1:33:ee:a9:89:e2:4b:31:2b:3d:03:6c:10: 7b:2e:8f:09:1f:f0:c1:79:9e:9e:5c:c8:dc:5f:57:99:e9:fa: 95:05:84:a6:1a:5d:10:3e:a4:96:a7:2c:b5:fa:67:e5:bb:7e: 07:4c:8b:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDe30cNHEIMmkkhmXhD102UzEZUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI2MDJGMUU4MzE2MTE1Nzc5NDQ0NDQ5NUM3MTVCMzUy MjQwOTgyRjAeFw0yNTA5MDMwODU1MDFaFw0yNjA5MDIwOTAwMDFaMDMxMTAvBgNV BAMTKDg1MUJEOEE1QzBGMTI3NDhCMjM2QTE4MjdDMjc5RjczMTM4NUFEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgW7929z08blmsj7VADA/x5slV XCPYwWQPQ+4nc+e86aAjEAL3nc+1If9m9tNoIc8tGHrNxb55bvvz5zsxq9Jv0f9V 9IRNvjTs20Awa+Indb45RPbaf7Hcek7sZ7lbDLLb3PdMSt3DIJ8SnfZeC3uy2Xg0 ttP0XIbhyjBITdAV6IxoxrfmHVKrHyB2Op/x5kmsezX9ulU4OFZEQZvQDBuqDyZc WTk/llWkYuZwoHCb13Xwtbo5jUJiIyP5MiK+H8OPncTIR2zw0lRSZCS69bTtnWf8 ipyObsUa2quxatJdr9djfs+SCYr0n6s8qLABU3SU9ECKP24en7vbdfyO6b+7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhRvYpcDxJ0iyNqGCfCefcxOFrSEwHwYDVR0j BBgwFoAUkmAvHoMWEVd5RERJXHFbNSJAmC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDRmNjNlNC02ZmIzLTRiMDMtYjIxMC1iNTY4NmNkNWIzOTcvMC85MjYwMkYxRTgz MTYxMTU3Nzk0NDQ0NDk1QzcxNUIzNTIyNDA5ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTI2MDJGMUU4MzE2MTE1Nzc5NDQ0NDQ5NUM3MTVCMzUyMjQw OTgyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkNGY2M2U0LTZmYjMtNGIwMy1i MjEwLWI1Njg2Y2Q1YjM5Ny8wLzMxMzAzMzJlMzEzMjMyMmUzMjMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnesowDQYJ KoZIhvcNAQELBQADggEBAL2vFUhBAhD91JCn08WtmfBqPCykwCEWoFu7FIYUdlIC eh8ZoONuazJrFUmZyyhNT5PQZPmDH3G7tyrVW09TqDKYZAimRj4sqI9a/AzL5tbU uoZJ8aZAozTPEB8ElpdHCJ5BQIcmrVzLwmeEsMf5SQBaRMtjlK/B4y7BYcEiN80H EZR6fP5gJ10ZiDAwuqPsIipI0Ku4FwwaXpzbPUG8S1Trrvk0x1fHc3BSV6sRenJu k1HC2T7cyCny+4cYt6c/hgdd8PwOuM6lLKqNwTPuqYniSzErPQNsEHsujwkf8MF5 np5cyNxfV5np+pUFhKYaXRA+pJanLLX6Z+W7fgdMixk= -----END CERTIFICATE-----Generated at Sun Sep 7 15:43:53 2025 by rpki-client