$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa File: 3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa (raw, json) Hash identifier: 03BXaxAzi9VaO+DQQ6QWjZsMJ2gPh3wF9aEYxb1vAPc= Subject key identifier: AE:B7:2F:B1:EE:8C:E3:DF:79:78:69:07:F3:C8:E2:35:AB:B4:6B:4A Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Certificate serial: 43849923EE1D230CC60407F11ECA1F3784D17883 Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa Signing time: Thu 04 Sep 2025 10:00:00 +0000 ROA not before: Thu 04 Sep 2025 09:55:00 +0000 ROA not after: Thu 03 Sep 2026 10:00:00 +0000 asID: 151519 IP address blocks: 103.239.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 12:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:84:99:23:ee:1d:23:0c:c6:04:07:f1:1e:ca:1f:37:84:d1:78:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Validity Not Before: Sep 4 09:55:00 2025 GMT Not After : Sep 3 10:00:00 2026 GMT Subject: CN=AEB72FB1EE8CE3DF79786907F3C8E235ABB46B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:da:a9:39:65:2d:c8:4d:e2:d2:32:38:c5:43: df:32:17:f2:db:e3:e8:7f:a4:1a:eb:10:cb:14:1e: 37:39:2f:3b:e2:bc:d0:8d:2e:7d:c4:a6:12:0e:ae: 4d:7c:b3:e0:1a:b2:a3:1c:c5:ea:32:d6:83:c4:30: d0:b1:11:9e:c5:1e:d5:be:08:ef:bf:8c:5d:98:a9: e4:8a:df:92:81:f0:88:c6:c8:12:bc:f4:2c:eb:3f: d9:5b:cf:f5:44:a7:49:06:24:09:9e:72:23:e3:3d: 48:23:2f:48:68:f7:a1:da:83:43:7b:e6:74:b5:de: 54:fd:4f:7f:95:c2:6d:a7:a0:a5:f1:23:d5:41:22: 01:d5:bd:4c:16:2c:4f:81:15:28:9b:e6:f5:26:2b: 48:1f:31:4e:65:c6:89:ab:3a:a9:af:1c:87:d9:e0: 64:1a:9d:bf:d8:c6:b8:f7:40:37:e5:45:0d:61:da: 31:81:aa:a4:04:0a:54:b0:2f:dd:da:b8:ef:7d:4f: 52:46:8f:54:be:11:cd:97:87:65:fd:95:d0:e1:e8: 50:dd:df:61:b7:97:e8:d4:24:6f:0c:a6:51:4e:14: e8:be:7c:86:f5:54:34:4e:67:97:b5:93:25:58:0c: 45:1a:18:27:5b:b9:d7:d1:19:92:23:10:82:af:95: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B7:2F:B1:EE:8C:E3:DF:79:78:69:07:F3:C8:E2:35:AB:B4:6B:4A X509v3 Authority Key Identifier: keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.21.0/24 Signature Algorithm: sha256WithRSAEncryption 76:75:5a:48:a3:f3:c6:6a:08:f2:b0:31:75:22:d6:43:48:d5: 36:cd:34:ae:1d:b7:03:cb:74:d2:2e:64:15:24:79:30:a7:05: 62:e9:7b:38:22:9d:08:d7:d9:88:e2:f8:66:82:74:4a:95:0e: e7:f5:89:14:b2:fe:ad:3b:c1:e6:4a:29:d0:5f:9d:eb:5d:06: 33:56:68:36:d2:88:7d:b5:35:28:cd:22:be:76:03:49:e3:69: 12:f2:75:65:dd:f3:b7:c5:fa:17:5f:2b:66:66:20:da:04:88: b9:93:88:9d:59:41:0b:d6:a3:36:2f:c1:e7:30:85:a2:02:37: 42:b0:10:9d:9d:a4:1c:8c:f3:ef:10:86:e2:e3:40:ab:0e:91: 7d:12:c6:58:1d:2c:b1:3b:c4:9d:11:29:e3:65:61:3a:c0:09: 83:39:cf:53:61:b5:32:25:dc:8d:8b:e7:68:7e:a1:a2:f9:33: b0:25:52:dd:06:00:2e:77:d3:a3:3b:df:3d:4b:60:8a:0e:8c: 58:55:ce:29:bd:78:65:33:76:2d:48:ad:05:62:60:23:9c:b1: 58:ff:c5:55:28:5d:5e:58:3d:89:af:df:8b:76:d9:a1:6a:05: b6:29:40:bd:d8:b3:5b:63:04:ec:33:72:38:c3:6f:64:6e:ee: b7:e5:90:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ4SZI+4dIwzGBAfxHsofN4TReIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0 NTQyRTdENzAeFw0yNTA5MDQwOTU1MDBaFw0yNjA5MDMxMDAwMDBaMDMxMTAvBgNV BAMTKEFFQjcyRkIxRUU4Q0UzREY3OTc4NjkwN0YzQzhFMjM1QUJCNDZCNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa2qk5ZS3ITeLSMjjFQ98yF/Lb 4+h/pBrrEMsUHjc5LzvivNCNLn3EphIOrk18s+AasqMcxeoy1oPEMNCxEZ7FHtW+ CO+/jF2YqeSK35KB8IjGyBK89CzrP9lbz/VEp0kGJAmeciPjPUgjL0ho96Hag0N7 5nS13lT9T3+Vwm2noKXxI9VBIgHVvUwWLE+BFSib5vUmK0gfMU5lxomrOqmvHIfZ 4GQanb/Yxrj3QDflRQ1h2jGBqqQEClSwL93auO99T1JGj1S+Ec2Xh2X9ldDh6FDd 32G3l+jUJG8MplFOFOi+fIb1VDROZ5e1kyVYDEUaGCdbudfRGZIjEIKvldnbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrrcvse6M4995eGkH88jiNau0a0owHwYDVR0j BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3 MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8VMA0GCSqG SIb3DQEBCwUAA4IBAQB2dVpIo/PGagjysDF1ItZDSNU2zTSuHbcDy3TSLmQVJHkw pwVi6Xs4Ip0I19mI4vhmgnRKlQ7n9YkUsv6tO8HmSinQX53rXQYzVmg20oh9tTUo zSK+dgNJ42kS8nVl3fO3xfoXXytmZiDaBIi5k4idWUEL1qM2L8HnMIWiAjdCsBCd naQcjPPvEIbi40CrDpF9EsZYHSyxO8SdESnjZWE6wAmDOc9TYbUyJdyNi+dofqGi +TOwJVLdBgAud9OjO989S2CKDoxYVc4pvXhlM3YtSK0FYmAjnLFY/8VVKF1eWD2J r9+LdtmhagW2KUC92LNbYwTsM3I4w29kbu635ZAC -----END CERTIFICATE-----Generated at Mon Sep 8 10:49:05 2025 by rpki-client