$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: WMWtIWXP3rHM6u9VZyFOIHKvW80yliOmPYEco+tmVZQ= Subject key identifier: 8D:69:AB:6E:C3:EA:F7:3D:F2:D0:EC:1C:F1:BF:0D:60:BD:5C:AE:7C Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A Certificate serial: 214B47AE5A1CE79CE91B4987B080A9A84F9D48FC Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa Signing time: Sun 24 Aug 2025 10:00:02 +0000 ROA not before: Sun 24 Aug 2025 09:55:02 +0000 ROA not after: Sun 23 Aug 2026 10:00:02 +0000 asID: 142373 IP address blocks: 103.171.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:4b:47:ae:5a:1c:e7:9c:e9:1b:49:87:b0:80:a9:a8:4f:9d:48:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A Validity Not Before: Aug 24 09:55:02 2025 GMT Not After : Aug 23 10:00:02 2026 GMT Subject: CN=8D69AB6EC3EAF73DF2D0EC1CF1BF0D60BD5CAE7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:f5:fa:19:8d:15:5b:b8:68:80:2a:6a:6e: 06:d2:e7:7a:1b:96:05:e0:4c:6c:3b:d3:69:58:2f: 57:0d:ea:81:05:a0:d9:ae:93:79:51:0b:62:d2:bc: 15:74:10:16:65:9f:30:b3:67:dd:41:59:49:90:ea: 00:3b:ce:c2:15:98:42:43:a6:ea:b4:bd:7d:94:96: 56:70:45:26:32:d2:2d:0b:73:5a:a4:9b:73:06:ab: 4e:2b:58:31:75:5e:ab:18:84:46:74:85:22:47:eb: 3c:a2:18:29:c0:5b:c8:2d:9f:ef:b2:1b:22:46:d0: 65:66:0c:5f:20:63:7c:73:69:05:55:bb:c4:99:61: ed:25:44:c4:46:ab:91:fd:87:1d:54:c9:a4:16:b0: 1d:20:5f:bb:ac:a2:61:21:eb:ad:e0:5e:94:e6:20: e5:24:98:e2:6c:da:7a:a9:b9:c9:35:19:fa:ea:e2: 64:1e:7a:ef:94:9b:21:35:17:3e:59:d3:af:7a:09: ab:0b:48:d1:dd:c7:e9:67:50:5b:4e:73:dd:ba:46: ef:25:00:d9:80:ef:2c:9c:85:20:b3:0a:41:ec:9f: 82:09:87:08:b9:77:a0:06:b8:bd:0a:b0:b1:c3:14: f9:be:0a:7f:9d:8e:96:5d:bc:31:1b:3e:11:58:56: 1b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:69:AB:6E:C3:EA:F7:3D:F2:D0:EC:1C:F1:BF:0D:60:BD:5C:AE:7C X509v3 Authority Key Identifier: keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.82.0/24 Signature Algorithm: sha256WithRSAEncryption be:a2:80:ce:67:73:56:39:3a:e5:2e:ce:cb:21:20:75:96:85: b8:3c:c0:7f:42:29:bd:e1:be:13:f9:94:81:bb:11:bd:c1:30: 73:96:50:d1:85:2f:92:22:39:b6:f6:63:04:a7:a8:ad:a3:58: 06:ff:5a:f8:43:7b:a0:11:18:5d:84:db:0c:1b:4b:30:c1:2f: d5:19:1d:b7:cd:05:2a:7d:81:0f:94:44:89:4a:4c:ed:ba:a3: 27:71:f9:f2:0a:34:fc:68:a1:c7:2a:88:80:e2:5a:7e:5e:a7: 5e:1a:58:37:8d:27:cd:17:0e:92:73:fb:58:12:c5:97:de:1e: 8a:bf:60:a3:88:3e:5c:78:70:f2:70:43:e9:4e:2c:5a:d5:f6: cb:1f:5c:66:89:9d:a4:23:84:81:23:a6:eb:90:15:9b:64:ad: 53:9f:59:27:a0:23:0b:10:ce:e2:28:5b:46:ac:b8:fb:64:ee: 9f:66:25:9d:29:11:4a:13:3d:e6:50:d0:53:93:fa:1e:cc:44: 4e:94:72:c4:57:f9:5a:96:5f:6e:83:a1:53:ff:ad:b9:53:06: 6d:37:d2:d7:30:b8:c5:89:5f:13:01:fb:f8:44:ee:02:66:6e: 21:a4:ec:97:bf:7c:76:d9:d6:7a:69:17:77:0c:73:42:17:b5: 48:73:7c:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIUtHrloc55zpG0mHsICpqE+dSPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz NkNFQTU0QTAeFw0yNTA4MjQwOTU1MDJaFw0yNjA4MjMxMDAwMDJaMDMxMTAvBgNV BAMTKDhENjlBQjZFQzNFQUY3M0RGMkQwRUMxQ0YxQkYwRDYwQkQ1Q0FFN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSAPX6GY0VW7hogCpqbgbS53ob lgXgTGw702lYL1cN6oEFoNmuk3lRC2LSvBV0EBZlnzCzZ91BWUmQ6gA7zsIVmEJD puq0vX2UllZwRSYy0i0Lc1qkm3MGq04rWDF1XqsYhEZ0hSJH6zyiGCnAW8gtn++y GyJG0GVmDF8gY3xzaQVVu8SZYe0lRMRGq5H9hx1UyaQWsB0gX7usomEh663gXpTm IOUkmOJs2nqpuck1Gfrq4mQeeu+UmyE1Fz5Z0696CasLSNHdx+lnUFtOc926Ru8l ANmA7yychSCzCkHsn4IJhwi5d6AGuL0KsLHDFPm+Cn+djpZdvDEbPhFYVhtnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjWmrbsPq9z3y0Owc8b8NYL1crnwwHwYDVR0j BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tSMA0GCSqG SIb3DQEBCwUAA4IBAQC+ooDOZ3NWOTrlLs7LISB1loW4PMB/Qim94b4T+ZSBuxG9 wTBzllDRhS+SIjm29mMEp6ito1gG/1r4Q3ugERhdhNsMG0swwS/VGR23zQUqfYEP lESJSkztuqMncfnyCjT8aKHHKoiA4lp+XqdeGlg3jSfNFw6Sc/tYEsWX3h6Kv2Cj iD5ceHDycEPpTixa1fbLH1xmiZ2kI4SBI6brkBWbZK1Tn1knoCMLEM7iKFtGrLj7 ZO6fZiWdKRFKEz3mUNBTk/oezEROlHLEV/lall9ug6FT/625UwZtN9LXMLjFiV8T Afv4RO4CZm4hpOyXv3x22dZ6aRd3DHNCF7VIc3xJ -----END CERTIFICATE-----Generated at Sun Sep 7 16:14:38 2025 by rpki-client