$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: 0SClEliKB0AlO5DzEurqFtVJ6yiiJ9eJczPmmj9dw18= Subject key identifier: 8A:D2:50:A8:02:56:D8:B6:38:CC:A1:E6:B4:DF:8D:49:29:CE:92:79 Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A Certificate serial: 24003A0670829CE11D04A4599730C3BCF2683003 Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa Signing time: Sun 24 Aug 2025 10:00:02 +0000 ROA not before: Sun 24 Aug 2025 09:55:02 +0000 ROA not after: Sun 23 Aug 2026 10:00:02 +0000 asID: 142373 IP address blocks: 103.171.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:00:3a:06:70:82:9c:e1:1d:04:a4:59:97:30:c3:bc:f2:68:30:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A Validity Not Before: Aug 24 09:55:02 2025 GMT Not After : Aug 23 10:00:02 2026 GMT Subject: CN=8AD250A80256D8B638CCA1E6B4DF8D4929CE9279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:86:cb:19:e2:76:90:59:00:0a:60:a1:0f:37: b6:13:0c:a0:e6:ad:88:5d:b5:bd:bb:24:c9:d8:76: 2b:e4:ea:2b:6b:1f:1f:02:9e:13:b1:cc:8d:5a:7e: db:2a:70:1f:0e:d0:82:87:aa:90:ea:c2:af:4f:44: 7b:13:5c:a9:27:15:14:01:3e:8a:c4:f4:9d:eb:fc: af:fe:0e:5c:da:e1:af:50:4a:d5:b5:bd:9f:9a:5d: 67:c2:69:7f:11:00:e5:d8:f6:49:c1:9e:e2:6e:9a: a7:c5:1a:e6:73:2f:2a:b3:f2:1e:76:78:6e:cf:12: df:e5:64:9a:d7:ee:19:c8:4c:a8:4c:65:69:3b:59: 66:fc:c2:7e:42:20:77:eb:7a:bc:8f:cf:df:01:cc: 37:ae:88:1f:c6:fc:78:b3:67:78:49:c3:ec:86:2c: 32:1f:79:06:59:36:ef:02:12:62:16:9f:bc:f1:cc: 1c:64:8b:b6:c1:d7:64:29:1b:da:83:b1:11:b0:bb: 70:40:35:0a:fc:6d:5b:0e:4d:c5:8d:f3:a9:fc:55: 13:2c:de:f6:41:69:8a:09:69:5e:46:3c:47:67:0e: ac:a5:83:7a:87:0e:72:ff:27:63:c1:86:ca:dd:fd: a5:ec:40:21:5e:df:c0:e9:08:26:6e:69:30:c7:6b: a8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D2:50:A8:02:56:D8:B6:38:CC:A1:E6:B4:DF:8D:49:29:CE:92:79 X509v3 Authority Key Identifier: keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.83.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:57:a2:48:9a:85:18:15:63:5e:ed:1b:17:e9:fb:e3:48:e9: f2:e3:cc:51:78:65:85:a0:07:99:fd:d8:d8:d2:3c:aa:6f:a1: e7:2c:71:f5:6f:03:a5:4b:43:c3:b7:72:33:ac:83:10:1e:9e: f4:d3:f3:4c:a2:7b:a7:38:43:61:b2:e6:ac:76:3c:d6:a9:ac: 0d:e2:af:bb:02:3e:26:d6:bb:03:9f:45:13:63:fb:54:18:e1: 6e:86:f1:81:fe:39:68:e6:d6:3d:1d:72:a0:13:09:f8:85:77: ca:d0:87:67:7f:c3:49:9f:3e:36:2c:08:ba:df:a6:0a:a3:8d: bd:a2:f8:cf:ff:7f:22:34:a2:5c:dd:35:51:df:1b:50:ed:60: b1:3a:db:43:09:3a:25:a1:fb:a8:ac:34:02:67:75:df:48:4d: 82:2c:4a:6a:ab:bb:fe:c0:dd:a1:35:00:a0:8d:85:5a:7c:21: e3:c1:3f:e3:e2:44:d1:81:66:17:dd:46:df:18:20:2d:2e:c7: ba:52:28:26:b5:71:32:4c:a6:78:b8:63:af:bc:e3:ca:c2:46: 36:57:2a:3e:9f:1d:66:db:ee:57:d1:72:06:20:0a:81:11:6b: cc:4b:28:97:36:94:6a:a4:ee:c1:c1:8a:be:a5:87:16:02:38: 56:8f:59:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJAA6BnCCnOEdBKRZlzDDvPJoMAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz NkNFQTU0QTAeFw0yNTA4MjQwOTU1MDJaFw0yNjA4MjMxMDAwMDJaMDMxMTAvBgNV BAMTKDhBRDI1MEE4MDI1NkQ4QjYzOENDQTFFNkI0REY4RDQ5MjlDRTkyNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9hssZ4naQWQAKYKEPN7YTDKDm rYhdtb27JMnYdivk6itrHx8CnhOxzI1aftsqcB8O0IKHqpDqwq9PRHsTXKknFRQB PorE9J3r/K/+Dlza4a9QStW1vZ+aXWfCaX8RAOXY9knBnuJumqfFGuZzLyqz8h52 eG7PEt/lZJrX7hnITKhMZWk7WWb8wn5CIHfreryPz98BzDeuiB/G/HizZ3hJw+yG LDIfeQZZNu8CEmIWn7zxzBxki7bB12QpG9qDsRGwu3BANQr8bVsOTcWN86n8VRMs 3vZBaYoJaV5GPEdnDqylg3qHDnL/J2PBhsrd/aXsQCFe38DpCCZuaTDHa6itAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUitJQqAJW2LY4zKHmtN+NSSnOknkwHwYDVR0j BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tTMA0GCSqG SIb3DQEBCwUAA4IBAQAbV6JImoUYFWNe7RsX6fvjSOny48xReGWFoAeZ/djY0jyq b6HnLHH1bwOlS0PDt3IzrIMQHp700/NMonunOENhsuasdjzWqawN4q+7Aj4m1rsD n0UTY/tUGOFuhvGB/jlo5tY9HXKgEwn4hXfK0Idnf8NJnz42LAi636YKo429ovjP /38iNKJc3TVR3xtQ7WCxOttDCTolofuorDQCZ3XfSE2CLEpqq7v+wN2hNQCgjYVa fCHjwT/j4kTRgWYX3UbfGCAtLse6UigmtXEyTKZ4uGOvvOPKwkY2Vyo+nx1m2+5X 0XIGIAqBEWvMSyiXNpRqpO7BwYq+pYcWAjhWj1lr -----END CERTIFICATE-----Generated at Sun Sep 7 16:14:47 2025 by rpki-client