$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35362e302f32342d3234203d3e203436303532.roa File: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: 0yCL5KXTraWL90iq30pQr9XlRbIvmMrP24hOvDxVdWE= Subject key identifier: 12:D6:0A:B1:6E:F2:42:1D:77:80:DA:3A:34:AC:AC:6C:EE:66:13:68 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 4A9CDF14AC6C6EBBC3E6DF3D1BAB6D385ADBC8C6 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35362e302f32342d3234203d3e203436303532.roa Signing time: Thu 28 Aug 2025 06:00:00 +0000 ROA not before: Thu 28 Aug 2025 05:55:00 +0000 ROA not after: Thu 27 Aug 2026 06:00:00 +0000 asID: 46052 IP address blocks: 103.24.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9c:df:14:ac:6c:6e:bb:c3:e6:df:3d:1b:ab:6d:38:5a:db:c8:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Aug 28 05:55:00 2025 GMT Not After : Aug 27 06:00:00 2026 GMT Subject: CN=12D60AB16EF2421D7780DA3A34ACAC6CEE661368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9e:e4:44:74:3b:8f:3a:4b:b2:25:7b:da:ed: 9a:11:fa:7b:0e:3b:73:03:96:92:a4:d6:a8:a8:d3: 3d:06:87:8a:54:5e:2a:7a:2c:c7:ab:3d:be:2f:94: d1:69:d7:48:b7:4d:ef:28:a4:3a:12:6f:69:bd:77: 2b:f4:d2:6c:10:d8:d9:4f:cd:71:e0:86:2d:be:9f: d4:21:be:e9:0b:d6:03:15:60:dc:b7:00:c5:33:04: 02:e8:75:5c:39:f7:e8:30:5f:1a:a9:15:4c:f8:70: d3:8e:64:49:c1:be:43:29:50:e5:70:ac:43:25:35: 1f:79:19:ce:1b:a8:20:14:0b:4e:63:cb:02:2a:7c: 10:5c:ab:e6:5d:c9:cb:a8:59:f7:68:8b:c2:44:70: c6:1a:98:ff:5a:cd:52:0c:5e:79:72:61:37:34:6c: c2:88:e7:80:1b:73:d0:32:be:fa:ea:56:36:71:23: 70:ed:ca:03:49:e7:f8:95:33:e5:da:83:b6:7b:87: 9f:71:14:3b:dd:9b:bf:7e:c8:6c:8a:78:bb:ad:96: 51:16:7c:da:26:5d:c5:41:f0:2e:93:75:21:23:87: 0e:4b:8c:b1:1c:24:4a:94:a2:9f:08:7d:f5:f6:fd: ef:a3:e1:f5:79:57:a3:9d:9d:f4:48:34:d7:eb:ab: 6b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D6:0A:B1:6E:F2:42:1D:77:80:DA:3A:34:AC:AC:6C:EE:66:13:68 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35362e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.56.0/24 Signature Algorithm: sha256WithRSAEncryption 46:a3:4e:27:c8:f8:5f:7f:df:fd:a9:48:5e:57:6f:a0:6c:e5: 37:97:db:89:88:f8:cf:42:40:2b:cc:0c:8d:80:4c:35:c8:10: bf:5d:1f:58:b6:b2:eb:6d:b2:fe:ca:da:3c:3e:e2:41:02:28: 6f:1f:3f:81:78:5f:87:01:3a:b5:50:6c:96:ea:cd:c6:1e:ea: de:85:a5:52:4d:89:d5:64:c9:89:a4:64:99:c8:ee:a8:ed:b1: 21:cf:cb:cf:17:13:b7:66:aa:b9:e1:01:e6:fa:72:95:e8:aa: 48:3f:33:4c:61:3a:6d:68:e4:5c:0a:26:ff:13:a1:8a:fc:3d: 60:50:b5:4f:ba:7a:ce:ae:df:7a:3b:aa:63:9d:48:00:3a:7a: 8e:36:6f:74:e8:e0:0a:e6:44:01:86:b0:4b:86:1d:61:65:cf: 01:ad:3d:c4:84:5d:ea:4c:45:e7:51:7c:1c:2a:4d:33:6b:52: 9d:bf:5c:d0:e9:75:2a:2e:ad:c1:fb:00:19:a6:cd:5e:e8:49: ac:d6:2c:bf:02:95:f7:84:7d:e6:f3:30:93:09:41:b7:24:0e: 47:d2:6c:59:c4:b2:f5:c1:59:64:a9:9c:af:57:d2:c2:79:52: 22:7f:a8:bb:f8:0a:66:d7:07:d5:6a:4e:9a:76:37:e4:47:59: a2:39:0f:0f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSpzfFKxsbrvD5t89G6ttOFrbyMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA4MjgwNTU1MDBaFw0yNjA4MjcwNjAwMDBaMDMxMTAvBgNV BAMTKDEyRDYwQUIxNkVGMjQyMUQ3NzgwREEzQTM0QUNBQzZDRUU2NjEzNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3nuREdDuPOkuyJXva7ZoR+nsO O3MDlpKk1qio0z0Gh4pUXip6LMerPb4vlNFp10i3Te8opDoSb2m9dyv00mwQ2NlP zXHghi2+n9QhvukL1gMVYNy3AMUzBALodVw59+gwXxqpFUz4cNOOZEnBvkMpUOVw rEMlNR95Gc4bqCAUC05jywIqfBBcq+ZdycuoWfdoi8JEcMYamP9azVIMXnlyYTc0 bMKI54Abc9AyvvrqVjZxI3DtygNJ5/iVM+Xag7Z7h59xFDvdm79+yGyKeLutllEW fNomXcVB8C6TdSEjhw5LjLEcJEqUop8IffX2/e+j4fV5V6OdnfRINNfrq2sZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEtYKsW7yQh13gNo6NKysbO5mE2gwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDgwDQYJKoZIhvcN AQELBQADggEBAEajTifI+F9/3/2pSF5Xb6Bs5TeX24mI+M9CQCvMDI2ATDXIEL9d H1i2suttsv7K2jw+4kECKG8fP4F4X4cBOrVQbJbqzcYe6t6FpVJNidVkyYmkZJnI 7qjtsSHPy88XE7dmqrnhAeb6cpXoqkg/M0xhOm1o5FwKJv8ToYr8PWBQtU+6es6u 33o7qmOdSAA6eo42b3To4ArmRAGGsEuGHWFlzwGtPcSEXepMRedRfBwqTTNrUp2/ XNDpdSourcH7ABmmzV7oSazWLL8ClfeEfebzMJMJQbckDkfSbFnEsvXBWWSpnK9X 0sJ5UiJ/qLv4CmbXB9VqTpp2N+RHWaI5Dw8= -----END CERTIFICATE-----Generated at Tue Sep 9 02:24:14 2025 by rpki-client