$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa File: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: zCUg4ypvv2GlwnHN93OEr6YWYy+0fl7UKwqXyrw+mYs= Subject key identifier: 7C:5C:B7:44:D3:5D:4E:A6:8A:80:41:89:57:A5:AB:BB:A0:EC:41:5E Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 222D43A2C325EFE44F13E7795FF169E3E52FDE57 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa Signing time: Thu 28 Aug 2025 06:00:00 +0000 ROA not before: Thu 28 Aug 2025 05:55:00 +0000 ROA not after: Thu 27 Aug 2026 06:00:00 +0000 asID: 46052 IP address blocks: 103.24.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:2d:43:a2:c3:25:ef:e4:4f:13:e7:79:5f:f1:69:e3:e5:2f:de:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Aug 28 05:55:00 2025 GMT Not After : Aug 27 06:00:00 2026 GMT Subject: CN=7C5CB744D35D4EA68A80418957A5ABBBA0EC415E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:76:94:b2:fd:4b:b9:07:b7:05:d9:05:7d: ee:20:95:07:ea:07:45:89:e6:2b:fa:b8:9f:68:49: 63:32:03:fc:71:3a:78:da:c4:99:82:f4:ed:c5:58: df:ff:4a:d0:6d:33:95:bc:e9:d8:7d:a2:af:f1:5f: d6:7a:b3:10:c2:de:a4:62:ce:24:21:01:f2:85:d2: 81:e2:d7:66:94:6a:e8:71:35:8a:b5:c8:a8:d2:13: e7:79:bb:63:e5:a0:41:8d:c4:bd:bb:f1:c4:49:6b: 80:cc:cf:57:75:38:97:85:cc:0a:62:55:96:21:23: cb:b0:af:9f:c5:73:ce:61:26:37:be:d9:03:88:84: c3:dd:bf:1c:99:0e:82:07:56:25:66:82:80:cc:da: a9:e7:c1:d6:7c:2d:62:41:81:0b:b6:d5:d2:25:24: 4c:fe:aa:d2:61:b9:14:fc:f1:1c:46:23:fb:ed:d8: 42:67:ea:16:1c:49:44:fd:ca:ab:38:30:8e:58:40: 5b:9f:2b:50:c6:c6:2b:14:9e:d2:8f:b2:31:e7:65: 74:f1:24:d7:a1:ed:01:71:68:5a:8e:22:8a:6a:98: 32:ee:09:b5:d7:03:15:a2:27:fe:04:4f:6c:09:e6: d5:13:3c:f1:83:ef:5a:8f:34:00:de:2e:0e:58:4f: b4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5C:B7:44:D3:5D:4E:A6:8A:80:41:89:57:A5:AB:BB:A0:EC:41:5E X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.57.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:d7:c3:0b:b0:b4:92:32:4d:5a:1e:60:18:1b:9a:d3:ca:9b: ac:fb:c7:c9:5d:f0:1c:c7:05:28:b5:f6:4b:1c:07:21:ca:0b: c1:7f:b3:e5:f6:44:f5:af:c5:17:25:17:7f:71:36:93:80:a8: b2:1f:40:98:d0:35:20:b4:04:6b:b4:61:21:c7:cf:e1:49:4c: 25:26:ac:7e:53:1c:79:ff:6d:1f:56:e8:8c:13:34:44:bb:67: 60:ad:07:ce:90:6e:e1:cf:df:bb:6e:89:cf:1d:b0:73:53:22: 76:39:85:19:3c:25:d3:e4:96:80:13:8a:67:57:02:b3:f1:45: f2:59:df:49:8d:72:70:2c:ef:86:8c:31:ed:19:fb:46:3e:44: bb:76:6f:45:ae:d5:77:0b:f6:e0:c0:dd:72:c0:9a:98:76:c6: 88:49:1a:ad:91:f5:08:5a:8f:8e:21:79:77:59:0b:51:bd:57: b0:f7:94:2b:05:37:ab:4c:27:6c:61:0e:99:58:15:5f:12:b0: b9:6f:bd:89:e4:47:05:b4:01:3e:5c:1c:90:da:60:e7:03:be: 92:a1:0f:ef:68:2c:1f:04:14:6c:e1:e2:cc:47:12:5c:5a:fc: db:29:2a:df:b6:ba:b3:95:65:fe:a2:a7:58:25:10:34:08:c9: ce:21:d5:59 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIi1DosMl7+RPE+d5X/Fp4+Uv3lcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA4MjgwNTU1MDBaFw0yNjA4MjcwNjAwMDBaMDMxMTAvBgNV BAMTKDdDNUNCNzQ0RDM1RDRFQTY4QTgwNDE4OTU3QTVBQkJCQTBFQzQxNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCa3aUsv1LuQe3BdkFfe4glQfq B0WJ5iv6uJ9oSWMyA/xxOnjaxJmC9O3FWN//StBtM5W86dh9oq/xX9Z6sxDC3qRi ziQhAfKF0oHi12aUauhxNYq1yKjSE+d5u2PloEGNxL278cRJa4DMz1d1OJeFzApi VZYhI8uwr5/Fc85hJje+2QOIhMPdvxyZDoIHViVmgoDM2qnnwdZ8LWJBgQu21dIl JEz+qtJhuRT88RxGI/vt2EJn6hYcSUT9yqs4MI5YQFufK1DGxisUntKPsjHnZXTx JNeh7QFxaFqOIopqmDLuCbXXAxWiJ/4ET2wJ5tUTPPGD71qPNADeLg5YT7S/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfFy3RNNdTqaKgEGJV6Wru6DsQV4wHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDkwDQYJKoZIhvcN AQELBQADggEBAF/XwwuwtJIyTVoeYBgbmtPKm6z7x8ld8BzHBSi19kscByHKC8F/ s+X2RPWvxRclF39xNpOAqLIfQJjQNSC0BGu0YSHHz+FJTCUmrH5THHn/bR9W6IwT NES7Z2CtB86QbuHP37tuic8dsHNTInY5hRk8JdPkloATimdXArPxRfJZ30mNcnAs 74aMMe0Z+0Y+RLt2b0Wu1XcL9uDA3XLAmph2xohJGq2R9Qhaj44heXdZC1G9V7D3 lCsFN6tMJ2xhDplYFV8SsLlvvYnkRwW0AT5cHJDaYOcDvpKhD+9oLB8EFGzh4sxH Elxa/NspKt+2urOVZf6ip1glEDQIyc4h1Vk= -----END CERTIFICATE-----Generated at Tue Sep 9 02:36:37 2025 by rpki-client