$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35392e302f32342d3234203d3e203436303532.roa File: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: QKBrvi0RsDMYjSNqwszDPfOesbOlEOIHdE8u3xcyVKM= Subject key identifier: 84:44:88:81:C2:CE:18:BB:63:A5:6C:5D:28:98:E5:FB:A6:CB:0F:9E Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 63CF99303CE4417BD5C535B8BCCB6E211E2FD906 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35392e302f32342d3234203d3e203436303532.roa Signing time: Thu 28 Aug 2025 05:00:00 +0000 ROA not before: Thu 28 Aug 2025 04:55:00 +0000 ROA not after: Thu 27 Aug 2026 05:00:00 +0000 asID: 46052 IP address blocks: 103.24.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:cf:99:30:3c:e4:41:7b:d5:c5:35:b8:bc:cb:6e:21:1e:2f:d9:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Aug 28 04:55:00 2025 GMT Not After : Aug 27 05:00:00 2026 GMT Subject: CN=84448881C2CE18BB63A56C5D2898E5FBA6CB0F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fe:76:dc:b1:6c:35:2c:63:01:82:f8:0a:d1: 90:5f:9b:4f:ef:d3:e2:02:5a:53:33:65:f3:cb:f7: d4:6a:eb:94:d3:bc:22:d0:15:29:ca:14:e4:ce:64: 21:1d:d2:ce:46:c1:61:0f:b9:1c:45:d3:36:64:f4: b1:fe:04:21:8e:8a:d5:bb:06:05:d8:82:18:64:0f: e4:00:1a:8d:88:b5:c8:08:ca:3b:15:0b:29:67:ef: c9:5f:09:50:ca:d4:20:63:d3:85:ac:71:90:6f:6a: d6:d2:af:4a:6a:f6:b8:8d:64:d6:92:03:f5:3b:64: 75:85:95:10:77:4a:cd:44:00:78:f2:4a:a3:ed:4b: b8:b0:22:be:78:a9:cf:a5:ae:cc:b1:a3:57:95:4d: 8b:dc:08:ea:ad:b5:c9:45:ee:1b:8c:6f:a8:18:92: 50:2b:c0:cb:05:f3:98:de:27:5d:55:86:65:56:eb: 47:25:17:16:1e:7b:66:bd:d4:36:fe:85:4e:18:77: a4:63:eb:55:9a:96:8b:5b:84:83:a9:6e:5d:a4:07: e0:bf:f3:43:e2:98:8d:9a:fb:7c:b1:1f:94:23:a3: 45:4c:dc:d6:e5:76:7f:a7:0c:5c:b5:d0:ae:f9:40: 8d:0a:36:9f:22:0c:d7:40:7d:21:94:a5:a3:16:82: 93:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:44:88:81:C2:CE:18:BB:63:A5:6C:5D:28:98:E5:FB:A6:CB:0F:9E X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35392e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.59.0/24 Signature Algorithm: sha256WithRSAEncryption 00:10:7e:dc:15:60:e6:97:16:44:75:93:e3:fb:af:b7:03:94: 54:a4:e3:d5:41:1f:49:a0:39:d5:8c:20:77:f4:ab:1f:7b:5f: 6a:90:b5:b4:ca:97:62:a4:00:03:10:a2:32:cb:92:fe:1f:ec: d6:23:fc:99:65:71:b4:5a:e4:c0:8a:da:dd:0d:54:61:3d:9e: fa:e1:60:57:70:e5:34:f4:c5:90:d6:fa:84:68:5d:3b:83:7e: 6b:5f:c8:52:cf:da:bd:2b:00:09:c7:d6:fe:7d:8d:52:a5:ff: 73:86:08:6f:25:33:07:0e:2e:ee:89:1f:4f:49:de:81:ac:c1: 3c:79:93:3e:4d:02:62:29:3c:7c:fc:82:ff:ed:5d:ee:2b:d3: 71:4a:d5:1c:99:cf:c9:fc:a3:ca:9c:65:74:a5:37:5e:86:f3: 9b:fc:f8:7c:a8:87:ec:c0:58:fd:4b:1c:32:9c:25:2b:c6:11: 44:bc:b2:72:71:54:ed:27:71:36:fc:14:39:29:34:19:c3:02: f8:b3:5b:c7:fb:5c:3c:4b:ca:15:32:8d:ba:e3:47:15:79:d7: 86:42:2b:5d:23:07:4f:cb:da:e1:f6:25:e0:5f:2c:97:75:10: 76:54:c3:7b:3d:48:94:29:88:1d:d6:78:b4:16:46:c6:dd:08: 9b:25:59:d7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUY8+ZMDzkQXvVxTW4vMtuIR4v2QYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTA4MjgwNDU1MDBaFw0yNjA4MjcwNTAwMDBaMDMxMTAvBgNV BAMTKDg0NDQ4ODgxQzJDRTE4QkI2M0E1NkM1RDI4OThFNUZCQTZDQjBGOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe/nbcsWw1LGMBgvgK0ZBfm0/v 0+ICWlMzZfPL99Rq65TTvCLQFSnKFOTOZCEd0s5GwWEPuRxF0zZk9LH+BCGOitW7 BgXYghhkD+QAGo2ItcgIyjsVCyln78lfCVDK1CBj04WscZBvatbSr0pq9riNZNaS A/U7ZHWFlRB3Ss1EAHjySqPtS7iwIr54qc+lrsyxo1eVTYvcCOqttclF7huMb6gY klArwMsF85jeJ11VhmVW60clFxYee2a91Db+hU4Yd6Rj61WalotbhIOpbl2kB+C/ 80PimI2a+3yxH5Qjo0VM3Nbldn+nDFy10K75QI0KNp8iDNdAfSGUpaMWgpNhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhESIgcLOGLtjpWxdKJjl+6bLD54wHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDswDQYJKoZIhvcN AQELBQADggEBAAAQftwVYOaXFkR1k+P7r7cDlFSk49VBH0mgOdWMIHf0qx97X2qQ tbTKl2KkAAMQojLLkv4f7NYj/JllcbRa5MCK2t0NVGE9nvrhYFdw5TT0xZDW+oRo XTuDfmtfyFLP2r0rAAnH1v59jVKl/3OGCG8lMwcOLu6JH09J3oGswTx5kz5NAmIp PHz8gv/tXe4r03FK1RyZz8n8o8qcZXSlN16G85v8+Hyoh+zAWP1LHDKcJSvGEUS8 snJxVO0ncTb8FDkpNBnDAvizW8f7XDxLyhUyjbrjRxV514ZCK10jB0/L2uH2JeBf LJd1EHZUw3s9SJQpiB3WeLQWRsbdCJslWdc= -----END CERTIFICATE-----Generated at Tue Sep 9 02:24:14 2025 by rpki-client