$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa File: 3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa (raw, json) Hash identifier: UpwU5KmdRWmUbOHgdYL3vn70OYdWumBhyQiX8LxWO1k= Subject key identifier: D6:62:86:BF:89:98:78:37:44:0B:73:ED:36:F8:7D:C4:C8:78:77:4C Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 0557A0B34A44C1F1F436DB45C78DB00BF66B1A3E Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa Signing time: Wed 03 Sep 2025 23:01:37 +0000 ROA not before: Wed 03 Sep 2025 22:56:37 +0000 ROA not after: Wed 02 Sep 2026 23:01:37 +0000 asID: 133339 IP address blocks: 103.225.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:57:a0:b3:4a:44:c1:f1:f4:36:db:45:c7:8d:b0:0b:f6:6b:1a:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Sep 3 22:56:37 2025 GMT Not After : Sep 2 23:01:37 2026 GMT Subject: CN=D66286BF89987837440B73ED36F87DC4C878774C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9c:2b:5f:f5:10:92:bc:bc:d0:d1:e5:7b:47: 40:82:f2:93:af:3b:1b:36:ad:a2:62:e9:f9:8e:88: e6:58:de:1f:f3:69:69:85:5c:8d:84:1a:76:85:d6: ce:ff:a3:4b:b2:bb:52:6c:a1:00:65:30:32:53:2f: 3a:4b:38:4b:ee:f9:86:fb:ab:4b:22:43:1e:d0:e8: 14:5b:67:ba:56:d4:a7:8f:94:6e:ac:73:f9:82:3e: 1b:74:a4:5d:75:da:19:b4:a7:13:81:07:7e:1c:7e: 27:65:e3:58:25:78:16:aa:3a:cf:e3:29:7b:d2:f2: 3d:1f:25:af:91:78:77:1b:f4:4d:02:d0:05:90:ce: a3:3c:5a:d4:e0:f4:db:b8:bd:ac:25:2c:9b:fa:36: dd:a1:73:d6:c0:88:35:c6:9e:01:cc:3a:0f:ed:3b: 91:aa:c6:9c:b0:fd:e3:a8:b3:9b:cb:dd:6d:89:c6: a3:4a:db:7c:e5:1e:16:68:78:39:c0:56:40:fd:a3: 37:99:61:2a:58:1c:d0:89:33:a6:37:1f:f5:28:a1: e5:c2:12:cb:35:9d:1b:65:1f:18:5b:d0:63:52:6a: a4:d0:8b:dc:db:98:a1:1e:0d:84:a8:5d:59:8d:b5: 95:3e:10:f5:ca:9a:3d:4d:b9:82:d9:61:9d:bb:53: 3f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:62:86:BF:89:98:78:37:44:0B:73:ED:36:F8:7D:C4:C8:78:77:4C X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.171.0/24 Signature Algorithm: sha256WithRSAEncryption 29:0e:f4:f8:60:a2:8b:d2:bc:15:d3:d7:dd:53:d6:78:13:25: 5e:f2:8a:85:c1:4a:30:32:e4:70:ba:23:9f:12:56:6b:b9:ee: 57:d7:8c:3e:5a:5a:fb:d4:fe:28:95:c6:69:fc:aa:43:69:cf: 6a:9d:8a:05:72:db:94:ad:a8:6e:06:e0:55:42:2b:24:0c:4e: 9f:fc:0f:0e:f8:fe:6a:6e:68:12:de:23:9a:8c:53:b1:cb:3b: bb:08:55:7b:90:c5:5e:73:fd:2b:88:6b:f6:0b:fc:2c:56:e5: 4c:92:28:1e:a3:83:8c:3b:05:7e:43:d0:a5:0e:b0:6f:5b:77: 8e:c7:6b:21:69:e1:6d:b1:de:31:a0:45:39:5f:a1:a0:38:c0: bd:03:74:3c:d8:5f:c2:8a:c3:d0:6f:00:99:15:d4:61:f4:e8: 73:b9:d0:38:c8:68:05:49:25:af:c3:19:ec:12:fa:2e:7e:d7: 05:b2:01:63:73:c9:c0:14:f3:b0:93:03:d4:c2:67:be:b6:27: aa:6b:8f:0d:4f:33:48:a9:ca:36:97:df:8b:61:c1:50:0f:e6: 73:98:99:3d:24:9f:c7:d1:d9:9d:8e:be:bc:b3:b4:35:b0:ca: 4a:1d:9c:61:21:58:bb:1e:54:58:70:37:4a:3d:ad:1d:c8:9a: c3:19:96:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBVegs0pEwfH0NttFx42wC/ZrGj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNTA5MDMyMjU2MzdaFw0yNjA5MDIyMzAxMzdaMDMxMTAvBgNV BAMTKEQ2NjI4NkJGODk5ODc4Mzc0NDBCNzNFRDM2Rjg3REM0Qzg3ODc3NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVnCtf9RCSvLzQ0eV7R0CC8pOv Oxs2raJi6fmOiOZY3h/zaWmFXI2EGnaF1s7/o0uyu1JsoQBlMDJTLzpLOEvu+Yb7 q0siQx7Q6BRbZ7pW1KePlG6sc/mCPht0pF112hm0pxOBB34cfidl41gleBaqOs/j KXvS8j0fJa+ReHcb9E0C0AWQzqM8WtTg9Nu4vawlLJv6Nt2hc9bAiDXGngHMOg/t O5Gqxpyw/eOos5vL3W2JxqNK23zlHhZoeDnAVkD9ozeZYSpYHNCJM6Y3H/UooeXC Ess1nRtlHxhb0GNSaqTQi9zbmKEeDYSoXVmNtZU+EPXKmj1NuYLZYZ27Uz+bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1mKGv4mYeDdEC3PtNvh9xMh4d0wwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzIzMjM1MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn4aswDQYJ KoZIhvcNAQELBQADggEBACkO9PhgoovSvBXT191T1ngTJV7yioXBSjAy5HC6I58S Vmu57lfXjD5aWvvU/iiVxmn8qkNpz2qdigVy25StqG4G4FVCKyQMTp/8Dw74/mpu aBLeI5qMU7HLO7sIVXuQxV5z/SuIa/YL/CxW5UySKB6jg4w7BX5D0KUOsG9bd47H ayFp4W2x3jGgRTlfoaA4wL0DdDzYX8KKw9BvAJkV1GH06HO50DjIaAVJJa/DGewS +i5+1wWyAWNzycAU87CTA9TCZ762J6prjw1PM0ipyjaX34thwVAP5nOYmT0kn8fR 2Z2OvryztDWwykodnGEhWLseVFhwN0o9rR3ImsMZljk= -----END CERTIFICATE-----Generated at Tue Sep 9 08:13:15 2025 by rpki-client