$ rpki-client -vvf repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa File: 3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa (raw, json) Hash identifier: KCTbEne5sAEJgzltW4gEKsISpQ0m8wEifogPI/+bnQs= Subject key identifier: B3:AE:0C:D0:DF:35:B9:B7:1A:D4:82:56:80:4F:4D:3B:F4:82:46:04 Certificate issuer: /CN=408395914A1A74FF4E6AB1DE063F82C61E0801F2 Certificate serial: 7524AF4B78686C0631074898D80F25E3A2DBC2F6 Authority key identifier: 40:83:95:91:4A:1A:74:FF:4E:6A:B1:DE:06:3F:82:C6:1E:08:01:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa Signing time: Sun 24 Aug 2025 11:00:00 +0000 ROA not before: Sun 24 Aug 2025 10:55:00 +0000 ROA not after: Sun 23 Aug 2026 11:00:00 +0000 asID: 139405 IP address blocks: 103.143.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.crl rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:24:af:4b:78:68:6c:06:31:07:48:98:d8:0f:25:e3:a2:db:c2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408395914A1A74FF4E6AB1DE063F82C61E0801F2 Validity Not Before: Aug 24 10:55:00 2025 GMT Not After : Aug 23 11:00:00 2026 GMT Subject: CN=B3AE0CD0DF35B9B71AD48256804F4D3BF4824604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:b7:a5:69:0c:a9:02:75:7d:52:e4:10:bd: cb:ef:73:2d:58:d7:bf:c9:83:9a:57:39:b2:54:16: 20:5d:2b:10:fd:44:f8:fb:7b:fa:5e:0b:91:fd:4e: f2:13:fa:b7:09:74:74:4a:56:eb:8d:de:b1:64:2e: 96:20:86:1a:b6:77:30:6a:82:26:e9:35:07:dc:86: 2f:42:18:d0:6e:2f:5f:a1:0a:73:b7:6c:32:b5:a7: f4:b7:61:2d:92:a3:98:2c:f9:52:12:2e:62:82:a8: 59:be:e8:3a:2b:ef:92:bf:37:1b:de:75:54:b7:8f: d3:2d:65:26:5e:53:c9:a4:82:ef:6d:d3:b2:19:66: e7:cd:f2:2b:0c:15:45:5d:29:d5:b3:99:7d:97:0e: 87:51:cb:e4:75:19:cd:55:78:b1:f7:4e:f3:a6:4d: 5d:90:6c:df:98:e4:36:b2:20:63:8b:8f:91:be:24: 04:5c:6a:38:06:37:b2:04:21:9b:a7:17:12:93:42: 01:d7:8a:9c:78:aa:16:be:aa:ed:16:5b:cb:34:02: ff:78:d2:b0:94:9f:c5:8f:b3:5b:c1:11:86:1b:66: 42:4b:e4:55:f5:f1:a6:b6:44:7b:26:d9:a1:13:20: fc:66:b4:b0:d0:0d:6b:24:9c:24:36:46:50:d7:9b: b5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:AE:0C:D0:DF:35:B9:B7:1A:D4:82:56:80:4F:4D:3B:F4:82:46:04 X509v3 Authority Key Identifier: keyid:40:83:95:91:4A:1A:74:FF:4E:6A:B1:DE:06:3F:82:C6:1E:08:01:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.20.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:d5:b7:10:ab:02:fd:b3:26:c0:d2:a8:3e:e6:2f:a6:a1:e0: c0:2d:27:49:ad:e4:1f:74:21:5f:f3:98:eb:80:ff:dd:9b:24: 45:ff:27:5c:9d:73:c3:3c:b5:2d:69:77:12:bd:42:aa:85:1e: 03:c4:27:50:37:0d:f8:38:b6:6d:f8:a9:1d:24:c2:33:e4:10: 5f:a8:45:2c:66:b1:d0:f3:a7:93:7d:b6:af:2d:a3:4d:d2:3c: ad:d7:6c:3e:5c:c2:02:6f:1b:ee:ee:b8:f5:fa:59:57:a1:bb: 75:a9:42:fe:b4:eb:a1:af:e9:b4:dc:53:3a:84:9c:c6:b6:57: 57:f6:94:04:a0:b9:a9:44:a2:2e:28:3f:ae:d3:e3:1c:7e:30: 56:27:1b:17:ad:3e:cd:45:c6:53:90:3f:5b:3e:0c:14:8a:37: c8:29:fd:b9:55:1d:5e:25:f9:df:22:fd:de:2f:50:45:8c:ad: 85:d4:d5:94:0e:a3:57:b7:27:25:c6:4f:a4:97:10:20:a2:76: 22:5d:40:12:9f:de:3f:1f:24:43:b2:c7:02:79:fa:d1:bc:49: fd:49:ab:5a:47:e4:c2:c3:38:5b:1c:4c:91:52:df:35:0a:64: b2:b1:18:35:a6:58:03:3d:c2:8c:02:cd:4f:a4:b9:88:fa:71: 38:0c:fe:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdSSvS3hobAYxB0iY2A8l46LbwvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4Mzk1OTE0QTFBNzRGRjRFNkFCMURFMDYzRjgyQzYx RTA4MDFGMjAeFw0yNTA4MjQxMDU1MDBaFw0yNjA4MjMxMTAwMDBaMDMxMTAvBgNV BAMTKEIzQUUwQ0QwREYzNUI5QjcxQUQ0ODI1NjgwNEY0RDNCRjQ4MjQ2MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCww7elaQypAnV9UuQQvcvvcy1Y 17/Jg5pXObJUFiBdKxD9RPj7e/peC5H9TvIT+rcJdHRKVuuN3rFkLpYghhq2dzBq gibpNQfchi9CGNBuL1+hCnO3bDK1p/S3YS2So5gs+VISLmKCqFm+6Dor75K/Nxve dVS3j9MtZSZeU8mkgu9t07IZZufN8isMFUVdKdWzmX2XDodRy+R1Gc1VeLH3TvOm TV2QbN+Y5DayIGOLj5G+JARcajgGN7IEIZunFxKTQgHXipx4qha+qu0WW8s0Av94 0rCUn8WPs1vBEYYbZkJL5FX18aa2RHsm2aETIPxmtLDQDWsknCQ2RlDXm7XlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUs64M0N81ubca1IJWgE9NO/SCRgQwHwYDVR0j BBgwFoAUQIOVkUoadP9OarHeBj+Cxh4IAfIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzhjM2M2OS0zNmQwLTRhZTgtYThkZi02M2QzZjQ0Y2NkOGQvMC80MDgzOTU5MTRB MUE3NEZGNEU2QUIxREUwNjNGODJDNjFFMDgwMUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4Mzk1OTE0QTFBNzRGRjRFNkFCMURFMDYzRjgyQzYxRTA4 MDFGMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3OGMzYzY5LTM2ZDAtNGFlOC1h OGRmLTYzZDNmNDRjY2Q4ZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ48UMA0GCSqG SIb3DQEBCwUAA4IBAQBM1bcQqwL9sybA0qg+5i+moeDALSdJreQfdCFf85jrgP/d myRF/ydcnXPDPLUtaXcSvUKqhR4DxCdQNw34OLZt+KkdJMIz5BBfqEUsZrHQ86eT fbavLaNN0jyt12w+XMICbxvu7rj1+llXobt1qUL+tOuhr+m03FM6hJzGtldX9pQE oLmpRKIuKD+u0+McfjBWJxsXrT7NRcZTkD9bPgwUijfIKf25VR1eJfnfIv3eL1BF jK2F1NWUDqNXtyclxk+klxAgonYiXUASn94/HyRDsscCefrRvEn9SataR+TCwzhb HEyRUt81CmSysRg1plgDPcKMAs1PpLmI+nE4DP5Y -----END CERTIFICATE-----Generated at Sun Oct 19 23:04:45 2025 by rpki-client