$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa File: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (raw, json) Hash identifier: BUWXw4dtky6u3IS1OVmdebvECXrPIBW5iPpOPegzgSU= Subject key identifier: D1:41:9E:E6:C2:2D:96:E8:F3:C0:CE:3A:8A:C6:0C:EB:C2:02:C8:01 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 338561D1A11D653CAB1862EBF8B43B7DD347424D Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa Signing time: Wed 03 Sep 2025 07:01:04 +0000 ROA not before: Wed 03 Sep 2025 06:56:04 +0000 ROA not after: Wed 02 Sep 2026 07:01:04 +0000 asID: 141634 IP address blocks: 103.162.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 07:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:85:61:d1:a1:1d:65:3c:ab:18:62:eb:f8:b4:3b:7d:d3:47:42:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Sep 3 06:56:04 2025 GMT Not After : Sep 2 07:01:04 2026 GMT Subject: CN=D1419EE6C22D96E8F3C0CE3A8AC60CEBC202C801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c2:39:15:e6:f3:ce:be:fa:72:ef:cf:32:bc: 22:7f:c1:b6:56:8b:8b:83:a9:cd:17:12:38:c9:9f: 77:70:65:3a:7d:8e:60:df:bb:3c:f1:35:06:7f:2e: 2d:71:bf:03:8a:20:c3:b0:8d:38:00:39:75:12:87: 45:27:ae:62:5a:33:bf:0f:d0:11:bb:43:cb:b1:5b: af:58:75:8f:af:de:f3:2c:53:b5:d9:da:d1:ec:e1: 01:ee:1d:e2:da:6c:00:d1:cf:4d:e6:97:c4:46:bb: 5a:17:99:8f:eb:5e:32:f6:77:60:15:20:ba:97:0b: de:15:0b:ef:f0:5a:e9:83:6e:e9:88:6c:50:8a:22: c2:b6:b9:71:0c:93:f2:f9:ae:30:a0:0b:07:c0:89: 31:94:00:74:ab:08:da:2e:2a:e0:20:9f:3e:20:d1: 44:02:cd:9e:2e:e5:44:28:f5:76:d4:4a:a6:be:64: d0:f7:f6:82:eb:65:94:6e:29:73:84:0c:83:12:88: a0:53:82:01:9f:79:48:10:8f:82:f0:c1:c1:de:75: 67:c3:56:5a:1a:36:22:8a:a0:a2:30:34:9c:66:32: aa:d6:1d:95:84:06:5f:e8:a8:17:73:22:a7:df:3c: cf:27:44:21:58:91:4d:cc:13:a6:93:5a:1e:25:5a: bd:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:41:9E:E6:C2:2D:96:E8:F3:C0:CE:3A:8A:C6:0C:EB:C2:02:C8:01 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.0.0/23 Signature Algorithm: sha256WithRSAEncryption 24:a7:20:57:25:f1:94:8a:1a:b9:41:af:4f:eb:2b:f7:96:3b: 65:2d:25:d5:c6:cb:2c:55:0f:48:bb:7c:1f:dc:9a:7c:7e:c1: ad:3c:31:33:71:c5:19:dd:fb:b3:58:c1:1b:9d:90:46:3c:9d: fa:10:b7:eb:99:64:48:7b:41:dd:fe:92:eb:e2:ed:af:db:af: 30:9d:53:d4:e0:2a:b7:7e:03:ff:f0:0c:c1:ef:fa:bf:b3:30: 52:16:4c:50:94:9c:7d:c1:8c:69:95:1a:34:b7:e9:f9:46:ed: 43:9e:d9:04:3c:5b:d8:81:dc:64:72:e6:63:65:f9:f7:47:cd: 37:d6:71:13:19:28:b8:45:8a:50:7d:0a:7e:a3:70:0d:97:44: 40:da:5d:d9:f6:e8:82:2a:c2:5a:3e:d4:8a:15:95:e1:93:54: 63:36:10:87:84:27:b4:bb:5f:7b:4a:51:df:cc:4f:83:83:7d: 0b:6f:dc:b4:49:30:2b:0b:e4:e4:e4:b1:ba:4c:9a:12:a8:97: 23:a5:37:d1:50:70:7f:9f:ff:11:b7:c1:80:e3:12:86:99:a1: 9d:b8:d8:d7:23:ab:01:90:3d:a8:28:ac:d4:62:47:2c:01:2d: 18:31:bf:74:52:e4:09:76:2b:ea:4a:3f:b0:ab:40:86:b2:f8: a7:80:55:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM4Vh0aEdZTyrGGLr+LQ7fdNHQk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTA5MDMwNjU2MDRaFw0yNjA5MDIwNzAxMDRaMDMxMTAvBgNV BAMTKEQxNDE5RUU2QzIyRDk2RThGM0MwQ0UzQThBQzYwQ0VCQzIwMkM4MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHwjkV5vPOvvpy788yvCJ/wbZW i4uDqc0XEjjJn3dwZTp9jmDfuzzxNQZ/Li1xvwOKIMOwjTgAOXUSh0UnrmJaM78P 0BG7Q8uxW69YdY+v3vMsU7XZ2tHs4QHuHeLabADRz03ml8RGu1oXmY/rXjL2d2AV ILqXC94VC+/wWumDbumIbFCKIsK2uXEMk/L5rjCgCwfAiTGUAHSrCNouKuAgnz4g 0UQCzZ4u5UQo9XbUSqa+ZND39oLrZZRuKXOEDIMSiKBTggGfeUgQj4LwwcHedWfD VloaNiKKoKIwNJxmMqrWHZWEBl/oqBdzIqffPM8nRCFYkU3ME6aTWh4lWr3TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0UGe5sItlujzwM46isYM68ICyAEwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeiADANBgkqhkiG 9w0BAQsFAAOCAQEAJKcgVyXxlIoauUGvT+sr95Y7ZS0l1cbLLFUPSLt8H9yafH7B rTwxM3HFGd37s1jBG52QRjyd+hC365lkSHtB3f6S6+Ltr9uvMJ1T1OAqt34D//AM we/6v7MwUhZMUJScfcGMaZUaNLfp+UbtQ57ZBDxb2IHcZHLmY2X590fNN9ZxExko uEWKUH0KfqNwDZdEQNpd2fbogirCWj7UihWV4ZNUYzYQh4QntLtfe0pR38xPg4N9 C2/ctEkwKwvk5OSxukyaEqiXI6U30VBwf5//EbfBgOMShpmhnbjY1yOrAZA9qCis 1GJHLAEtGDG/dFLkCXYr6ko/sKtAhrL4p4BV4A== -----END CERTIFICATE-----Generated at Mon Sep 8 09:30:27 2025 by rpki-client