$ rpki-client -vvf repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa File: 3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa (raw, json) Hash identifier: PyDXoIlT1NIef5VwI6vIhfIo1ytHrmrJtk3n+sEFsT0= Subject key identifier: EF:DB:C3:2D:06:8A:11:58:72:A6:71:ED:5F:E6:28:07:5C:A1:49:26 Certificate issuer: /CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Certificate serial: 13ACCDC771BF332C413B6E3E01124A713A0FA5BF Authority key identifier: E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa Signing time: Wed 27 Aug 2025 09:00:00 +0000 ROA not before: Wed 27 Aug 2025 08:55:00 +0000 ROA not after: Wed 26 Aug 2026 09:00:00 +0000 asID: 147075 IP address blocks: 103.172.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.crl rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ac:cd:c7:71:bf:33:2c:41:3b:6e:3e:01:12:4a:71:3a:0f:a5:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Validity Not Before: Aug 27 08:55:00 2025 GMT Not After : Aug 26 09:00:00 2026 GMT Subject: CN=EFDBC32D068A115872A671ED5FE628075CA14926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6a:f6:38:5e:f9:32:07:6f:8b:09:22:1e:1c: 07:91:43:7f:ee:98:67:14:0b:b2:f4:95:67:cf:85: 3c:f1:b0:f1:6b:b3:4a:38:3b:8c:7e:a0:24:36:0b: 9e:86:c3:53:2d:8e:04:5c:f1:8f:2a:eb:d8:c1:0a: 5d:20:d1:7b:10:9e:7e:ae:f0:04:3d:17:52:5d:ff: 76:46:1f:5a:06:c5:61:b9:7b:85:f8:c6:3c:f0:9b: 7b:a1:f0:b9:77:66:e6:7c:59:40:71:e2:e5:f0:17: 15:6a:88:33:ee:fa:26:a7:48:0d:b2:e7:f4:a2:6b: bb:1f:bd:08:fb:ba:cd:23:88:19:b7:a8:4a:ee:24: 9c:cb:4c:eb:be:15:de:18:37:15:ef:60:fb:6a:5e: ab:9f:27:cf:e4:a8:ea:6a:22:39:12:6e:9f:c0:42: 11:9c:15:8f:dd:bd:39:1b:e9:c1:20:92:04:40:92: ce:01:b3:79:3f:96:3a:43:fb:c6:52:a3:53:6c:a7: bc:88:02:5b:08:b7:ec:31:63:5c:32:21:70:f4:d1: ed:bd:2f:e1:b6:d1:c8:76:3c:e3:93:b1:6a:5d:57: 97:19:a3:ea:40:5a:57:58:1d:94:20:2f:e9:a6:32: bd:90:f8:24:d9:0a:f2:70:29:66:ee:35:b3:f6:90: 09:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DB:C3:2D:06:8A:11:58:72:A6:71:ED:5F:E6:28:07:5C:A1:49:26 X509v3 Authority Key Identifier: keyid:E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.194.0/23 Signature Algorithm: sha256WithRSAEncryption 20:e7:77:f0:61:08:56:7d:a4:f1:e4:ba:18:3d:08:bb:98:fe: f2:47:af:6e:26:10:f1:22:0b:a1:81:2c:07:ec:47:cf:f1:d7: 2e:30:3f:93:f0:bd:f5:52:30:eb:2a:e9:de:6a:41:ba:29:83: 19:c3:cb:83:f9:65:5c:08:7b:fd:cd:a6:e7:0e:b1:1e:64:5b: 4b:c3:ec:6d:d7:30:47:3d:46:53:f5:77:4d:ad:8d:4e:ca:f4: 5e:a1:86:58:23:05:7c:a5:1f:6a:09:58:ca:85:47:15:35:c1: ab:d7:49:9b:bb:62:3f:12:57:0a:82:09:7b:aa:5e:1d:83:2e: c3:96:7e:69:17:c9:72:4f:11:a3:f0:12:46:73:68:bd:f4:78: 67:8b:a4:0d:d2:e5:59:8f:24:32:8f:65:83:ff:b2:31:00:97: 59:3d:73:f7:5e:3d:7c:ff:79:b3:f3:1d:50:8b:9a:21:53:60: 38:b8:36:fb:30:47:52:69:41:8d:6b:55:be:49:07:28:76:6f: ea:83:8b:90:ab:06:94:85:32:da:bb:fd:3b:e7:89:81:db:2f: 1c:85:b5:81:7b:21:3d:71:5e:31:86:37:d1:32:c8:5d:c7:c8: 91:e3:94:cd:5b:32:f1:a5:30:dd:59:d6:60:1a:ce:84:c9:d9: e9:25:b2:51 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUE6zNx3G/MyxBO24+ARJKcToPpb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ4NjM0RTFENkZCMkU4QTA2QTQ4ODI1QjREN0VFQzQ3 QjJBRTRCRTAeFw0yNTA4MjcwODU1MDBaFw0yNjA4MjYwOTAwMDBaMDMxMTAvBgNV BAMTKEVGREJDMzJEMDY4QTExNTg3MkE2NzFFRDVGRTYyODA3NUNBMTQ5MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKavY4XvkyB2+LCSIeHAeRQ3/u mGcUC7L0lWfPhTzxsPFrs0o4O4x+oCQ2C56Gw1MtjgRc8Y8q69jBCl0g0XsQnn6u 8AQ9F1Jd/3ZGH1oGxWG5e4X4xjzwm3uh8Ll3ZuZ8WUBx4uXwFxVqiDPu+ianSA2y 5/Sia7sfvQj7us0jiBm3qEruJJzLTOu+Fd4YNxXvYPtqXqufJ8/kqOpqIjkSbp/A QhGcFY/dvTkb6cEgkgRAks4Bs3k/ljpD+8ZSo1Nsp7yIAlsIt+wxY1wyIXD00e29 L+G20ch2POOTsWpdV5cZo+pAWldYHZQgL+mmMr2Q+CTZCvJwKWbuNbP2kAn7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU79vDLQaKEVhypnHtX+YoB1yhSSYwHwYDVR0j BBgwFoAU5IY04db7LooGpIgltNfuxHsq5L4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2VjMmNiNi0zNWFkLTQxMDEtOTgyZS0yZTM0ZDU2NmVmZGEvMC9FNDg2MzRFMUQ2 RkIyRThBMDZBNDg4MjVCNEQ3RUVDNDdCMkFFNEJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ4NjM0RTFENkZCMkU4QTA2QTQ4ODI1QjREN0VFQzQ3QjJB RTRCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZWMyY2I2LTM1YWQtNDEwMS05 ODJlLTJlMzRkNTY2ZWZkYS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMIwDQYJ KoZIhvcNAQELBQADggEBACDnd/BhCFZ9pPHkuhg9CLuY/vJHr24mEPEiC6GBLAfs R8/x1y4wP5PwvfVSMOsq6d5qQbopgxnDy4P5ZVwIe/3NpucOsR5kW0vD7G3XMEc9 RlP1d02tjU7K9F6hhlgjBXylH2oJWMqFRxU1wavXSZu7Yj8SVwqCCXuqXh2DLsOW fmkXyXJPEaPwEkZzaL30eGeLpA3S5VmPJDKPZYP/sjEAl1k9c/dePXz/ebPzHVCL miFTYDi4NvswR1JpQY1rVb5JByh2b+qDi5CrBpSFMtq7/TvniYHbLxyFtYF7IT1x XjGGN9EyyF3HyJHjlM1bMvGlMN1Z1mAazoTJ2eklslE= -----END CERTIFICATE-----Generated at Sun Sep 7 15:29:12 2025 by rpki-client