$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa File: 3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa (raw, json) Hash identifier: jJN+a1uyK5er9vytVlfqMqFHVNtiQSwDgGPE7xDkxVU= Subject key identifier: 91:C2:DF:5A:18:0F:C5:F2:06:27:3D:C0:EF:59:4B:8C:A7:7B:8D:79 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 53ADACA12BA32425A2674CA6A61EB7DAF2AF67DC Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa Signing time: Sat 30 Aug 2025 14:00:00 +0000 ROA not before: Sat 30 Aug 2025 13:55:00 +0000 ROA not after: Sat 29 Aug 2026 14:00:00 +0000 asID: 151527 IP address blocks: 103.58.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 10:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ad:ac:a1:2b:a3:24:25:a2:67:4c:a6:a6:1e:b7:da:f2:af:67:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Aug 30 13:55:00 2025 GMT Not After : Aug 29 14:00:00 2026 GMT Subject: CN=91C2DF5A180FC5F206273DC0EF594B8CA77B8D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4b:a2:df:5d:bd:d8:74:c3:67:52:45:36:b5: 20:52:7c:66:f7:cf:f0:b9:18:d3:cf:a4:23:4b:f4: ba:cd:12:61:25:0c:67:da:87:c2:8f:80:cf:83:b7: 99:43:dc:e6:96:a9:9b:ad:71:9c:a8:b2:bb:0a:a0: 59:8a:33:e7:45:45:b7:f7:53:e2:34:6d:fd:fd:bc: ea:0d:31:17:dc:04:b1:a8:a6:a8:75:b1:ad:1b:d4: 8d:af:ed:a7:a0:55:31:45:b2:9c:75:be:b9:c6:e9: fe:87:9c:cf:ef:cc:80:28:85:f6:3d:70:12:91:e6: 12:86:75:26:34:ed:5c:74:cc:b6:dd:03:fe:11:72: 95:ad:d6:28:35:01:92:dd:bb:43:04:0a:d9:3b:b4: db:02:37:08:26:ac:8e:38:bb:cf:d9:80:04:e9:ef: 98:b9:67:77:1b:d1:e5:b2:78:e6:c3:ad:e0:d1:d0: f8:62:11:52:e7:fd:44:f3:df:e0:e6:b7:05:b3:9f: f9:1b:1f:bd:1a:21:73:52:c7:f6:c6:38:64:32:ab: fb:88:e4:b5:3a:12:4b:e1:c6:20:f8:3f:38:41:0c: a6:22:21:c1:de:a6:04:f7:37:be:63:02:bb:a4:55: 4d:d3:a8:44:99:3e:98:09:04:63:f5:6b:46:ca:28: ab:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C2:DF:5A:18:0F:C5:F2:06:27:3D:C0:EF:59:4B:8C:A7:7B:8D:79 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.198.0/24 Signature Algorithm: sha256WithRSAEncryption 54:e7:7f:aa:5c:e2:50:93:2d:93:75:2e:98:6a:a2:2e:db:b9: cf:fc:02:05:4a:88:55:36:71:67:e8:c6:49:3f:fc:fa:ff:c5: 67:5e:c6:a5:e3:f2:d1:7a:8f:2a:dc:3b:ca:e5:0f:13:6d:5b: 45:31:52:24:28:24:57:e9:0e:dd:0c:6a:77:7a:eb:44:02:d5: 6b:7e:70:d1:5c:5e:92:90:8b:c7:56:99:02:c1:f8:5b:93:ae: 1f:03:86:80:a1:04:1e:74:a5:73:82:bc:84:00:b0:34:c6:12: 71:31:09:ec:63:40:ab:22:b5:93:fb:61:e9:9b:aa:23:88:e8: 1f:9c:79:77:ef:e9:4f:ab:73:74:80:de:2e:65:2b:cb:31:43: 6f:82:ee:62:8c:06:97:f9:e6:fb:54:36:a7:ac:41:62:ce:01: c4:5b:b2:23:9a:34:6d:c2:fb:3e:aa:cb:71:75:4d:4b:b9:10: d5:45:7d:22:2e:df:a3:0c:a1:01:ff:b6:79:1b:12:5b:50:31: c5:a4:6d:4a:b2:93:8e:3c:b5:bf:3d:cf:c5:7f:6e:25:cc:36: f7:1f:d6:c2:95:4d:29:6f:e0:bc:bd:fd:b7:67:84:23:15:08: 4f:5d:ea:65:15:a5:12:98:25:77:8a:1e:97:af:0d:65:e7:3d: e7:1a:cd:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU62soSujJCWiZ0ymph632vKvZ9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNTA4MzAxMzU1MDBaFw0yNjA4MjkxNDAwMDBaMDMxMTAvBgNV BAMTKDkxQzJERjVBMTgwRkM1RjIwNjI3M0RDMEVGNTk0QjhDQTc3QjhENzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDES6LfXb3YdMNnUkU2tSBSfGb3 z/C5GNPPpCNL9LrNEmElDGfah8KPgM+Dt5lD3OaWqZutcZyosrsKoFmKM+dFRbf3 U+I0bf39vOoNMRfcBLGopqh1sa0b1I2v7aegVTFFspx1vrnG6f6HnM/vzIAohfY9 cBKR5hKGdSY07Vx0zLbdA/4RcpWt1ig1AZLdu0MECtk7tNsCNwgmrI44u8/ZgATp 75i5Z3cb0eWyeObDreDR0PhiEVLn/UTz3+DmtwWzn/kbH70aIXNSx/bGOGQyq/uI 5LU6EkvhxiD4PzhBDKYiIcHepgT3N75jArukVU3TqESZPpgJBGP1a0bKKKuJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkcLfWhgPxfIGJz3A71lLjKd7jXkwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrGMA0GCSqG SIb3DQEBCwUAA4IBAQBU53+qXOJQky2TdS6YaqIu27nP/AIFSohVNnFn6MZJP/z6 /8VnXsal4/LReo8q3DvK5Q8TbVtFMVIkKCRX6Q7dDGp3eutEAtVrfnDRXF6SkIvH VpkCwfhbk64fA4aAoQQedKVzgryEALA0xhJxMQnsY0CrIrWT+2Hpm6ojiOgfnHl3 7+lPq3N0gN4uZSvLMUNvgu5ijAaX+eb7VDanrEFizgHEW7IjmjRtwvs+qstxdU1L uRDVRX0iLt+jDKEB/7Z5GxJbUDHFpG1KspOOPLW/Pc/Ff24lzDb3H9bClU0pb+C8 vf23Z4QjFQhPXeplFaUSmCV3ih6Xrw1l5z3nGs2S -----END CERTIFICATE-----Generated at Sun Sep 7 15:47:14 2025 by rpki-client