$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa File: 3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa (raw, json) Hash identifier: dHvA0l4MoAsHbnDeUczCGz/tbqjQXH0AlY+9WKNokS8= Subject key identifier: 88:77:96:0F:CF:4A:54:77:7C:90:F2:4D:E2:43:2A:D2:AE:3A:B7:27 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 1704024859E9575694A7318260C2BA129FEFFDAA Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa Signing time: Sat 30 Aug 2025 14:00:00 +0000 ROA not before: Sat 30 Aug 2025 13:55:00 +0000 ROA not after: Sat 29 Aug 2026 14:00:00 +0000 asID: 151527 IP address blocks: 103.58.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 10:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:04:02:48:59:e9:57:56:94:a7:31:82:60:c2:ba:12:9f:ef:fd:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Aug 30 13:55:00 2025 GMT Not After : Aug 29 14:00:00 2026 GMT Subject: CN=8877960FCF4A54777C90F24DE2432AD2AE3AB727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9e:42:c2:36:55:f3:d8:d5:4d:06:b0:f8:7b: 9c:51:51:d2:22:e7:f7:b7:d9:4b:7b:a3:23:1d:e6: 0f:cd:dc:f9:6c:ed:ec:19:02:c8:74:9d:2a:a0:21: 28:84:64:bd:f4:5c:b6:07:f7:fb:e8:0e:78:f6:86: c2:f8:81:45:17:4c:6b:39:4c:c2:81:9c:74:e3:ac: 30:d9:1e:5c:ff:16:a8:6e:20:6e:85:4d:77:e6:37: c1:d7:42:a6:e7:f1:de:1e:96:36:da:e9:e5:88:1f: 68:1c:10:6b:24:a6:48:ed:a3:4f:dc:08:d2:72:0c: d2:9f:fe:11:97:27:8e:a6:49:8a:bb:ab:e6:92:cd: 60:61:c3:5a:29:fe:10:ac:dd:bd:38:f7:fd:ee:66: 17:68:60:2b:87:7a:07:ca:12:35:50:9f:a0:96:0a: 35:41:04:17:38:b0:34:2e:84:06:0d:c2:f0:06:2c: ee:e9:ea:e4:ec:97:5c:8d:4c:a8:15:c7:ce:7f:c9: 6f:df:54:a1:5b:fd:be:65:5f:29:61:70:da:bf:dc: 90:83:64:50:09:9d:b0:26:fb:0e:60:ee:ce:d4:2d: 1c:1f:c3:44:68:c0:9e:4c:79:20:ef:d9:f3:00:77: 9f:17:7f:61:06:a1:69:dc:14:48:ba:90:16:8a:93: e3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:77:96:0F:CF:4A:54:77:7C:90:F2:4D:E2:43:2A:D2:AE:3A:B7:27 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.199.0/24 Signature Algorithm: sha256WithRSAEncryption 35:5b:90:5b:1c:f5:4c:9e:ce:c1:ed:12:21:62:44:6b:51:b1: b4:43:24:22:ba:1f:15:29:d1:d6:95:23:94:ce:21:b5:14:16: 29:41:d5:8d:b3:65:ca:a6:d0:9d:f9:50:d5:44:42:07:a1:06: 4a:5c:94:96:c0:63:bb:03:06:b7:a4:28:5f:f7:70:03:ce:61: f6:6d:60:d2:3f:8a:50:32:2c:24:2b:b4:7d:e7:b9:33:78:38: 4d:65:79:0d:06:82:28:ac:56:95:1f:7f:8f:ae:40:d0:d8:13: e5:8d:af:46:f8:3a:85:fa:98:ce:58:75:60:82:ad:24:27:6f: be:83:9d:8c:4e:ac:ec:1d:57:e5:09:7c:d8:4f:56:2a:71:19: 3c:a7:21:94:3f:33:4a:06:9f:c8:4b:3e:70:c9:a1:e3:2b:a0: aa:d9:bf:bf:18:e5:4c:8e:d8:ff:f4:ff:dd:e0:4b:13:99:c4: 17:c9:fb:18:3e:4b:3a:37:5a:7f:10:71:e0:53:e4:23:de:f1: 9a:5d:5e:a3:0f:14:02:c8:cf:76:ee:f5:f6:0c:6d:60:56:18: d0:1c:4a:ec:63:53:10:29:b1:6a:c0:43:4d:ff:5c:64:58:f3: 5c:03:c4:34:d2:c5:ce:5a:9d:0e:fc:80:f4:1d:ff:12:16:46: 2d:5e:19:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFwQCSFnpV1aUpzGCYMK6Ep/v/aowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNTA4MzAxMzU1MDBaFw0yNjA4MjkxNDAwMDBaMDMxMTAvBgNV BAMTKDg4Nzc5NjBGQ0Y0QTU0Nzc3QzkwRjI0REUyNDMyQUQyQUUzQUI3MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjnkLCNlXz2NVNBrD4e5xRUdIi 5/e32Ut7oyMd5g/N3Pls7ewZAsh0nSqgISiEZL30XLYH9/voDnj2hsL4gUUXTGs5 TMKBnHTjrDDZHlz/FqhuIG6FTXfmN8HXQqbn8d4eljba6eWIH2gcEGskpkjto0/c CNJyDNKf/hGXJ46mSYq7q+aSzWBhw1op/hCs3b049/3uZhdoYCuHegfKEjVQn6CW CjVBBBc4sDQuhAYNwvAGLO7p6uTsl1yNTKgVx85/yW/fVKFb/b5lXylhcNq/3JCD ZFAJnbAm+w5g7s7ULRwfw0RowJ5MeSDv2fMAd58Xf2EGoWncFEi6kBaKk+NhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiHeWD89KVHd8kPJN4kMq0q46tycwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrHMA0GCSqG SIb3DQEBCwUAA4IBAQA1W5BbHPVMns7B7RIhYkRrUbG0QyQiuh8VKdHWlSOUziG1 FBYpQdWNs2XKptCd+VDVREIHoQZKXJSWwGO7Awa3pChf93ADzmH2bWDSP4pQMiwk K7R957kzeDhNZXkNBoIorFaVH3+PrkDQ2BPlja9G+DqF+pjOWHVggq0kJ2++g52M TqzsHVflCXzYT1YqcRk8pyGUPzNKBp/ISz5wyaHjK6Cq2b+/GOVMjtj/9P/d4EsT mcQXyfsYPks6N1p/EHHgU+Qj3vGaXV6jDxQCyM927vX2DG1gVhjQHErsY1MQKbFq wENN/1xkWPNcA8Q00sXOWp0O/ID0Hf8SFkYtXhmR -----END CERTIFICATE-----Generated at Sun Sep 7 15:47:14 2025 by rpki-client