$ rpki-client -vvf repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa File: 3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa (raw, json) Hash identifier: veFUUZaHhHDpj6KmBcnJnR41ugvnsdBmWkSb2+LTSCU= Subject key identifier: F3:8B:58:C1:70:1F:3A:5E:AB:6B:FE:55:A9:F2:8F:10:50:5B:D7:5F Certificate issuer: /CN=CD93E5B741D83CA78E83C5AD92156B086BC05233 Certificate serial: 141108E540583009F748134255018B67E3FDD516 Authority key identifier: CD:93:E5:B7:41:D8:3C:A7:8E:83:C5:AD:92:15:6B:08:6B:C0:52:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD93E5B741D83CA78E83C5AD92156B086BC05233.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa Signing time: Sat 30 Aug 2025 09:00:50 +0000 ROA not before: Sat 30 Aug 2025 08:55:50 +0000 ROA not after: Sat 29 Aug 2026 09:00:50 +0000 asID: 141133 IP address blocks: 103.158.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/CD93E5B741D83CA78E83C5AD92156B086BC05233.crl rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/CD93E5B741D83CA78E83C5AD92156B086BC05233.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD93E5B741D83CA78E83C5AD92156B086BC05233.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:11:08:e5:40:58:30:09:f7:48:13:42:55:01:8b:67:e3:fd:d5:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD93E5B741D83CA78E83C5AD92156B086BC05233 Validity Not Before: Aug 30 08:55:50 2025 GMT Not After : Aug 29 09:00:50 2026 GMT Subject: CN=F38B58C1701F3A5EAB6BFE55A9F28F10505BD75F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:65:ae:75:f0:d9:0e:37:af:57:41:e5:c8: 2c:4e:8f:bb:d8:e4:8b:93:9f:0b:01:5a:58:c9:ee: 06:5f:68:d4:59:23:17:13:d4:51:e6:3a:ad:a0:57: 6f:b8:4a:94:e5:22:71:c2:62:33:b5:b0:d5:0d:b7: 72:c7:1d:15:40:49:94:b7:19:55:9e:40:44:ac:73: 5f:9d:45:56:f9:0b:15:fd:90:b5:84:fc:43:ab:7d: 44:c4:d0:9b:95:e5:26:fb:75:22:4b:0b:01:ba:74: de:7c:54:c1:ca:34:5a:1e:6d:d7:5a:fd:bb:54:86: e4:38:4c:e2:bb:2d:5d:c4:a0:4f:4d:1f:04:e0:a5: a2:d5:b2:e0:56:cf:e6:a4:bc:60:ff:45:cf:15:7d: 9e:91:7a:ae:77:0a:4b:48:61:ec:a3:ba:fe:8e:15: 1f:cf:ce:66:30:7b:c9:e1:a0:75:8d:92:8e:63:cd: 7d:bc:c8:b8:35:e8:95:6b:0a:c8:9e:9f:94:45:a6: e5:3f:53:56:14:b3:d2:3a:06:bf:a1:38:59:2a:57: 5c:f0:70:e4:c6:b7:a1:9f:c9:97:e3:f7:b7:f3:42: 23:4a:9a:e5:a6:d3:01:f7:5f:fe:c9:b7:60:65:d8: ce:9d:0b:2b:6d:89:10:94:fd:32:59:2f:4e:8a:b6: cc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8B:58:C1:70:1F:3A:5E:AB:6B:FE:55:A9:F2:8F:10:50:5B:D7:5F X509v3 Authority Key Identifier: keyid:CD:93:E5:B7:41:D8:3C:A7:8E:83:C5:AD:92:15:6B:08:6B:C0:52:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/CD93E5B741D83CA78E83C5AD92156B086BC05233.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD93E5B741D83CA78E83C5AD92156B086BC05233.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.196.0/24 Signature Algorithm: sha256WithRSAEncryption 68:96:1d:da:ae:e6:ac:55:f5:3d:66:17:fc:18:ec:2a:58:48: f2:09:03:bf:49:fd:76:26:23:6a:d0:10:45:53:52:9b:da:9f: b7:6d:25:cf:2d:39:ec:92:b6:9a:76:7e:d5:49:e7:f2:86:08: 85:d3:51:a3:50:2e:05:11:4f:54:71:60:21:22:06:28:4b:65: 0c:ae:34:b3:93:e4:30:cb:e6:3b:e1:25:4f:c9:ac:c1:21:0f: ff:df:d9:52:f8:cf:c0:80:00:32:49:48:62:5f:d0:71:4d:06: c1:2f:d2:2d:36:1c:66:a5:63:f6:94:a1:32:8a:98:c3:f4:72: 64:7c:72:31:e1:11:30:07:02:69:22:5f:d3:77:0c:ba:0c:ea: 3e:93:43:6f:17:b5:97:2b:8d:09:e7:a4:6d:56:65:bf:0d:23: a4:e3:87:f4:1e:a4:ff:ec:04:d5:94:6b:43:53:a1:4d:67:7a: 43:c7:73:4e:99:ab:e2:af:f3:f0:a4:fb:f2:34:72:43:3c:1e: c8:0d:cf:90:00:7d:47:87:88:40:ad:f6:9f:0b:95:08:96:b2: cb:c7:5d:37:c5:c6:b3:a8:10:b1:29:98:c7:03:31:08:c8:fa: f8:ea:de:50:ff:53:69:f1:37:6a:9e:8d:d1:ae:a5:3b:a4:0b: f0:70:e1:40 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFBEI5UBYMAn3SBNCVQGLZ+P91RYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q5M0U1Qjc0MUQ4M0NBNzhFODNDNUFEOTIxNTZCMDg2 QkMwNTIzMzAeFw0yNTA4MzAwODU1NTBaFw0yNjA4MjkwOTAwNTBaMDMxMTAvBgNV BAMTKEYzOEI1OEMxNzAxRjNBNUVBQjZCRkU1NUE5RjI4RjEwNTA1QkQ3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2n2WudfDZDjevV0HlyCxOj7vY 5IuTnwsBWljJ7gZfaNRZIxcT1FHmOq2gV2+4SpTlInHCYjO1sNUNt3LHHRVASZS3 GVWeQESsc1+dRVb5CxX9kLWE/EOrfUTE0JuV5Sb7dSJLCwG6dN58VMHKNFoebdda /btUhuQ4TOK7LV3EoE9NHwTgpaLVsuBWz+akvGD/Rc8VfZ6Req53CktIYeyjuv6O FR/PzmYwe8nhoHWNko5jzX28yLg16JVrCsien5RFpuU/U1YUs9I6Br+hOFkqV1zw cOTGt6GfyZfj97fzQiNKmuWm0wH3X/7Jt2Bl2M6dCyttiRCU/TJZL06KtsxXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU84tYwXAfOl6ra/5VqfKPEFBb118wHwYDVR0j BBgwFoAUzZPlt0HYPKeOg8WtkhVrCGvAUjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmRkY2I0Yi02ZDhlLTQ1OWItOGFhMi05OWE2MDg4NjI1NmEvMC9DRDkzRTVCNzQx RDgzQ0E3OEU4M0M1QUQ5MjE1NkIwODZCQzA1MjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q5M0U1Qjc0MUQ4M0NBNzhFODNDNUFEOTIxNTZCMDg2QkMw NTIzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZGRjYjRiLTZkOGUtNDU5Yi04 YWEyLTk5YTYwODg2MjU2YS8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsQwDQYJ KoZIhvcNAQELBQADggEBAGiWHdqu5qxV9T1mF/wY7CpYSPIJA79J/XYmI2rQEEVT Upvan7dtJc8tOeyStpp2ftVJ5/KGCIXTUaNQLgURT1RxYCEiBihLZQyuNLOT5DDL 5jvhJU/JrMEhD//f2VL4z8CAADJJSGJf0HFNBsEv0i02HGalY/aUoTKKmMP0cmR8 cjHhETAHAmkiX9N3DLoM6j6TQ28XtZcrjQnnpG1WZb8NI6Tjh/QepP/sBNWUa0NT oU1nekPHc06Zq+Kv8/Ck+/I0ckM8HsgNz5AAfUeHiECt9p8LlQiWssvHXTfFxrOo ELEpmMcDMQjI+vjq3lD/U2nxN2qejdGupTukC/Bw4UA= -----END CERTIFICATE-----Generated at Mon Sep 8 10:46:27 2025 by rpki-client