$ rpki-client -vvf repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa File: 3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa (raw, json) Hash identifier: fDXMTAj/S8oQs6LhTEcvx+m4yd6GabWyid1nJ3v2IOc= Subject key identifier: 57:E1:20:BA:23:73:3F:95:2F:23:A3:AE:88:1B:62:DB:08:5F:4F:3D Certificate issuer: /CN=4E054E064DCDF2E49F7282D7370B9EAFF42A944B Certificate serial: 2C45109E93B97A34374DAE80EAD799591FB4F185 Authority key identifier: 4E:05:4E:06:4D:CD:F2:E4:9F:72:82:D7:37:0B:9E:AF:F4:2A:94:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa Signing time: Sat 06 Sep 2025 04:02:27 +0000 ROA not before: Sat 06 Sep 2025 03:57:27 +0000 ROA not after: Sat 05 Sep 2026 04:02:27 +0000 asID: 136865 IP address blocks: 103.239.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.crl rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:45:10:9e:93:b9:7a:34:37:4d:ae:80:ea:d7:99:59:1f:b4:f1:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E054E064DCDF2E49F7282D7370B9EAFF42A944B Validity Not Before: Sep 6 03:57:27 2025 GMT Not After : Sep 5 04:02:27 2026 GMT Subject: CN=57E120BA23733F952F23A3AE881B62DB085F4F3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e3:0f:86:76:45:66:a4:7e:90:67:d8:e3:15: 4f:4f:bd:d2:9b:6d:60:98:5a:9c:4f:d7:0d:88:39: 63:7e:8b:a2:fa:f6:0e:78:ae:2a:77:90:5b:4e:6f: 64:64:fb:cd:17:56:f0:67:72:77:44:4b:3c:fd:10: 01:66:42:57:26:cd:ff:99:4f:50:4e:7f:3d:61:11: 24:ca:e1:2c:c1:f9:29:b9:00:c6:18:95:4f:bc:d8: 4a:2b:e2:b0:13:85:72:e5:08:b4:c6:d5:29:4d:e2: 5c:66:8c:40:55:32:b9:31:f6:a2:53:42:7f:36:d1: 98:3b:0e:25:81:7c:ee:fc:9e:5e:d3:5b:ec:73:ff: 97:69:fd:3b:ab:7a:9d:f5:d5:cf:7b:9b:47:dd:87: fa:1d:61:5d:a5:ee:94:a4:22:51:d7:a6:e5:9f:ee: f2:cb:05:74:84:9c:60:1f:d7:9a:d7:8d:c8:65:b2: 35:eb:89:64:f2:6f:b2:01:4b:6c:18:94:63:3f:a4: 0d:b8:bc:ee:83:f7:78:ce:44:a0:3e:16:02:f5:65: 5c:38:c6:c7:b1:22:44:85:d7:8b:4a:8f:2f:09:b3: 9b:52:6c:cf:43:a6:8c:02:c7:8d:93:f9:95:12:59: 5b:4f:7f:60:0a:48:db:1c:93:50:57:91:d7:af:a4: 5b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E1:20:BA:23:73:3F:95:2F:23:A3:AE:88:1B:62:DB:08:5F:4F:3D X509v3 Authority Key Identifier: keyid:4E:05:4E:06:4D:CD:F2:E4:9F:72:82:D7:37:0B:9E:AF:F4:2A:94:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.23.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a4:a7:40:8b:b4:18:86:bf:21:11:a3:36:fa:e2:5b:5d:b5: b9:16:bf:07:2c:c8:77:aa:82:7d:eb:e1:b5:ff:32:5c:1b:ff: 15:31:28:0f:ed:70:1b:7d:d5:1c:37:9d:e6:f2:8c:7a:6e:b7: 03:d6:b9:31:64:d2:ff:1f:44:9a:b4:0d:24:6e:cd:79:91:c4: e5:f8:a7:fe:63:0e:30:49:9f:71:14:3f:d6:a9:60:d2:14:78: 9c:4c:27:9c:26:37:ca:15:05:ad:b2:a2:2d:e4:97:3e:ae:ef: 7e:28:5a:bc:61:c3:39:25:86:75:94:c3:f2:46:2f:ca:9f:28: 71:99:69:92:8b:a4:00:0d:fa:4a:35:2c:e4:15:21:b6:e2:65: c6:9c:b2:7b:e3:f2:3a:eb:34:c3:d5:78:de:b6:18:6f:10:44: 91:be:20:4d:60:64:d9:24:18:84:8e:66:ec:59:9f:65:bf:b0: 8c:53:22:dd:c3:8b:cf:e5:08:e8:a2:f4:74:66:ff:c6:48:7d: ad:42:96:0b:b8:c6:e8:95:e1:3c:25:34:e5:76:41:70:ad:cc: 11:bd:9e:b7:e7:8f:3c:35:93:58:33:fa:e1:fa:f0:72:db:4b: 88:7a:83:65:72:9c:a5:01:d6:11:cb:96:d1:94:6d:c0:a5:2a: 76:57:0a:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULEUQnpO5ejQ3Ta6A6teZWR+08YUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUwNTRFMDY0RENERjJFNDlGNzI4MkQ3MzcwQjlFQUZG NDJBOTQ0QjAeFw0yNTA5MDYwMzU3MjdaFw0yNjA5MDUwNDAyMjdaMDMxMTAvBgNV BAMTKDU3RTEyMEJBMjM3MzNGOTUyRjIzQTNBRTg4MUI2MkRCMDg1RjRGM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy4w+GdkVmpH6QZ9jjFU9PvdKb bWCYWpxP1w2IOWN+i6L69g54rip3kFtOb2Rk+80XVvBncndESzz9EAFmQlcmzf+Z T1BOfz1hESTK4SzB+Sm5AMYYlU+82Eor4rAThXLlCLTG1SlN4lxmjEBVMrkx9qJT Qn820Zg7DiWBfO78nl7TW+xz/5dp/Turep311c97m0fdh/odYV2l7pSkIlHXpuWf 7vLLBXSEnGAf15rXjchlsjXriWTyb7IBS2wYlGM/pA24vO6D93jORKA+FgL1ZVw4 xsexIkSF14tKjy8Js5tSbM9DpowCx42T+ZUSWVtPf2AKSNsck1BXkdevpFuJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUV+EguiNzP5UvI6OuiBti2whfTz0wHwYDVR0j BBgwFoAUTgVOBk3N8uSfcoLXNwuer/QqlEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mzk4MDYzZS01N2ExLTQwZjItODUyNy00ZDBhNjljNWQ2NDcvMC80RTA1NEUwNjRE Q0RGMkU0OUY3MjgyRDczNzBCOUVBRkY0MkE5NDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUwNTRFMDY0RENERjJFNDlGNzI4MkQ3MzcwQjlFQUZGNDJB OTQ0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzOTgwNjNlLTU3YTEtNDBmMi04 NTI3LTRkMGE2OWM1ZDY0Ny8wLzMxMzAzMzJlMzIzMzM5MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8XMA0GCSqG SIb3DQEBCwUAA4IBAQBMpKdAi7QYhr8hEaM2+uJbXbW5Fr8HLMh3qoJ96+G1/zJc G/8VMSgP7XAbfdUcN53m8ox6brcD1rkxZNL/H0SatA0kbs15kcTl+Kf+Yw4wSZ9x FD/WqWDSFHicTCecJjfKFQWtsqIt5Jc+ru9+KFq8YcM5JYZ1lMPyRi/KnyhxmWmS i6QADfpKNSzkFSG24mXGnLJ74/I66zTD1XjethhvEESRviBNYGTZJBiEjmbsWZ9l v7CMUyLdw4vP5QjoovR0Zv/GSH2tQpYLuMboleE8JTTldkFwrcwRvZ635488NZNY M/rh+vBy20uIeoNlcpylAdYRy5bRlG3ApSp2Vwqw -----END CERTIFICATE-----Generated at Tue Sep 9 04:20:33 2025 by rpki-client