$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa File: 3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa (raw, json) Hash identifier: zKHXogUEbsyyC8ISVc+ANF+73aCbCi6els1lcd1hD1E= Subject key identifier: 19:7B:F4:1F:33:E7:13:E3:E1:0C:1F:5D:22:73:A3:7C:C7:51:E1:F2 Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 481FEF27B833F9D7E5317CDE2A3906606E634340 Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa Signing time: Tue 26 Aug 2025 18:00:00 +0000 ROA not before: Tue 26 Aug 2025 17:55:00 +0000 ROA not after: Tue 25 Aug 2026 18:00:00 +0000 asID: 133354 IP address blocks: 103.217.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1f:ef:27:b8:33:f9:d7:e5:31:7c:de:2a:39:06:60:6e:63:43:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Aug 26 17:55:00 2025 GMT Not After : Aug 25 18:00:00 2026 GMT Subject: CN=197BF41F33E713E3E10C1F5D2273A37CC751E1F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4c:17:d6:50:9e:4e:6e:7d:9b:11:78:3e:16: ac:31:c6:f2:96:cf:13:0a:02:a9:bb:71:cb:45:46: b6:43:8c:73:61:3d:aa:04:90:7d:b2:12:f0:1d:09: 81:57:82:c4:35:53:3e:73:6f:81:90:fd:1b:ae:4d: d0:25:64:93:ea:16:3e:c1:59:0b:8f:37:4d:eb:45: a6:8d:e7:4e:2e:6a:1b:22:ae:40:62:32:b3:6f:e2: 54:e2:30:8e:9f:e6:db:45:ab:b5:a7:72:74:0e:be: 59:69:66:ec:fa:7f:bf:50:da:d5:7f:b8:36:1b:5c: e0:29:56:6d:86:46:7e:c3:90:34:97:09:ce:bc:35: 4e:55:ae:48:42:1e:77:66:55:1d:4c:d5:40:67:f7: ac:60:8a:a6:b1:5f:cc:43:5e:ca:b1:15:f4:39:53: 39:6b:17:2c:99:63:cd:31:38:a0:83:59:63:2a:0a: ba:15:22:e1:1b:75:8a:56:04:d6:af:12:44:d9:5b: 8d:94:6d:34:df:88:80:8c:e3:91:b4:7b:04:d8:0c: ad:07:95:a5:2b:73:b5:9e:53:d4:d0:b8:03:4e:ab: df:2c:52:49:74:71:94:f7:6d:2f:3d:42:9f:48:5f: b3:5e:72:ec:24:10:7f:19:2a:55:d5:1c:6a:53:6f: 57:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:7B:F4:1F:33:E7:13:E3:E1:0C:1F:5D:22:73:A3:7C:C7:51:E1:F2 X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.172.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:6c:7e:70:6a:f1:f4:70:84:5e:88:c9:37:87:f8:5c:9d:5e: fd:5b:47:fc:c9:4d:e0:93:ca:12:6c:ec:ca:aa:43:a3:4f:02: bd:5c:18:a7:d5:92:6d:e3:80:2d:cc:7c:ae:b3:3d:61:ab:f6: 19:5d:9d:66:f5:8c:b0:96:e5:f1:bf:a9:79:08:94:2a:e3:19: 14:1f:82:f5:44:c3:8b:8a:7a:1a:bb:c3:cb:56:8c:89:1d:f0: b6:4e:87:6c:7a:9c:7b:bd:32:b7:c1:f5:f4:67:ca:82:d7:44: 8a:48:1d:c2:e5:8b:ca:f9:7e:3d:b4:80:44:c8:e4:cb:2d:4e: f8:c9:7a:f6:f7:da:a4:7d:76:ab:55:79:f5:e2:8d:bb:73:ae: ad:94:9c:58:a1:c6:db:97:3f:38:b9:7f:4f:d9:b1:1b:bf:ee: 0f:de:77:0d:36:37:e4:05:14:45:b7:8d:d4:d2:34:ec:5a:42: 69:e5:28:b2:91:43:70:82:f1:42:70:11:02:8e:f7:10:e1:9a: cb:eb:be:07:3e:1d:07:25:79:1a:6b:c1:b9:01:4d:ab:11:47: 73:9e:24:ba:8d:02:e6:b2:33:2e:fd:df:2a:ec:fc:43:71:e0: d0:d6:9a:4c:36:fb:6e:36:b9:34:85:fa:b8:f6:94:a3:9e:73: 8f:eb:d4:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSB/vJ7gz+dflMXzeKjkGYG5jQ0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNTA4MjYxNzU1MDBaFw0yNjA4MjUxODAwMDBaMDMxMTAvBgNV BAMTKDE5N0JGNDFGMzNFNzEzRTNFMTBDMUY1RDIyNzNBMzdDQzc1MUUxRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/TBfWUJ5Obn2bEXg+FqwxxvKW zxMKAqm7cctFRrZDjHNhPaoEkH2yEvAdCYFXgsQ1Uz5zb4GQ/RuuTdAlZJPqFj7B WQuPN03rRaaN504uahsirkBiMrNv4lTiMI6f5ttFq7WncnQOvllpZuz6f79Q2tV/ uDYbXOApVm2GRn7DkDSXCc68NU5VrkhCHndmVR1M1UBn96xgiqaxX8xDXsqxFfQ5 UzlrFyyZY80xOKCDWWMqCroVIuEbdYpWBNavEkTZW42UbTTfiICM45G0ewTYDK0H laUrc7WeU9TQuANOq98sUkl0cZT3bS89Qp9IX7NecuwkEH8ZKlXVHGpTb1eZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGXv0HzPnE+PhDB9dInOjfMdR4fIwHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn2awwDQYJ KoZIhvcNAQELBQADggEBAAxsfnBq8fRwhF6IyTeH+FydXv1bR/zJTeCTyhJs7Mqq Q6NPAr1cGKfVkm3jgC3MfK6zPWGr9hldnWb1jLCW5fG/qXkIlCrjGRQfgvVEw4uK ehq7w8tWjIkd8LZOh2x6nHu9MrfB9fRnyoLXRIpIHcLli8r5fj20gETI5MstTvjJ evb32qR9dqtVefXijbtzrq2UnFihxtuXPzi5f0/ZsRu/7g/edw02N+QFFEW3jdTS NOxaQmnlKLKRQ3CC8UJwEQKO9xDhmsvrvgc+HQcleRprwbkBTasRR3OeJLqNAuay My793yrs/ENx4NDWmkw2+242uTSF+rj2lKOec4/r1PA= -----END CERTIFICATE-----Generated at Mon Sep 8 10:42:01 2025 by rpki-client