$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa File: 3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: Jy6L+sGekPMyuMtdpky0D2jRd/OipqZg9C05WnpPS4Y= Subject key identifier: B9:C6:6B:9C:53:2D:61:30:5A:98:20:45:6F:51:6F:8C:C9:1B:5D:71 Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 5AF65E99BC6660DC1F427574DB5D044757D306AB Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa Signing time: Tue 26 Aug 2025 18:00:00 +0000 ROA not before: Tue 26 Aug 2025 17:55:00 +0000 ROA not after: Tue 25 Aug 2026 18:00:00 +0000 asID: 133354 IP address blocks: 103.217.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f6:5e:99:bc:66:60:dc:1f:42:75:74:db:5d:04:47:57:d3:06:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Aug 26 17:55:00 2025 GMT Not After : Aug 25 18:00:00 2026 GMT Subject: CN=B9C66B9C532D61305A9820456F516F8CC91B5D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ec:7c:ce:d1:9f:57:7a:9c:ab:f3:b5:6b:e4: 13:96:9e:09:1c:cb:a1:d0:81:8e:54:0b:62:63:62: 87:7c:d8:34:67:8d:8f:0f:c5:12:2d:21:3f:bb:be: 16:46:bc:82:2c:22:7a:35:0e:13:20:83:ef:95:ff: ef:49:f1:5a:31:52:c0:49:c6:29:ef:a2:c1:39:05: 84:28:da:29:be:f2:10:88:44:f4:82:b6:c1:1f:18: 01:95:73:57:a9:ef:4b:9f:be:01:b4:91:f7:3a:2b: 9c:2d:5b:ea:bb:7d:7c:c5:08:40:11:27:c8:5d:16: c4:cc:b2:ad:05:be:6c:ec:b8:89:82:21:fc:38:4b: 17:8e:6a:3d:58:08:88:4c:e3:ad:ea:be:82:51:00: 45:de:d7:bb:17:7f:db:b8:b0:38:67:26:8d:90:7b: 83:0b:7c:13:bb:ae:7d:d4:f3:4e:ef:9f:20:fe:56: 15:08:c3:3b:a8:7e:fe:56:35:3c:d1:11:3d:04:fb: c5:67:f1:4e:06:b0:91:e0:f8:03:13:4e:5f:6d:a3: 32:54:72:53:9d:84:71:d1:4e:58:cb:1b:a8:22:c4: 4f:56:b0:d9:6c:b3:73:bc:44:b5:86:7c:6c:5a:29: a1:a5:cb:76:4d:fa:ef:a6:a0:90:86:26:2c:7d:60: ae:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C6:6B:9C:53:2D:61:30:5A:98:20:45:6F:51:6F:8C:C9:1B:5D:71 X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.172.0/24 Signature Algorithm: sha256WithRSAEncryption 60:60:52:76:e4:70:81:eb:58:37:0d:a9:43:c3:82:eb:88:11: 94:ac:60:98:8f:40:52:c2:60:d7:84:f1:b7:69:e7:08:f6:d8: 24:68:3d:af:2f:4c:82:4a:c1:1c:00:60:74:eb:ef:df:a7:80: c8:41:84:35:18:04:7f:76:33:e5:43:13:02:3a:0a:b2:1c:57: c5:48:f0:38:0b:ee:03:ff:c1:67:76:25:7e:d0:bb:d6:3a:d7: 4b:8d:1b:15:4b:0d:79:07:91:55:a7:cc:f8:1f:20:09:09:4c: 05:62:73:5f:c4:1f:46:14:ff:6a:ee:eb:0b:14:4b:d8:4f:27: fb:7b:7e:25:35:f9:42:bf:e3:9c:4c:ef:03:08:2f:24:73:12: 13:de:ca:4c:6f:01:d7:a4:15:c4:83:10:00:6d:ed:00:f7:20: dc:b6:d4:da:07:e4:60:dc:82:2f:8f:43:96:bc:73:3b:e8:1c: 0c:f6:4d:31:ba:50:1c:01:67:82:cf:36:51:77:ba:fc:ba:a8: af:e0:a5:66:7d:42:b4:8e:e7:a3:e7:5d:a1:c6:92:09:e8:b7: ce:c1:06:1e:33:66:a6:99:18:02:61:98:d5:40:6b:24:e7:8d: cc:20:b0:1d:bf:e2:08:33:b0:12:c9:3b:e2:88:af:2a:54:95: 0f:0c:e4:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWvZembxmYNwfQnV0210ER1fTBqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNTA4MjYxNzU1MDBaFw0yNjA4MjUxODAwMDBaMDMxMTAvBgNV BAMTKEI5QzY2QjlDNTMyRDYxMzA1QTk4MjA0NTZGNTE2RjhDQzkxQjVENzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17HzO0Z9Xepyr87Vr5BOWngkc y6HQgY5UC2JjYod82DRnjY8PxRItIT+7vhZGvIIsIno1DhMgg++V/+9J8VoxUsBJ xinvosE5BYQo2im+8hCIRPSCtsEfGAGVc1ep70ufvgG0kfc6K5wtW+q7fXzFCEAR J8hdFsTMsq0FvmzsuImCIfw4SxeOaj1YCIhM463qvoJRAEXe17sXf9u4sDhnJo2Q e4MLfBO7rn3U807vnyD+VhUIwzuofv5WNTzRET0E+8Vn8U4GsJHg+AMTTl9tozJU clOdhHHRTljLG6gixE9WsNlss3O8RLWGfGxaKaGly3ZN+u+moJCGJix9YK5lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUucZrnFMtYTBamCBFb1FvjMkbXXEwHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2awwDQYJ KoZIhvcNAQELBQADggEBAGBgUnbkcIHrWDcNqUPDguuIEZSsYJiPQFLCYNeE8bdp 5wj22CRoPa8vTIJKwRwAYHTr79+ngMhBhDUYBH92M+VDEwI6CrIcV8VI8DgL7gP/ wWd2JX7Qu9Y610uNGxVLDXkHkVWnzPgfIAkJTAVic1/EH0YU/2ru6wsUS9hPJ/t7 fiU1+UK/45xM7wMILyRzEhPeykxvAdekFcSDEABt7QD3INy21NoH5GDcgi+PQ5a8 czvoHAz2TTG6UBwBZ4LPNlF3uvy6qK/gpWZ9QrSO56PnXaHGkgnot87BBh4zZqaZ GAJhmNVAayTnjcwgsB2/4ggzsBLJO+KIrypUlQ8M5NQ= -----END CERTIFICATE-----Generated at Mon Sep 8 10:43:30 2025 by rpki-client