$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa File: 3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: +SLAv/Ao5ipR0W/v6AgPtFrgrn+d0qK7qqbca2xo8WU= Subject key identifier: E2:00:13:63:C8:C5:EB:39:5A:89:E6:17:1B:6B:8F:6A:6B:A1:74:21 Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 158D2E5076339AAFA98E416A82088247F54971C3 Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa Signing time: Tue 26 Aug 2025 18:00:00 +0000 ROA not before: Tue 26 Aug 2025 17:55:00 +0000 ROA not after: Tue 25 Aug 2026 18:00:00 +0000 asID: 133354 IP address blocks: 103.217.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:8d:2e:50:76:33:9a:af:a9:8e:41:6a:82:08:82:47:f5:49:71:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Aug 26 17:55:00 2025 GMT Not After : Aug 25 18:00:00 2026 GMT Subject: CN=E2001363C8C5EB395A89E6171B6B8F6A6BA17421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e5:e9:7c:b3:8a:ec:57:5a:38:2c:c7:3a:b8: ad:4e:49:bd:e3:0c:ac:cd:b2:ce:86:1f:ff:ae:f0: eb:50:71:fd:1e:e7:21:79:d9:01:be:e9:c4:6e:df: de:bf:db:1d:df:21:a5:89:c3:4d:71:0a:33:da:40: b7:47:86:e8:b5:6f:fa:b6:ab:83:8a:97:0f:19:8b: 52:9b:a9:f4:25:31:8b:1e:44:12:ab:a6:80:7a:23: df:e8:d7:83:4b:bf:1a:82:24:50:61:ba:fa:b0:c1: 7b:c3:a7:0d:3b:aa:25:c7:d3:79:11:af:28:bc:bc: b5:fd:30:10:0c:f3:5c:9a:71:0c:fb:cb:b1:78:33: e2:24:6c:05:f7:f1:3a:1e:4e:32:02:13:ea:2d:c2: 1f:11:2f:8f:91:f3:ce:7c:d1:7b:b8:0c:54:a8:67: b6:f2:ce:c6:ca:87:1e:97:15:c9:1c:ff:7d:34:d9: ee:d1:d5:d5:d0:7e:67:8c:9a:af:10:12:e9:ac:0a: d5:c4:eb:cc:db:cf:c9:95:f7:22:b0:1e:89:3c:34: d6:30:b3:6a:12:81:6a:eb:94:90:38:19:06:29:79: a7:51:55:6a:38:73:54:61:f6:fc:fe:19:4b:f3:e7: 09:e7:d5:a0:04:65:70:41:a5:19:96:0a:06:eb:35: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:00:13:63:C8:C5:EB:39:5A:89:E6:17:1B:6B:8F:6A:6B:A1:74:21 X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.173.0/24 Signature Algorithm: sha256WithRSAEncryption a1:84:bd:6b:a2:ce:b3:2d:7e:33:7f:36:a0:84:f4:5f:85:25: 4f:67:7a:f1:ed:bf:ab:fe:cb:e2:e9:77:b7:8d:87:3f:9b:44: 63:7b:da:53:2b:b3:e0:95:77:39:6f:2d:96:7c:c6:2a:00:cc: e7:81:df:61:c7:af:a3:69:57:34:3e:1a:6b:fa:49:c6:a3:43: 89:44:4f:a2:8d:0d:3d:9f:8d:c8:a6:1a:44:7b:cb:cb:04:46: 52:83:70:b2:f3:02:c3:59:cb:04:18:16:2b:58:1d:a3:68:ab: f3:96:f0:8a:ab:6a:7f:fc:94:b0:a8:97:ca:5f:19:cc:c7:76: ff:90:48:41:37:b4:73:d3:0a:f9:8d:c9:24:4c:16:c7:8d:62: 0b:80:2b:c2:9a:0c:91:ba:33:77:2c:73:08:47:49:dc:80:2b: b0:82:75:90:06:64:c1:9d:50:4e:f7:a2:b8:c5:4b:ea:cd:0d: 02:f9:96:6b:5d:52:3c:56:1f:33:f9:31:fc:42:31:a3:b6:4f: 6d:e3:b7:34:18:53:7d:22:79:f0:c0:25:1d:55:53:11:73:b3: 8c:fd:1a:d7:87:ec:3f:b7:5a:36:b4:3a:fe:7f:ab:c5:b2:11: 4f:fe:6a:3b:ac:e6:1e:c4:8b:14:d3:49:e0:9c:f7:b8:db:2f: 4c:5e:5e:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFY0uUHYzmq+pjkFqggiCR/VJccMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNTA4MjYxNzU1MDBaFw0yNjA4MjUxODAwMDBaMDMxMTAvBgNV BAMTKEUyMDAxMzYzQzhDNUVCMzk1QTg5RTYxNzFCNkI4RjZBNkJBMTc0MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ5el8s4rsV1o4LMc6uK1OSb3j DKzNss6GH/+u8OtQcf0e5yF52QG+6cRu396/2x3fIaWJw01xCjPaQLdHhui1b/q2 q4OKlw8Zi1KbqfQlMYseRBKrpoB6I9/o14NLvxqCJFBhuvqwwXvDpw07qiXH03kR ryi8vLX9MBAM81yacQz7y7F4M+IkbAX38ToeTjICE+otwh8RL4+R88580Xu4DFSo Z7byzsbKhx6XFckc/3002e7R1dXQfmeMmq8QEumsCtXE68zbz8mV9yKwHok8NNYw s2oSgWrrlJA4GQYpeadRVWo4c1Rh9vz+GUvz5wnn1aAEZXBBpRmWCgbrNTntAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4gATY8jF6zlaieYXG2uPamuhdCEwHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2a0wDQYJ KoZIhvcNAQELBQADggEBAKGEvWuizrMtfjN/NqCE9F+FJU9nevHtv6v+y+Lpd7eN hz+bRGN72lMrs+CVdzlvLZZ8xioAzOeB32HHr6NpVzQ+Gmv6ScajQ4lET6KNDT2f jcimGkR7y8sERlKDcLLzAsNZywQYFitYHaNoq/OW8Iqran/8lLCol8pfGczHdv+Q SEE3tHPTCvmNySRMFseNYguAK8KaDJG6M3cscwhHSdyAK7CCdZAGZMGdUE73orjF S+rNDQL5lmtdUjxWHzP5MfxCMaO2T23jtzQYU30iefDAJR1VUxFzs4z9GteH7D+3 Wja0Ov5/q8WyEU/+ajus5h7EixTTSeCc97jbL0xeXjA= -----END CERTIFICATE-----Generated at Mon Sep 8 10:41:59 2025 by rpki-client