$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa File: 3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: vaX/n6vc4K9mejYUu1eJI/tNjnfyjVyWN2o5zH8Hflc= Subject key identifier: 31:C4:DC:BA:90:B3:CD:58:5F:06:15:37:5E:31:89:80:4A:5A:07:AE Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 6B290590E3B299963408ADEA4D3162760B147739 Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa Signing time: Tue 26 Aug 2025 18:00:00 +0000 ROA not before: Tue 26 Aug 2025 17:55:00 +0000 ROA not after: Tue 25 Aug 2026 18:00:00 +0000 asID: 133354 IP address blocks: 103.232.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:29:05:90:e3:b2:99:96:34:08:ad:ea:4d:31:62:76:0b:14:77:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Aug 26 17:55:00 2025 GMT Not After : Aug 25 18:00:00 2026 GMT Subject: CN=31C4DCBA90B3CD585F0615375E3189804A5A07AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:1d:fc:f9:e4:cb:79:38:76:4e:48:84:45: ce:a9:1a:ff:e8:41:c9:58:7a:f1:ff:4d:97:98:1d: ca:12:a9:6c:1e:d1:02:be:bb:e1:c1:72:d5:bb:e9: 70:39:94:2c:92:53:1d:c9:31:78:10:5b:da:6e:fa: 70:d4:c0:e5:ab:48:c2:39:ef:1c:06:ba:0e:89:fd: 9b:e5:2c:6c:14:85:70:21:48:e8:5c:b0:0c:02:1c: 93:54:2e:0d:2d:a7:a9:24:5e:4f:b1:55:87:ef:24: de:bd:0d:02:dc:ec:bc:4e:68:2d:cf:66:54:2c:10: 82:f1:fa:c0:50:46:8e:3c:4a:be:9b:a7:a8:06:62: 42:3a:45:da:48:7b:ab:7d:26:d5:9c:c7:21:30:e6: cd:04:02:05:57:7d:81:d8:22:89:67:a9:0b:83:0d: e2:6e:4d:30:94:88:66:54:15:68:a8:4f:df:dc:dc: 6b:50:f2:56:7e:85:57:0e:4c:d7:64:55:d9:39:a6: d3:81:dc:cd:b8:95:bf:60:53:98:22:ff:fd:1e:63: 65:a0:e7:85:79:f3:b3:e0:f1:cd:24:3e:9a:a7:7b: 10:b8:3a:f6:b3:ce:cd:4e:40:b9:26:20:eb:ed:8f: 07:1e:35:d6:08:76:6e:b1:75:16:65:5d:62:95:8a: 01:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C4:DC:BA:90:B3:CD:58:5F:06:15:37:5E:31:89:80:4A:5A:07:AE X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.32.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:64:51:08:93:50:96:7f:31:43:b5:58:ac:20:7d:d8:76:c6: 15:83:e3:ae:79:9a:4d:bf:68:d6:11:02:37:91:52:a2:8d:3a: 71:30:aa:85:50:80:3b:84:10:a1:3a:28:bc:09:c2:84:0a:97: 15:2d:b9:e3:ab:38:78:85:b5:91:e8:14:73:c2:fd:d4:51:26: c2:15:42:1b:a6:08:f1:e4:3c:39:90:11:e1:7b:f8:b7:73:b3: 75:f9:59:c7:4a:33:fa:8f:18:46:1d:b4:64:26:d7:3a:99:3e: 4b:c0:d3:1c:37:56:f9:2e:05:92:11:ee:8e:07:52:29:6a:e8: 05:65:f5:5e:ec:5d:31:de:00:ac:9b:b5:87:12:29:7e:38:ce: d4:07:6f:2e:d0:a9:b6:c7:96:79:0d:2a:15:ef:2f:71:11:a9: 10:25:64:ee:bb:f1:15:3d:e5:6a:0a:6f:61:d7:4e:13:93:c1: 69:2f:91:01:d9:e4:b7:a6:40:80:06:47:31:b5:b4:4f:9c:e5: 2e:56:1b:e4:51:0b:ec:9f:1f:47:8a:10:b8:8b:8d:00:4f:85: a6:8e:e2:12:c2:ab:1d:bf:93:9a:87:4a:2c:89:8f:e3:c5:0e: e6:20:54:0c:50:67:f3:8f:62:e4:2f:33:5c:e5:b1:ec:1f:19: 04:d6:c7:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaykFkOOymZY0CK3qTTFidgsUdzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNTA4MjYxNzU1MDBaFw0yNjA4MjUxODAwMDBaMDMxMTAvBgNV BAMTKDMxQzREQ0JBOTBCM0NENTg1RjA2MTUzNzVFMzE4OTgwNEE1QTA3QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCGx38+eTLeTh2TkiERc6pGv/o QclYevH/TZeYHcoSqWwe0QK+u+HBctW76XA5lCySUx3JMXgQW9pu+nDUwOWrSMI5 7xwGug6J/ZvlLGwUhXAhSOhcsAwCHJNULg0tp6kkXk+xVYfvJN69DQLc7LxOaC3P ZlQsEILx+sBQRo48Sr6bp6gGYkI6RdpIe6t9JtWcxyEw5s0EAgVXfYHYIolnqQuD DeJuTTCUiGZUFWioT9/c3GtQ8lZ+hVcOTNdkVdk5ptOB3M24lb9gU5gi//0eY2Wg 54V587Pg8c0kPpqnexC4Ovazzs1OQLkmIOvtjwceNdYIdm6xdRZlXWKVigHPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMcTcupCzzVhfBhU3XjGJgEpaB64wHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMzMyMmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ggMA0GCSqG SIb3DQEBCwUAA4IBAQCMZFEIk1CWfzFDtVisIH3YdsYVg+OueZpNv2jWEQI3kVKi jTpxMKqFUIA7hBChOii8CcKECpcVLbnjqzh4hbWR6BRzwv3UUSbCFUIbpgjx5Dw5 kBHhe/i3c7N1+VnHSjP6jxhGHbRkJtc6mT5LwNMcN1b5LgWSEe6OB1IpaugFZfVe 7F0x3gCsm7WHEil+OM7UB28u0Km2x5Z5DSoV7y9xEakQJWTuu/EVPeVqCm9h104T k8FpL5EB2eS3pkCABkcxtbRPnOUuVhvkUQvsnx9HihC4i40AT4WmjuISwqsdv5Oa h0osiY/jxQ7mIFQMUGfzj2LkLzNc5bHsHxkE1sfy -----END CERTIFICATE-----Generated at Mon Sep 8 10:43:31 2025 by rpki-client