$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa File: 3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: L0OHjTLAoKuTGX0pU6SpedvQBvVTanvlgQCeJn9jtow= Subject key identifier: 89:67:BF:9F:AB:86:05:EC:F4:64:35:C9:EB:E6:00:04:B2:F7:38:BE Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 51AF1D82D00D68E72737022C6AA33C2EF7FD257C Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa Signing time: Tue 26 Aug 2025 18:00:00 +0000 ROA not before: Tue 26 Aug 2025 17:55:00 +0000 ROA not after: Tue 25 Aug 2026 18:00:00 +0000 asID: 133354 IP address blocks: 103.232.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:af:1d:82:d0:0d:68:e7:27:37:02:2c:6a:a3:3c:2e:f7:fd:25:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Aug 26 17:55:00 2025 GMT Not After : Aug 25 18:00:00 2026 GMT Subject: CN=8967BF9FAB8605ECF46435C9EBE60004B2F738BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:65:77:14:a3:dc:a5:8c:09:06:54:fb:de:db: 85:6a:e1:10:ab:cc:65:f7:79:62:cd:52:dc:00:5f: 00:ff:16:69:08:1d:ba:f3:66:41:ee:3f:a9:17:82: 48:ac:53:fb:2f:76:7a:bf:19:bb:77:6a:ff:2b:3d: 92:90:fa:b3:00:f0:82:09:bb:3a:16:9a:25:69:6e: 73:3b:45:e2:bd:da:10:1e:d1:fb:49:a9:44:a4:56: 01:b7:c8:01:7a:34:41:af:16:57:e5:4d:97:98:56: 9b:42:eb:7b:92:ac:3f:15:ff:38:41:5c:d8:83:87: 0a:4d:45:e5:68:0b:99:b3:6c:08:60:91:11:74:3f: 10:7f:98:ac:f0:46:3c:b5:ec:44:2e:d4:1d:b5:ce: 88:e5:6e:0e:27:1e:11:23:4b:42:8e:50:ca:da:46: bb:91:8c:1e:f8:e1:cc:58:c3:eb:40:5a:6f:0d:2a: a3:46:07:25:a8:e8:d4:5d:48:3f:48:00:44:fe:20: ef:38:2c:87:1c:94:c1:73:79:89:30:5c:d6:b8:69: b3:1e:8f:76:f4:cc:8c:9d:75:03:aa:bf:78:46:8c: 66:08:73:6d:78:b6:b3:dc:6a:3e:f9:0b:1a:ff:0b: ef:4c:87:66:c9:96:52:0a:b4:06:6d:70:52:d4:ac: 7c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:67:BF:9F:AB:86:05:EC:F4:64:35:C9:EB:E6:00:04:B2:F7:38:BE X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.33.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:75:a5:1c:60:80:42:15:60:0f:e7:f2:5c:1c:65:15:14:e6: 36:75:9f:fa:86:3c:d7:29:13:81:46:6f:9f:5e:d1:91:5f:3f: 82:4c:b3:f8:ed:47:50:34:b3:61:5c:a8:7c:16:4a:04:69:63: 1e:1d:71:f5:16:f0:19:ee:bf:5b:dc:f8:98:62:b1:53:ba:29: 32:e3:ba:c1:3b:21:6c:fc:88:c7:92:1f:a5:89:57:e0:98:04: b7:d6:c8:9f:8a:02:6f:55:74:e9:c2:5b:22:78:31:5b:35:0e: 7c:09:29:55:49:b8:ca:ad:8c:b3:38:76:33:5f:ba:93:d4:26: a7:08:a3:af:02:98:d4:99:90:c2:fd:9f:12:ec:97:a0:f6:ab: 0b:99:cf:cd:45:ff:0b:93:0b:40:a3:6f:77:b6:3f:77:7e:2f: 4d:de:25:6e:46:55:03:a1:08:3f:07:f6:1f:de:60:5f:06:ca: 1c:11:ee:96:95:9d:4c:96:8f:43:9d:63:4e:45:32:e3:22:df: 44:cc:14:a7:fc:81:50:18:f7:fd:75:3c:91:06:8e:ff:d3:ec: 84:f0:69:10:3f:45:4b:38:1c:bd:9d:f4:85:54:38:7f:0e:a6: 51:3c:90:30:dc:aa:4a:49:59:f2:30:87:c2:a3:b6:e9:83:69: 8e:02:16:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUa8dgtANaOcnNwIsaqM8Lvf9JXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNTA4MjYxNzU1MDBaFw0yNjA4MjUxODAwMDBaMDMxMTAvBgNV BAMTKDg5NjdCRjlGQUI4NjA1RUNGNDY0MzVDOUVCRTYwMDA0QjJGNzM4QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ZXcUo9yljAkGVPve24Vq4RCr zGX3eWLNUtwAXwD/FmkIHbrzZkHuP6kXgkisU/svdnq/Gbt3av8rPZKQ+rMA8IIJ uzoWmiVpbnM7ReK92hAe0ftJqUSkVgG3yAF6NEGvFlflTZeYVptC63uSrD8V/zhB XNiDhwpNReVoC5mzbAhgkRF0PxB/mKzwRjy17EQu1B21zojlbg4nHhEjS0KOUMra RruRjB744cxYw+tAWm8NKqNGByWo6NRdSD9IAET+IO84LIcclMFzeYkwXNa4abMe j3b0zIyddQOqv3hGjGYIc214trPcaj75Cxr/C+9Mh2bJllIKtAZtcFLUrHxPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiWe/n6uGBez0ZDXJ6+YABLL3OL4wHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMzMyMmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ghMA0GCSqG SIb3DQEBCwUAA4IBAQBsdaUcYIBCFWAP5/JcHGUVFOY2dZ/6hjzXKROBRm+fXtGR Xz+CTLP47UdQNLNhXKh8FkoEaWMeHXH1FvAZ7r9b3PiYYrFTuiky47rBOyFs/IjH kh+liVfgmAS31sifigJvVXTpwlsieDFbNQ58CSlVSbjKrYyzOHYzX7qT1CanCKOv ApjUmZDC/Z8S7Jeg9qsLmc/NRf8LkwtAo293tj93fi9N3iVuRlUDoQg/B/Yf3mBf BsocEe6WlZ1Mlo9DnWNORTLjIt9EzBSn/IFQGPf9dTyRBo7/0+yE8GkQP0VLOBy9 nfSFVDh/DqZRPJAw3KpKSVnyMIfCo7bpg2mOAha6 -----END CERTIFICATE-----Generated at Mon Sep 8 10:41:59 2025 by rpki-client