$ rpki-client -vvf repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa File: 3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa (raw, json) Hash identifier: NxUfSTs+o4y49KJqzzCvLvRJmV1ctiR4iGydszaWllw= Subject key identifier: E1:62:97:DB:BD:79:4A:EB:B3:F6:32:8B:E6:C0:07:89:ED:22:C1:6E Certificate issuer: /CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Certificate serial: 4AC4B86F91802CC8DE033B329B00DE68B7BA2777 Authority key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa Signing time: Thu 28 Aug 2025 13:00:00 +0000 ROA not before: Thu 28 Aug 2025 12:55:00 +0000 ROA not after: Thu 27 Aug 2026 13:00:00 +0000 asID: 141623 IP address blocks: 103.161.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 10:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:c4:b8:6f:91:80:2c:c8:de:03:3b:32:9b:00:de:68:b7:ba:27:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Validity Not Before: Aug 28 12:55:00 2025 GMT Not After : Aug 27 13:00:00 2026 GMT Subject: CN=E16297DBBD794AEBB3F6328BE6C00789ED22C16E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4b:6d:07:87:75:26:57:e2:c3:6e:ce:2b:36: 0c:9f:88:14:95:c2:15:9f:a2:6a:57:90:a4:7b:3b: ef:4a:07:a1:d1:2f:c6:4a:97:79:73:a9:e4:0b:8e: 12:27:f9:50:16:ee:95:e4:fa:98:cb:71:ee:40:52: ea:8f:81:19:9e:49:4d:8f:ae:53:bd:0f:11:d1:dd: 99:16:8a:e0:98:fa:24:d8:58:60:11:5f:5d:8a:c8: f3:9c:c7:cf:90:0c:d2:e3:9c:05:95:db:39:73:05: 07:ec:f3:a5:58:b4:b3:11:47:31:b8:77:0a:fc:b3: 24:50:cd:0d:47:89:5b:29:ad:7c:a2:d3:8b:3d:85: ac:a2:3b:da:8c:59:5e:91:74:e7:d6:9d:78:5a:74: c6:61:81:23:90:8b:cc:ac:49:ac:0c:f3:2e:c7:ea: 29:2a:70:09:74:77:4b:b1:ea:0f:17:50:30:68:5d: ab:b9:f9:bb:d4:02:e3:77:17:b0:bb:f7:00:e6:fb: ac:c3:cd:2a:b5:cf:58:08:8e:47:2e:7f:f3:55:03: c2:36:da:d7:3f:cd:0e:0a:6e:56:c1:48:f1:a3:70: e9:0a:3d:f8:9d:6e:1a:39:5e:50:cf:fd:68:96:fe: 1d:dc:6d:41:6b:c1:af:99:fb:6f:57:10:8b:a1:9a: 39:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:62:97:DB:BD:79:4A:EB:B3:F6:32:8B:E6:C0:07:89:ED:22:C1:6E X509v3 Authority Key Identifier: keyid:21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.184.0/24 Signature Algorithm: sha256WithRSAEncryption 99:bc:0a:d6:cb:f4:df:16:21:57:69:84:02:b3:e7:82:1e:dd: 5a:0c:46:dc:ee:63:b1:bc:57:49:ca:7e:f1:ac:df:ed:a8:13: ee:b3:52:6b:eb:7d:6e:1b:2b:9e:33:72:7c:52:ae:39:27:a5: e3:82:9c:ae:41:80:4b:32:a7:00:4a:16:0a:37:61:d9:20:3c: 87:97:c5:56:37:fc:52:04:e0:94:1e:ae:7d:f2:86:e8:11:e1: 10:26:0b:33:af:b6:53:fc:41:a0:11:8f:6e:ed:20:d0:a3:9c: 7d:23:ec:99:62:3b:20:bf:26:03:65:18:29:34:4f:c5:e2:9c: 53:ef:c2:3e:64:79:37:52:07:3a:ef:4a:d5:1d:31:99:f4:d1: 9e:3e:2a:94:96:ac:a9:c7:0e:71:1b:52:02:bf:9c:92:08:c4: 4d:00:cd:72:bb:91:c4:32:b2:66:ce:0b:9f:7f:66:47:a3:4a: f6:fb:1f:17:fa:ab:ff:2f:97:41:b0:3e:1a:a4:47:c3:ce:46: b7:a9:42:61:76:5f:4a:ea:ef:46:05:4f:b5:70:c1:fc:ff:01: 94:6c:5d:b4:39:29:1d:12:69:da:ae:67:26:de:37:a9:98:8a: fd:5f:29:b9:11:4d:f6:04:c6:ab:ac:35:90:cf:47:d8:35:b7: bc:05:1e:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSsS4b5GALMjeAzsymwDeaLe6J3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNB MDk2QjJGRTAeFw0yNTA4MjgxMjU1MDBaFw0yNjA4MjcxMzAwMDBaMDMxMTAvBgNV BAMTKEUxNjI5N0RCQkQ3OTRBRUJCM0Y2MzI4QkU2QzAwNzg5RUQyMkMxNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqS20Hh3UmV+LDbs4rNgyfiBSV whWfompXkKR7O+9KB6HRL8ZKl3lzqeQLjhIn+VAW7pXk+pjLce5AUuqPgRmeSU2P rlO9DxHR3ZkWiuCY+iTYWGARX12KyPOcx8+QDNLjnAWV2zlzBQfs86VYtLMRRzG4 dwr8syRQzQ1HiVsprXyi04s9hayiO9qMWV6RdOfWnXhadMZhgSOQi8ysSawM8y7H 6ikqcAl0d0ux6g8XUDBoXau5+bvUAuN3F7C79wDm+6zDzSq1z1gIjkcuf/NVA8I2 2tc/zQ4KblbBSPGjcOkKPfidbho5XlDP/WiW/h3cbUFrwa+Z+29XEIuhmjnhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4WKX2715Suuz9jKL5sAHie0iwW4wHwYDVR0j BBgwFoAUIV/H5eIrjEaRDU18ohTJI6CWsv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMC8yMTVGQzdFNUUy MkI4QzQ2OTEwRDREN0NBMjE0QzkyM0EwOTZCMkZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNBMDk2 QjJGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMwLWRlMWItNDZkZC1i ZjM3LTE4ZmUzYThkNWZiZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnobgwDQYJ KoZIhvcNAQELBQADggEBAJm8CtbL9N8WIVdphAKz54Ie3VoMRtzuY7G8V0nKfvGs 3+2oE+6zUmvrfW4bK54zcnxSrjknpeOCnK5BgEsypwBKFgo3YdkgPIeXxVY3/FIE 4JQern3yhugR4RAmCzOvtlP8QaARj27tINCjnH0j7JliOyC/JgNlGCk0T8XinFPv wj5keTdSBzrvStUdMZn00Z4+KpSWrKnHDnEbUgK/nJIIxE0AzXK7kcQysmbOC59/ ZkejSvb7Hxf6q/8vl0GwPhqkR8PORrepQmF2X0rq70YFT7Vwwfz/AZRsXbQ5KR0S adquZybeN6mYiv1fKbkRTfYExqusNZDPR9g1t7wFHiA= -----END CERTIFICATE-----Generated at Mon Sep 8 09:46:07 2025 by rpki-client