$ rpki-client -vvf repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa File: 3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa (raw, json) Hash identifier: beBQaTk2//EAP6NnfuhmfkJxxOAnhB8nJqrnoVbonBA= Subject key identifier: 7D:7E:80:23:ED:F0:B7:4D:79:17:BD:01:ED:0C:2C:A7:03:53:7F:64 Certificate issuer: /CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Certificate serial: 4DAA57CA9DEE4C8407688FE417356DDE28C57008 Authority key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa Signing time: Thu 28 Aug 2025 13:00:00 +0000 ROA not before: Thu 28 Aug 2025 12:55:00 +0000 ROA not after: Thu 27 Aug 2026 13:00:00 +0000 asID: 141623 IP address blocks: 103.161.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 10:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:aa:57:ca:9d:ee:4c:84:07:68:8f:e4:17:35:6d:de:28:c5:70:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Validity Not Before: Aug 28 12:55:00 2025 GMT Not After : Aug 27 13:00:00 2026 GMT Subject: CN=7D7E8023EDF0B74D7917BD01ED0C2CA703537F64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:94:bf:12:c3:66:0c:34:80:0e:87:59:6e: 50:c9:6d:c4:cc:0f:42:29:e5:bc:d4:79:8e:5e:5f: 35:d9:5a:87:15:72:8f:cc:06:7a:c0:9c:52:ee:68: 38:8d:b8:77:f7:7e:42:52:0b:40:bd:1c:ae:cb:6c: 32:93:a3:5e:5b:ba:5e:b8:09:81:dc:91:c1:b7:29: ac:9f:43:7a:f1:6c:4a:21:11:d1:52:e6:cc:eb:d4: a9:3e:b7:bb:77:d8:b2:4c:cd:f1:a2:9f:35:a5:e9: 70:45:74:0e:dc:58:6f:a8:ba:a9:43:19:05:da:75: a2:7c:a1:f5:97:db:f9:22:3e:64:38:a1:25:c0:97: 42:39:87:83:b6:b4:c1:aa:32:5d:70:b4:5c:b6:aa: 13:98:9e:52:85:43:9c:e3:69:f7:82:2e:19:af:a7: 93:5c:33:06:35:0a:8c:18:fa:2e:f2:38:6c:52:2b: 33:86:4e:f0:7d:64:60:14:f0:2f:90:db:79:7f:a9: 95:cc:82:07:ac:bf:d4:ae:39:ca:a1:b0:11:bb:50: 20:5e:70:c0:75:d9:62:c8:6d:a3:f6:a0:e4:eb:a0: 38:96:2e:a5:7f:73:22:33:c3:a9:77:54:7d:ff:1a: 92:11:97:60:0f:19:2f:f8:0d:e5:af:80:e0:00:18: 4f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7E:80:23:ED:F0:B7:4D:79:17:BD:01:ED:0C:2C:A7:03:53:7F:64 X509v3 Authority Key Identifier: keyid:21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.185.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:44:7c:68:79:32:52:85:0d:b8:5f:a5:26:8c:e8:98:41:5b: e8:38:7f:39:90:5d:a1:d3:6c:a4:80:ba:cd:94:b0:31:bb:4b: 5f:a6:30:78:4a:38:51:6c:d2:ed:ee:f7:c7:d8:b3:8f:ce:54: da:2e:a9:b8:43:cc:05:f4:ac:52:21:40:fb:c7:d0:32:01:93: b6:f3:d0:24:ba:d9:1a:b2:9d:be:7d:1e:cc:24:21:14:8a:32: 1a:0b:0f:81:d7:c4:b4:68:3e:a9:3a:6a:ea:e1:ab:95:c3:1b: 68:65:8c:82:a1:cd:11:da:9f:5e:9f:eb:28:2c:86:b6:d7:a5: a3:2b:20:f5:45:c3:22:d3:f0:bb:67:47:86:2d:69:f6:3f:15: 3f:9b:05:15:45:a2:79:3c:f4:29:a9:6d:5b:6b:4e:cd:87:18: 65:0d:23:74:12:9c:fd:20:70:81:30:6e:f4:92:d5:14:34:6a: af:8d:98:68:d1:38:26:9c:cb:1f:55:99:50:ec:af:f7:dc:94: c7:26:ee:55:3f:ee:54:b0:f1:2e:fb:6d:e5:a5:f3:6b:52:60: 51:6f:08:98:b0:43:d8:8c:c3:4a:06:e8:c5:ac:ee:88:a9:69: f9:4a:04:2a:7e:7a:15:f8:cd:e7:f5:fd:fd:2c:f2:f8:b4:ca: cc:5a:85:e7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTapXyp3uTIQHaI/kFzVt3ijFcAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNB MDk2QjJGRTAeFw0yNTA4MjgxMjU1MDBaFw0yNjA4MjcxMzAwMDBaMDMxMTAvBgNV BAMTKDdEN0U4MDIzRURGMEI3NEQ3OTE3QkQwMUVEMEMyQ0E3MDM1MzdGNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIT5S/EsNmDDSADodZblDJbcTM D0Ip5bzUeY5eXzXZWocVco/MBnrAnFLuaDiNuHf3fkJSC0C9HK7LbDKTo15bul64 CYHckcG3KayfQ3rxbEohEdFS5szr1Kk+t7t32LJMzfGinzWl6XBFdA7cWG+ouqlD GQXadaJ8ofWX2/kiPmQ4oSXAl0I5h4O2tMGqMl1wtFy2qhOYnlKFQ5zjafeCLhmv p5NcMwY1CowY+i7yOGxSKzOGTvB9ZGAU8C+Q23l/qZXMggesv9SuOcqhsBG7UCBe cMB12WLIbaP2oOTroDiWLqV/cyIzw6l3VH3/GpIRl2APGS/4DeWvgOAAGE9VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfX6AI+3wt015F70B7QwspwNTf2QwHwYDVR0j BBgwFoAUIV/H5eIrjEaRDU18ohTJI6CWsv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMC8yMTVGQzdFNUUy MkI4QzQ2OTEwRDREN0NBMjE0QzkyM0EwOTZCMkZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNBMDk2 QjJGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMwLWRlMWItNDZkZC1i ZjM3LTE4ZmUzYThkNWZiZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnobkwDQYJ KoZIhvcNAQELBQADggEBABtEfGh5MlKFDbhfpSaM6JhBW+g4fzmQXaHTbKSAus2U sDG7S1+mMHhKOFFs0u3u98fYs4/OVNouqbhDzAX0rFIhQPvH0DIBk7bz0CS62Rqy nb59HswkIRSKMhoLD4HXxLRoPqk6aurhq5XDG2hljIKhzRHan16f6ygshrbXpaMr IPVFwyLT8LtnR4YtafY/FT+bBRVFonk89CmpbVtrTs2HGGUNI3QSnP0gcIEwbvSS 1RQ0aq+NmGjROCacyx9VmVDsr/fclMcm7lU/7lSw8S77beWl82tSYFFvCJiwQ9iM w0oG6MWs7oipaflKBCp+ehX4zef1/f0s8vi0ysxahec= -----END CERTIFICATE-----Generated at Mon Sep 8 09:32:28 2025 by rpki-client