$ rpki-client -vvf repo-rpki.idnic.net/repo/fe4ace11-9139-4485-aba9-04beddc5bc26/0/3130332e33312e34322e302f32332d3233203d3e2039333431.roa File: 3130332e33312e34322e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: stIIdICFAUmmjPJbZPuus0zTsstOOiSfpPEmNfACiJs= Subject key identifier: B2:C8:8D:4B:FA:62:23:07:F2:83:D1:64:4E:47:32:4F:72:6F:F3:D3 Certificate issuer: /CN=977D89E37F6F6C3815B2BC731E694AB878F26F30 Certificate serial: 26D3F54EB51BC599F3F8548BD87011A2F41A7E2E Authority key identifier: 97:7D:89:E3:7F:6F:6C:38:15:B2:BC:73:1E:69:4A:B8:78:F2:6F:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977D89E37F6F6C3815B2BC731E694AB878F26F30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fe4ace11-9139-4485-aba9-04beddc5bc26/0/3130332e33312e34322e302f32332d3233203d3e2039333431.roa Signing time: Fri 05 Sep 2025 08:02:24 +0000 ROA not before: Fri 05 Sep 2025 07:57:24 +0000 ROA not after: Fri 04 Sep 2026 08:02:24 +0000 asID: 9341 IP address blocks: 103.31.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fe4ace11-9139-4485-aba9-04beddc5bc26/0/977D89E37F6F6C3815B2BC731E694AB878F26F30.crl rsync://repo-rpki.idnic.net/repo/fe4ace11-9139-4485-aba9-04beddc5bc26/0/977D89E37F6F6C3815B2BC731E694AB878F26F30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977D89E37F6F6C3815B2BC731E694AB878F26F30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 20:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d3:f5:4e:b5:1b:c5:99:f3:f8:54:8b:d8:70:11:a2:f4:1a:7e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977D89E37F6F6C3815B2BC731E694AB878F26F30 Validity Not Before: Sep 5 07:57:24 2025 GMT Not After : Sep 4 08:02:24 2026 GMT Subject: CN=B2C88D4BFA622307F283D1644E47324F726FF3D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8a:27:8c:40:94:77:ad:e1:c0:34:da:d1:89: db:48:c0:ff:69:87:ac:e8:82:c5:7b:e0:a3:88:bc: 48:75:ce:cd:2d:58:e4:e0:83:3a:b3:42:85:a1:0b: f9:e2:91:5b:eb:23:84:a2:91:b7:2b:c7:45:80:e3: 7e:90:53:1e:21:24:dd:25:4a:41:1f:8c:79:33:44: b2:82:99:fd:6a:7e:0c:1b:6d:e8:dd:a4:f2:89:b2: 34:e1:12:2f:47:e0:2a:0f:c5:cb:7a:d4:8a:ba:bb: 66:00:82:3d:b9:35:1c:89:a3:f5:65:2a:a4:73:bf: db:c9:68:64:76:1f:95:96:6e:10:d7:89:8d:ff:7c: a1:5a:59:1e:04:16:f5:b4:e8:f6:54:d7:0b:ed:d8: cd:b6:bb:26:bd:c9:1a:e1:d3:81:7b:ae:91:64:31: df:c5:b2:d1:86:cd:1b:30:ec:74:db:c6:33:7e:e1: 8f:01:6f:55:55:d1:83:1f:e6:8e:aa:f9:e5:d4:18: c2:9e:49:13:da:43:db:9c:e0:79:4c:3f:69:e3:2e: ab:4d:be:fd:95:1e:8d:31:a2:16:50:28:cf:20:02: 74:65:dd:82:b9:4e:c3:9b:ac:46:59:db:1b:64:80: 25:9f:c0:de:18:9b:e2:0e:53:f4:75:3b:ca:83:e3: 81:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C8:8D:4B:FA:62:23:07:F2:83:D1:64:4E:47:32:4F:72:6F:F3:D3 X509v3 Authority Key Identifier: keyid:97:7D:89:E3:7F:6F:6C:38:15:B2:BC:73:1E:69:4A:B8:78:F2:6F:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fe4ace11-9139-4485-aba9-04beddc5bc26/0/977D89E37F6F6C3815B2BC731E694AB878F26F30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977D89E37F6F6C3815B2BC731E694AB878F26F30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fe4ace11-9139-4485-aba9-04beddc5bc26/0/3130332e33312e34322e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.42.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:ea:97:0d:c9:cb:98:2a:a5:5f:b0:9f:ce:1a:7b:1e:10:9c: 60:c0:73:1b:57:c8:6e:ae:8e:8d:03:c1:95:df:08:68:3c:45: 03:ca:94:20:57:99:c0:1b:ae:67:17:3a:ae:ab:5c:c3:1c:07: 95:e0:9e:40:85:74:b1:35:45:e2:d2:58:75:90:1a:13:90:37: 85:35:42:a7:ad:02:78:c4:4c:6c:79:08:18:76:dc:c4:a5:ca: 8b:57:38:fe:13:ec:f3:c2:92:ed:8b:68:44:53:13:e4:31:d9: cc:58:aa:0c:ba:51:b0:3e:e0:4c:30:d1:e1:15:be:f2:61:90: 82:36:a7:5e:23:dc:a0:69:d3:5b:db:26:46:4a:cf:dc:f1:93: 4f:fa:d5:89:5d:56:18:ac:bf:0d:f2:5f:50:c9:7e:cf:b6:4b: ab:22:bc:55:0c:54:db:5b:a4:58:8a:68:34:51:bc:fc:da:7a: 97:3d:4a:30:5a:1c:03:a0:1a:ce:88:c2:8b:4a:d5:40:42:7c: f4:37:12:11:6b:b1:f2:1b:d1:c3:eb:b5:d7:72:79:f0:76:f0: 43:a3:78:83:1f:1d:8b:11:14:a4:2e:8e:e1:b8:95:54:11:3c: 06:4c:65:b7:89:76:52:8b:e8:3f:ac:24:46:1a:90:98:01:d8: 00:4e:27:14 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUJtP1TrUbxZnz+FSL2HARovQafi4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc3RDg5RTM3RjZGNkMzODE1QjJCQzczMUU2OTRBQjg3 OEYyNkYzMDAeFw0yNTA5MDUwNzU3MjRaFw0yNjA5MDQwODAyMjRaMDMxMTAvBgNV BAMTKEIyQzg4RDRCRkE2MjIzMDdGMjgzRDE2NDRFNDczMjRGNzI2RkYzRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCziieMQJR3reHANNrRidtIwP9p h6zogsV74KOIvEh1zs0tWOTggzqzQoWhC/nikVvrI4Sikbcrx0WA436QUx4hJN0l SkEfjHkzRLKCmf1qfgwbbejdpPKJsjThEi9H4CoPxct61Iq6u2YAgj25NRyJo/Vl KqRzv9vJaGR2H5WWbhDXiY3/fKFaWR4EFvW06PZU1wvt2M22uya9yRrh04F7rpFk Md/FstGGzRsw7HTbxjN+4Y8Bb1VV0YMf5o6q+eXUGMKeSRPaQ9uc4HlMP2njLqtN vv2VHo0xohZQKM8gAnRl3YK5TsObrEZZ2xtkgCWfwN4Ym+IOU/R1O8qD44EZAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUssiNS/piIwfyg9FkTkcyT3Jv89MwHwYDVR0j BBgwFoAUl32J439vbDgVsrxzHmlKuHjybzAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZTRhY2UxMS05MTM5LTQ0ODUtYWJhOS0wNGJlZGRjNWJjMjYvMC85NzdEODlFMzdG NkY2QzM4MTVCMkJDNzMxRTY5NEFCODc4RjI2RjMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc3RDg5RTM3RjZGNkMzODE1QjJCQzczMUU2OTRBQjg3OEYy NkYzMC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmU0YWNlMTEtOTEzOS00NDg1LWFi YTktMDRiZWRkYzViYzI2LzAvMzEzMDMzMmUzMzMxMmUzNDMyMmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHyowDQYJKoZIhvcNAQEL BQADggEBAAvqlw3Jy5gqpV+wn84aex4QnGDAcxtXyG6ujo0DwZXfCGg8RQPKlCBX mcAbrmcXOq6rXMMcB5XgnkCFdLE1ReLSWHWQGhOQN4U1QqetAnjETGx5CBh23MSl yotXOP4T7PPCku2LaERTE+Qx2cxYqgy6UbA+4Eww0eEVvvJhkII2p14j3KBp01vb JkZKz9zxk0/61YldVhisvw3yX1DJfs+2S6sivFUMVNtbpFiKaDRRvPzaepc9SjBa HAOgGs6IwotK1UBCfPQ3EhFrsfIb0cPrtddyefB28EOjeIMfHYsRFKQujuG4lVQR PAZMZbeJdlKL6D+sJEYakJgB2ABOJxQ= -----END CERTIFICATE-----Generated at Mon Sep 8 12:32:42 2025 by rpki-client