$ rpki-client -vvf repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa File: 3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: bd57lftDDk/LNoDF2KUhmKXFCa0cbwtrVskfNqH8nl0= Subject key identifier: 28:B7:30:59:20:50:58:D5:28:5D:4F:0A:65:98:39:5A:7F:27:E4:CE Certificate issuer: /CN=1678828C849BDE3472FE846308767F54ED7F8232 Certificate serial: 092B777727F404294D6381A225F5372C6D1BA299 Authority key identifier: 16:78:82:8C:84:9B:DE:34:72:FE:84:63:08:76:7F:54:ED:7F:82:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa Signing time: Tue 19 Aug 2025 08:00:00 +0000 ROA not before: Tue 19 Aug 2025 07:55:00 +0000 ROA not after: Tue 18 Aug 2026 08:00:00 +0000 asID: 45305 IP address blocks: 103.184.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.crl rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 04:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:2b:77:77:27:f4:04:29:4d:63:81:a2:25:f5:37:2c:6d:1b:a2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678828C849BDE3472FE846308767F54ED7F8232 Validity Not Before: Aug 19 07:55:00 2025 GMT Not After : Aug 18 08:00:00 2026 GMT Subject: CN=28B73059205058D5285D4F0A6598395A7F27E4CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:20:e8:85:8e:f8:5c:ca:ae:8d:cc:6c:8d: 02:eb:d5:a3:5c:ce:19:c5:9e:57:b7:9e:b0:38:4e: 8d:76:0e:34:9d:7a:75:03:f4:26:cd:24:da:b6:f3: 04:dc:b3:e5:7d:28:6d:f5:37:50:01:82:db:45:1d: a6:7f:94:f0:1d:72:c1:04:31:e8:63:3f:48:25:c2: da:4c:ac:59:c1:c0:39:ce:bb:42:9d:76:92:b2:a5: ba:91:a9:5d:ea:eb:bf:e2:55:43:e2:3f:15:80:94: e6:1c:fc:ec:0b:83:e2:9c:a7:98:2a:0a:91:85:1b: 8d:de:09:99:09:05:fb:09:29:ff:e4:11:8b:5b:42: ae:c5:9e:b2:d5:76:36:95:86:2f:11:3e:c8:b4:0c: 09:f1:ad:55:97:03:76:d3:c2:e2:15:73:1c:d0:7a: 7e:d4:35:0a:ff:c5:e8:4d:ea:10:ff:a2:e4:68:57: 8e:aa:23:06:79:7f:59:6a:fc:be:48:56:29:93:cb: 3c:d7:0a:62:09:c3:20:3f:f4:e7:3f:6c:c2:22:67: d4:41:c9:78:11:e3:06:52:f7:f7:e8:3d:0a:a8:dd: 65:5c:b8:ed:85:4a:2a:ce:69:b8:8c:07:27:2a:c8: 53:94:95:fc:e1:17:93:c6:d5:fc:7e:31:58:25:d6: 02:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B7:30:59:20:50:58:D5:28:5D:4F:0A:65:98:39:5A:7F:27:E4:CE X509v3 Authority Key Identifier: keyid:16:78:82:8C:84:9B:DE:34:72:FE:84:63:08:76:7F:54:ED:7F:82:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.180.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:9c:58:28:51:e2:cb:35:18:fc:77:71:c4:c4:26:fe:f1:a6: 41:24:ad:08:cf:36:cb:02:06:08:08:91:f7:45:67:f8:72:28: c3:82:4b:99:a2:c3:d9:7a:92:98:5e:0d:8e:57:b8:af:78:e4: ec:d6:b7:8e:ea:63:86:37:0c:25:0b:12:de:28:bc:32:dd:bc: 5d:a5:31:33:42:53:66:70:8e:14:95:6a:06:ff:06:e4:b3:46: 24:7a:b6:c3:e9:2d:24:66:24:f4:4e:5b:c7:39:02:45:6e:cc: 3b:44:ce:9d:de:75:b8:f7:fc:6d:fc:c9:d8:89:15:b6:81:53: 5f:80:d5:6d:83:87:b8:64:48:ac:ff:71:d4:ca:65:9d:cd:35: 47:6c:d7:cb:b8:7d:d3:74:b0:7b:43:83:bb:de:db:69:8a:1f: af:b7:41:14:1f:5f:77:87:fb:cf:be:57:d4:50:75:fc:8d:cc: 7c:1a:7d:fb:eb:9f:72:9c:fb:78:20:49:f7:71:35:97:a2:3f: 95:0a:88:06:6d:06:72:be:3b:24:8d:69:87:11:fb:32:f4:17: 59:8f:97:fe:10:4b:13:0d:9f:00:b5:3d:d9:92:ce:46:84:4d: bf:24:41:ff:c9:f6:da:75:9f:b1:d3:79:da:e0:8d:78:5d:b4: 73:ee:bf:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCSt3dyf0BClNY4GiJfU3LG0bopkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3ODgyOEM4NDlCREUzNDcyRkU4NDYzMDg3NjdGNTRF RDdGODIzMjAeFw0yNTA4MTkwNzU1MDBaFw0yNjA4MTgwODAwMDBaMDMxMTAvBgNV BAMTKDI4QjczMDU5MjA1MDU4RDUyODVENEYwQTY1OTgzOTVBN0YyN0U0Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDObSDohY74XMqujcxsjQLr1aNc zhnFnle3nrA4To12DjSdenUD9CbNJNq28wTcs+V9KG31N1ABgttFHaZ/lPAdcsEE MehjP0glwtpMrFnBwDnOu0KddpKypbqRqV3q67/iVUPiPxWAlOYc/OwLg+Kcp5gq CpGFG43eCZkJBfsJKf/kEYtbQq7FnrLVdjaVhi8RPsi0DAnxrVWXA3bTwuIVcxzQ en7UNQr/xehN6hD/ouRoV46qIwZ5f1lq/L5IVimTyzzXCmIJwyA/9Oc/bMIiZ9RB yXgR4wZS9/foPQqo3WVcuO2FSirOabiMBycqyFOUlfzhF5PG1fx+MVgl1gKPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKLcwWSBQWNUoXU8KZZg5Wn8n5M4wHwYDVR0j BBgwFoAUFniCjISb3jRy/oRjCHZ/VO1/gjIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTU3OTkxYS0xNTZkLTRiNTUtOTBjYi03OWI4NzZjZjZhNGEvMC8xNjc4ODI4Qzg0 OUJERTM0NzJGRTg0NjMwODc2N0Y1NEVEN0Y4MjMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY3ODgyOEM4NDlCREUzNDcyRkU4NDYzMDg3NjdGNTRFRDdG ODIzMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNTc5OTFhLTE1NmQtNGI1NS05 MGNiLTc5Yjg3NmNmNmE0YS8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7i0MA0GCSqG SIb3DQEBCwUAA4IBAQALnFgoUeLLNRj8d3HExCb+8aZBJK0IzzbLAgYICJH3RWf4 cijDgkuZosPZepKYXg2OV7iveOTs1reO6mOGNwwlCxLeKLwy3bxdpTEzQlNmcI4U lWoG/wbks0YkerbD6S0kZiT0TlvHOQJFbsw7RM6d3nW49/xt/MnYiRW2gVNfgNVt g4e4ZEis/3HUymWdzTVHbNfLuH3TdLB7Q4O73ttpih+vt0EUH193h/vPvlfUUHX8 jcx8Gn37659ynPt4IEn3cTWXoj+VCogGbQZyvjskjWmHEfsy9BdZj5f+EEsTDZ8A tT3Zks5GhE2/JEH/yfbadZ+x03na4I14XbRz7r+0 -----END CERTIFICATE-----Generated at Sat Aug 23 16:01:59 2025 by rpki-client