$ rpki-client -vvf repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134312e302f32342d3234203d3e20313431343631.roa File: 3130332e3131312e3134312e302f32342d3234203d3e20313431343631.roa (raw, json) Hash identifier: FOKCBmZQR+RvQ/YXjf6i5T2Jp3732D5RrjsxBFstWVo= Subject key identifier: 8A:4E:48:6D:5F:E2:16:67:2E:03:82:D1:E8:5F:C2:D5:AD:63:AD:37 Certificate issuer: /CN=EBA04070CA27E646C332039E07557734C6732ED2 Certificate serial: 09935A56C359A697E2EBF17C023486F25891F853 Authority key identifier: EB:A0:40:70:CA:27:E6:46:C3:32:03:9E:07:55:77:34:C6:73:2E:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134312e302f32342d3234203d3e20313431343631.roa Signing time: Sun 24 Aug 2025 02:00:01 +0000 ROA not before: Sun 24 Aug 2025 01:55:01 +0000 ROA not after: Sun 23 Aug 2026 02:00:01 +0000 asID: 141461 IP address blocks: 103.111.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.crl rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 08:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:93:5a:56:c3:59:a6:97:e2:eb:f1:7c:02:34:86:f2:58:91:f8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EBA04070CA27E646C332039E07557734C6732ED2 Validity Not Before: Aug 24 01:55:01 2025 GMT Not After : Aug 23 02:00:01 2026 GMT Subject: CN=8A4E486D5FE216672E0382D1E85FC2D5AD63AD37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:d3:d0:bd:9e:8c:b3:77:f3:74:92:28:3b: 94:a8:f1:79:64:02:d2:4a:0b:cd:0d:6e:0c:4a:d6: 4c:a1:56:38:48:a0:d3:0e:14:d5:16:b9:d8:6c:7f: 9c:70:b9:31:89:ea:0f:75:41:c8:7d:09:93:a0:e2: 73:16:ee:0f:bc:aa:0b:f2:33:81:02:71:f8:36:ad: db:18:32:83:aa:c3:92:83:df:72:bd:ce:14:ee:c8: 69:d6:7c:57:f7:b7:74:67:95:ce:52:1e:0e:42:69: d2:10:ba:3e:c9:2d:b3:d8:dc:fe:ad:c4:2e:6b:d9: ad:90:e0:8d:fc:c0:c3:ee:02:ed:3f:87:58:d0:0b: 45:9c:d2:06:85:5d:03:cc:1a:b9:11:4a:4f:53:be: ad:28:42:38:da:d2:81:aa:50:bb:b6:69:94:c2:f4: 1e:20:06:47:60:1f:c0:35:c9:b7:88:61:9b:74:63: 2b:90:25:d6:c7:f2:bc:85:22:8c:1f:ab:99:9c:87: 30:2d:ba:11:12:d6:89:e9:3b:55:de:9c:b1:50:af: f9:4a:aa:00:49:d9:29:c4:64:fa:3e:5a:af:11:8b: 6f:e2:0c:b3:d4:96:85:32:89:c1:02:2b:8d:80:1e: 6b:df:af:71:04:39:9b:06:c8:9f:84:fa:68:9e:a1: 55:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4E:48:6D:5F:E2:16:67:2E:03:82:D1:E8:5F:C2:D5:AD:63:AD:37 X509v3 Authority Key Identifier: keyid:EB:A0:40:70:CA:27:E6:46:C3:32:03:9E:07:55:77:34:C6:73:2E:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134312e302f32342d3234203d3e20313431343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.141.0/24 Signature Algorithm: sha256WithRSAEncryption 10:e9:36:62:2c:b8:09:a7:81:49:35:f8:a6:0d:bd:15:eb:4e: 01:ef:1f:c7:e9:b3:5f:de:f0:25:f4:ed:5c:32:df:02:4e:7c: 19:ca:4e:0e:90:b4:1b:fd:d8:a7:71:8a:d1:0d:d2:fb:18:11: 57:62:a1:54:a3:fb:81:04:aa:45:29:44:fb:51:5d:9a:ce:30: e6:46:fa:f3:6a:4d:e5:d9:55:2e:88:45:6c:e6:93:3f:81:24: eb:57:97:f6:31:84:4e:02:4e:5f:a9:51:c4:b5:4e:5c:7b:a1: 5c:f6:69:19:7d:97:dd:c8:f9:72:70:f9:1b:7a:bc:d9:99:17: d0:ff:8f:3c:ce:80:a9:be:05:bd:13:60:f4:d7:b3:0f:08:96: d6:6c:a3:3d:57:62:e4:0a:b7:7e:82:e4:84:e3:4f:9b:7f:2c: 54:78:41:4b:5a:3b:e9:8b:ac:5d:ac:f6:10:f2:c1:6e:82:bb: cb:67:1b:30:e0:6f:33:b9:98:62:81:ce:0b:14:95:a8:86:ad: 9e:9e:2d:44:f7:93:8c:c4:d0:9f:66:5e:33:a4:1e:b8:ba:d6: 7c:22:ef:ed:98:a0:d1:1b:e5:8f:6c:d7:e9:3d:6b:54:0d:32: 72:7a:c5:84:01:38:35:68:40:95:9f:93:77:0a:b7:d5:ba:9f: bc:98:b4:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCZNaVsNZppfi6/F8AjSG8liR+FMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUJBMDQwNzBDQTI3RTY0NkMzMzIwMzlFMDc1NTc3MzRD NjczMkVEMjAeFw0yNTA4MjQwMTU1MDFaFw0yNjA4MjMwMjAwMDFaMDMxMTAvBgNV BAMTKDhBNEU0ODZENUZFMjE2NjcyRTAzODJEMUU4NUZDMkQ1QUQ2M0FEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyZ9PQvZ6Ms3fzdJIoO5So8Xlk AtJKC80NbgxK1kyhVjhIoNMOFNUWudhsf5xwuTGJ6g91Qch9CZOg4nMW7g+8qgvy M4ECcfg2rdsYMoOqw5KD33K9zhTuyGnWfFf3t3Rnlc5SHg5CadIQuj7JLbPY3P6t xC5r2a2Q4I38wMPuAu0/h1jQC0Wc0gaFXQPMGrkRSk9Tvq0oQjja0oGqULu2aZTC 9B4gBkdgH8A1ybeIYZt0YyuQJdbH8ryFIowfq5mchzAtuhES1onpO1XenLFQr/lK qgBJ2SnEZPo+Wq8Ri2/iDLPUloUyicECK42AHmvfr3EEOZsGyJ+E+mieoVVXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUik5IbV/iFmcuA4LR6F/C1a1jrTcwHwYDVR0j BBgwFoAU66BAcMon5kbDMgOeB1V3NMZzLtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTI3ZWFmZC1hNjc0LTQ0MzctYWJmMS1lNTUwZGVjMTM3ZmEvMC9FQkEwNDA3MENB MjdFNjQ2QzMzMjAzOUUwNzU1NzczNEM2NzMyRUQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUJBMDQwNzBDQTI3RTY0NkMzMzIwMzlFMDc1NTc3MzRDNjcz MkVEMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExMjdlYWZkLWE2NzQtNDQzNy1h YmYxLWU1NTBkZWMxMzdmYS8wLzMxMzAzMzJlMzEzMTMxMmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNDM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb40wDQYJ KoZIhvcNAQELBQADggEBABDpNmIsuAmngUk1+KYNvRXrTgHvH8fps1/e8CX07Vwy 3wJOfBnKTg6QtBv92KdxitEN0vsYEVdioVSj+4EEqkUpRPtRXZrOMOZG+vNqTeXZ VS6IRWzmkz+BJOtXl/YxhE4CTl+pUcS1Tlx7oVz2aRl9l93I+XJw+Rt6vNmZF9D/ jzzOgKm+Bb0TYPTXsw8IltZsoz1XYuQKt36C5ITjT5t/LFR4QUtaO+mLrF2s9hDy wW6Cu8tnGzDgbzO5mGKBzgsUlaiGrZ6eLUT3k4zE0J9mXjOkHri61nwi7+2YoNEb 5Y9s1+k9a1QNMnJ6xYQBODVoQJWfk3cKt9W6n7yYtE8= -----END CERTIFICATE-----Generated at Sun Aug 24 11:03:01 2025 by rpki-client