$ rpki-client -vvf repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa File: 3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa (raw, json) Hash identifier: hhBm/QT4y8ib7FGAltONinYNWg1PiVjj/mn1RgecAFk= Subject key identifier: EF:F7:7A:7A:BB:72:A0:56:D4:BA:4B:1F:95:15:8B:26:1A:F0:B1:D2 Certificate issuer: /CN=889933E416F356762F7F72858168C9C8A2E241C7 Certificate serial: 07475E261D8AA86899043608D9B14B4D2FECECFD Authority key identifier: 88:99:33:E4:16:F3:56:76:2F:7F:72:85:81:68:C9:C8:A2:E2:41:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/889933E416F356762F7F72858168C9C8A2E241C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa Signing time: Thu 21 Aug 2025 04:01:07 +0000 ROA not before: Thu 21 Aug 2025 03:56:07 +0000 ROA not after: Thu 20 Aug 2026 04:01:07 +0000 asID: 142308 IP address blocks: 103.167.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/889933E416F356762F7F72858168C9C8A2E241C7.crl rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/889933E416F356762F7F72858168C9C8A2E241C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/889933E416F356762F7F72858168C9C8A2E241C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:47:5e:26:1d:8a:a8:68:99:04:36:08:d9:b1:4b:4d:2f:ec:ec:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=889933E416F356762F7F72858168C9C8A2E241C7 Validity Not Before: Aug 21 03:56:07 2025 GMT Not After : Aug 20 04:01:07 2026 GMT Subject: CN=EFF77A7ABB72A056D4BA4B1F95158B261AF0B1D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2a:5b:d3:b3:98:6c:3a:5c:f1:6a:f2:d2:d2: 0a:7d:36:f9:20:e4:8b:86:74:99:f3:ff:38:d0:e7: b1:17:b8:60:23:4d:2a:0d:51:32:61:18:79:61:00: 17:6f:13:7e:83:ce:46:80:2f:56:fb:2a:1a:3d:f7: 09:1d:93:4c:15:ae:44:2e:c6:82:1f:a1:0e:0a:81: e2:9e:e2:3f:db:6a:bf:4d:60:4d:c1:e7:4e:57:56: 7d:a9:67:b6:94:7f:81:ab:ff:d4:c8:62:22:76:0a: 34:bf:b3:9c:21:cd:72:e0:24:78:4a:fb:83:0a:a6: 95:0a:67:ab:8a:5c:fc:d5:8b:a4:92:d7:51:8d:6c: 71:eb:64:6b:74:8b:a1:63:63:e0:01:1e:6a:44:e3: eb:20:c2:dd:fa:63:79:2d:d3:6c:b1:9c:4d:7b:3a: 2b:34:13:83:fb:d8:c7:e1:43:e2:69:1b:3e:d3:65: f0:9e:32:23:bc:56:17:da:e6:66:dd:4c:be:d3:0b: 28:c9:08:b4:6a:12:72:9b:56:29:e6:8b:0b:fe:b7: f1:61:17:b2:92:1a:9d:83:13:c9:1b:96:79:59:e1: 70:9c:a2:ba:61:30:2b:b4:2e:1a:89:c3:78:15:42: 32:46:6d:c7:c3:53:ff:9f:9c:78:bc:4f:13:b2:55: f1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F7:7A:7A:BB:72:A0:56:D4:BA:4B:1F:95:15:8B:26:1A:F0:B1:D2 X509v3 Authority Key Identifier: keyid:88:99:33:E4:16:F3:56:76:2F:7F:72:85:81:68:C9:C8:A2:E2:41:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/889933E416F356762F7F72858168C9C8A2E241C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/889933E416F356762F7F72858168C9C8A2E241C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.237.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:b9:3d:37:33:9c:8e:18:cb:c2:45:2a:6e:92:93:66:db:ee: a9:bc:2d:7c:dc:be:54:7a:f6:59:d7:7a:b3:8d:89:6b:3e:5c: 08:04:d1:aa:aa:d6:76:2e:7a:44:9a:be:54:af:39:a0:35:d7: d4:31:c8:11:15:7c:15:b8:5f:46:a9:b9:e7:73:ee:ec:b2:3c: 33:f2:e7:47:e1:1c:8d:eb:f4:4a:84:ee:46:9c:cb:83:b5:35: 09:cb:ef:45:5d:0d:2f:08:cb:b6:7c:81:3b:f8:26:9c:67:62: 76:12:78:1b:11:ae:91:d7:bd:6e:96:90:b9:30:e1:fe:62:94: 70:5a:81:a9:e3:70:86:b2:b2:a4:6c:3d:25:c7:e6:62:eb:fa: 22:29:50:e0:7c:bf:08:bc:d5:d6:c5:3b:ba:31:28:75:2e:b0: f4:f1:61:bb:4d:c7:3e:27:92:a8:f7:69:5d:ff:df:39:81:42: ab:7c:b9:bd:f2:ed:72:d0:52:33:2e:33:6e:57:0a:ac:07:2b: 70:f5:42:ec:c4:69:fd:09:38:ea:f4:04:0e:ca:a1:a9:a1:d6: ac:78:53:ce:40:7e:45:a9:43:f9:09:db:c9:1c:2e:5b:3d:37: 9c:89:c4:25:b9:4d:c8:45:bc:55:fb:cc:bd:94:5c:7c:d8:12: c8:2e:9c:63 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB0deJh2KqGiZBDYI2bFLTS/s7P0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg5OTMzRTQxNkYzNTY3NjJGN0Y3Mjg1ODE2OEM5QzhB MkUyNDFDNzAeFw0yNTA4MjEwMzU2MDdaFw0yNjA4MjAwNDAxMDdaMDMxMTAvBgNV BAMTKEVGRjc3QTdBQkI3MkEwNTZENEJBNEIxRjk1MTU4QjI2MUFGMEIxRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9KlvTs5hsOlzxavLS0gp9Nvkg 5IuGdJnz/zjQ57EXuGAjTSoNUTJhGHlhABdvE36DzkaAL1b7Kho99wkdk0wVrkQu xoIfoQ4KgeKe4j/bar9NYE3B505XVn2pZ7aUf4Gr/9TIYiJ2CjS/s5whzXLgJHhK +4MKppUKZ6uKXPzVi6SS11GNbHHrZGt0i6FjY+ABHmpE4+sgwt36Y3kt02yxnE17 Ois0E4P72MfhQ+JpGz7TZfCeMiO8Vhfa5mbdTL7TCyjJCLRqEnKbVinmiwv+t/Fh F7KSGp2DE8kblnlZ4XCcorphMCu0LhqJw3gVQjJGbcfDU/+fnHi8TxOyVfEvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7/d6ertyoFbUuksflRWLJhrwsdIwHwYDVR0j BBgwFoAUiJkz5BbzVnYvf3KFgWjJyKLiQccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWNmZDNmNS04NWRhLTQ4YTctYjUwMi1mNjFhNTk3OTZjMzMvMC84ODk5MzNFNDE2 RjM1Njc2MkY3RjcyODU4MTY4QzlDOEEyRTI0MUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODg5OTMzRTQxNkYzNTY3NjJGN0Y3Mjg1ODE2OEM5QzhBMkUy NDFDNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlY2ZkM2Y1LTg1ZGEtNDhhNy1i NTAyLWY2MWE1OTc5NmMzMy8wLzMxMzAzMzJlMzEzNjM3MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp+0wDQYJ KoZIhvcNAQELBQADggEBAD65PTcznI4Yy8JFKm6Sk2bb7qm8LXzcvlR69lnXerON iWs+XAgE0aqq1nYuekSavlSvOaA119QxyBEVfBW4X0apuedz7uyyPDPy50fhHI3r 9EqE7kacy4O1NQnL70VdDS8Iy7Z8gTv4JpxnYnYSeBsRrpHXvW6WkLkw4f5ilHBa ganjcIaysqRsPSXH5mLr+iIpUOB8vwi81dbFO7oxKHUusPTxYbtNxz4nkqj3aV3/ 3zmBQqt8ub3y7XLQUjMuM25XCqwHK3D1QuzEaf0JOOr0BA7Koamh1qx4U85AfkWp Q/kJ28kcLls9N5yJxCW5TchFvFX7zL2UXHzYEsgunGM= -----END CERTIFICATE-----Generated at Sat Aug 23 17:58:17 2025 by rpki-client