$ rpki-client -vvf repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/3130332e31392e3135362e302f32332d3233203d3e20313530323334.roa File: 3130332e31392e3135362e302f32332d3233203d3e20313530323334.roa (raw, json) Hash identifier: oFFK8blgpeKf9LD5SV2KXd2JEMT+aIlFev67ub7lEjE= Subject key identifier: 87:E7:37:86:72:8D:16:5D:ED:83:F4:C4:B9:7D:96:CA:16:2F:EC:0F Certificate issuer: /CN=1B42B2BB5674F23468744614CDF9B0B00D510190 Certificate serial: 7FFCFB8DD0A1785E027AE3CE0749202DB6C744C4 Authority key identifier: 1B:42:B2:BB:56:74:F2:34:68:74:46:14:CD:F9:B0:B0:0D:51:01:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1B42B2BB5674F23468744614CDF9B0B00D510190.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/3130332e31392e3135362e302f32332d3233203d3e20313530323334.roa Signing time: Tue 19 Aug 2025 12:02:30 +0000 ROA not before: Tue 19 Aug 2025 11:57:30 +0000 ROA not after: Tue 18 Aug 2026 12:02:30 +0000 asID: 150234 IP address blocks: 103.19.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/1B42B2BB5674F23468744614CDF9B0B00D510190.crl rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/1B42B2BB5674F23468744614CDF9B0B00D510190.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1B42B2BB5674F23468744614CDF9B0B00D510190.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:fc:fb:8d:d0:a1:78:5e:02:7a:e3:ce:07:49:20:2d:b6:c7:44:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B42B2BB5674F23468744614CDF9B0B00D510190 Validity Not Before: Aug 19 11:57:30 2025 GMT Not After : Aug 18 12:02:30 2026 GMT Subject: CN=87E73786728D165DED83F4C4B97D96CA162FEC0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:f0:dc:20:29:c7:c1:16:29:44:c9:5e:95: 72:73:4f:c9:19:d1:cc:3d:40:13:0c:fa:cc:9c:20: 4b:2b:57:3e:a1:ae:3b:b1:1b:22:f2:8c:ac:c7:78: 07:08:f6:c5:25:62:f5:43:61:21:e7:3b:87:56:6c: c4:27:b6:31:cf:01:9a:ae:dd:d1:f3:2e:8f:4b:7e: be:b1:09:b2:28:32:f1:99:f0:0b:f1:d2:b5:6b:96: 2b:7e:c6:f2:a0:ff:c2:e7:ec:cd:ea:ce:23:b2:d1: ce:fb:5e:78:b3:6e:84:0f:c0:ab:c9:b4:e3:77:fc: ea:14:01:3c:b2:17:49:74:84:88:fa:6f:3b:07:75: 3a:b3:06:1f:23:c6:c8:99:37:56:d2:c7:f0:15:f9: b9:06:4e:38:82:b2:82:5e:29:a6:ca:13:62:d7:71: 42:2e:cb:cd:59:65:ed:13:a7:58:0a:59:7e:b0:13: 72:74:0b:40:45:7a:7c:47:2f:dd:db:8d:d7:9f:99: 80:80:74:65:43:78:f3:0e:28:a3:d9:5d:b5:f4:ae: c5:9f:3f:9d:fe:64:f3:3a:b1:80:c5:e4:d7:6f:f5: 25:d2:39:58:49:af:91:b1:e3:57:ae:8e:36:4d:85: 89:45:e0:36:81:2c:f0:9e:de:09:f0:e1:28:db:75: fd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E7:37:86:72:8D:16:5D:ED:83:F4:C4:B9:7D:96:CA:16:2F:EC:0F X509v3 Authority Key Identifier: keyid:1B:42:B2:BB:56:74:F2:34:68:74:46:14:CD:F9:B0:B0:0D:51:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/1B42B2BB5674F23468744614CDF9B0B00D510190.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1B42B2BB5674F23468744614CDF9B0B00D510190.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/3130332e31392e3135362e302f32332d3233203d3e20313530323334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.156.0/23 Signature Algorithm: sha256WithRSAEncryption 00:35:1a:e0:cc:8c:de:be:ce:47:a5:63:e5:e4:31:55:42:9e: d5:41:08:84:b0:e8:8d:8e:a1:60:18:28:0b:6d:6b:2e:ae:db: 6e:d9:27:cc:fa:80:43:ef:ba:51:68:1f:0e:89:85:05:cb:32: 2b:e3:41:fa:40:30:34:9c:0d:93:b1:7f:68:1d:e0:16:3a:9b: 49:15:40:d6:08:a8:f2:c0:eb:87:fb:ac:70:c3:57:6a:c4:57: 86:c7:00:7b:34:13:67:09:71:d5:00:3b:5d:9d:a1:be:c4:3f: 71:7b:1d:d5:bc:aa:f0:d5:70:ef:a7:6c:78:08:66:ee:c2:f4: aa:24:ef:b1:e7:5a:0b:74:cd:23:5e:96:e2:27:6c:2a:f5:11: 33:ff:3f:f6:57:0d:0e:da:6f:4c:fb:f6:a6:7e:9a:00:23:27: ea:5f:8f:de:32:5f:79:5e:a5:83:79:2e:19:45:00:b7:36:7e: c7:7a:37:76:1b:4e:2c:2c:b5:78:21:38:40:c6:5b:08:ce:20: bf:87:1c:f4:4f:42:0b:7b:a8:0d:7a:bf:d5:5f:f6:48:7f:ff: 09:da:47:d0:c8:f6:89:0b:9c:e9:b0:48:e7:ad:f6:f9:9e:de: e9:d6:b8:23:d0:b4:c4:6b:86:df:f9:47:59:c9:42:52:1e:3c: cf:35:ff:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf/z7jdCheF4CeuPOB0kgLbbHRMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI0MkIyQkI1Njc0RjIzNDY4NzQ0NjE0Q0RGOUIwQjAw RDUxMDE5MDAeFw0yNTA4MTkxMTU3MzBaFw0yNjA4MTgxMjAyMzBaMDMxMTAvBgNV BAMTKDg3RTczNzg2NzI4RDE2NURFRDgzRjRDNEI5N0Q5NkNBMTYyRkVDMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7dfDcICnHwRYpRMlelXJzT8kZ 0cw9QBMM+sycIEsrVz6hrjuxGyLyjKzHeAcI9sUlYvVDYSHnO4dWbMQntjHPAZqu 3dHzLo9Lfr6xCbIoMvGZ8Avx0rVrlit+xvKg/8Ln7M3qziOy0c77XnizboQPwKvJ tON3/OoUATyyF0l0hIj6bzsHdTqzBh8jxsiZN1bSx/AV+bkGTjiCsoJeKabKE2LX cUIuy81ZZe0Tp1gKWX6wE3J0C0BFenxHL93bjdefmYCAdGVDePMOKKPZXbX0rsWf P53+ZPM6sYDF5Ndv9SXSOVhJr5Gx41eujjZNhYlF4DaBLPCe3gnw4Sjbdf2JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh+c3hnKNFl3tg/TEuX2WyhYv7A8wHwYDVR0j BBgwFoAUG0Kyu1Z08jRodEYUzfmwsA1RAZAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MTQ0MjUyYi1kMzBlLTRiZGMtODMyZi1iMzhiMDVjN2EwMzUvMC8xQjQyQjJCQjU2 NzRGMjM0Njg3NDQ2MTRDREY5QjBCMDBENTEwMTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUI0MkIyQkI1Njc0RjIzNDY4NzQ0NjE0Q0RGOUIwQjAwRDUx MDE5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxNDQyNTJiLWQzMGUtNGJkYy04 MzJmLWIzOGIwNWM3YTAzNS8wLzMxMzAzMzJlMzEzOTJlMzEzNTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzIzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxOcMA0GCSqG SIb3DQEBCwUAA4IBAQAANRrgzIzevs5HpWPl5DFVQp7VQQiEsOiNjqFgGCgLbWsu rttu2SfM+oBD77pRaB8OiYUFyzIr40H6QDA0nA2TsX9oHeAWOptJFUDWCKjywOuH +6xww1dqxFeGxwB7NBNnCXHVADtdnaG+xD9xex3VvKrw1XDvp2x4CGbuwvSqJO+x 51oLdM0jXpbiJ2wq9REz/z/2Vw0O2m9M+/amfpoAIyfqX4/eMl95XqWDeS4ZRQC3 Nn7Hejd2G04sLLV4IThAxlsIziC/hxz0T0ILe6gNer/VX/ZIf/8J2kfQyPaJC5zp sEjnrfb5nt7p1rgj0LTEa4bf+UdZyUJSHjzPNf/y -----END CERTIFICATE-----Generated at Sat Aug 23 17:49:43 2025 by rpki-client