$ rpki-client -vvf repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa File: 3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa (raw, json) Hash identifier: JFWNh/TCjn8caLGCRcOB8LkkfKgWkq2tvrjf0Ta/M4A= Subject key identifier: 4A:59:51:28:FF:EB:A8:46:C0:52:C9:9D:27:34:A9:44:0B:2D:04:02 Certificate issuer: /CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Certificate serial: 600D0D445568984D4C495187BFD5D4F81297942A Authority key identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa Signing time: Sat 16 Aug 2025 10:00:01 +0000 ROA not before: Sat 16 Aug 2025 09:55:01 +0000 ROA not after: Sat 15 Aug 2026 10:00:01 +0000 asID: 147096 IP address blocks: 103.174.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:0d:0d:44:55:68:98:4d:4c:49:51:87:bf:d5:d4:f8:12:97:94:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Validity Not Before: Aug 16 09:55:01 2025 GMT Not After : Aug 15 10:00:01 2026 GMT Subject: CN=4A595128FFEBA846C052C99D2734A9440B2D0402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fe:57:80:55:0b:b3:c9:33:8c:1a:0d:06:ce: 7c:55:05:f5:40:e8:5a:84:c6:22:20:51:55:b7:b0: c7:a0:d3:81:f1:89:92:e9:62:85:9d:3a:3c:6a:08: e4:16:57:74:5d:4b:18:dc:69:40:b7:44:44:0d:ee: c5:2b:6f:b5:c0:e3:a8:25:b8:79:75:e5:4b:44:5e: b0:c1:af:90:d5:b3:72:27:ef:f6:6d:d5:91:f8:7e: 83:48:68:f2:6f:06:16:c9:48:a2:34:de:00:19:c6: 81:2f:da:cc:98:aa:57:0b:6c:7b:9c:f8:79:4a:8b: 11:52:d7:b9:a5:a9:a5:95:8c:a1:b1:d8:ed:a3:62: a8:19:9a:73:18:65:af:7f:d0:52:cf:12:e4:9e:42: e1:5f:ec:98:b6:fd:3d:36:c1:87:bc:07:1b:a7:f4: a7:03:3e:10:cc:71:4a:a3:97:54:be:0d:df:9d:a9: 3e:22:c1:09:b9:b8:44:ca:b0:6d:b5:bc:91:75:eb: 3e:19:59:0c:bf:83:7a:a8:4d:8f:2a:61:1b:f7:c0: 57:51:32:3d:0c:64:3d:06:22:f3:79:db:84:09:71: 7e:7d:58:8d:13:cb:83:79:a1:25:98:a2:43:04:0a: f0:35:d8:65:fc:81:7f:30:41:f6:26:5c:c4:e3:87: 55:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:59:51:28:FF:EB:A8:46:C0:52:C9:9D:27:34:A9:44:0B:2D:04:02 X509v3 Authority Key Identifier: keyid:25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132322e302f32342d3234203d3e20313437303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:4e:f3:84:b1:12:2e:38:77:28:26:fb:b3:12:52:8a:40:28: 29:7a:69:ab:9b:e1:f4:ec:dd:00:2d:db:2f:24:55:b1:3a:33: e5:40:a9:ae:82:89:4d:58:3f:a4:17:e0:f0:16:1a:2f:45:35: 69:f6:93:c2:1f:67:07:e2:7c:e5:10:61:05:38:78:8c:3c:34: 12:f7:b0:b3:dc:32:2a:9e:50:72:56:8b:90:8a:1c:5e:b0:a5: 99:e4:13:ff:69:cb:af:25:e7:3d:68:7a:31:62:64:41:8e:f6: b9:19:20:50:b8:f8:8c:fe:c8:b2:c2:7f:4b:4a:4c:98:d2:53: f1:99:da:ef:93:a0:53:b3:f7:5d:f3:48:77:5a:72:b7:ea:19: 7c:3d:7a:60:75:e9:69:35:08:f1:ed:e7:86:fc:93:d1:80:9f: ef:82:a7:31:e9:df:36:d3:18:ee:6c:02:e4:e4:b4:10:4f:8d: 3d:62:3f:c4:e5:f8:91:f6:a8:6c:ef:72:64:2f:cd:22:e7:06: 3d:f6:d7:7a:33:96:92:41:62:26:ab:c7:48:bc:23:0d:95:87: c3:5a:2b:cc:23:bc:cf:37:ef:cb:e2:d9:17:c7:2a:d8:19:38: 7b:b4:5e:4b:f1:13:f2:fc:23:13:3b:f1:c8:4a:43:35:44:46: 11:2a:85:c5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYA0NRFVomE1MSVGHv9XU+BKXlCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDcz RUJCM0ZFMDAeFw0yNTA4MTYwOTU1MDFaFw0yNjA4MTUxMDAwMDFaMDMxMTAvBgNV BAMTKDRBNTk1MTI4RkZFQkE4NDZDMDUyQzk5RDI3MzRBOTQ0MEIyRDA0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp/leAVQuzyTOMGg0GznxVBfVA 6FqExiIgUVW3sMeg04HxiZLpYoWdOjxqCOQWV3RdSxjcaUC3REQN7sUrb7XA46gl uHl15UtEXrDBr5DVs3In7/Zt1ZH4foNIaPJvBhbJSKI03gAZxoEv2syYqlcLbHuc +HlKixFS17mlqaWVjKGx2O2jYqgZmnMYZa9/0FLPEuSeQuFf7Ji2/T02wYe8Bxun 9KcDPhDMcUqjl1S+Dd+dqT4iwQm5uETKsG21vJF16z4ZWQy/g3qoTY8qYRv3wFdR Mj0MZD0GIvN524QJcX59WI0Ty4N5oSWYokMECvA12GX8gX8wQfYmXMTjh1V7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSllRKP/rqEbAUsmdJzSpRAstBAIwHwYDVR0j BBgwFoAUJfKD8+7DnVQd81lokEXSBz67P+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjczMDI3YS0wOTZiLTRlOTUtYTY1Ni1kYWJlOThhYzZmNmQvMC8yNUYyODNGM0VF QzM5RDU0MURGMzU5Njg5MDQ1RDIwNzNFQkIzRkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDczRUJC M0ZFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdhLTA5NmItNGU5NS1h NjU2LWRhYmU5OGFjNmY2ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnowDQYJ KoZIhvcNAQELBQADggEBAIxO84SxEi44dygm+7MSUopAKCl6aaub4fTs3QAt2y8k VbE6M+VAqa6CiU1YP6QX4PAWGi9FNWn2k8IfZwfifOUQYQU4eIw8NBL3sLPcMiqe UHJWi5CKHF6wpZnkE/9py68l5z1oejFiZEGO9rkZIFC4+Iz+yLLCf0tKTJjSU/GZ 2u+ToFOz913zSHdacrfqGXw9emB16Wk1CPHt54b8k9GAn++CpzHp3zbTGO5sAuTk tBBPjT1iP8Tl+JH2qGzvcmQvzSLnBj3213ozlpJBYiarx0i8Iw2Vh8NaK8wjvM83 78vi2RfHKtgZOHu0XkvxE/L8IxM78chKQzVERhEqhcU= -----END CERTIFICATE-----Generated at Sun Aug 24 03:27:29 2025 by rpki-client