$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa File: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (raw, json) Hash identifier: MfxGUIrhtjjGajjX90ABbBqTVuaaEFP6XuBr1Yslsx0= Subject key identifier: 7F:C2:D2:B7:A9:8A:72:63:C9:32:75:5C:44:2E:AC:53:58:45:78:4C Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 0E19A16597B188A05B54DBEDC3F8513EC7AF810E Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa Signing time: Thu 14 Aug 2025 13:00:02 +0000 ROA not before: Thu 14 Aug 2025 12:55:02 +0000 ROA not after: Thu 13 Aug 2026 13:00:02 +0000 asID: 141137 IP address blocks: 103.158.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 04:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:19:a1:65:97:b1:88:a0:5b:54:db:ed:c3:f8:51:3e:c7:af:81:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Aug 14 12:55:02 2025 GMT Not After : Aug 13 13:00:02 2026 GMT Subject: CN=7FC2D2B7A98A7263C932755C442EAC535845784C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:80:7a:4a:31:1a:f4:cf:75:25:1a:f8:86:58: d0:50:26:c5:60:c8:24:1d:2e:6f:ad:ea:55:de:97: d8:5a:18:6b:59:2f:fc:19:ce:93:03:87:e4:b7:96: 75:a7:7a:c1:ef:8f:42:1c:82:ee:6f:fa:60:61:b0: 9f:ce:99:9e:7f:f9:37:ed:cd:9e:56:bb:e9:21:c3: 1e:b3:e2:64:74:94:f5:b3:b7:fb:9d:1b:b6:48:06: e0:d1:95:27:73:4d:40:4c:33:1e:ee:90:fd:8e:ad: 1e:33:71:0c:0b:d9:09:af:b4:4f:56:8d:08:ee:ef: b0:1c:f3:2f:b1:4b:ba:5d:f8:f8:fc:bb:23:72:62: 98:8b:74:46:2b:e7:1b:b6:7b:93:5f:69:bf:f6:16: a8:b2:1e:e0:51:ec:57:9a:f1:ed:1b:75:56:7e:00: 96:2d:b1:d8:86:47:f3:94:d4:77:73:3c:6c:8e:d6: d5:bf:44:db:76:af:32:8d:87:86:33:34:eb:bf:0c: b6:18:34:47:76:1d:35:6d:19:06:55:7f:bd:50:59: 26:3c:dd:50:e6:63:1b:2c:74:57:e5:aa:37:88:39: 4f:af:53:63:cf:57:5f:51:b6:f5:cd:8b:54:82:0a: ff:13:ed:8c:9d:0c:8e:76:0d:3e:0b:f1:e9:32:b6: 20:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C2:D2:B7:A9:8A:72:63:C9:32:75:5C:44:2E:AC:53:58:45:78:4C X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.252.0/23 Signature Algorithm: sha256WithRSAEncryption a0:65:41:c6:76:66:f8:67:ad:a2:34:c7:70:c1:47:a5:ff:a0: 99:30:38:d3:8f:00:cf:ee:11:bb:bc:07:47:af:83:ca:10:14: 6f:ba:97:9b:e7:db:2f:86:a7:1b:56:e4:2b:fd:b1:a6:af:b0: ad:68:ae:68:0b:72:18:0c:41:c1:4d:16:0a:49:ed:5d:d5:26: b8:a8:3a:cd:8d:80:3c:32:42:eb:bf:52:d0:88:4a:07:16:47: 73:bc:ea:7a:24:b3:7f:ae:a1:10:f5:f3:11:14:20:f9:89:3d: 2a:12:e8:fd:61:ac:b6:ea:55:12:e5:4d:fd:d1:e4:a8:d6:60: f9:d2:d4:83:e8:60:8c:17:77:f8:0d:61:c7:ed:c7:75:ac:6c: 2a:86:b1:83:ce:4b:8f:65:e4:4b:58:c5:9c:77:71:de:25:91: 85:98:3c:2a:15:3d:cf:fb:33:e5:ba:83:d9:93:7b:13:17:6c: c6:9d:b7:43:be:b7:07:2c:05:24:b9:85:ca:d8:18:d2:87:9a: 4c:0f:b6:98:f6:d7:c8:b5:f9:c6:28:8f:b5:7c:d0:30:45:a4: f9:2e:33:4d:ea:18:94:3c:3b:c2:67:86:fa:b1:83:68:83:e5: 33:d1:44:0e:15:13:23:7d:99:25:cc:dc:aa:58:d6:45:23:98: 10:47:9d:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDhmhZZexiKBbVNvtw/hRPsevgQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA4MTQxMjU1MDJaFw0yNjA4MTMxMzAwMDJaMDMxMTAvBgNV BAMTKDdGQzJEMkI3QTk4QTcyNjNDOTMyNzU1QzQ0MkVBQzUzNTg0NTc4NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBgHpKMRr0z3UlGviGWNBQJsVg yCQdLm+t6lXel9haGGtZL/wZzpMDh+S3lnWnesHvj0Icgu5v+mBhsJ/OmZ5/+Tft zZ5Wu+khwx6z4mR0lPWzt/udG7ZIBuDRlSdzTUBMMx7ukP2OrR4zcQwL2QmvtE9W jQju77Ac8y+xS7pd+Pj8uyNyYpiLdEYr5xu2e5Nfab/2FqiyHuBR7Fea8e0bdVZ+ AJYtsdiGR/OU1HdzPGyO1tW/RNt2rzKNh4YzNOu/DLYYNEd2HTVtGQZVf71QWSY8 3VDmYxssdFflqjeIOU+vU2PPV19RtvXNi1SCCv8T7YydDI52DT4L8ekytiBJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUf8LSt6mKcmPJMnVcRC6sU1hFeEwwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnvwwDQYJ KoZIhvcNAQELBQADggEBAKBlQcZ2ZvhnraI0x3DBR6X/oJkwONOPAM/uEbu8B0ev g8oQFG+6l5vn2y+GpxtW5Cv9saavsK1ormgLchgMQcFNFgpJ7V3VJrioOs2NgDwy Quu/UtCISgcWR3O86noks3+uoRD18xEUIPmJPSoS6P1hrLbqVRLlTf3R5KjWYPnS 1IPoYIwXd/gNYcftx3WsbCqGsYPOS49l5EtYxZx3cd4lkYWYPCoVPc/7M+W6g9mT exMXbMadt0O+twcsBSS5hcrYGNKHmkwPtpj218i1+cYoj7V80DBFpPkuM03qGJQ8 O8Jnhvqxg2iD5TPRRA4VEyN9mSXM3KpY1kUjmBBHne8= -----END CERTIFICATE-----Generated at Sat Aug 23 23:45:57 2025 by rpki-client