$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa File: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: laLJUGonDC43HjG3ZGNawYIEQ9ln67j38UngxvM2zgQ= Subject key identifier: 5E:4A:DA:B6:63:D3:4E:5C:00:B1:CA:DB:B7:77:D6:2A:DF:BD:6E:82 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 41194A43159E9639101C6CD9B78B8677C4048C05 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa Signing time: Thu 14 Aug 2025 12:00:02 +0000 ROA not before: Thu 14 Aug 2025 11:55:02 +0000 ROA not after: Thu 13 Aug 2026 12:00:02 +0000 asID: 141137 IP address blocks: 103.158.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 04:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:19:4a:43:15:9e:96:39:10:1c:6c:d9:b7:8b:86:77:c4:04:8c:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Aug 14 11:55:02 2025 GMT Not After : Aug 13 12:00:02 2026 GMT Subject: CN=5E4ADAB663D34E5C00B1CADBB777D62ADFBD6E82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f5:fb:cb:0c:7c:f1:7a:5a:f7:28:f7:50:8b: d1:4a:86:2d:86:d9:ee:48:16:44:5c:12:7e:0a:4b: cf:27:96:f2:83:fe:3d:12:b3:80:d0:fc:7e:4c:2f: b8:e8:d6:5d:a2:69:ff:be:92:3f:13:21:5b:94:40: 68:25:6d:e2:67:d4:e8:c7:3f:02:2e:18:ff:25:c2: 62:79:3c:e1:0b:fe:69:44:4c:e0:20:21:06:28:bc: ab:e8:b1:8a:7c:83:fb:64:2e:60:69:d2:4e:42:c7: 52:bd:a2:fb:78:3f:98:95:af:13:3b:6d:c1:67:9b: 0a:d9:a4:aa:ec:69:a6:5b:ed:4a:71:9a:16:c2:f4: c7:40:3c:f6:9e:7f:cd:98:b3:c7:27:ac:e5:b2:d7: b0:5f:5c:2a:26:a0:ba:60:ec:82:08:53:6f:79:ce: 33:4f:c2:56:e0:1c:93:fc:53:19:86:85:44:6e:c7: 67:77:38:b4:b0:d0:50:95:c8:03:ab:49:76:a2:b4: 4b:97:22:45:dd:29:87:65:ec:67:b1:16:3c:16:75: 54:d7:56:12:15:78:dd:26:c3:f4:42:8b:f0:72:31: ab:15:0c:f0:72:50:a0:4d:54:ee:d9:2e:5d:28:27: b2:22:98:39:b4:20:ee:07:8c:f8:46:f1:e4:c5:d2: a7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4A:DA:B6:63:D3:4E:5C:00:B1:CA:DB:B7:77:D6:2A:DF:BD:6E:82 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.252.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:5f:cd:0b:77:49:78:d0:58:8c:80:e6:2f:0e:3a:6c:17:cf: 7b:7e:5f:fc:e5:45:fb:c3:b2:03:8c:c0:0b:4f:ad:b0:f9:b6: 89:bc:11:c3:25:2c:42:f0:4d:11:6a:8f:e8:48:98:d4:6e:d8: 1e:ac:e2:b9:fc:d1:67:9b:13:a7:18:ae:5e:8b:a5:e0:23:df: 2e:3f:bf:2e:80:05:d1:0a:a8:59:13:16:d8:20:92:53:54:d8: 46:13:11:21:37:3a:28:80:e1:3b:d6:34:2d:d4:d2:81:88:0d: d8:9c:fd:eb:68:f3:b7:2b:87:f1:d6:95:d5:22:76:9f:12:aa: 11:c2:6e:4d:34:5e:c4:a2:5a:28:91:f5:97:1b:34:fd:7e:36: c8:8d:60:39:dd:40:b6:74:a9:e7:07:c7:bd:ca:69:62:96:02: 4c:04:fa:b8:5a:fd:ae:39:ef:fc:c3:f8:35:c7:08:20:1b:3b: 56:88:d1:ff:5f:a3:a1:ec:dc:e8:a3:e2:73:8a:63:de:7f:d5: eb:09:84:c1:ac:4f:8a:99:b4:26:f4:c0:47:d4:a5:73:c4:5f: d0:7f:d0:c6:c3:9d:28:fe:51:3b:7b:45:7b:48:65:ce:a0:6a: 5c:c4:27:29:4e:a4:33:41:3a:3a:df:62:ac:44:a5:74:5b:b3: 6a:28:de:df -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQRlKQxWeljkQHGzZt4uGd8QEjAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA4MTQxMTU1MDJaFw0yNjA4MTMxMjAwMDJaMDMxMTAvBgNV BAMTKDVFNEFEQUI2NjNEMzRFNUMwMEIxQ0FEQkI3NzdENjJBREZCRDZFODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD9fvLDHzxelr3KPdQi9FKhi2G 2e5IFkRcEn4KS88nlvKD/j0Ss4DQ/H5ML7jo1l2iaf++kj8TIVuUQGglbeJn1OjH PwIuGP8lwmJ5POEL/mlETOAgIQYovKvosYp8g/tkLmBp0k5Cx1K9ovt4P5iVrxM7 bcFnmwrZpKrsaaZb7UpxmhbC9MdAPPaef82Ys8cnrOWy17BfXComoLpg7IIIU295 zjNPwlbgHJP8UxmGhURux2d3OLSw0FCVyAOrSXaitEuXIkXdKYdl7GexFjwWdVTX VhIVeN0mw/RCi/ByMasVDPByUKBNVO7ZLl0oJ7IimDm0IO4HjPhG8eTF0qd5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXkratmPTTlwAscrbt3fWKt+9boIwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnvwwDQYJ KoZIhvcNAQELBQADggEBAB1fzQt3SXjQWIyA5i8OOmwXz3t+X/zlRfvDsgOMwAtP rbD5tom8EcMlLELwTRFqj+hImNRu2B6s4rn80WebE6cYrl6LpeAj3y4/vy6ABdEK qFkTFtggklNU2EYTESE3OiiA4TvWNC3U0oGIDdic/eto87crh/HWldUidp8SqhHC bk00XsSiWiiR9ZcbNP1+NsiNYDndQLZ0qecHx73KaWKWAkwE+rha/a457/zD+DXH CCAbO1aI0f9fo6Hs3Oij4nOKY95/1esJhMGsT4qZtCb0wEfUpXPEX9B/0MbDnSj+ UTt7RXtIZc6galzEJylOpDNBOjrfYqxEpXRbs2oo3t8= -----END CERTIFICATE-----Generated at Mon Aug 25 06:07:24 2025 by rpki-client