$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa File: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: Hp5JXQrEPxCMGP++NvFxm2uvusi9TtoQlGvA7/UOH1I= Subject key identifier: 7F:28:EA:8F:B9:01:D3:B5:A9:8A:DE:3B:C7:C5:6D:BD:1D:C5:DE:F0 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: A23333D87ED84292F1B82A2BA2CD525A427463 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa Signing time: Thu 14 Aug 2025 12:00:02 +0000 ROA not before: Thu 14 Aug 2025 11:55:02 +0000 ROA not after: Thu 13 Aug 2026 12:00:02 +0000 asID: 141137 IP address blocks: 103.158.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 04:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a2:33:33:d8:7e:d8:42:92:f1:b8:2a:2b:a2:cd:52:5a:42:74:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Aug 14 11:55:02 2025 GMT Not After : Aug 13 12:00:02 2026 GMT Subject: CN=7F28EA8FB901D3B5A98ADE3BC7C56DBD1DC5DEF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d8:8d:b3:c4:8b:04:f8:a7:a3:3e:f2:5f:bc: 07:e2:38:b9:47:59:dd:7f:15:13:ec:d0:12:be:5b: a9:20:03:c1:0c:45:24:1b:07:32:f0:db:eb:ce:8d: e0:42:9a:77:84:0e:50:04:90:80:22:90:31:ed:bc: e0:51:96:0a:03:42:a3:bf:f9:02:60:69:8a:95:56: 2d:48:b2:59:6d:d3:92:04:ce:7d:fc:ca:4a:a3:2b: f7:4c:09:62:24:f0:42:e2:12:b8:13:23:39:63:85: cd:de:9f:98:d8:69:ff:b7:17:8d:e9:1b:f3:f9:8e: cb:bf:f8:28:78:88:2d:4a:82:04:d9:ce:39:bb:98: 9e:b6:d2:83:0b:97:c0:36:f1:10:de:b7:36:d0:cb: d8:2d:68:89:a8:30:49:ea:9b:f5:52:cb:c9:ae:9a: 44:0a:9e:b5:2c:e0:72:d7:b2:49:a8:ae:e3:76:50: 83:73:bf:4d:37:0b:12:56:5c:d1:77:80:dd:3e:67: 15:bf:d2:d9:a2:c9:76:a2:e1:41:2a:e8:29:a6:13: 42:67:a9:ea:91:f4:77:71:b3:27:2f:6d:b2:41:c6: 75:48:9a:49:d0:a8:5b:84:ba:23:85:4f:56:e6:2f: e0:1e:64:00:38:c3:06:92:31:ac:14:d1:ef:6a:5e: 88:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:28:EA:8F:B9:01:D3:B5:A9:8A:DE:3B:C7:C5:6D:BD:1D:C5:DE:F0 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.253.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:c8:b3:82:4f:a5:d5:25:03:88:41:f8:01:44:07:35:18:f1: 82:9a:67:04:2a:ef:84:a0:50:f8:ed:3f:b6:4b:4e:b5:fd:b9: 09:45:40:02:9d:08:ff:98:b3:2e:6a:db:c7:6a:d8:5a:5e:15: 08:f2:80:a9:08:4d:e1:00:67:17:13:e5:7d:db:51:3a:40:8c: 74:42:bb:88:a6:8d:08:f3:60:9d:e9:1f:e3:18:98:7b:c4:2f: e3:66:59:99:0d:eb:2a:68:9c:92:eb:4a:30:87:e5:26:5d:fc: aa:c8:5c:ba:11:f9:eb:89:83:cf:89:19:79:49:15:b1:25:c5: 31:ce:d6:89:4d:15:69:4c:76:00:ba:be:2f:6f:c4:74:37:8d: 4c:61:d4:9e:79:c8:83:96:8b:96:49:5c:0e:f2:35:2c:7d:e9: 2d:6b:b5:be:ed:ce:e9:59:82:f6:aa:c6:f8:8a:fd:fb:80:9d: fe:f8:a5:22:01:9f:f4:dd:2d:99:1b:d9:b4:9a:3e:1b:01:ee: c9:aa:c7:80:ed:9c:6f:c8:aa:e9:1a:a3:89:af:bd:22:4c:00: 5c:0e:a6:56:89:b4:a1:30:f7:e7:c9:5e:22:2d:f7:1e:ad:78: 74:01:f9:bf:36:d8:bb:bd:ea:6b:09:b5:db:51:70:4d:23:70: 60:41:81:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAKIzM9h+2EKS8bgqK6LNUlpCdGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTA4MTQxMTU1MDJaFw0yNjA4MTMxMjAwMDJaMDMxMTAvBgNV BAMTKDdGMjhFQThGQjkwMUQzQjVBOThBREUzQkM3QzU2REJEMURDNURFRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp2I2zxIsE+KejPvJfvAfiOLlH Wd1/FRPs0BK+W6kgA8EMRSQbBzLw2+vOjeBCmneEDlAEkIAikDHtvOBRlgoDQqO/ +QJgaYqVVi1Isllt05IEzn38ykqjK/dMCWIk8ELiErgTIzljhc3en5jYaf+3F43p G/P5jsu/+Ch4iC1KggTZzjm7mJ620oMLl8A28RDetzbQy9gtaImoMEnqm/VSy8mu mkQKnrUs4HLXskmoruN2UINzv003CxJWXNF3gN0+ZxW/0tmiyXai4UEq6CmmE0Jn qeqR9HdxsycvbbJBxnVImknQqFuEuiOFT1bmL+AeZAA4wwaSMawU0e9qXohfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfyjqj7kB07Wpit47x8VtvR3F3vAwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnv0wDQYJ KoZIhvcNAQELBQADggEBADzIs4JPpdUlA4hB+AFEBzUY8YKaZwQq74SgUPjtP7ZL TrX9uQlFQAKdCP+Ysy5q28dq2FpeFQjygKkITeEAZxcT5X3bUTpAjHRCu4imjQjz YJ3pH+MYmHvEL+NmWZkN6yponJLrSjCH5SZd/KrIXLoR+euJg8+JGXlJFbElxTHO 1olNFWlMdgC6vi9vxHQ3jUxh1J55yIOWi5ZJXA7yNSx96S1rtb7tzulZgvaqxviK /fuAnf74pSIBn/TdLZkb2bSaPhsB7smqx4DtnG/Iqukao4mvvSJMAFwOplaJtKEw 9+fJXiIt9x6teHQB+b822Lu96msJtdtRcE0jcGBBgbQ= -----END CERTIFICATE-----Generated at Mon Aug 25 06:09:44 2025 by rpki-client