$ rpki-client -vvf repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132322e302f32342d3234203d3e20313439373035.roa File: 3130332e3138342e3132322e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: Iu3jqOF1OKCYSUkajjnPtBWzUDppzjUa82PRV4A9qHs= Subject key identifier: EB:EC:83:00:51:8B:58:47:4C:FE:EF:64:2A:6A:54:1E:06:38:71:73 Certificate issuer: /CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Certificate serial: 0938F7481C84541ECC908CBDD5148C4F26598107 Authority key identifier: 3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132322e302f32342d3234203d3e20313439373035.roa Signing time: Wed 20 Aug 2025 05:00:00 +0000 ROA not before: Wed 20 Aug 2025 04:55:00 +0000 ROA not after: Wed 19 Aug 2026 05:00:00 +0000 asID: 149705 IP address blocks: 103.184.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.crl rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:38:f7:48:1c:84:54:1e:cc:90:8c:bd:d5:14:8c:4f:26:59:81:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Validity Not Before: Aug 20 04:55:00 2025 GMT Not After : Aug 19 05:00:00 2026 GMT Subject: CN=EBEC8300518B58474CFEEF642A6A541E06387173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:90:9c:6e:ec:b2:c9:1a:41:ef:38:c9:9d:d1: aa:5f:41:51:1a:bd:68:e1:ed:c9:bd:f3:42:39:80: 95:5c:80:1b:ff:3f:fe:bd:1c:04:b6:b6:a2:13:43: cd:4a:e9:6a:eb:b2:70:7f:1d:f3:08:ad:d5:48:bf: 1e:7e:8e:1b:df:c7:49:9a:db:37:ee:73:ce:d3:74: ec:ef:a8:b5:b1:2a:ac:a5:b0:64:2f:8c:9f:6d:27: 87:ec:a8:b5:98:ae:cf:39:85:6e:f8:06:20:77:e4: 4b:bf:9c:a0:fd:70:02:9c:d5:ff:4b:fb:b0:1c:1a: 1c:3e:b9:82:46:ac:fd:cf:d0:f4:a9:cb:dc:ec:f2: 89:92:c9:70:b8:61:1b:93:f3:54:71:58:f5:54:06: 99:7c:71:a0:af:06:8e:f9:22:2c:0a:a7:93:76:3e: 41:e5:df:65:d8:d7:7e:ad:6d:58:52:7e:6f:30:cd: 4e:e1:87:46:08:01:b5:5c:9d:fb:60:e2:df:9a:75: 2d:eb:8d:0f:ce:94:e2:f5:d7:2f:29:40:42:27:f5: 20:e6:e6:41:23:d0:36:59:9c:35:2c:82:55:71:a5: ae:d6:a4:e8:f0:5e:c9:a4:7a:f3:54:ee:b8:aa:50: 0e:4e:0b:3b:ab:30:30:c8:da:33:8b:28:60:8e:20: e0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EC:83:00:51:8B:58:47:4C:FE:EF:64:2A:6A:54:1E:06:38:71:73 X509v3 Authority Key Identifier: keyid:3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132322e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.122.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:d5:00:04:15:2a:9a:db:93:06:74:92:f1:78:e6:3d:4a:24: c7:d8:30:c8:2e:69:d3:d1:65:a9:2e:3d:8a:97:f0:a3:fc:1d: d3:7a:e4:8f:74:6d:ce:dd:2c:44:30:b7:15:df:e7:3e:8e:7d: 59:0c:52:7f:cc:66:5b:73:52:26:52:b9:af:71:eb:f1:87:59: 8c:3c:ff:df:b7:87:46:af:30:67:6c:3b:59:26:a9:b5:b9:49: 48:b4:ed:fe:d8:35:4c:e0:36:14:f7:b2:78:7f:c3:58:8c:d9: 7d:a8:23:f4:13:eb:cd:11:a9:19:aa:aa:40:46:c6:88:e4:30: 76:f6:62:9a:ed:3f:5e:a3:3a:ab:75:a4:b6:78:ab:45:94:15: 73:8e:a4:87:20:12:2e:3e:df:d4:29:71:5b:83:59:b3:b6:b6: e0:28:eb:6c:b9:07:56:dc:64:31:33:0f:40:6d:84:59:e5:6c: a7:e6:02:07:93:b5:ed:39:b0:36:c7:59:48:2f:f4:6b:23:34: bd:65:7f:8f:3c:c4:c4:05:73:1a:f5:58:ba:8d:ae:68:0b:47: aa:2e:c2:3c:aa:53:6c:a0:4c:91:ff:15:7f:6e:a8:43:1a:8b: 34:b6:eb:c3:c4:38:8d:f3:4d:d7:62:09:90:21:35:cb:bd:6d: e9:1d:fe:ed -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCTj3SByEVB7MkIy91RSMTyZZgQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZENkVCMTdFNjdBQ0M0MDYwRjc3N0Y1QTRFM0Y5QTAy N0FCM0Y5QTAeFw0yNTA4MjAwNDU1MDBaFw0yNjA4MTkwNTAwMDBaMDMxMTAvBgNV BAMTKEVCRUM4MzAwNTE4QjU4NDc0Q0ZFRUY2NDJBNkE1NDFFMDYzODcxNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRkJxu7LLJGkHvOMmd0apfQVEa vWjh7cm980I5gJVcgBv/P/69HAS2tqITQ81K6WrrsnB/HfMIrdVIvx5+jhvfx0ma 2zfuc87TdOzvqLWxKqylsGQvjJ9tJ4fsqLWYrs85hW74BiB35Eu/nKD9cAKc1f9L +7AcGhw+uYJGrP3P0PSpy9zs8omSyXC4YRuT81RxWPVUBpl8caCvBo75IiwKp5N2 PkHl32XY136tbVhSfm8wzU7hh0YIAbVcnftg4t+adS3rjQ/OlOL11y8pQEIn9SDm 5kEj0DZZnDUsglVxpa7WpOjwXsmkevNU7riqUA5OCzurMDDI2jOLKGCOIOCdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6+yDAFGLWEdM/u9kKmpUHgY4cXMwHwYDVR0j BBgwFoAUP9brF+Z6zEBg93f1pOP5oCerP5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OTIyNjk0OC1iMWExLTQyOTQtOTE1MC02YWYwZTBiZWJmYjgvMC8zRkQ2RUIxN0U2 N0FDQzQwNjBGNzc3RjVBNEUzRjlBMDI3QUIzRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZENkVCMTdFNjdBQ0M0MDYwRjc3N0Y1QTRFM0Y5QTAyN0FC M0Y5QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5MjI2OTQ4LWIxYTEtNDI5NC05 MTUwLTZhZjBlMGJlYmZiOC8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHowDQYJ KoZIhvcNAQELBQADggEBAC/VAAQVKprbkwZ0kvF45j1KJMfYMMguadPRZakuPYqX 8KP8HdN65I90bc7dLEQwtxXf5z6OfVkMUn/MZltzUiZSua9x6/GHWYw8/9+3h0av MGdsO1kmqbW5SUi07f7YNUzgNhT3snh/w1iM2X2oI/QT680RqRmqqkBGxojkMHb2 YprtP16jOqt1pLZ4q0WUFXOOpIcgEi4+39QpcVuDWbO2tuAo62y5B1bcZDEzD0Bt hFnlbKfmAgeTte05sDbHWUgv9GsjNL1lf488xMQFcxr1WLqNrmgLR6ouwjyqU2yg TJH/FX9uqEMaizS268PEOI3zTddiCZAhNcu9bekd/u0= -----END CERTIFICATE-----Generated at Sat Aug 23 18:55:16 2025 by rpki-client