$ rpki-client -vvf repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa File: 3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: DTS/Msv2+J+yWcCmX3IMnnNepiaqaJENVR2ewyRj56c= Subject key identifier: E3:82:08:E9:9B:60:E7:27:76:17:A4:FC:6A:07:98:9A:54:E6:A5:C6 Certificate issuer: /CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Certificate serial: 05FBD47A47DA25AA23BE580019F9CD08D6506D8A Authority key identifier: 3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa Signing time: Wed 20 Aug 2025 05:00:01 +0000 ROA not before: Wed 20 Aug 2025 04:55:01 +0000 ROA not after: Wed 19 Aug 2026 05:00:01 +0000 asID: 149705 IP address blocks: 103.184.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.crl rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:fb:d4:7a:47:da:25:aa:23:be:58:00:19:f9:cd:08:d6:50:6d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Validity Not Before: Aug 20 04:55:01 2025 GMT Not After : Aug 19 05:00:01 2026 GMT Subject: CN=E38208E99B60E7277617A4FC6A07989A54E6A5C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:56:39:2d:26:96:df:10:63:ec:bb:a7:cb:ad: a4:28:84:db:8e:4c:b9:bc:c4:e9:a9:53:0f:4b:aa: d1:79:52:43:dd:69:de:42:68:3b:47:77:14:fe:7f: 00:82:3d:3f:5e:0f:0f:f5:4d:98:e6:fc:37:55:7d: 6f:99:79:72:88:ef:40:b7:22:ac:43:ff:a8:cf:02: df:eb:ec:f0:8a:ba:97:61:00:9f:88:b5:24:a1:dc: cb:83:69:0a:4e:94:34:d9:71:00:2b:0f:12:5b:d3: 27:23:e1:02:46:32:08:25:75:33:d6:7f:8a:4b:e0: cc:a1:48:fb:49:2c:ac:cf:39:f7:3f:a0:f4:36:65: 32:73:d7:5d:a2:0e:5d:e9:e8:d2:be:92:7b:cb:33: 3f:e0:ab:c9:0e:4e:28:24:e2:fc:eb:9e:31:74:08: 3a:0b:02:ad:26:db:1b:da:8e:a4:e6:95:ee:c4:8d: e7:f8:93:ba:13:99:f9:49:87:1d:fc:b2:0f:f2:89: 25:61:63:52:a3:1e:6d:ca:d7:00:6c:59:1d:ab:f8: 7f:0d:46:06:49:63:31:bb:64:3c:e8:6c:df:4c:45: 84:42:c6:04:18:67:ba:02:5b:5d:15:dd:73:a8:e6: df:71:9e:dc:ca:25:49:59:12:c9:1f:9a:0f:3a:6a: f1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:82:08:E9:9B:60:E7:27:76:17:A4:FC:6A:07:98:9A:54:E6:A5:C6 X509v3 Authority Key Identifier: keyid:3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.123.0/24 Signature Algorithm: sha256WithRSAEncryption 35:b5:7b:08:1b:97:50:35:28:83:58:4e:ff:18:12:d9:28:e4: 95:92:e7:27:5e:31:9f:88:49:e2:77:70:a3:f4:8b:3b:bf:98: c6:f1:fb:35:70:ec:e9:69:20:d2:f8:44:ef:6a:9d:cf:88:75: af:ed:42:9f:3e:75:bf:33:90:ee:49:b4:82:d3:68:e6:b8:d8: 26:50:25:d5:6b:5b:77:c1:b7:79:02:6a:8e:55:3e:af:c8:bc: cb:05:61:e8:8b:61:af:7c:04:33:44:04:b1:ed:78:b8:7d:fd: 6e:c6:99:44:9b:cc:0f:7f:1a:32:d3:86:fe:a3:3a:90:ae:87: 34:c9:38:e5:64:60:60:b3:1c:a5:42:95:07:e1:87:e4:6b:0f: 18:3e:92:0a:f6:35:8a:50:e6:1e:6c:d2:fc:af:41:18:d9:1b: d1:29:8e:6a:0a:9a:df:44:25:30:58:d6:8a:eb:bf:45:54:a3: fe:a1:98:03:70:9a:7c:f5:9b:d4:f3:92:31:2d:37:31:ff:33: 50:45:20:18:14:96:72:a0:29:e8:92:08:dc:c2:d1:e2:85:ac: 28:11:2e:7e:63:80:b7:a8:41:fa:d3:e0:23:ce:55:b0:85:2a: 43:a1:9a:c6:39:d3:0c:c1:95:7d:09:fe:18:76:4e:09:61:7c: 80:a4:f8:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBfvUekfaJaojvlgAGfnNCNZQbYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZENkVCMTdFNjdBQ0M0MDYwRjc3N0Y1QTRFM0Y5QTAy N0FCM0Y5QTAeFw0yNTA4MjAwNDU1MDFaFw0yNjA4MTkwNTAwMDFaMDMxMTAvBgNV BAMTKEUzODIwOEU5OUI2MEU3Mjc3NjE3QTRGQzZBMDc5ODlBNTRFNkE1QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuVjktJpbfEGPsu6fLraQohNuO TLm8xOmpUw9LqtF5UkPdad5CaDtHdxT+fwCCPT9eDw/1TZjm/DdVfW+ZeXKI70C3 IqxD/6jPAt/r7PCKupdhAJ+ItSSh3MuDaQpOlDTZcQArDxJb0ycj4QJGMggldTPW f4pL4MyhSPtJLKzPOfc/oPQ2ZTJz112iDl3p6NK+knvLMz/gq8kOTigk4vzrnjF0 CDoLAq0m2xvajqTmle7Ejef4k7oTmflJhx38sg/yiSVhY1KjHm3K1wBsWR2r+H8N RgZJYzG7ZDzobN9MRYRCxgQYZ7oCW10V3XOo5t9xntzKJUlZEskfmg86avGBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU44II6Ztg5yd2F6T8ageYmlTmpcYwHwYDVR0j BBgwFoAUP9brF+Z6zEBg93f1pOP5oCerP5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OTIyNjk0OC1iMWExLTQyOTQtOTE1MC02YWYwZTBiZWJmYjgvMC8zRkQ2RUIxN0U2 N0FDQzQwNjBGNzc3RjVBNEUzRjlBMDI3QUIzRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZENkVCMTdFNjdBQ0M0MDYwRjc3N0Y1QTRFM0Y5QTAyN0FC M0Y5QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5MjI2OTQ4LWIxYTEtNDI5NC05 MTUwLTZhZjBlMGJlYmZiOC8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHswDQYJ KoZIhvcNAQELBQADggEBADW1ewgbl1A1KINYTv8YEtko5JWS5ydeMZ+ISeJ3cKP0 izu/mMbx+zVw7OlpINL4RO9qnc+Ida/tQp8+db8zkO5JtILTaOa42CZQJdVrW3fB t3kCao5VPq/IvMsFYeiLYa98BDNEBLHteLh9/W7GmUSbzA9/GjLThv6jOpCuhzTJ OOVkYGCzHKVClQfhh+RrDxg+kgr2NYpQ5h5s0vyvQRjZG9EpjmoKmt9EJTBY1orr v0VUo/6hmANwmnz1m9TzkjEtNzH/M1BFIBgUlnKgKeiSCNzC0eKFrCgRLn5jgLeo QfrT4CPOVbCFKkOhmsY50wzBlX0J/hh2TglhfICk+Mc= -----END CERTIFICATE-----Generated at Sat Aug 23 18:54:27 2025 by rpki-client