$ rpki-client -vvf repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/3130332e3130302e3234362e302f32342d3234203d3e20313336383432.roa File: 3130332e3130302e3234362e302f32342d3234203d3e20313336383432.roa (raw, json) Hash identifier: L/oaDs9pEKj6iBvLwrU05wZAuGGAsyb/Z+4/d76DsQ0= Subject key identifier: BD:0E:F0:FF:D6:95:17:5E:F4:A7:32:97:44:47:B4:51:1D:82:8E:67 Certificate issuer: /CN=A08B1B14AA5B6512424EDF8650A984942F27A4EF Certificate serial: 503E4EA4FCDF42E03712F969E9E3DA561F9C90F6 Authority key identifier: A0:8B:1B:14:AA:5B:65:12:42:4E:DF:86:50:A9:84:94:2F:27:A4:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/3130332e3130302e3234362e302f32342d3234203d3e20313336383432.roa Signing time: Fri 15 Aug 2025 08:00:23 +0000 ROA not before: Fri 15 Aug 2025 07:55:23 +0000 ROA not after: Fri 14 Aug 2026 08:00:23 +0000 asID: 136842 IP address blocks: 103.100.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.crl rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3e:4e:a4:fc:df:42:e0:37:12:f9:69:e9:e3:da:56:1f:9c:90:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08B1B14AA5B6512424EDF8650A984942F27A4EF Validity Not Before: Aug 15 07:55:23 2025 GMT Not After : Aug 14 08:00:23 2026 GMT Subject: CN=BD0EF0FFD695175EF4A732974447B4511D828E67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:da:f6:79:a0:9f:f0:7d:11:2e:10:41:a6: 3b:10:96:99:64:35:ce:60:39:d4:52:7a:13:c8:37: 24:d9:b9:07:0d:5b:bc:dd:0b:dc:6d:f2:67:15:45: 66:11:ec:71:6c:6c:4d:65:83:17:91:6e:a3:33:8f: 48:c8:a0:f7:6c:e0:dd:0d:b6:cb:5a:90:0a:d1:f5: 3a:4e:a8:d7:f4:64:3b:d3:ee:14:52:3d:41:b0:bb: 88:99:ce:39:8d:42:c8:1c:4d:ed:9c:57:62:86:2c: 27:7e:49:cb:18:ab:e2:d4:df:20:6e:27:19:26:50: e1:5f:9d:d6:f2:79:67:b7:3d:e3:98:2f:41:a9:08: 97:b2:5d:c3:e2:58:0c:7a:85:be:a4:30:2a:fa:25: af:9d:56:4b:eb:2b:ef:b1:24:d0:d0:01:cc:0e:93: cf:ef:70:a1:95:5d:53:80:7f:16:19:bd:73:28:9d: 8d:e5:d2:c8:20:a5:0a:c5:3f:55:32:82:0f:2a:c1: 59:78:30:8c:d0:74:17:94:9e:20:27:ae:f4:7f:40: 52:b6:1b:ff:0a:a1:b6:d2:c3:21:65:86:e9:49:9f: dc:91:79:7b:e4:c5:10:90:3e:87:fc:f1:9a:b0:44: ae:02:d4:2c:05:b6:5b:4e:3e:50:35:d2:9c:a3:66: 12:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0E:F0:FF:D6:95:17:5E:F4:A7:32:97:44:47:B4:51:1D:82:8E:67 X509v3 Authority Key Identifier: keyid:A0:8B:1B:14:AA:5B:65:12:42:4E:DF:86:50:A9:84:94:2F:27:A4:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/3130332e3130302e3234362e302f32342d3234203d3e20313336383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.246.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:d3:f3:1a:1a:fc:3a:8b:7e:6e:88:90:db:c3:04:2d:93:4e: c6:52:37:3e:aa:c7:64:73:5a:9b:16:87:ec:37:38:ca:c4:71: ef:ad:6b:18:d8:8d:6f:4d:b4:6f:8b:b7:1c:43:6d:77:92:d7: 95:e7:f4:04:12:eb:8a:32:ea:68:74:5b:99:17:50:86:55:ba: 7c:f4:7a:4f:e5:e7:3d:f1:82:42:56:6e:5f:08:36:60:b6:d9: 46:8a:02:6a:57:7d:11:27:97:21:c8:91:b4:ef:a1:15:83:a0: 25:a6:c0:d7:a6:a5:71:09:de:a7:18:82:f4:d1:3e:69:e6:da: 2e:64:f7:bd:12:4d:c2:6b:8d:0c:01:01:c4:61:fa:5a:79:e2: e6:3c:c2:7e:c0:bb:7e:df:d0:b4:29:8f:a3:c5:ce:41:3c:13: 94:b0:95:1c:b3:e9:b4:69:6e:7e:24:e7:db:3f:a0:7e:ab:f8: 4a:b3:47:e4:30:dd:ea:ad:60:b0:43:5a:be:e1:2f:75:79:68: b2:b1:f9:fb:9f:0e:f5:17:28:73:a6:cb:69:5c:00:ab:2e:2b: a0:88:29:ff:62:00:f7:a7:4c:2f:c6:68:43:d2:a2:a2:7f:f6: 5e:64:0b:c5:17:57:d5:b4:15:cd:8c:1a:df:75:7d:1f:77:da: 17:80:f9:72 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUD5OpPzfQuA3Evlp6ePaVh+ckPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QjFCMTRBQTVCNjUxMjQyNEVERjg2NTBBOTg0OTQy RjI3QTRFRjAeFw0yNTA4MTUwNzU1MjNaFw0yNjA4MTQwODAwMjNaMDMxMTAvBgNV BAMTKEJEMEVGMEZGRDY5NTE3NUVGNEE3MzI5NzQ0NDdCNDUxMUQ4MjhFNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyU9r2eaCf8H0RLhBBpjsQlplk Nc5gOdRSehPINyTZuQcNW7zdC9xt8mcVRWYR7HFsbE1lgxeRbqMzj0jIoPds4N0N tstakArR9TpOqNf0ZDvT7hRSPUGwu4iZzjmNQsgcTe2cV2KGLCd+ScsYq+LU3yBu JxkmUOFfndbyeWe3PeOYL0GpCJeyXcPiWAx6hb6kMCr6Ja+dVkvrK++xJNDQAcwO k8/vcKGVXVOAfxYZvXMonY3l0sggpQrFP1Uygg8qwVl4MIzQdBeUniAnrvR/QFK2 G/8KobbSwyFlhulJn9yReXvkxRCQPof88ZqwRK4C1CwFtltOPlA10pyjZhKDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvQ7w/9aVF170pzKXREe0UR2CjmcwHwYDVR0j BBgwFoAUoIsbFKpbZRJCTt+GUKmElC8npO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTk3YmNmNC1lMWFhLTQ3ZDYtYmRlNi0yZTY2N2I5ZDYxMzQvMC9BMDhCMUIxNEFB NUI2NTEyNDI0RURGODY1MEE5ODQ5NDJGMjdBNEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA4QjFCMTRBQTVCNjUxMjQyNEVERjg2NTBBOTg0OTQyRjI3 QTRFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhOTdiY2Y0LWUxYWEtNDdkNi1i ZGU2LTJlNjY3YjlkNjEzNC8wLzMxMzAzMzJlMzEzMDMwMmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZPYwDQYJ KoZIhvcNAQELBQADggEBAHrT8xoa/DqLfm6IkNvDBC2TTsZSNz6qx2RzWpsWh+w3 OMrEce+taxjYjW9NtG+LtxxDbXeS15Xn9AQS64oy6mh0W5kXUIZVunz0ek/l5z3x gkJWbl8INmC22UaKAmpXfREnlyHIkbTvoRWDoCWmwNempXEJ3qcYgvTRPmnm2i5k 970STcJrjQwBAcRh+lp54uY8wn7Au37f0LQpj6PFzkE8E5SwlRyz6bRpbn4k59s/ oH6r+EqzR+Qw3eqtYLBDWr7hL3V5aLKx+fufDvUXKHOmy2lcAKsuK6CIKf9iAPen TC/GaEPSoqJ/9l5kC8UXV9W0Fc2MGt91fR932heA+XI= -----END CERTIFICATE-----Generated at Sat Aug 23 15:51:02 2025 by rpki-client