$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: sJUN/+XYslzThounXZW+MFwCm1lc8VEvrGvUm5/WqYY= Subject key identifier: DB:DC:64:57:68:D8:9E:A2:48:84:F5:CF:8C:C2:18:CD:87:91:37:3C Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 78E9564BE012C5C7AC1EB43F631F9016679034A6 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa Signing time: Mon 11 Aug 2025 08:02:18 +0000 ROA not before: Mon 11 Aug 2025 07:57:18 +0000 ROA not after: Mon 10 Aug 2026 08:02:18 +0000 asID: 59149 IP address blocks: 103.254.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e9:56:4b:e0:12:c5:c7:ac:1e:b4:3f:63:1f:90:16:67:90:34:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Aug 11 07:57:18 2025 GMT Not After : Aug 10 08:02:18 2026 GMT Subject: CN=DBDC645768D89EA24884F5CF8CC218CD8791373C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b7:ad:e9:eb:3c:33:a7:63:43:04:a8:b7:24: 4f:9b:7f:79:cd:0d:3a:90:ca:22:44:4b:ec:d1:09: 25:70:ed:7e:57:46:fc:f0:a3:d9:f3:4b:cc:6a:e2: d3:b0:a6:84:a0:52:f4:7a:b1:92:aa:f0:ce:cf:00: 57:13:6c:b9:6b:b3:18:58:82:4e:0e:d1:96:b0:9f: b9:7b:79:6c:f0:c4:1d:51:83:97:cd:75:6b:29:03: 35:81:e5:86:69:86:b8:b7:9b:87:3f:7a:b9:37:c5: 11:3f:e6:78:a4:8a:12:50:75:29:b1:78:6b:aa:c2: 9b:41:26:56:79:f1:26:f4:ef:47:59:8d:e8:60:b5: d8:84:2c:3b:01:34:b8:87:a8:c6:bf:66:4f:b8:2f: 21:69:c3:83:57:59:08:20:54:ca:2c:56:84:fc:5e: 84:f1:d6:70:4e:5f:50:29:2d:3b:78:97:25:17:6c: b8:e5:85:ba:df:78:cf:cf:24:05:34:09:bf:6c:ee: 97:16:e9:d8:21:1c:cb:fe:7f:bc:c1:92:dc:a1:61: ef:36:69:5f:57:8f:a0:19:cb:19:86:4d:41:c8:a0: a3:89:5c:f7:81:ea:74:6a:72:da:cc:c6:09:a4:1c: 41:b8:08:a9:9f:bd:78:15:92:6c:21:6f:f5:6e:48: 9b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DC:64:57:68:D8:9E:A2:48:84:F5:CF:8C:C2:18:CD:87:91:37:3C X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.169.0/24 Signature Algorithm: sha256WithRSAEncryption 41:d0:6b:92:f9:65:12:00:88:de:26:21:81:2b:8e:ff:c2:ee: 04:fc:bc:1f:15:be:01:63:bd:b6:79:5d:fb:ce:e0:53:19:7d: 13:21:a4:89:a7:21:bc:eb:08:c5:60:8a:a1:11:1d:2b:0d:8d: 4e:04:9a:1f:60:1f:2e:b3:d9:3e:92:94:f3:82:ac:85:b5:84: 85:c6:fd:02:03:aa:80:3e:55:7d:d7:9c:0a:a2:8e:2b:da:6c: e4:08:00:86:e0:27:27:a0:dd:b8:db:75:ae:80:f0:e0:8c:ad: 02:fe:b6:fa:4a:92:a8:8a:92:a3:42:6f:e8:fc:0f:66:39:8c: 45:0b:70:55:b1:6e:2e:2c:e6:db:80:85:30:ca:ce:48:68:f5: 4b:04:ee:f2:69:6f:5d:0e:4d:bf:2a:0f:f4:7c:ae:e2:e0:0d: eb:9e:64:62:45:2f:84:1b:0e:51:b4:fe:31:da:9d:46:5c:53: 52:6f:36:10:34:e5:f4:65:bf:6f:9e:22:ea:cb:17:b7:b3:d7: 36:18:81:3e:86:d5:37:9f:a4:1b:f5:ac:42:95:2f:cf:30:e7: da:f7:1f:fa:e7:5b:12:e7:02:fe:71:cf:f5:e4:82:f8:63:42: 04:b2:fa:3f:f0:01:0a:07:8b:92:02:a5:02:0b:ea:45:64:1f: ac:e2:f8:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeOlWS+ASxcesHrQ/Yx+QFmeQNKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNTA4MTEwNzU3MThaFw0yNjA4MTAwODAyMThaMDMxMTAvBgNV BAMTKERCREM2NDU3NjhEODlFQTI0ODg0RjVDRjhDQzIxOENEODc5MTM3M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrt63p6zwzp2NDBKi3JE+bf3nN DTqQyiJES+zRCSVw7X5XRvzwo9nzS8xq4tOwpoSgUvR6sZKq8M7PAFcTbLlrsxhY gk4O0Zawn7l7eWzwxB1Rg5fNdWspAzWB5YZphri3m4c/erk3xRE/5nikihJQdSmx eGuqwptBJlZ58Sb070dZjehgtdiELDsBNLiHqMa/Zk+4LyFpw4NXWQggVMosVoT8 XoTx1nBOX1ApLTt4lyUXbLjlhbrfeM/PJAU0Cb9s7pcW6dghHMv+f7zBktyhYe82 aV9Xj6AZyxmGTUHIoKOJXPeB6nRqctrMxgmkHEG4CKmfvXgVkmwhb/VuSJtjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU29xkV2jYnqJIhPXPjMIYzYeRNzwwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6pMA0GCSqG SIb3DQEBCwUAA4IBAQBB0GuS+WUSAIjeJiGBK47/wu4E/LwfFb4BY722eV37zuBT GX0TIaSJpyG86wjFYIqhER0rDY1OBJofYB8us9k+kpTzgqyFtYSFxv0CA6qAPlV9 15wKoo4r2mzkCACG4CcnoN2423WugPDgjK0C/rb6SpKoipKjQm/o/A9mOYxFC3BV sW4uLObbgIUwys5IaPVLBO7yaW9dDk2/Kg/0fK7i4A3rnmRiRS+EGw5RtP4x2p1G XFNSbzYQNOX0Zb9vniLqyxe3s9c2GIE+htU3n6Qb9axClS/PMOfa9x/651sS5wL+ cc/15IL4Y0IEsvo/8AEKB4uSAqUCC+pFZB+s4vgl -----END CERTIFICATE-----Generated at Sat Aug 23 15:16:55 2025 by rpki-client