$ rpki-client -vvf repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa File: 3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa (raw, json) Hash identifier: BoTluS9h9fXmYVG5ixZmkF8QGw01I8U2x/hhTczYeKA= Subject key identifier: E6:32:BA:77:1D:2F:40:39:A8:12:B6:1F:5E:0B:9B:7B:0C:9B:C4:99 Certificate issuer: /CN=4960A8427FEA5814EF9E80EF3786E0CAAE063745 Certificate serial: 0CA66A3BE2C91852617F251492F6EA87C621F44F Authority key identifier: 49:60:A8:42:7F:EA:58:14:EF:9E:80:EF:37:86:E0:CA:AE:06:37:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4960A8427FEA5814EF9E80EF3786E0CAAE063745.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa Signing time: Thu 14 Aug 2025 09:00:00 +0000 ROA not before: Thu 14 Aug 2025 08:55:00 +0000 ROA not after: Thu 13 Aug 2026 09:00:00 +0000 asID: 133349 IP address blocks: 103.230.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/4960A8427FEA5814EF9E80EF3786E0CAAE063745.crl rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/4960A8427FEA5814EF9E80EF3786E0CAAE063745.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4960A8427FEA5814EF9E80EF3786E0CAAE063745.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 06:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a6:6a:3b:e2:c9:18:52:61:7f:25:14:92:f6:ea:87:c6:21:f4:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4960A8427FEA5814EF9E80EF3786E0CAAE063745 Validity Not Before: Aug 14 08:55:00 2025 GMT Not After : Aug 13 09:00:00 2026 GMT Subject: CN=E632BA771D2F4039A812B61F5E0B9B7B0C9BC499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:41:17:cb:11:90:c7:27:3e:ed:e2:7b:23:bc: 75:5d:be:e9:be:72:cb:84:10:64:72:d8:fe:90:bb: 67:e8:af:08:c9:b9:19:75:20:97:2f:2f:a8:38:0d: 69:d7:57:4f:73:91:a4:5d:c1:4a:e9:08:2f:38:98: d8:88:3b:d3:9d:4e:b1:80:5c:e5:1a:c0:04:a8:39: 32:d4:aa:53:85:e8:6e:34:b7:2d:4a:61:dd:02:bc: 30:42:28:83:d0:82:6e:82:6c:d4:4d:3f:0c:b0:bc: 8a:ed:33:4d:37:fe:71:fd:ef:90:e7:6e:82:d2:a5: ea:f0:4e:85:e1:f1:e2:08:b2:c2:dd:98:3e:ff:f5: 63:84:84:ac:93:82:aa:5b:a8:46:aa:f3:5f:f8:c2: 4d:fe:c8:10:57:2e:5d:8d:8d:d3:0d:4f:6f:ea:a9: 01:9e:ca:99:90:b7:2c:5c:4c:79:7d:85:22:b9:ea: 5f:ec:38:81:14:09:cb:a6:ec:aa:b5:33:fd:26:f3: 8b:32:74:5a:06:3b:7c:21:d1:76:13:4d:df:1e:77: 65:69:8b:b4:b5:d8:26:46:f2:85:24:ce:ad:67:ff: 27:3f:ec:a6:ca:f6:58:a7:37:90:37:c0:19:24:f0: 89:1c:88:25:0c:ba:74:6d:32:79:18:85:88:4a:b4: 68:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:32:BA:77:1D:2F:40:39:A8:12:B6:1F:5E:0B:9B:7B:0C:9B:C4:99 X509v3 Authority Key Identifier: keyid:49:60:A8:42:7F:EA:58:14:EF:9E:80:EF:37:86:E0:CA:AE:06:37:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/4960A8427FEA5814EF9E80EF3786E0CAAE063745.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4960A8427FEA5814EF9E80EF3786E0CAAE063745.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.230.188.0/23 Signature Algorithm: sha256WithRSAEncryption 32:26:87:09:1a:40:0a:16:41:02:35:71:e0:21:09:e8:4e:5c: 06:4b:84:94:09:88:c2:49:3c:6d:72:03:2a:8f:71:de:75:38: 79:e6:7a:f9:86:0b:af:3b:21:c9:6c:86:a6:eb:e6:c8:bd:0e: ae:5c:4a:20:0a:e9:01:a3:52:90:f1:1a:28:99:15:10:f1:d1: 56:8e:34:03:59:6e:94:0d:1d:50:e0:cf:a8:13:4c:11:ef:8f: 1f:21:bc:a4:2e:23:38:27:d9:85:4f:2a:ee:c5:72:3b:3f:90: cd:a0:9e:6c:32:8f:6f:59:92:04:49:0d:47:b3:ff:11:f2:81: f4:13:33:25:49:78:d1:fa:a1:56:19:fe:13:c6:9a:81:3a:9e: b0:c3:71:2d:25:ef:fa:86:80:b4:2a:c5:e7:03:a0:e9:e8:3a: 19:5d:0a:dc:a9:bc:ff:64:8f:93:d5:2c:1d:91:ad:8b:c9:5c: 1a:0b:49:b4:b4:89:31:5c:82:bf:21:30:f1:7d:a9:ea:99:b3: a8:f7:4d:6e:6b:23:79:2b:33:a4:27:6e:8c:21:50:03:7f:8c: 2e:69:a2:60:53:15:9e:ca:a2:50:fb:f6:26:ff:e9:72:78:53: bf:e0:9d:9c:be:6e:5e:25:d5:0e:ce:94:ef:49:e0:bf:18:56: 7f:af:95:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDKZqO+LJGFJhfyUUkvbqh8Yh9E8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk2MEE4NDI3RkVBNTgxNEVGOUU4MEVGMzc4NkUwQ0FB RTA2Mzc0NTAeFw0yNTA4MTQwODU1MDBaFw0yNjA4MTMwOTAwMDBaMDMxMTAvBgNV BAMTKEU2MzJCQTc3MUQyRjQwMzlBODEyQjYxRjVFMEI5QjdCMEM5QkM0OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtQRfLEZDHJz7t4nsjvHVdvum+ csuEEGRy2P6Qu2forwjJuRl1IJcvL6g4DWnXV09zkaRdwUrpCC84mNiIO9OdTrGA XOUawASoOTLUqlOF6G40ty1KYd0CvDBCKIPQgm6CbNRNPwywvIrtM003/nH975Dn boLSperwToXh8eIIssLdmD7/9WOEhKyTgqpbqEaq81/4wk3+yBBXLl2NjdMNT2/q qQGeypmQtyxcTHl9hSK56l/sOIEUCcum7Kq1M/0m84sydFoGO3wh0XYTTd8ed2Vp i7S12CZG8oUkzq1n/yc/7KbK9linN5A3wBkk8IkciCUMunRtMnkYhYhKtGj5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5jK6dx0vQDmoErYfXgubewybxJkwHwYDVR0j BBgwFoAUSWCoQn/qWBTvnoDvN4bgyq4GN0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDQ1N2QyMC0wMjNhLTQ1MDktYmI0YS02MmM4NjkyOWRkOTcvMC80OTYwQTg0MjdG RUE1ODE0RUY5RTgwRUYzNzg2RTBDQUFFMDYzNzQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDk2MEE4NDI3RkVBNTgxNEVGOUU4MEVGMzc4NkUwQ0FBRTA2 Mzc0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNDU3ZDIwLTAyM2EtNDUwOS1i YjRhLTYyYzg2OTI5ZGQ5Ny8wLzMxMzAzMzJlMzIzMzMwMmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn5rwwDQYJ KoZIhvcNAQELBQADggEBADImhwkaQAoWQQI1ceAhCehOXAZLhJQJiMJJPG1yAyqP cd51OHnmevmGC687Iclshqbr5si9Dq5cSiAK6QGjUpDxGiiZFRDx0VaONANZbpQN HVDgz6gTTBHvjx8hvKQuIzgn2YVPKu7Fcjs/kM2gnmwyj29ZkgRJDUez/xHygfQT MyVJeNH6oVYZ/hPGmoE6nrDDcS0l7/qGgLQqxecDoOnoOhldCtypvP9kj5PVLB2R rYvJXBoLSbS0iTFcgr8hMPF9qeqZs6j3TW5rI3krM6QnbowhUAN/jC5pomBTFZ7K olD79ib/6XJ4U7/gnZy+bl4l1Q7OlO9J4L8YVn+vla0= -----END CERTIFICATE-----Generated at Sun Aug 24 05:15:07 2025 by rpki-client