$ rpki-client -vvf repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/3130332e3232342e36362e302f32342d3234203d3e203539313538.roa File: 3130332e3232342e36362e302f32342d3234203d3e203539313538.roa (raw, json) Hash identifier: pZ8/jlcW67uo3RV+YVwV6BROA/FZ969qlSyF5c20C4w= Subject key identifier: BF:D4:EA:24:21:FB:8B:7E:B3:9E:81:F4:99:92:48:DA:16:8A:5E:B5 Certificate issuer: /CN=B6F29F770F5B30B5F7B738F4524506F1A235DABC Certificate serial: 1C562031C419F98D6042060000A9B89EDD176FAF Authority key identifier: B6:F2:9F:77:0F:5B:30:B5:F7:B7:38:F4:52:45:06:F1:A2:35:DA:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F29F770F5B30B5F7B738F4524506F1A235DABC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/3130332e3232342e36362e302f32342d3234203d3e203539313538.roa Signing time: Tue 12 Aug 2025 18:02:40 +0000 ROA not before: Tue 12 Aug 2025 17:57:40 +0000 ROA not after: Tue 11 Aug 2026 18:02:40 +0000 asID: 59158 IP address blocks: 103.224.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/B6F29F770F5B30B5F7B738F4524506F1A235DABC.crl rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/B6F29F770F5B30B5F7B738F4524506F1A235DABC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F29F770F5B30B5F7B738F4524506F1A235DABC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 22:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:56:20:31:c4:19:f9:8d:60:42:06:00:00:a9:b8:9e:dd:17:6f:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F29F770F5B30B5F7B738F4524506F1A235DABC Validity Not Before: Aug 12 17:57:40 2025 GMT Not After : Aug 11 18:02:40 2026 GMT Subject: CN=BFD4EA2421FB8B7EB39E81F4999248DA168A5EB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ec:6c:5d:8a:3a:68:63:dd:2c:32:e0:0d:48: 87:11:7b:9b:9c:f0:92:2e:5e:93:2d:62:e6:02:23: 9a:d3:0b:67:39:da:31:d9:1a:2d:69:10:1c:a5:93: 0e:c7:19:15:70:1f:19:09:56:97:ef:51:4a:18:75: da:2d:c6:33:c7:d9:e4:2c:eb:41:41:cf:f3:b4:6a: 67:76:b9:b4:35:b7:40:74:71:d8:0e:a9:35:f8:4f: e7:b9:47:41:da:35:0c:6a:62:cf:f0:62:fe:48:a0: 87:f6:da:37:5b:f9:d5:c0:d9:7a:30:71:b4:64:6e: a1:b5:c8:a1:c8:85:50:bb:40:a4:73:f2:ac:95:e2: ff:b1:e5:66:23:c2:21:63:b0:46:0b:d8:fb:4e:35: 63:00:25:1f:59:d7:cc:be:15:f8:f6:dc:03:53:00: 60:79:15:3c:9e:11:ee:74:9e:af:3c:1d:0d:cd:12: 0c:b1:41:dd:21:6b:dd:ee:27:00:86:8d:9f:b0:26: fc:f7:df:bb:89:5f:67:61:26:cc:72:f3:6d:be:59: 40:e0:ba:25:e3:cc:24:9c:0c:13:cf:4e:55:34:c0: 04:18:a7:fa:0f:f5:db:f0:d4:3d:4a:85:02:4d:c4: b1:61:05:fd:32:6f:48:da:c9:d3:a5:28:21:d6:42: f7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D4:EA:24:21:FB:8B:7E:B3:9E:81:F4:99:92:48:DA:16:8A:5E:B5 X509v3 Authority Key Identifier: keyid:B6:F2:9F:77:0F:5B:30:B5:F7:B7:38:F4:52:45:06:F1:A2:35:DA:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/B6F29F770F5B30B5F7B738F4524506F1A235DABC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F29F770F5B30B5F7B738F4524506F1A235DABC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/3130332e3232342e36362e302f32342d3234203d3e203539313538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.66.0/24 Signature Algorithm: sha256WithRSAEncryption d6:5b:a4:48:0d:56:41:22:6f:67:c5:a0:fb:6d:00:bc:c2:f5: 02:3c:40:ab:16:8e:6f:15:d8:b8:9c:47:0a:8a:38:32:67:6e: 6c:32:36:36:8b:a0:0a:db:bb:e1:e9:43:b4:6f:22:09:24:27: 58:fe:0e:68:6f:eb:1b:1a:f2:da:fe:63:0d:bc:1b:c6:f8:8d: 47:78:2c:df:63:a4:02:d6:69:0d:21:1f:e9:de:72:13:a7:47: f4:63:10:61:e5:2c:01:f6:18:2c:bc:a0:12:e6:61:a7:82:36: 7e:41:fe:a5:e3:28:86:52:44:ab:64:ed:03:d6:7c:4e:b2:60: 94:89:22:fb:9b:8c:1e:95:c7:ec:24:df:0e:f3:f8:9c:cd:84: 29:60:c1:dd:56:c3:e0:ca:7b:dd:d3:cf:1a:f6:0e:1d:14:9d: 14:43:39:d9:1a:7b:dd:83:64:67:a8:43:de:b3:f5:c6:75:88: 12:22:89:a7:fb:30:b6:d4:ee:99:e8:1e:8a:d8:02:d4:ab:7d: 41:12:7a:02:03:cf:54:b0:b0:78:f5:f1:0c:3d:aa:5c:9a:cf: 33:61:8c:02:4c:eb:85:67:a4:d7:41:4b:e5:fc:b8:ac:10:38: a0:f1:fa:65:bb:73:87:66:8d:cd:d7:81:85:9c:eb:84:76:be: 50:97:9c:bd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHFYgMcQZ+Y1gQgYAAKm4nt0Xb68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMjlGNzcwRjVCMzBCNUY3QjczOEY0NTI0NTA2RjFB MjM1REFCQzAeFw0yNTA4MTIxNzU3NDBaFw0yNjA4MTExODAyNDBaMDMxMTAvBgNV BAMTKEJGRDRFQTI0MjFGQjhCN0VCMzlFODFGNDk5OTI0OERBMTY4QTVFQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH7GxdijpoY90sMuANSIcRe5uc 8JIuXpMtYuYCI5rTC2c52jHZGi1pEBylkw7HGRVwHxkJVpfvUUoYddotxjPH2eQs 60FBz/O0amd2ubQ1t0B0cdgOqTX4T+e5R0HaNQxqYs/wYv5IoIf22jdb+dXA2Xow cbRkbqG1yKHIhVC7QKRz8qyV4v+x5WYjwiFjsEYL2PtONWMAJR9Z18y+Ffj23ANT AGB5FTyeEe50nq88HQ3NEgyxQd0ha93uJwCGjZ+wJvz337uJX2dhJsxy822+WUDg uiXjzCScDBPPTlU0wAQYp/oP9dvw1D1KhQJNxLFhBf0yb0jaydOlKCHWQvdxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUv9TqJCH7i36znoH0mZJI2haKXrUwHwYDVR0j BBgwFoAUtvKfdw9bMLX3tzj0UkUG8aI12rwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YThkNTRhZS04NzBkLTQzNDgtYWI1OC0zMDA5MGE3NjBhMzYvMC9CNkYyOUY3NzBG NUIzMEI1RjdCNzM4RjQ1MjQ1MDZGMUEyMzVEQUJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMjlGNzcwRjVCMzBCNUY3QjczOEY0NTI0NTA2RjFBMjM1 REFCQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhOGQ1NGFlLTg3MGQtNDM0OC1h YjU4LTMwMDkwYTc2MGEzNi8wLzMxMzAzMzJlMzIzMjM0MmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzOTMxMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfgQjANBgkqhkiG 9w0BAQsFAAOCAQEA1lukSA1WQSJvZ8Wg+20AvML1AjxAqxaObxXYuJxHCoo4Mmdu bDI2NougCtu74elDtG8iCSQnWP4OaG/rGxry2v5jDbwbxviNR3gs32OkAtZpDSEf 6d5yE6dH9GMQYeUsAfYYLLygEuZhp4I2fkH+peMohlJEq2TtA9Z8TrJglIki+5uM HpXH7CTfDvP4nM2EKWDB3VbD4Mp73dPPGvYOHRSdFEM52Rp73YNkZ6hD3rP1xnWI EiKJp/swttTumegeitgC1Kt9QRJ6AgPPVLCwePXxDD2qXJrPM2GMAkzrhWek10FL 5fy4rBA4oPH6Zbtzh2aNzdeBhZzrhHa+UJecvQ== -----END CERTIFICATE-----Generated at Sun Aug 24 00:10:42 2025 by rpki-client