$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa File: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (raw, json) Hash identifier: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw= Subject key identifier: 06:38:5B:4F:F8:93:35:8F:94:06:E4:1D:C3:77:34:AF:F2:C7:69:FC Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 177F16CF3A4083F32B8E1CE24CCDF73377767C7B Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa Signing time: Wed 13 Aug 2025 09:02:28 +0000 ROA not before: Wed 13 Aug 2025 08:57:28 +0000 ROA not after: Wed 12 Aug 2026 09:02:28 +0000 asID: 396982 IP address blocks: 103.157.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7f:16:cf:3a:40:83:f3:2b:8e:1c:e2:4c:cd:f7:33:77:76:7c:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Aug 13 08:57:28 2025 GMT Not After : Aug 12 09:02:28 2026 GMT Subject: CN=06385B4FF893358F9406E41DC37734AFF2C769FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f1:c3:cc:74:28:36:68:94:a7:55:6e:40:ce: 37:36:e6:5c:c1:0b:6e:26:cf:61:f0:d2:4e:c8:03: 46:c1:0c:4e:f9:bc:72:b6:c2:40:e7:38:2d:9a:33: 81:3f:a5:04:99:04:77:9c:73:63:e9:fb:a4:bd:39: 97:80:ee:a5:67:99:d5:bb:5d:19:f3:8b:54:7b:e3: 8c:3a:c6:30:06:1b:98:2f:2d:3b:a7:b3:64:22:fa: 00:8c:f6:26:4b:04:b5:a6:42:84:28:54:22:c9:bc: 4f:d4:22:9b:ff:e1:e5:b4:11:95:fe:8d:7a:af:d4: 15:30:5f:b0:9d:3b:9e:35:1d:43:92:64:b8:3f:ed: 2f:bd:98:00:43:c1:ca:12:86:36:59:7a:2d:d5:d1: 57:0e:f3:5b:f8:00:8a:8c:9a:2a:0d:f4:ab:4a:ab: c7:ca:20:7c:d5:73:e2:ed:d1:d9:2a:53:2c:58:6b: 82:c9:5a:e8:bf:18:e7:55:9b:11:8f:96:5b:c4:37: e2:42:83:e3:77:43:1a:91:74:27:9f:a3:5e:49:b9: 0e:cc:31:d3:db:74:36:84:f3:76:c6:bb:56:67:61: 5d:1a:a7:cd:10:16:f3:be:07:90:fd:a1:ac:0f:a1: ee:fe:88:b4:61:48:1d:65:38:ed:36:a9:aa:70:15: 6c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:38:5B:4F:F8:93:35:8F:94:06:E4:1D:C3:77:34:AF:F2:C7:69:FC X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.55.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:46:a8:65:f1:5a:46:d4:0c:7f:17:4a:0c:46:41:88:79:ab: 61:f1:6f:7e:cc:9f:2b:d1:ad:89:12:0d:b6:25:52:fb:35:df: e2:9d:1c:60:5a:80:2e:9b:67:da:d6:08:da:b8:e2:6d:c7:24: 1f:7f:63:57:55:5c:04:29:22:2f:13:ec:34:c6:6f:36:2b:3a: b6:50:e8:26:4a:87:47:f7:9f:90:8c:92:7f:01:16:1d:bf:e3: df:fc:69:42:4c:93:ee:0d:5e:bf:80:0d:56:e0:8c:31:43:a4: 9f:45:2b:7d:d9:ec:28:cd:11:ac:b5:4d:68:61:08:de:41:70: 41:e8:99:17:13:b4:9d:00:02:36:f6:59:5d:a9:0b:97:c7:bd: 18:d7:79:7e:0a:c5:29:da:72:9b:ae:5c:fd:7b:6c:90:b4:bd: 73:c4:68:23:53:de:c0:76:47:01:54:98:52:f6:eb:f0:84:da: 0a:f3:43:d6:e8:5d:a0:ba:b1:33:61:0c:fb:23:43:97:36:e3: 36:18:1e:8a:57:e9:da:f0:0b:5a:1d:17:18:89:80:be:9b:ad: b9:db:6f:51:83:d0:0b:12:d0:f3:3f:31:fd:d5:21:d1:04:88: 71:07:36:9c:5c:cf:5c:59:de:64:1c:e9:6b:e9:86:58:cb:ae: 89:53:59:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF38WzzpAg/MrjhziTM33M3d2fHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA4MTMwODU3MjhaFw0yNjA4MTIwOTAyMjhaMDMxMTAvBgNV BAMTKDA2Mzg1QjRGRjg5MzM1OEY5NDA2RTQxREMzNzczNEFGRjJDNzY5RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM8cPMdCg2aJSnVW5Azjc25lzB C24mz2Hw0k7IA0bBDE75vHK2wkDnOC2aM4E/pQSZBHecc2Pp+6S9OZeA7qVnmdW7 XRnzi1R744w6xjAGG5gvLTuns2Qi+gCM9iZLBLWmQoQoVCLJvE/UIpv/4eW0EZX+ jXqv1BUwX7CdO541HUOSZLg/7S+9mABDwcoShjZZei3V0VcO81v4AIqMmioN9KtK q8fKIHzVc+Lt0dkqUyxYa4LJWui/GOdVmxGPllvEN+JCg+N3QxqRdCefo15JuQ7M MdPbdDaE83bGu1ZnYV0ap80QFvO+B5D9oawPoe7+iLRhSB1lOO02qapwFWzhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBjhbT/iTNY+UBuQdw3c0r/LHafwwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzExLTFlM2QtNGU1YS1h NGFjLTA1YTFjNTAyYWQyOC8wLzMxMzAzMzJlMzEzNTM3MmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ503MA0GCSqG SIb3DQEBCwUAA4IBAQAaRqhl8VpG1Ax/F0oMRkGIeath8W9+zJ8r0a2JEg22JVL7 Nd/inRxgWoAum2fa1gjauOJtxyQff2NXVVwEKSIvE+w0xm82Kzq2UOgmSodH95+Q jJJ/ARYdv+Pf/GlCTJPuDV6/gA1W4IwxQ6SfRSt92ewozRGstU1oYQjeQXBB6JkX E7SdAAI29lldqQuXx70Y13l+CsUp2nKbrlz9e2yQtL1zxGgjU97AdkcBVJhS9uvw hNoK80PW6F2gurEzYQz7I0OXNuM2GB6KV+na8AtaHRcYiYC+m625229Rg9ALEtDz PzH91SHRBIhxBzacXM9cWd5kHOlr6YZYy66JU1lH -----END CERTIFICATE-----Generated at Sat Aug 23 13:41:29 2025 by rpki-client