$ rpki-client -vvf repo-rpki.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/3130332e32302e38382e302f32342d3234203d3e20313530313837.roa File: 3130332e32302e38382e302f32342d3234203d3e20313530313837.roa (raw, json) Hash identifier: Ad9vTNOJwKofaap6S433q9PQ++RzqFFroze72orM9pE= Subject key identifier: 8E:A8:CE:3C:80:5B:36:E9:93:FC:7A:F1:D6:CF:A7:44:8A:A2:08:4A Certificate issuer: /CN=1A8D5C5C95DA1BAB593AA71D0CB6B22684161633 Certificate serial: 23C4C6EEAD5703070B79E41F1EFA9047388992D5 Authority key identifier: 1A:8D:5C:5C:95:DA:1B:AB:59:3A:A7:1D:0C:B6:B2:26:84:16:16:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A8D5C5C95DA1BAB593AA71D0CB6B22684161633.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/3130332e32302e38382e302f32342d3234203d3e20313530313837.roa Signing time: Mon 04 Aug 2025 14:00:00 +0000 ROA not before: Mon 04 Aug 2025 13:55:00 +0000 ROA not after: Mon 03 Aug 2026 14:00:00 +0000 asID: 150187 IP address blocks: 103.20.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/1A8D5C5C95DA1BAB593AA71D0CB6B22684161633.crl rsync://repo-rpki.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/1A8D5C5C95DA1BAB593AA71D0CB6B22684161633.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A8D5C5C95DA1BAB593AA71D0CB6B22684161633.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c4:c6:ee:ad:57:03:07:0b:79:e4:1f:1e:fa:90:47:38:89:92:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A8D5C5C95DA1BAB593AA71D0CB6B22684161633 Validity Not Before: Aug 4 13:55:00 2025 GMT Not After : Aug 3 14:00:00 2026 GMT Subject: CN=8EA8CE3C805B36E993FC7AF1D6CFA7448AA2084A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a9:76:7d:1e:8a:5b:4f:26:a3:7c:ad:63:eb: c2:72:12:33:d8:c1:de:02:3a:51:c7:f6:e1:54:f8: 60:38:5d:f0:94:24:15:6a:11:5e:3d:37:64:68:df: 5b:19:5f:f3:76:9b:50:bd:8a:eb:0c:56:f6:6d:03: 79:80:4b:c8:21:f5:86:84:e2:82:40:0e:e4:59:61: 54:27:0e:5a:20:7a:96:6e:c7:b0:b5:f8:57:db:69: 17:c1:eb:41:36:fc:ea:5a:d7:63:aa:5c:fc:2c:a3: 09:ae:0d:8a:a0:bc:67:3e:a7:5f:8f:2a:51:ed:9a: 1b:03:e5:7a:4c:7f:25:3d:b6:ab:60:18:98:58:3d: 6d:e4:65:39:54:43:69:ef:e9:af:35:28:ae:62:4d: 58:dc:68:38:39:2f:8f:27:5c:b5:0f:1b:4b:61:94: dc:94:f5:c7:2e:ff:7e:a9:0f:85:d6:b5:7b:29:83: a3:59:c9:bf:83:21:0f:27:c9:1b:05:09:be:77:76: f6:a6:b6:94:8c:00:32:35:11:ab:f4:e7:35:28:4f: 36:ca:ae:58:88:51:25:67:21:19:6d:c6:42:e2:8e: e1:2b:22:2c:b4:d9:c7:74:56:39:bc:31:51:f2:08: 57:72:9a:73:af:ea:20:c1:6c:43:0f:5d:19:26:c3: 8a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A8:CE:3C:80:5B:36:E9:93:FC:7A:F1:D6:CF:A7:44:8A:A2:08:4A X509v3 Authority Key Identifier: keyid:1A:8D:5C:5C:95:DA:1B:AB:59:3A:A7:1D:0C:B6:B2:26:84:16:16:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/1A8D5C5C95DA1BAB593AA71D0CB6B22684161633.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A8D5C5C95DA1BAB593AA71D0CB6B22684161633.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fcc1ef6-769f-4aaf-9d14-2e5b15a6ff23/0/3130332e32302e38382e302f32342d3234203d3e20313530313837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.88.0/24 Signature Algorithm: sha256WithRSAEncryption 87:0e:24:e2:79:cd:6a:da:ec:90:a0:3b:0e:4a:a5:22:a4:12: 81:49:f3:6e:c9:fe:af:a9:4f:d3:ab:aa:02:05:3d:de:39:b1: 11:da:b6:7e:ce:38:48:3c:0e:c7:f6:a5:2c:98:5d:ff:8d:9e: bd:45:e8:da:dc:74:03:ad:0b:7a:4b:11:45:e2:33:77:a3:59: e6:b9:6a:fc:1c:84:e1:e6:01:7e:84:62:d1:ff:36:52:36:26: f1:84:47:6a:65:87:79:bc:50:34:1c:5f:a5:91:cd:f7:79:58: 8b:84:09:0d:a2:16:e7:e5:a3:61:3a:df:25:ae:7f:3a:01:64: 5e:63:e6:8b:a7:8a:2a:53:17:8a:b5:25:39:50:b9:7d:2b:cc: 36:81:b5:69:b0:9e:cb:fa:9d:67:c4:f5:60:6c:54:5d:74:bc: e9:a5:c5:c6:7b:d0:cf:11:05:02:15:5c:e0:0a:bb:03:9b:4b: ef:7d:b1:2c:d8:b7:4d:e2:a8:da:b6:29:89:c4:d8:3c:4e:8a: 32:0c:ee:4d:13:34:2a:14:58:1c:9f:d9:8a:8e:38:dc:c9:93: 6c:a5:32:a7:38:c0:cb:96:7d:40:62:18:e1:79:8f:fb:71:3e: ff:66:91:99:8c:ee:e8:c2:55:47:28:56:62:db:90:ec:cb:7d: cc:f6:ea:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI8TG7q1XAwcLeeQfHvqQRziJktUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE4RDVDNUM5NURBMUJBQjU5M0FBNzFEMENCNkIyMjY4 NDE2MTYzMzAeFw0yNTA4MDQxMzU1MDBaFw0yNjA4MDMxNDAwMDBaMDMxMTAvBgNV BAMTKDhFQThDRTNDODA1QjM2RTk5M0ZDN0FGMUQ2Q0ZBNzQ0OEFBMjA4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnqXZ9HopbTyajfK1j68JyEjPY wd4COlHH9uFU+GA4XfCUJBVqEV49N2Ro31sZX/N2m1C9iusMVvZtA3mAS8gh9YaE 4oJADuRZYVQnDlogepZux7C1+FfbaRfB60E2/Opa12OqXPwsowmuDYqgvGc+p1+P KlHtmhsD5XpMfyU9tqtgGJhYPW3kZTlUQ2nv6a81KK5iTVjcaDg5L48nXLUPG0th lNyU9ccu/36pD4XWtXspg6NZyb+DIQ8nyRsFCb53dvamtpSMADI1Eav05zUoTzbK rliIUSVnIRltxkLijuErIiy02cd0Vjm8MVHyCFdymnOv6iDBbEMPXRkmw4rNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjqjOPIBbNumT/Hrx1s+nRIqiCEowHwYDVR0j BBgwFoAUGo1cXJXaG6tZOqcdDLayJoQWFjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmNjMWVmNi03NjlmLTRhYWYtOWQxNC0yZTViMTVhNmZmMjMvMC8xQThENUM1Qzk1 REExQkFCNTkzQUE3MUQwQ0I2QjIyNjg0MTYxNjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUE4RDVDNUM5NURBMUJBQjU5M0FBNzFEMENCNkIyMjY4NDE2 MTYzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmY2MxZWY2LTc2OWYtNGFhZi05 ZDE0LTJlNWIxNWE2ZmYyMy8wLzMxMzAzMzJlMzIzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMxMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUWDANBgkqhkiG 9w0BAQsFAAOCAQEAhw4k4nnNatrskKA7DkqlIqQSgUnzbsn+r6lP06uqAgU93jmx Edq2fs44SDwOx/alLJhd/42evUXo2tx0A60LeksRReIzd6NZ5rlq/ByE4eYBfoRi 0f82UjYm8YRHamWHebxQNBxfpZHN93lYi4QJDaIW5+WjYTrfJa5/OgFkXmPmi6eK KlMXirUlOVC5fSvMNoG1abCey/qdZ8T1YGxUXXS86aXFxnvQzxEFAhVc4Aq7A5tL 732xLNi3TeKo2rYpicTYPE6KMgzuTRM0KhRYHJ/Zio443MmTbKUypzjAy5Z9QGIY 4XmP+3E+/2aRmYzu6MJVRyhWYtuQ7Mt9zPbq3w== -----END CERTIFICATE-----Generated at Sat Aug 23 22:04:11 2025 by rpki-client