$ rpki-client -vvf repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa File: 3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa (raw, json) Hash identifier: Up9LSeGrEk86AmZx1Mz4hpZPUaY/z7DkI+kYAtlMDxc= Subject key identifier: 84:85:17:52:A4:5B:0C:CB:F9:DD:A8:02:13:D7:BC:9F:DF:61:E0:B3 Certificate issuer: /CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Certificate serial: 707A2C807E09ED37FA1AA8515B94CCBC9D91585C Authority key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa Signing time: Wed 13 Aug 2025 19:00:00 +0000 ROA not before: Wed 13 Aug 2025 18:55:00 +0000 ROA not after: Wed 12 Aug 2026 19:00:00 +0000 asID: 147133 IP address blocks: 103.176.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:7a:2c:80:7e:09:ed:37:fa:1a:a8:51:5b:94:cc:bc:9d:91:58:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Validity Not Before: Aug 13 18:55:00 2025 GMT Not After : Aug 12 19:00:00 2026 GMT Subject: CN=84851752A45B0CCBF9DDA80213D7BC9FDF61E0B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:46:31:39:7c:17:9a:f4:43:b1:b1:ed:31: ad:5d:b5:df:2f:b7:3a:45:5e:ca:de:9c:77:f1:18: a4:f0:46:7d:3c:3b:fd:1d:49:40:91:02:3b:b0:12: 00:26:eb:e4:3c:67:bc:d8:c9:2f:94:08:6c:bd:91: 00:a3:77:c8:74:9b:ab:6f:3d:7a:1b:76:2c:33:19: 02:ad:0f:a4:6f:27:2f:42:c0:ec:f0:e7:a4:ce:f5: 60:c2:2f:d8:1a:bb:ce:62:89:1d:20:1a:fe:28:8c: af:0b:1e:36:e4:92:64:dd:bc:94:af:b2:c2:01:e2: ef:3d:d0:eb:7d:f9:85:f3:94:26:2e:8f:47:90:45: 1d:7f:e5:d9:4f:c8:25:b3:d4:b0:19:65:46:ac:1f: b7:98:f1:bd:1d:e7:f9:f5:a6:1d:e4:92:cc:c1:03: 4d:67:04:6e:ea:ec:d3:fb:a3:2a:1f:a9:89:1b:f9: 07:a8:ea:69:f2:12:bb:8e:8c:ab:46:35:33:1b:0b: 6e:2e:46:79:54:4a:12:51:5e:13:67:71:8a:9e:5c: 7a:f6:df:08:e5:c2:65:98:3e:57:a6:0e:ea:7a:c1: 89:74:2b:3e:54:42:7a:dd:ce:c9:41:7f:4e:c1:e6: 54:8b:80:d6:0c:95:6a:4e:ad:bb:e1:af:c4:00:d0: bc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:85:17:52:A4:5B:0C:CB:F9:DD:A8:02:13:D7:BC:9F:DF:61:E0:B3 X509v3 Authority Key Identifier: keyid:25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.180.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:1d:2a:cc:f1:2b:09:36:e5:3e:04:a4:86:4c:29:fd:5f:c2: 3c:eb:71:05:01:94:9a:ca:66:62:08:ec:21:e8:75:44:f6:b1: 3a:02:4b:d6:83:73:28:50:46:dc:7c:da:d8:d1:19:f4:cf:51: 6b:d3:26:e2:a2:34:53:91:3c:f7:af:6c:7b:83:ea:ef:c0:db: 2f:e2:50:96:f3:47:32:43:b6:ce:1d:b3:12:07:1f:e4:eb:cb: d6:b5:43:b6:f5:52:4d:ec:05:82:ae:fe:f6:f2:6d:22:5e:b9: aa:7a:4e:ac:0b:bc:34:3c:47:c6:07:36:f3:4a:d8:50:c5:50: 00:5c:56:10:07:34:48:16:6f:b1:09:c1:30:88:b2:be:c8:d6: 4f:65:39:af:f2:8f:c1:f9:da:ce:9c:da:eb:a3:ad:22:6b:e5: 0c:11:a4:17:02:c0:5d:df:f2:90:0f:b6:3a:03:a9:45:08:1c: 1b:15:52:4c:86:47:e7:5f:0e:06:cb:49:47:31:e6:40:bf:46: 24:44:38:32:f5:ba:1b:33:7e:93:22:8a:74:9a:68:96:8d:a2: e0:c1:36:e5:49:1e:f9:c4:36:5a:22:aa:11:04:b3:e0:8b:41: 14:86:85:92:86:e8:79:da:2a:79:22:64:58:04:66:a4:ae:16: 0c:72:34:2f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcHosgH4J7Tf6GqhRW5TMvJ2RWFwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQy NEY0RjFCRTAeFw0yNTA4MTMxODU1MDBaFw0yNjA4MTIxOTAwMDBaMDMxMTAvBgNV BAMTKDg0ODUxNzUyQTQ1QjBDQ0JGOUREQTgwMjEzRDdCQzlGREY2MUUwQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPQEYxOXwXmvRDsbHtMa1dtd8v tzpFXsrenHfxGKTwRn08O/0dSUCRAjuwEgAm6+Q8Z7zYyS+UCGy9kQCjd8h0m6tv PXobdiwzGQKtD6RvJy9CwOzw56TO9WDCL9gau85iiR0gGv4ojK8LHjbkkmTdvJSv ssIB4u890Ot9+YXzlCYuj0eQRR1/5dlPyCWz1LAZZUasH7eY8b0d5/n1ph3kkszB A01nBG7q7NP7oyofqYkb+Qeo6mnyEruOjKtGNTMbC24uRnlUShJRXhNncYqeXHr2 3wjlwmWYPlemDup6wYl0Kz5UQnrdzslBf07B5lSLgNYMlWpOrbvhr8QA0Lw/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhIUXUqRbDMv53agCE9e8n99h4LMwHwYDVR0j BBgwFoAUJfRkAg2cu40YvHxHFp+XjST08b4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjhkZTg2Yi1hMjZlLTRiMGYtYTgzYy0wNWZhYjRhMzBjNzcvMC8yNUY0NjQwMjBE OUNCQjhEMThCQzdDNDcxNjlGOTc4RDI0RjRGMUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQyNEY0 RjFCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyOGRlODZiLWEyNmUtNGIwZi1h ODNjLTA1ZmFiNGEzMGM3Ny8wLzMxMzAzMzJlMzEzNzM2MmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsLQwDQYJ KoZIhvcNAQELBQADggEBADwdKszxKwk25T4EpIZMKf1fwjzrcQUBlJrKZmII7CHo dUT2sToCS9aDcyhQRtx82tjRGfTPUWvTJuKiNFORPPevbHuD6u/A2y/iUJbzRzJD ts4dsxIHH+Try9a1Q7b1Uk3sBYKu/vbybSJeuap6TqwLvDQ8R8YHNvNK2FDFUABc VhAHNEgWb7EJwTCIsr7I1k9lOa/yj8H52s6c2uujrSJr5QwRpBcCwF3f8pAPtjoD qUUIHBsVUkyGR+dfDgbLSUcx5kC/RiREODL1uhszfpMiinSaaJaNouDBNuVJHvnE NloiqhEEs+CLQRSGhZKG6HnaKnkiZFgEZqSuFgxyNC8= -----END CERTIFICATE-----Generated at Sat Aug 23 21:12:47 2025 by rpki-client