$ rpki-client -vvf repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa File: 3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa (raw, json) Hash identifier: h6CeT5uHVftwL+MFbDdlezLq5p9Ihp/9/N4/ZrFunI0= Subject key identifier: 56:FF:3D:48:8C:1C:68:B5:5E:36:3A:E3:2B:1C:B0:AB:2D:36:63:5C Certificate issuer: /CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Certificate serial: 1F9AD67D1A3B8A7EA49FC310994B9C2B883A1B69 Authority key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa Signing time: Wed 13 Aug 2025 18:00:00 +0000 ROA not before: Wed 13 Aug 2025 17:55:00 +0000 ROA not after: Wed 12 Aug 2026 18:00:00 +0000 asID: 147133 IP address blocks: 103.176.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:9a:d6:7d:1a:3b:8a:7e:a4:9f:c3:10:99:4b:9c:2b:88:3a:1b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Validity Not Before: Aug 13 17:55:00 2025 GMT Not After : Aug 12 18:00:00 2026 GMT Subject: CN=56FF3D488C1C68B55E363AE32B1CB0AB2D36635C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f6:a2:7d:02:cd:bc:76:b3:d6:d4:d2:1c:09: 58:b6:86:95:a7:a6:30:39:51:7b:97:71:a4:ec:5a: f9:9a:9a:33:f2:20:93:c9:ad:ab:d2:7c:1c:8c:99: 68:48:e4:01:23:af:cb:6a:47:1c:20:81:0b:69:8c: 65:df:b7:cd:5f:f9:9a:06:dd:2e:2b:72:4a:0c:ab: 56:b2:9b:8e:bc:6c:9d:6f:f9:12:33:c9:01:1e:8a: ef:6b:91:8f:7b:01:23:9e:47:5b:a8:95:e2:58:1c: 1b:15:e3:08:d4:86:a9:9a:ad:c3:b0:9d:ca:ca:ab: 72:c5:e4:3f:fe:ab:3f:96:3d:43:28:91:98:b6:6d: 0f:ee:49:5b:2a:3c:44:18:68:94:9c:6e:b0:ad:14: 7c:7d:db:1f:44:36:75:3b:12:d6:e8:c3:89:fd:8f: d7:9a:8b:26:9a:6f:f9:1d:5a:a6:23:31:bd:9f:b4: 71:40:03:59:55:8d:0d:ec:4b:b0:14:26:40:35:52: 65:6d:97:bb:05:2e:96:8d:b0:4b:d2:ac:e6:16:39: 71:63:03:38:ad:b8:ad:23:08:a5:8d:34:a9:e5:05: 66:8a:e9:85:03:51:de:59:07:91:b0:61:a3:b9:40: 62:02:76:64:da:c9:00:5b:81:9f:1b:a8:2c:53:34: cc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FF:3D:48:8C:1C:68:B5:5E:36:3A:E3:2B:1C:B0:AB:2D:36:63:5C X509v3 Authority Key Identifier: keyid:25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.181.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:75:e9:0a:f8:dd:5e:19:60:09:02:46:e5:19:9d:24:4e:20: fa:89:5f:9a:c8:8c:83:29:5a:74:08:8b:08:5b:08:e0:12:c1: 4c:b9:c8:48:ed:7e:08:6a:ce:73:f5:29:2f:ac:f9:1e:a7:5d: 01:38:04:9a:2a:34:63:f5:92:5a:ce:1a:3a:5e:13:74:dd:52: 93:5e:3d:c4:14:0d:78:be:3c:48:07:d0:ac:93:72:21:ab:58: 8a:ba:90:91:63:dc:c1:ab:5f:7e:99:c0:df:05:87:c6:30:a1: 37:93:67:ca:50:ba:a1:16:97:26:95:92:f4:f4:95:bd:50:33: 3e:81:a7:fe:0a:57:9b:a6:6d:48:6b:7a:1f:4e:0c:e3:94:49: c8:53:b8:25:86:60:a3:cf:7c:f9:74:ea:e1:fe:f5:4d:5c:35: af:87:a2:6d:95:12:80:38:ed:25:2a:ad:0f:90:69:e9:f4:c1: b6:7e:bb:af:a0:db:73:3f:fe:63:4b:c7:bb:c9:73:fb:22:e5: 8a:d8:26:c0:3b:54:7d:eb:96:27:fa:0d:ae:82:2d:88:8c:ad: 1d:6b:cc:8e:eb:94:63:0e:1d:ff:d8:bf:33:cb:cd:ab:83:09: 62:17:79:17:85:02:a0:df:c3:bb:2b:d7:d0:7c:fa:a5:83:74: 39:5f:b8:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH5rWfRo7in6kn8MQmUucK4g6G2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQy NEY0RjFCRTAeFw0yNTA4MTMxNzU1MDBaFw0yNjA4MTIxODAwMDBaMDMxMTAvBgNV BAMTKDU2RkYzRDQ4OEMxQzY4QjU1RTM2M0FFMzJCMUNCMEFCMkQzNjYzNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR9qJ9As28drPW1NIcCVi2hpWn pjA5UXuXcaTsWvmamjPyIJPJravSfByMmWhI5AEjr8tqRxwggQtpjGXft81f+ZoG 3S4rckoMq1aym468bJ1v+RIzyQEeiu9rkY97ASOeR1uoleJYHBsV4wjUhqmarcOw ncrKq3LF5D/+qz+WPUMokZi2bQ/uSVsqPEQYaJScbrCtFHx92x9ENnU7Etbow4n9 j9eaiyaab/kdWqYjMb2ftHFAA1lVjQ3sS7AUJkA1UmVtl7sFLpaNsEvSrOYWOXFj AzituK0jCKWNNKnlBWaK6YUDUd5ZB5GwYaO5QGICdmTayQBbgZ8bqCxTNMyrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVv89SIwcaLVeNjrjKxywqy02Y1wwHwYDVR0j BBgwFoAUJfRkAg2cu40YvHxHFp+XjST08b4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjhkZTg2Yi1hMjZlLTRiMGYtYTgzYy0wNWZhYjRhMzBjNzcvMC8yNUY0NjQwMjBE OUNCQjhEMThCQzdDNDcxNjlGOTc4RDI0RjRGMUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQyNEY0 RjFCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyOGRlODZiLWEyNmUtNGIwZi1h ODNjLTA1ZmFiNGEzMGM3Ny8wLzMxMzAzMzJlMzEzNzM2MmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsLUwDQYJ KoZIhvcNAQELBQADggEBAIx16Qr43V4ZYAkCRuUZnSROIPqJX5rIjIMpWnQIiwhb COASwUy5yEjtfghqznP1KS+s+R6nXQE4BJoqNGP1klrOGjpeE3TdUpNePcQUDXi+ PEgH0KyTciGrWIq6kJFj3MGrX36ZwN8Fh8YwoTeTZ8pQuqEWlyaVkvT0lb1QMz6B p/4KV5umbUhreh9ODOOUSchTuCWGYKPPfPl06uH+9U1cNa+Hom2VEoA47SUqrQ+Q aen0wbZ+u6+g23M//mNLx7vJc/si5YrYJsA7VH3rlif6Da6CLYiMrR1rzI7rlGMO Hf/YvzPLzauDCWIXeReFAqDfw7sr19B8+qWDdDlfuFg= -----END CERTIFICATE-----Generated at Sat Aug 23 21:12:20 2025 by rpki-client