$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa File: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (raw, json) Hash identifier: EQbr12ySqIrNTM9njp7Wb0XN8yJtB1BDEx2u9gpZun8= Subject key identifier: 35:3B:25:9E:11:94:CD:B8:09:C9:56:74:48:1C:99:5B:5E:19:69:F2 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 5734BC3930789D172703AE1A4C09C02100DF914F Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa Signing time: Fri 15 Aug 2025 03:02:13 +0000 ROA not before: Fri 15 Aug 2025 02:57:13 +0000 ROA not after: Fri 14 Aug 2026 03:02:13 +0000 asID: 149934 IP address blocks: 103.191.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:34:bc:39:30:78:9d:17:27:03:ae:1a:4c:09:c0:21:00:df:91:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Aug 15 02:57:13 2025 GMT Not After : Aug 14 03:02:13 2026 GMT Subject: CN=353B259E1194CDB809C95674481C995B5E1969F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ab:a2:0e:a8:53:ec:59:80:ce:c0:6e:c6:de: 99:81:71:26:59:68:0d:ab:7b:77:0c:9b:f8:c5:61: a3:b9:a9:c8:28:ba:3d:83:fc:b7:31:17:4b:8f:8f: bd:1b:04:08:7c:51:21:33:91:b5:31:99:e3:57:8b: 57:99:09:72:0b:75:21:8c:a3:38:e5:8c:b7:45:e9: 6e:00:63:86:83:ff:bf:2a:cb:9e:5f:bc:6b:00:af: 5a:50:64:80:e4:94:5f:0d:be:37:3b:fd:93:7c:db: e0:10:b2:9b:6a:9e:a9:be:83:c2:ce:be:e3:72:38: 4b:8b:cf:bd:c2:fa:41:ba:96:5d:33:f5:cf:22:6a: 8c:b7:da:68:95:72:35:00:97:e0:7e:63:f4:17:f5: 35:1d:51:af:84:fd:54:fc:27:2a:39:4b:e2:23:19: 03:8a:c1:e5:02:d2:56:dd:5d:e7:2b:70:79:c8:ba: 52:a3:16:e1:35:ed:3f:5d:10:bf:5c:46:1b:b8:b4: 29:25:b1:79:d5:ca:e4:3c:fe:8f:33:66:6f:fc:78: 17:98:94:41:83:2e:2c:94:0e:f8:8e:e0:ab:b4:97: 95:79:9b:c1:ca:e4:84:d0:ee:ae:2a:57:12:26:0c: 9e:ac:ae:6f:1d:50:f0:cd:1f:b6:db:b5:06:12:4f: db:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3B:25:9E:11:94:CD:B8:09:C9:56:74:48:1C:99:5B:5E:19:69:F2 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.196.0/24 Signature Algorithm: sha256WithRSAEncryption af:a1:11:23:51:45:c3:5d:da:79:29:ad:4f:5c:f6:eb:ff:0d: 14:f4:7c:a6:f5:00:d5:b8:61:06:b7:29:3a:26:2a:0e:f5:12: f4:b0:d1:2e:0d:4e:90:d8:8c:aa:d4:c0:6e:c8:71:4d:9e:e4: 9c:0c:33:37:4b:ee:1f:39:ee:ab:a9:f0:c7:3b:ff:ca:3e:87: f0:f8:bf:5b:99:c9:7f:b8:cb:a3:97:bf:cf:07:c5:7c:90:a8: e6:d0:20:0e:5d:56:19:b2:de:31:e4:a4:dc:2c:54:26:47:a4: 61:fc:05:9a:96:f2:05:aa:35:55:ba:36:53:0c:62:60:85:40: 08:e0:87:65:34:98:12:19:12:4a:1c:ba:d2:06:a4:e6:59:96: 8b:51:6a:88:f7:dd:25:6d:db:3a:14:33:0b:b4:44:fe:76:80: 0d:a3:28:fe:87:ea:44:65:de:48:b1:90:55:59:b8:b8:d6:a2: 53:05:c2:42:3d:60:61:9b:bb:f8:d6:42:29:a3:e9:3b:bb:e6: c0:c8:cd:39:78:a1:93:f5:e3:71:b5:9d:ad:2b:ae:e2:10:c5: 86:75:8c:ca:cb:3d:cb:7a:a3:96:89:d8:71:ce:87:44:b5:36: 8b:c3:aa:92:26:59:41:da:1e:e8:59:71:15:7b:32:36:6d:79: f2:db:e4:ac -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVzS8OTB4nRcnA64aTAnAIQDfkU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNTA4MTUwMjU3MTNaFw0yNjA4MTQwMzAyMTNaMDMxMTAvBgNV BAMTKDM1M0IyNTlFMTE5NENEQjgwOUM5NTY3NDQ4MUM5OTVCNUUxOTY5RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfq6IOqFPsWYDOwG7G3pmBcSZZ aA2re3cMm/jFYaO5qcgouj2D/LcxF0uPj70bBAh8USEzkbUxmeNXi1eZCXILdSGM ozjljLdF6W4AY4aD/78qy55fvGsAr1pQZIDklF8Nvjc7/ZN82+AQsptqnqm+g8LO vuNyOEuLz73C+kG6ll0z9c8iaoy32miVcjUAl+B+Y/QX9TUdUa+E/VT8Jyo5S+Ij GQOKweUC0lbdXecrcHnIulKjFuE17T9dEL9cRhu4tCklsXnVyuQ8/o8zZm/8eBeY lEGDLiyUDviO4Ku0l5V5m8HK5ITQ7q4qVxImDJ6srm8dUPDNH7bbtQYST9uhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNTslnhGUzbgJyVZ0SByZW14ZafIwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc1ZDZlZmZmLTg1YjItNGFmNC04 OWFiLTZkOThjOTUyN2RhNC8wLzMxMzAzMzJlMzEzOTMxMmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv8QwDQYJ KoZIhvcNAQELBQADggEBAK+hESNRRcNd2nkprU9c9uv/DRT0fKb1ANW4YQa3KTom Kg71EvSw0S4NTpDYjKrUwG7IcU2e5JwMMzdL7h857qup8Mc7/8o+h/D4v1uZyX+4 y6OXv88HxXyQqObQIA5dVhmy3jHkpNwsVCZHpGH8BZqW8gWqNVW6NlMMYmCFQAjg h2U0mBIZEkocutIGpOZZlotRaoj33SVt2zoUMwu0RP52gA2jKP6H6kRl3kixkFVZ uLjWolMFwkI9YGGbu/jWQimj6Tu75sDIzTl4oZP143G1na0rruIQxYZ1jMrLPct6 o5aJ2HHOh0S1NovDqpImWUHaHuhZcRV7MjZtefLb5Kw= -----END CERTIFICATE-----Generated at Sun Aug 24 03:57:46 2025 by rpki-client