$ rpki-client -vvf repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa File: 3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa (raw, json) Hash identifier: /2YOGO2hNhfeQ1c8zIWjiPXqHpVN+S17yuvkesHqL/4= Subject key identifier: F0:30:DE:0A:70:2D:09:E2:51:D5:23:85:7C:2A:61:C8:A3:54:B5:7A Certificate issuer: /CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA Certificate serial: 1C4F906EF845C5D79B473E83392BF57791A23D61 Authority key identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa Signing time: Fri 15 Aug 2025 03:27:35 +0000 ROA not before: Fri 15 Aug 2025 03:22:35 +0000 ROA not after: Fri 14 Aug 2026 03:27:35 +0000 asID: 136841 IP address blocks: 103.41.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.crl rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 06:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4f:90:6e:f8:45:c5:d7:9b:47:3e:83:39:2b:f5:77:91:a2:3d:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA Validity Not Before: Aug 15 03:22:35 2025 GMT Not After : Aug 14 03:27:35 2026 GMT Subject: CN=F030DE0A702D09E251D523857C2A61C8A354B57A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:29:85:5a:bf:37:30:d9:bc:05:87:1b:1f:59: d3:fc:d8:01:43:aa:97:85:47:07:43:00:b6:1e:69: ec:2e:1f:07:e5:eb:e8:b5:5e:8e:da:a4:2c:e3:10: 73:ea:c2:bb:04:79:d9:21:56:a1:cd:59:2c:6e:af: 73:83:ab:66:b9:71:30:02:e1:22:eb:0c:3a:b5:d7: 5d:e3:24:67:eb:ac:5c:51:98:ce:f0:44:97:15:13: c2:69:aa:b9:03:58:19:76:69:53:43:86:bb:ff:82: 9e:a4:fa:0c:35:db:54:ef:55:29:0e:cc:33:27:f3: ef:d3:e5:1c:0f:71:5c:d6:b8:9c:ef:c0:24:ad:6f: 5d:04:9b:0d:32:25:e3:cb:54:44:4e:25:ae:71:68: 6c:d2:ad:a0:a5:6a:59:75:5e:33:1a:66:21:a2:a3: ba:e9:cd:04:f4:39:a3:9e:35:ed:dd:d3:48:53:90: 1d:d1:11:7e:50:58:a3:7a:c5:b0:23:37:4d:52:41: 44:4e:a4:c6:cb:d3:fd:27:19:79:b9:56:09:d4:cc: b0:ac:b4:33:3a:26:b2:fb:be:b3:90:ee:cd:27:94: df:0b:80:33:49:bf:b6:c3:7d:ba:ab:5d:b2:55:03: 59:cd:d9:3d:39:23:39:53:9b:79:a8:47:00:2e:e7: 77:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:30:DE:0A:70:2D:09:E2:51:D5:23:85:7C:2A:61:C8:A3:54:B5:7A X509v3 Authority Key Identifier: keyid:D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32332d3233203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.248.0/23 Signature Algorithm: sha256WithRSAEncryption 49:e5:da:b1:14:8c:6d:41:cd:04:d4:21:ca:52:5c:5c:70:38: bd:8d:7b:61:b8:a9:e2:da:82:8a:ca:d5:f1:fa:87:e4:a5:c3: 71:17:ea:40:78:6c:27:36:b4:d7:98:88:d8:a7:ad:e7:25:90: fc:11:c8:3c:66:c4:c9:76:ff:4b:e8:26:d9:df:5f:8b:47:bc: 1c:a6:71:50:e0:eb:01:bd:2c:82:37:8c:39:45:d5:1b:59:d9: ce:9e:ee:f6:7d:4b:88:43:9e:ca:c4:59:b0:e8:bf:30:c2:1d: 36:01:60:f0:0e:8c:5e:72:c4:28:aa:5e:5d:09:57:7b:ab:13: ba:c0:1a:78:4d:d8:a5:69:da:d6:8c:9b:5f:70:66:43:9a:9b: cf:c9:2b:af:5f:69:c3:75:af:1c:3f:26:e9:61:29:48:8f:3e: 0c:ea:dd:c9:68:08:37:98:5b:ad:0a:93:68:d9:4d:42:ee:04: 4f:55:02:47:c1:ab:49:9d:90:7c:2c:f5:1d:fb:55:9d:cd:db: 0a:41:2d:d6:c9:e2:bd:15:ad:ff:7a:dc:92:bd:ba:3f:61:7c: b4:67:0c:39:09:dc:fc:0c:f9:ec:3a:7b:af:64:52:97:93:cb: c6:18:01:45:a2:9d:4d:e5:50:0a:53:c5:0e:6e:de:95:06:fe: 69:ba:e8:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHE+QbvhFxdebRz6DOSv1d5GiPWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ2OTkzN0JEMDMwNTc1QTYzODlCMUZGNENEQjE4NUVG QkM0QjFGQTAeFw0yNTA4MTUwMzIyMzVaFw0yNjA4MTQwMzI3MzVaMDMxMTAvBgNV BAMTKEYwMzBERTBBNzAyRDA5RTI1MUQ1MjM4NTdDMkE2MUM4QTM1NEI1N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbKYVavzcw2bwFhxsfWdP82AFD qpeFRwdDALYeaewuHwfl6+i1Xo7apCzjEHPqwrsEedkhVqHNWSxur3ODq2a5cTAC 4SLrDDq1113jJGfrrFxRmM7wRJcVE8JpqrkDWBl2aVNDhrv/gp6k+gw121TvVSkO zDMn8+/T5RwPcVzWuJzvwCStb10Emw0yJePLVEROJa5xaGzSraClall1XjMaZiGi o7rpzQT0OaOeNe3d00hTkB3REX5QWKN6xbAjN01SQUROpMbL0/0nGXm5VgnUzLCs tDM6JrL7vrOQ7s0nlN8LgDNJv7bDfbqrXbJVA1nN2T05IzlTm3moRwAu53dJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8DDeCnAtCeJR1SOFfCphyKNUtXowHwYDVR0j BBgwFoAU1GmTe9AwV1pjibH/TNsYXvvEsfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NzUyNzdlOC03ZDBmLTQxODQtOWMyOC1hNjYzNWVmZWYyOWMvMC9ENDY5OTM3QkQw MzA1NzVBNjM4OUIxRkY0Q0RCMTg1RUZCQzRCMUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ2OTkzN0JEMDMwNTc1QTYzODlCMUZGNENEQjE4NUVGQkM0 QjFGQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3NTI3N2U4LTdkMGYtNDE4NC05 YzI4LWE2NjM1ZWZlZjI5Yy8wLzMxMzAzMzJlMzQzMTJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZyn4MA0GCSqG SIb3DQEBCwUAA4IBAQBJ5dqxFIxtQc0E1CHKUlxccDi9jXthuKni2oKKytXx+ofk pcNxF+pAeGwnNrTXmIjYp63nJZD8Ecg8ZsTJdv9L6CbZ31+LR7wcpnFQ4OsBvSyC N4w5RdUbWdnOnu72fUuIQ57KxFmw6L8wwh02AWDwDoxecsQoql5dCVd7qxO6wBp4 TdiladrWjJtfcGZDmpvPySuvX2nDda8cPybpYSlIjz4M6t3JaAg3mFutCpNo2U1C 7gRPVQJHwatJnZB8LPUd+1WdzdsKQS3WyeK9Fa3/etySvbo/YXy0Zww5Cdz8DPns OnuvZFKXk8vGGAFFop1N5VAKU8UObt6VBv5puugy -----END CERTIFICATE-----Generated at Sat Aug 23 13:39:02 2025 by rpki-client