$ rpki-client -vvf repo-rpki.idnic.net/repo/8116fbc9-b31c-4225-a697-4fedbc234db6/0/3130332e37352e3233372e302f32342d3234203d3e203634333130.roa File: 3130332e37352e3233372e302f32342d3234203d3e203634333130.roa (raw, json) Hash identifier: WLCShlxfdsF203Qx2wOYYjy6P8cT8pTLxL//5fp4yiA= Subject key identifier: 2D:1A:39:2B:BA:2D:C8:81:BF:02:34:E0:19:B4:AE:F7:47:8E:2D:8D Certificate issuer: /CN=C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5 Certificate serial: 4BFE62626E4836DC1EBE32F53882291B5041CAF5 Authority key identifier: C0:C8:E7:24:3E:4E:8D:EC:D7:A8:EA:1D:61:FD:42:41:08:E8:D3:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8116fbc9-b31c-4225-a697-4fedbc234db6/0/3130332e37352e3233372e302f32342d3234203d3e203634333130.roa Signing time: Fri 22 Aug 2025 05:00:02 +0000 ROA not before: Fri 22 Aug 2025 04:55:02 +0000 ROA not after: Fri 21 Aug 2026 05:00:02 +0000 asID: 64310 IP address blocks: 103.75.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8116fbc9-b31c-4225-a697-4fedbc234db6/0/C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5.crl rsync://repo-rpki.idnic.net/repo/8116fbc9-b31c-4225-a697-4fedbc234db6/0/C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:fe:62:62:6e:48:36:dc:1e:be:32:f5:38:82:29:1b:50:41:ca:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5 Validity Not Before: Aug 22 04:55:02 2025 GMT Not After : Aug 21 05:00:02 2026 GMT Subject: CN=2D1A392BBA2DC881BF0234E019B4AEF7478E2D8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1b:57:48:48:c6:5b:f1:5d:d9:6e:47:4b:31: a8:bf:69:a0:a2:fe:1c:78:3e:84:0b:f1:64:0f:c3: f4:38:91:bf:e8:f8:e5:53:45:49:7c:ca:b5:2d:50: 46:5c:88:48:f9:f9:32:27:dc:75:8c:4f:62:62:82: b9:17:9e:4b:26:2a:58:f6:60:9c:62:8e:96:9f:eb: de:c4:27:d5:ec:a3:58:61:08:83:22:78:1c:3a:c8: 43:db:cd:e4:04:6c:2a:f2:8b:a3:62:4b:6e:e5:9b: 02:28:dc:53:f9:3f:79:ca:ce:c9:46:12:77:63:8a: ac:b6:99:46:c8:cf:40:78:73:42:fc:fb:1a:12:e0: 81:57:8d:cb:78:b0:af:ce:1c:a9:02:59:52:c8:64: 04:62:dc:ad:f9:f8:fd:42:59:40:b8:5d:50:a7:1e: f9:6e:69:0d:98:b0:e3:f1:b8:bb:e8:b9:ea:4f:99: 00:36:3c:d9:53:0e:ca:9a:37:ca:be:d9:6b:3f:7b: 44:ad:71:eb:24:a9:19:a0:d8:b2:46:4d:f1:75:f7: fa:81:b4:9f:a3:c8:9e:14:be:2a:ba:0d:a4:f9:89: 03:5e:5e:1e:60:ba:70:62:13:73:92:46:bc:4c:e0: c5:d6:c1:40:92:dc:4c:19:23:79:74:eb:fe:ac:76: 5a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1A:39:2B:BA:2D:C8:81:BF:02:34:E0:19:B4:AE:F7:47:8E:2D:8D X509v3 Authority Key Identifier: keyid:C0:C8:E7:24:3E:4E:8D:EC:D7:A8:EA:1D:61:FD:42:41:08:E8:D3:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8116fbc9-b31c-4225-a697-4fedbc234db6/0/C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0C8E7243E4E8DECD7A8EA1D61FD424108E8D3D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8116fbc9-b31c-4225-a697-4fedbc234db6/0/3130332e37352e3233372e302f32342d3234203d3e203634333130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.237.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:63:9e:ee:e4:b1:fe:7b:f0:23:d3:07:fb:a8:3c:97:25:6a: 09:5d:5e:60:9f:25:9d:19:fc:41:97:48:e6:1e:91:2d:cc:cd: d6:10:a0:77:d8:99:db:54:0a:a9:a1:2a:be:f3:87:d3:3a:60: be:b6:0b:b6:aa:14:17:ea:eb:76:8e:30:24:13:be:43:c3:7f: 96:46:6d:c8:e5:bc:e7:6a:32:bf:b2:74:35:31:a3:cc:55:f0: d7:b7:f8:bd:9a:01:71:88:84:31:49:18:e8:f4:42:64:aa:67: d4:8f:5b:17:5d:a4:e4:46:5a:e8:f0:a7:d7:3c:9d:bb:3d:bc: 7e:9e:cf:56:5f:04:4c:18:80:c6:9b:aa:bf:27:de:ea:73:8f: 53:2b:c2:b5:60:a0:23:12:6f:da:b1:ec:75:ce:d3:f9:d9:1a: 81:c9:ce:db:e2:7f:08:1c:cc:92:e0:2e:62:93:d3:79:06:5f: f0:ed:70:4d:4c:f7:dd:d3:20:1b:5a:35:09:db:5f:55:ac:92: 98:5e:f7:d7:4d:ef:d9:39:25:68:81:75:c8:95:1c:02:a7:8d: 27:24:e0:a3:08:24:78:78:bf:e1:39:00:4a:21:70:d0:8f:ca: c2:de:f3:dc:53:2c:a5:36:55:46:e3:c7:c0:0b:95:e3:8d:73: fc:7e:46:3e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS/5iYm5INtwevjL1OIIpG1BByvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDOEU3MjQzRTRFOERFQ0Q3QThFQTFENjFGRDQyNDEw OEU4RDNENTAeFw0yNTA4MjIwNDU1MDJaFw0yNjA4MjEwNTAwMDJaMDMxMTAvBgNV BAMTKDJEMUEzOTJCQkEyREM4ODFCRjAyMzRFMDE5QjRBRUY3NDc4RTJEOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPG1dISMZb8V3ZbkdLMai/aaCi /hx4PoQL8WQPw/Q4kb/o+OVTRUl8yrUtUEZciEj5+TIn3HWMT2JigrkXnksmKlj2 YJxijpaf697EJ9Xso1hhCIMieBw6yEPbzeQEbCryi6NiS27lmwIo3FP5P3nKzslG Endjiqy2mUbIz0B4c0L8+xoS4IFXjct4sK/OHKkCWVLIZARi3K35+P1CWUC4XVCn HvluaQ2YsOPxuLvouepPmQA2PNlTDsqaN8q+2Ws/e0StceskqRmg2LJGTfF19/qB tJ+jyJ4Uviq6DaT5iQNeXh5gunBiE3OSRrxM4MXWwUCS3EwZI3l06/6sdlp7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULRo5K7otyIG/AjTgGbSu90eOLY0wHwYDVR0j BBgwFoAUwMjnJD5OjezXqOodYf1CQQjo09UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTE2ZmJjOS1iMzFjLTQyMjUtYTY5Ny00ZmVkYmMyMzRkYjYvMC9DMEM4RTcyNDNF NEU4REVDRDdBOEVBMUQ2MUZENDI0MTA4RThEM0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDOEU3MjQzRTRFOERFQ0Q3QThFQTFENjFGRDQyNDEwOEU4 RDNENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMTZmYmM5LWIzMWMtNDIyNS1h Njk3LTRmZWRiYzIzNGRiNi8wLzMxMzAzMzJlMzczNTJlMzIzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzNDMzMzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdL7TANBgkqhkiG 9w0BAQsFAAOCAQEAf2Oe7uSx/nvwI9MH+6g8lyVqCV1eYJ8lnRn8QZdI5h6RLczN 1hCgd9iZ21QKqaEqvvOH0zpgvrYLtqoUF+rrdo4wJBO+Q8N/lkZtyOW852oyv7J0 NTGjzFXw17f4vZoBcYiEMUkY6PRCZKpn1I9bF12k5EZa6PCn1zyduz28fp7PVl8E TBiAxpuqvyfe6nOPUyvCtWCgIxJv2rHsdc7T+dkagcnO2+J/CBzMkuAuYpPTeQZf 8O1wTUz33dMgG1o1CdtfVaySmF73103v2TklaIF1yJUcAqeNJyTgowgkeHi/4TkA SiFw0I/Kwt7z3FMspTZVRuPHwAuV441z/H5GPg== -----END CERTIFICATE-----Generated at Sat Aug 23 15:49:12 2025 by rpki-client