$ rpki-client -vvf repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa File: 3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa (raw, json) Hash identifier: iOkCV36uArsFxOyMUHtzF7wNM0XpfATD2EMHBB13ovA= Subject key identifier: D4:9E:5A:ED:B8:0E:B3:16:98:14:66:E8:24:4B:86:2C:17:EB:AB:58 Certificate issuer: /CN=132BBDF9D9F26F001CC0F0EF9590333D38D04410 Certificate serial: 63E31A1C23DF7793FD514C7F60FD519A7222C857 Authority key identifier: 13:2B:BD:F9:D9:F2:6F:00:1C:C0:F0:EF:95:90:33:3D:38:D0:44:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa Signing time: Mon 16 Jun 2025 22:00:02 +0000 ROA not before: Mon 16 Jun 2025 21:55:02 +0000 ROA not after: Mon 15 Jun 2026 22:00:02 +0000 asID: 64027 IP address blocks: 103.214.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.crl rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 21:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e3:1a:1c:23:df:77:93:fd:51:4c:7f:60:fd:51:9a:72:22:c8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=132BBDF9D9F26F001CC0F0EF9590333D38D04410 Validity Not Before: Jun 16 21:55:02 2025 GMT Not After : Jun 15 22:00:02 2026 GMT Subject: CN=D49E5AEDB80EB316981466E8244B862C17EBAB58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ef:17:93:40:84:a5:19:28:0e:90:94:de:fc: 0f:ef:83:3e:bb:14:94:d8:19:83:7e:d8:34:61:47: 05:cb:69:9e:83:15:bd:2b:9f:da:42:95:90:da:8d: 19:bb:9e:e0:44:04:b5:88:3b:99:17:d5:36:0d:b9: 3b:bc:7a:a2:9d:2a:57:16:8d:79:07:72:81:2e:62: 2b:8b:ea:08:59:23:ed:e5:eb:1b:f2:05:ab:e2:8d: 32:f6:b1:20:2e:ec:a5:03:fd:cb:02:d2:f7:c0:3e: d7:d0:d3:7d:e9:41:3a:21:0e:dd:ad:96:09:74:c4: 7c:10:68:a9:b2:09:d6:e9:fd:a4:7e:fe:2c:7b:ba: fe:af:72:2d:23:73:15:7c:83:43:bc:e4:d3:d2:4a: 8b:c0:ca:db:71:f6:80:83:d2:f6:10:f2:4f:7d:68: 4d:a8:dc:8d:58:b0:44:c3:3f:a9:a1:48:64:ea:e8: fb:e4:33:40:f1:b9:bf:66:fa:1b:fc:ea:98:ef:11: 82:dd:1e:2c:69:c9:f1:d2:85:3d:18:24:44:c8:b4: 54:43:72:d3:22:cc:5f:6a:70:fe:76:58:f6:30:a7: 3f:15:b7:37:47:53:4b:aa:44:8d:99:da:df:79:7e: 63:e5:5c:ef:78:c4:05:65:54:af:55:64:29:9a:f4: 19:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9E:5A:ED:B8:0E:B3:16:98:14:66:E8:24:4B:86:2C:17:EB:AB:58 X509v3 Authority Key Identifier: keyid:13:2B:BD:F9:D9:F2:6F:00:1C:C0:F0:EF:95:90:33:3D:38:D0:44:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.103.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f2:a3:5d:5d:bb:c8:28:41:3e:d5:80:fe:b8:01:21:96:2d: 8b:36:f1:84:4e:a2:f9:f4:35:8f:d6:7e:37:2d:32:cb:9f:07: 17:a4:00:2c:7a:ab:8d:cf:4c:7d:45:2a:40:c4:f5:64:e5:cf: 1d:c3:c3:08:80:a2:32:8f:7d:a3:00:ad:f8:8a:01:1e:eb:db: 83:1d:01:37:41:2e:86:54:03:62:c7:9f:71:99:8a:24:01:c2: c8:82:d8:4b:41:ea:81:7b:94:9f:73:83:95:8d:b6:73:26:d9: a6:7a:25:94:52:ff:ff:2c:ab:c7:e7:a0:08:fa:aa:05:2f:f1: e5:2b:a0:41:cd:02:e2:b9:d2:e6:a6:c5:b2:b6:c3:70:4f:ee: 30:a4:e6:88:b6:88:0f:16:fc:f9:89:08:2e:b5:e3:26:b9:40: b5:4e:c7:76:af:4f:f2:84:49:d8:ce:38:28:47:65:d5:6c:88: f8:17:96:a1:84:e0:73:a2:40:52:65:dc:62:f4:8c:e1:a2:f2: 3b:6f:c9:74:9d:62:c0:a0:87:be:90:c6:7b:9a:f0:aa:00:03: e7:13:87:3d:c8:50:4c:8e:76:fc:a4:51:43:16:b3:ee:fa:7a: e4:42:1b:3d:89:00:ee:cf:21:8c:55:91:ab:00:a1:9d:29:e9: 7e:d6:1b:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY+MaHCPfd5P9UUx/YP1RmnIiyFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMyQkJERjlEOUYyNkYwMDFDQzBGMEVGOTU5MDMzM0Qz OEQwNDQxMDAeFw0yNTA2MTYyMTU1MDJaFw0yNjA2MTUyMjAwMDJaMDMxMTAvBgNV BAMTKEQ0OUU1QUVEQjgwRUIzMTY5ODE0NjZFODI0NEI4NjJDMTdFQkFCNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs7xeTQISlGSgOkJTe/A/vgz67 FJTYGYN+2DRhRwXLaZ6DFb0rn9pClZDajRm7nuBEBLWIO5kX1TYNuTu8eqKdKlcW jXkHcoEuYiuL6ghZI+3l6xvyBavijTL2sSAu7KUD/csC0vfAPtfQ033pQTohDt2t lgl0xHwQaKmyCdbp/aR+/ix7uv6vci0jcxV8g0O85NPSSovAyttx9oCD0vYQ8k99 aE2o3I1YsETDP6mhSGTq6PvkM0Dxub9m+hv86pjvEYLdHixpyfHShT0YJETItFRD ctMizF9qcP52WPYwpz8VtzdHU0uqRI2Z2t95fmPlXO94xAVlVK9VZCma9BklAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1J5a7bgOsxaYFGboJEuGLBfrq1gwHwYDVR0j BBgwFoAUEyu9+dnybwAcwPDvlZAzPTjQRBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWU1MTg3NS01MDg3LTQyNjQtYThiZC00MTU2ZjU1YmFhYWIvMC8xMzJCQkRGOUQ5 RjI2RjAwMUNDMEYwRUY5NTkwMzMzRDM4RDA0NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTMyQkJERjlEOUYyNkYwMDFDQzBGMEVGOTU5MDMzM0QzOEQw NDQxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZTUxODc1LTUwODctNDI2NC1h OGJkLTQxNTZmNTViYWFhYi8wLzMxMzAzMzJlMzIzMTM0MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9ZnMA0GCSqG SIb3DQEBCwUAA4IBAQAt8qNdXbvIKEE+1YD+uAEhli2LNvGETqL59DWP1n43LTLL nwcXpAAsequNz0x9RSpAxPVk5c8dw8MIgKIyj32jAK34igEe69uDHQE3QS6GVANi x59xmYokAcLIgthLQeqBe5Sfc4OVjbZzJtmmeiWUUv//LKvH56AI+qoFL/HlK6BB zQLiudLmpsWytsNwT+4wpOaItogPFvz5iQguteMmuUC1Tsd2r0/yhEnYzjgoR2XV bIj4F5ahhOBzokBSZdxi9IzhovI7b8l0nWLAoIe+kMZ7mvCqAAPnE4c9yFBMjnb8 pFFDFrPu+nrkQhs9iQDuzyGMVZGrAKGdKel+1hs1 -----END CERTIFICATE-----Generated at Wed Jul 2 19:18:47 2025 by rpki-client