$ rpki-client -vvf repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa File: 3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa (raw, json) Hash identifier: ubAgdugDvQaB/HJfz4fY63v3MFp+bq+KP7AGcGBA1hw= Subject key identifier: EE:59:22:15:E2:F3:B7:96:B8:E5:D1:23:2F:30:66:34:A9:70:EA:32 Certificate issuer: /CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Certificate serial: 3299922C97B75F2F18AC41E6899D4D8C0A31F372 Authority key identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa Signing time: Mon 08 Sep 2025 09:00:01 +0000 ROA not before: Mon 08 Sep 2025 08:55:01 +0000 ROA not after: Mon 07 Sep 2026 09:00:01 +0000 asID: 133834 IP address blocks: 103.58.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.crl rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:99:92:2c:97:b7:5f:2f:18:ac:41:e6:89:9d:4d:8c:0a:31:f3:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Validity Not Before: Sep 8 08:55:01 2025 GMT Not After : Sep 7 09:00:01 2026 GMT Subject: CN=EE592215E2F3B796B8E5D1232F306634A970EA32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:41:31:83:a2:32:74:d0:5a:e3:5a:a8:8a:ac: fe:87:66:35:3f:8f:4a:ae:f6:a0:87:6b:d5:ce:a4: 42:fb:29:34:e2:aa:ce:0e:f2:9d:60:0d:b4:b0:8e: ac:25:4e:fa:5b:b3:a0:be:93:d0:8f:9c:ad:50:53: b5:5e:75:d5:d4:1a:47:bd:f0:66:34:fc:68:1c:23: 97:75:27:da:5b:4f:26:bb:89:f1:0c:32:b4:f9:42: 35:07:17:76:6e:a1:50:7a:ad:cc:cb:5d:2b:19:11: 88:bb:08:c4:6b:ac:13:dd:49:32:f1:25:d1:f1:29: 76:45:af:4d:27:5e:81:5a:06:5e:77:5b:a8:d3:70: a8:ec:f2:10:87:27:24:46:71:e5:82:3f:00:7a:ee: f1:ed:fd:63:3a:3f:a9:3f:bc:cd:8d:d8:43:74:7a: 50:93:94:50:f3:20:d5:fa:50:92:41:66:c1:59:d6: 28:89:6e:17:c2:43:ee:5c:2c:67:74:19:c2:9e:f4: 78:48:2e:80:68:2d:14:2c:82:f8:f2:28:cf:e0:be: 69:88:08:e4:21:1a:ed:65:be:cd:5f:6c:44:0f:d5: 5f:d8:74:8d:c8:a6:da:c7:ce:ec:3e:1a:6f:47:fa: 05:60:77:86:7a:05:7d:be:51:4a:18:09:4c:39:b3: fe:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:59:22:15:E2:F3:B7:96:B8:E5:D1:23:2F:30:66:34:A9:70:EA:32 X509v3 Authority Key Identifier: keyid:00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.104.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:69:fc:50:71:33:9b:37:33:db:8e:07:91:32:18:d4:87:43: b1:72:9b:44:aa:d3:be:b0:19:e0:a7:0f:d2:8b:11:1d:cb:17: f0:0d:c2:95:19:fe:a1:72:f2:f0:bc:5b:c9:5a:ca:df:1b:81: e2:cb:4d:32:08:69:72:64:0b:95:64:19:63:97:dc:47:00:34: bf:20:d6:99:65:76:10:94:7a:7d:e8:c7:9e:9d:2b:3d:8a:95: f6:55:54:54:f4:6b:87:2a:dc:e5:54:dd:b1:85:5a:95:05:f4: 97:bf:1d:ed:eb:5d:0d:0b:1c:eb:8e:49:da:8b:74:18:56:17: 30:81:61:65:39:1e:69:2b:5d:9f:52:eb:34:c6:ec:08:f2:92: 3b:7f:dc:e4:95:33:43:28:6d:f1:e4:1e:2a:4e:e1:69:51:98: 65:70:66:c3:8b:58:5c:ca:06:ed:34:71:8c:a9:30:82:b2:0d: a9:dd:04:60:64:b3:fb:94:a7:80:fa:8f:c9:a6:31:46:b4:81: cf:6f:f0:77:3e:51:ee:40:ce:a9:d2:bb:eb:27:04:a7:0b:ab: 2e:b6:d8:56:1c:4d:0b:3a:bc:61:75:8b:7f:5e:25:7b:f1:a7: 23:3e:fc:d2:6f:88:5b:c2:ad:df:87:15:f9:3e:41:35:67:ce: 4f:a5:f1:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMpmSLJe3Xy8YrEHmiZ1NjAox83IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA3QzkxQjA0OUY3MzVGNzFGMkJFOENGOTJBRUFBNTM4 RDZCMUYwQjAeFw0yNTA5MDgwODU1MDFaFw0yNjA5MDcwOTAwMDFaMDMxMTAvBgNV BAMTKEVFNTkyMjE1RTJGM0I3OTZCOEU1RDEyMzJGMzA2NjM0QTk3MEVBMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyQTGDojJ00FrjWqiKrP6HZjU/ j0qu9qCHa9XOpEL7KTTiqs4O8p1gDbSwjqwlTvpbs6C+k9CPnK1QU7VeddXUGke9 8GY0/GgcI5d1J9pbTya7ifEMMrT5QjUHF3ZuoVB6rczLXSsZEYi7CMRrrBPdSTLx JdHxKXZFr00nXoFaBl53W6jTcKjs8hCHJyRGceWCPwB67vHt/WM6P6k/vM2N2EN0 elCTlFDzINX6UJJBZsFZ1iiJbhfCQ+5cLGd0GcKe9HhILoBoLRQsgvjyKM/gvmmI COQhGu1lvs1fbEQP1V/YdI3IptrHzuw+Gm9H+gVgd4Z6BX2+UUoYCUw5s/49AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7lkiFeLzt5a45dEjLzBmNKlw6jIwHwYDVR0j BBgwFoAUAHyRsEn3NfcfK+jPkq6qU41rHwswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzFhZGE5ZS1lMmE5LTQwMGUtOGRmZi05YmU0ODFhYmE1ODMvMC8wMDdDOTFCMDQ5 RjczNUY3MUYyQkU4Q0Y5MkFFQUE1MzhENkIxRjBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDA3QzkxQjA0OUY3MzVGNzFGMkJFOENGOTJBRUFBNTM4RDZC MUYwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3MWFkYTllLWUyYTktNDAwZS04 ZGZmLTliZTQ4MWFiYTU4My8wLzMxMzAzMzJlMzUzODJlMzEzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzpoMA0GCSqG SIb3DQEBCwUAA4IBAQAaafxQcTObNzPbjgeRMhjUh0OxcptEqtO+sBngpw/SixEd yxfwDcKVGf6hcvLwvFvJWsrfG4Hiy00yCGlyZAuVZBljl9xHADS/INaZZXYQlHp9 6MeenSs9ipX2VVRU9GuHKtzlVN2xhVqVBfSXvx3t610NCxzrjknai3QYVhcwgWFl OR5pK12fUus0xuwI8pI7f9zklTNDKG3x5B4qTuFpUZhlcGbDi1hcygbtNHGMqTCC sg2p3QRgZLP7lKeA+o/JpjFGtIHPb/B3PlHuQM6p0rvrJwSnC6sutthWHE0LOrxh dYt/XiV78acjPvzSb4hbwq3fhxX5PkE1Z85PpfFi -----END CERTIFICATE-----Generated at Mon Oct 20 21:57:58 2025 by rpki-client