$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa File: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (raw, json) Hash identifier: XjGDHZwetIWHjLp7+uPq3/exRvIl0m5tUGNnQVZ+/fU= Subject key identifier: 8D:1E:6E:16:74:37:8A:9A:94:C4:31:D8:82:60:D7:AF:10:27:EC:7B Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 5F95E20448F38DA651CBD8EDF735F689FB046DF3 Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa Signing time: Sat 16 Aug 2025 03:00:01 +0000 ROA not before: Sat 16 Aug 2025 02:55:01 +0000 ROA not after: Sat 15 Aug 2026 03:00:01 +0000 asID: 141895 IP address blocks: 103.163.228.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 19:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:95:e2:04:48:f3:8d:a6:51:cb:d8:ed:f7:35:f6:89:fb:04:6d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Aug 16 02:55:01 2025 GMT Not After : Aug 15 03:00:01 2026 GMT Subject: CN=8D1E6E1674378A9A94C431D88260D7AF1027EC7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:23:b7:0c:46:aa:2a:5b:3a:a7:80:09:22: 3d:15:11:f7:af:07:b0:a0:58:9c:90:c9:11:28:d2: 3d:80:72:01:ab:88:5f:35:dd:b5:ec:86:0e:5e:e7: c6:52:7a:a1:13:3a:ba:e6:4d:3e:ec:c5:ed:ef:46: 44:44:97:c2:e1:6d:1a:ab:7b:b7:53:0d:76:67:dd: 58:90:55:6e:88:56:de:16:2e:ed:62:10:88:5d:c7: 6d:ce:05:e9:9e:e0:12:32:fd:6a:0a:9f:30:a0:60: 65:9b:8f:da:2e:4c:77:c1:61:50:f5:95:89:a5:e4: 8a:0d:d7:e6:42:b9:e1:c3:43:00:7a:4f:70:58:81: ab:92:53:40:4b:31:fb:22:30:fa:e3:21:b1:11:7b: 92:38:0f:63:a0:3b:f7:95:a1:fc:d4:68:32:59:ee: 6d:bd:99:96:b9:bf:be:80:58:9e:ef:0e:43:4d:b2: 64:d4:b9:3e:d7:42:d4:57:98:8a:f9:d0:00:ab:00: 20:cf:58:7b:c9:5b:4b:bc:7a:61:55:a2:fc:7b:07: 14:28:2e:f9:fb:8a:b9:c5:34:a5:d7:70:86:98:0e: 85:2f:97:44:4d:e2:dd:bd:58:40:9a:44:07:26:b7: e4:5c:ed:64:a9:c6:90:af:09:b7:35:98:39:b2:81: 7a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1E:6E:16:74:37:8A:9A:94:C4:31:D8:82:60:D7:AF:10:27:EC:7B X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.228.0/23 Signature Algorithm: sha256WithRSAEncryption 48:63:f8:66:d0:f6:5e:c4:9b:5c:a5:10:72:f1:3d:80:c1:4a: 9d:53:13:74:d8:06:c7:ab:32:2e:f4:df:b2:4a:55:9e:72:63: 22:af:59:cc:a1:b9:13:54:e6:d1:47:c8:aa:dd:ba:08:64:f0: d0:42:20:64:7a:97:1a:cc:de:7b:60:ac:e3:17:94:e0:b9:47: c2:a7:eb:3a:9a:f6:1a:a2:81:43:38:1d:1b:cb:e7:1f:a9:a3: 04:48:97:7d:6d:03:44:f5:fc:e8:ce:87:8b:a9:9a:65:83:d6: 23:b2:4c:f0:5b:37:39:94:63:d9:10:5f:9b:9c:ab:59:16:84: 42:d5:f8:9f:85:f3:c6:9f:d8:f5:f0:4d:73:f2:98:8d:ac:33: 14:31:b9:67:82:bd:8b:64:de:e9:72:fb:14:aa:83:7e:2b:44: de:3f:5b:e3:52:83:d9:06:e2:4a:e0:af:f3:0d:9e:a8:ef:9b: f2:2e:0b:45:52:f6:7a:b7:a9:8a:4f:f0:7e:3c:d0:bc:27:67: 04:ca:f6:32:26:d6:17:ee:14:da:f7:93:a1:1f:16:9e:16:58: 70:d4:f6:14:5a:45:7b:2c:b9:c5:5b:31:d8:8a:d0:4f:d1:1c: 04:2f:e7:63:77:64:d0:08:05:fa:b2:d1:10:2e:7b:5b:6a:e3: 6c:bd:25:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX5XiBEjzjaZRy9jt9zX2ifsEbfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTA4MTYwMjU1MDFaFw0yNjA4MTUwMzAwMDFaMDMxMTAvBgNV BAMTKDhEMUU2RTE2NzQzNzhBOUE5NEM0MzFEODgyNjBEN0FGMTAyN0VDN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImSO3DEaqKls6p4AJIj0VEfev B7CgWJyQyREo0j2AcgGriF813bXshg5e58ZSeqETOrrmTT7sxe3vRkREl8LhbRqr e7dTDXZn3ViQVW6IVt4WLu1iEIhdx23OBeme4BIy/WoKnzCgYGWbj9ouTHfBYVD1 lYml5IoN1+ZCueHDQwB6T3BYgauSU0BLMfsiMPrjIbERe5I4D2OgO/eVofzUaDJZ 7m29mZa5v76AWJ7vDkNNsmTUuT7XQtRXmIr50ACrACDPWHvJW0u8emFVovx7BxQo Lvn7irnFNKXXcIaYDoUvl0RN4t29WECaRAcmt+Rc7WSpxpCvCbc1mDmygXpzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjR5uFnQ3ipqUxDHYgmDXrxAn7HswHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDBkN2ZhLWQ2ZjgtNGMyMi1i NDhhLTU4YjhlZDhlZGRhNy8wLzMxMzAzMzJlMzEzNjMzMmUzMjMyMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzODM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFno+QwDQYJ KoZIhvcNAQELBQADggEBAEhj+GbQ9l7Em1ylEHLxPYDBSp1TE3TYBserMi7037JK VZ5yYyKvWcyhuRNU5tFHyKrdughk8NBCIGR6lxrM3ntgrOMXlOC5R8Kn6zqa9hqi gUM4HRvL5x+powRIl31tA0T1/OjOh4upmmWD1iOyTPBbNzmUY9kQX5ucq1kWhELV +J+F88af2PXwTXPymI2sMxQxuWeCvYtk3uly+xSqg34rRN4/W+NSg9kG4krgr/MN nqjvm/IuC0VS9nq3qYpP8H480LwnZwTK9jIm1hfuFNr3k6EfFp4WWHDU9hRaRXss ucVbMdiK0E/RHAQv52N3ZNAIBfqy0RAue1tq42y9JeM= -----END CERTIFICATE-----Generated at Sat Aug 23 23:46:06 2025 by rpki-client