$ rpki-client -vvf repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa File: 3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa (raw, json) Hash identifier: rkQIsU4mH+wmPkEwMYQGKlUQJZpq5skC0u2AtTeyAJY= Subject key identifier: E7:92:1F:1C:E0:40:09:3C:13:51:5B:CA:B8:F2:11:66:17:20:42:96 Certificate issuer: /CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Certificate serial: 5F6A8B0020355814ADEE86C3537805CD8DCC6697 Authority key identifier: E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa Signing time: Sat 16 Aug 2025 07:00:00 +0000 ROA not before: Sat 16 Aug 2025 06:55:00 +0000 ROA not after: Sat 15 Aug 2026 07:00:00 +0000 asID: 134620 IP address blocks: 103.203.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:6a:8b:00:20:35:58:14:ad:ee:86:c3:53:78:05:cd:8d:cc:66:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Validity Not Before: Aug 16 06:55:00 2025 GMT Not After : Aug 15 07:00:00 2026 GMT Subject: CN=E7921F1CE040093C13515BCAB8F2116617204296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ec:bd:04:11:10:c5:69:c6:d2:f9:ea:35:84: fa:dc:8f:18:f4:88:91:a1:e7:70:cb:01:3c:12:c8: 5e:4f:a2:24:61:1e:77:d4:1f:93:81:d5:38:d9:f7: a0:8a:5d:a7:25:b4:e8:45:5e:51:44:0b:a9:69:f8: d5:77:2b:66:9f:77:ec:98:ce:3a:0f:5f:70:28:eb: 95:8e:be:4e:e3:e4:89:d0:f8:c4:89:b9:14:c6:82: b1:c9:4c:80:3e:e5:61:5c:a2:41:0b:09:f2:34:2f: c0:2d:0d:02:e1:0c:a9:b6:60:ff:98:e1:fb:c5:6f: 46:a4:e2:f6:09:d3:c0:ad:88:ec:79:62:12:39:65: 84:45:37:61:06:ce:43:b4:7e:bb:1a:77:85:19:5a: b9:06:67:26:a0:86:d5:80:5f:02:97:dd:1b:6a:2f: bd:e0:1d:4b:98:06:94:04:a7:1e:97:26:f2:a3:9d: 5b:22:33:a1:03:aa:cf:15:33:39:1e:eb:29:e4:09: 72:7e:c6:f0:b4:64:0e:a5:b5:09:c5:6d:04:9e:cb: 2a:e8:44:fa:46:7f:c8:31:bf:25:02:8c:34:0c:36: 15:ff:83:32:dd:f6:fc:dd:d4:7c:f7:db:96:32:db: ef:a6:06:79:2f:4e:39:02:a5:7f:63:4f:7c:aa:57: 44:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:92:1F:1C:E0:40:09:3C:13:51:5B:CA:B8:F2:11:66:17:20:42:96 X509v3 Authority Key Identifier: keyid:E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.76.0/22 Signature Algorithm: sha256WithRSAEncryption 53:19:6c:e4:a0:57:91:cb:a3:19:e5:19:55:00:39:41:6a:aa: 01:05:4d:69:00:a2:9e:ec:ce:df:f5:1e:00:a8:eb:b6:74:fb: 9a:f2:39:61:46:aa:58:fa:5d:86:eb:99:22:08:10:36:0b:a6: 0f:72:15:f8:27:06:2f:bb:59:cb:96:79:b3:42:9c:7d:44:33: a9:72:68:88:48:d6:f0:48:d6:3a:e0:97:07:24:d0:c1:e4:92: 08:fe:ce:25:1a:25:96:ee:0c:52:cb:81:c8:40:38:c0:ae:ef: fb:b8:9c:49:d3:64:88:cd:2b:5d:00:47:35:4a:58:71:85:f9: 7b:0d:3a:24:48:83:7a:91:14:53:5c:9a:d4:98:0d:df:96:9a: fe:f9:49:f1:80:0e:c7:a0:96:61:23:29:7d:a0:53:4e:f6:b3: 0f:70:31:23:e7:48:6f:6e:ea:62:c0:8d:76:f5:38:b3:09:67: 0a:ad:42:16:c3:66:2a:39:34:f3:6a:1e:11:d4:58:41:62:69: 6f:f8:70:ab:62:63:d3:53:27:1e:4c:e2:1f:e1:2e:62:d4:dd: 77:fc:eb:27:49:cc:85:fa:c0:3c:0f:e1:1b:ea:91:14:dc:b5: 11:d7:fa:0a:0d:e8:64:c9:6e:18:1a:0a:4d:1a:ad:68:30:fb: 2d:e4:f8:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX2qLACA1WBSt7obDU3gFzY3MZpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFD REI2OTJBNDAeFw0yNTA4MTYwNjU1MDBaFw0yNjA4MTUwNzAwMDBaMDMxMTAvBgNV BAMTKEU3OTIxRjFDRTA0MDA5M0MxMzUxNUJDQUI4RjIxMTY2MTcyMDQyOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi7L0EERDFacbS+eo1hPrcjxj0 iJGh53DLATwSyF5PoiRhHnfUH5OB1TjZ96CKXacltOhFXlFEC6lp+NV3K2afd+yY zjoPX3Ao65WOvk7j5InQ+MSJuRTGgrHJTIA+5WFcokELCfI0L8AtDQLhDKm2YP+Y 4fvFb0ak4vYJ08CtiOx5YhI5ZYRFN2EGzkO0frsad4UZWrkGZyaghtWAXwKX3Rtq L73gHUuYBpQEpx6XJvKjnVsiM6EDqs8VMzke6ynkCXJ+xvC0ZA6ltQnFbQSeyyro RPpGf8gxvyUCjDQMNhX/gzLd9vzd1Hz325Yy2++mBnkvTjkCpX9jT3yqV0TXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU55IfHOBACTwTUVvKuPIRZhcgQpYwHwYDVR0j BBgwFoAU4aJLCY6awHxlj2r+4JkHUc22kqQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGFhNGMwZi05OTkyLTQyZmMtYTU0Mi1lZmY3NDA5MWIzMzQvMC9FMUEyNEIwOThF OUFDMDdDNjU4RjZBRkVFMDk5MDc1MUNEQjY5MkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFDREI2 OTJBNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkYWE0YzBmLTk5OTItNDJmYy1h NTQyLWVmZjc0MDkxYjMzNC8wLzMxMzAzMzJlMzIzMDMzMmUzNzM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM0MzYzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ8tMMA0GCSqG SIb3DQEBCwUAA4IBAQBTGWzkoFeRy6MZ5RlVADlBaqoBBU1pAKKe7M7f9R4AqOu2 dPua8jlhRqpY+l2G65kiCBA2C6YPchX4JwYvu1nLlnmzQpx9RDOpcmiISNbwSNY6 4JcHJNDB5JII/s4lGiWW7gxSy4HIQDjAru/7uJxJ02SIzStdAEc1Slhxhfl7DTok SIN6kRRTXJrUmA3flpr++UnxgA7HoJZhIyl9oFNO9rMPcDEj50hvbupiwI129Tiz CWcKrUIWw2YqOTTzah4R1FhBYmlv+HCrYmPTUyceTOIf4S5i1N13/OsnScyF+sA8 D+Eb6pEU3LUR1/oKDehkyW4YGgpNGq1oMPst5Ph8 -----END CERTIFICATE-----Generated at Sat Aug 23 18:52:21 2025 by rpki-client