$ rpki-client -vvf repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32342d3234203d3e20313334363230.roa File: 3130332e3230332e37362e302f32342d3234203d3e20313334363230.roa (raw, json) Hash identifier: Brdn2dLUZTxd6fnM4xWw5E67aagF7MF4tCt2gy0nMwM= Subject key identifier: 17:0A:34:B6:F3:3F:A8:DC:32:BD:89:1F:AB:C3:BD:69:F1:9A:59:38 Certificate issuer: /CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Certificate serial: 15C788EEAA16A6FA5C201279AA010CC7B08C46C1 Authority key identifier: E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32342d3234203d3e20313334363230.roa Signing time: Sat 16 Aug 2025 08:00:00 +0000 ROA not before: Sat 16 Aug 2025 07:55:00 +0000 ROA not after: Sat 15 Aug 2026 08:00:00 +0000 asID: 134620 IP address blocks: 103.203.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c7:88:ee:aa:16:a6:fa:5c:20:12:79:aa:01:0c:c7:b0:8c:46:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Validity Not Before: Aug 16 07:55:00 2025 GMT Not After : Aug 15 08:00:00 2026 GMT Subject: CN=170A34B6F33FA8DC32BD891FABC3BD69F19A5938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8c:c4:82:1e:05:fb:63:a7:c6:c8:43:40:01: 38:e9:c7:26:af:3a:d9:49:f8:d0:8c:c8:27:17:ed: 28:88:c0:8b:df:e8:7c:fc:66:80:83:68:bb:03:9a: dd:45:7b:d5:a8:a6:08:2e:c1:33:83:64:86:86:b3: 01:22:9c:58:b4:08:bf:db:80:00:7e:ca:38:f6:5d: e0:90:65:75:2a:81:51:5c:83:81:87:e5:a1:44:b8: 93:ed:a2:c9:8d:c2:f2:81:1c:df:32:28:6f:a4:8c: 6d:98:6c:c3:4e:5d:6d:f8:fe:fb:30:7d:dc:72:dd: 2b:33:e4:83:fa:89:f6:bd:e1:86:07:93:18:9d:84: f4:7b:f3:03:e2:79:20:c8:0b:16:c7:63:03:fb:90: 48:74:84:46:2e:d6:62:c7:11:55:2b:e1:20:4e:c2: 26:69:90:ca:ef:7e:55:82:0b:a0:0b:7c:e6:56:15: 9e:dd:e3:5e:f0:f4:c7:5c:c6:d6:74:55:a7:24:43: ef:7f:4f:36:5a:17:ce:9e:8b:e8:6e:14:7b:32:59: 7d:ea:e8:b2:01:d5:2f:01:88:8f:ed:b5:32:3a:7b: 6c:aa:2b:fe:52:78:2c:86:67:c3:93:a2:7d:26:80: b1:c8:29:b3:0a:5e:e6:22:a7:ec:26:fd:60:a6:63: a2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0A:34:B6:F3:3F:A8:DC:32:BD:89:1F:AB:C3:BD:69:F1:9A:59:38 X509v3 Authority Key Identifier: keyid:E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32342d3234203d3e20313334363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.76.0/24 Signature Algorithm: sha256WithRSAEncryption 12:62:c6:73:57:29:cf:cf:f9:06:fc:20:ba:ee:8c:cf:4e:5e: df:93:1c:e0:33:91:45:ad:ee:be:db:96:93:38:84:60:27:da: 4f:2d:ad:fd:b9:c9:63:f7:19:c7:4f:89:9c:76:5d:a0:9c:91: 61:2a:63:f4:ec:c4:ce:00:07:20:a7:76:69:21:39:b5:93:a9: e5:e3:d8:6c:cb:4e:29:62:e9:aa:5e:bb:41:6b:2f:82:33:b5: 68:6f:92:84:cb:7a:60:c2:55:02:0a:17:3f:36:f0:6d:a2:e7: 75:f1:c0:21:1f:49:b6:d9:b9:35:7a:28:fd:5d:ed:62:cd:f2: 15:b5:77:00:00:ea:49:84:1c:8f:69:b9:2a:e6:63:19:0d:b7: ba:cd:4d:94:11:a7:f0:3f:a5:9d:95:de:3b:39:92:72:78:48: ae:74:4b:96:da:af:62:4c:04:8f:3a:cf:39:6a:40:2b:d1:d5: 3f:2b:95:3c:e2:3a:58:aa:e6:9c:d7:9c:7c:46:ca:b2:3b:9a: cd:bd:29:6f:67:2e:07:c1:46:3f:ed:24:a1:a5:2e:5f:bc:c1: 01:56:9d:a7:14:79:7e:74:19:c6:98:37:bd:1e:52:48:ac:6f: ad:dc:1e:e1:9c:45:46:58:93:e9:d7:c1:7e:b8:24:54:5f:fd: 10:db:39:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFceI7qoWpvpcIBJ5qgEMx7CMRsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFD REI2OTJBNDAeFw0yNTA4MTYwNzU1MDBaFw0yNjA4MTUwODAwMDBaMDMxMTAvBgNV BAMTKDE3MEEzNEI2RjMzRkE4REMzMkJEODkxRkFCQzNCRDY5RjE5QTU5MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrjMSCHgX7Y6fGyENAATjpxyav OtlJ+NCMyCcX7SiIwIvf6Hz8ZoCDaLsDmt1Fe9WopgguwTODZIaGswEinFi0CL/b gAB+yjj2XeCQZXUqgVFcg4GH5aFEuJPtosmNwvKBHN8yKG+kjG2YbMNOXW34/vsw fdxy3Ssz5IP6ifa94YYHkxidhPR78wPieSDICxbHYwP7kEh0hEYu1mLHEVUr4SBO wiZpkMrvflWCC6ALfOZWFZ7d417w9MdcxtZ0VackQ+9/TzZaF86ei+huFHsyWX3q 6LIB1S8BiI/ttTI6e2yqK/5SeCyGZ8OTon0mgLHIKbMKXuYip+wm/WCmY6KTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFwo0tvM/qNwyvYkfq8O9afGaWTgwHwYDVR0j BBgwFoAU4aJLCY6awHxlj2r+4JkHUc22kqQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGFhNGMwZi05OTkyLTQyZmMtYTU0Mi1lZmY3NDA5MWIzMzQvMC9FMUEyNEIwOThF OUFDMDdDNjU4RjZBRkVFMDk5MDc1MUNEQjY5MkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFDREI2 OTJBNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkYWE0YzBmLTk5OTItNDJmYy1h NTQyLWVmZjc0MDkxYjMzNC8wLzMxMzAzMzJlMzIzMDMzMmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8tMMA0GCSqG SIb3DQEBCwUAA4IBAQASYsZzVynPz/kG/CC67ozPTl7fkxzgM5FFre6+25aTOIRg J9pPLa39uclj9xnHT4mcdl2gnJFhKmP07MTOAAcgp3ZpITm1k6nl49hsy04pYumq XrtBay+CM7Vob5KEy3pgwlUCChc/NvBtoud18cAhH0m22bk1eij9Xe1izfIVtXcA AOpJhByPabkq5mMZDbe6zU2UEafwP6Wdld47OZJyeEiudEuW2q9iTASPOs85akAr 0dU/K5U84jpYquac15x8RsqyO5rNvSlvZy4HwUY/7SShpS5fvMEBVp2nFHl+dBnG mDe9HlJIrG+t3B7hnEVGWJPp18F+uCRUX/0Q2zmY -----END CERTIFICATE-----Generated at Sat Aug 23 16:36:14 2025 by rpki-client