$ rpki-client -vvf repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37372e302f32342d3234203d3e20313334363230.roa File: 3130332e3230332e37372e302f32342d3234203d3e20313334363230.roa (raw, json) Hash identifier: Kwtm71D/Z6NhSfdr0MOgpN01lazOwL/r2/rIVuBoO7I= Subject key identifier: 90:A4:5B:28:53:73:5C:58:5C:58:5C:DC:AE:3B:41:75:6F:E9:B4:0C Certificate issuer: /CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Certificate serial: 070B7DFA88A6779A29D216282CAC62E6B4648293 Authority key identifier: E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37372e302f32342d3234203d3e20313334363230.roa Signing time: Sat 16 Aug 2025 09:00:00 +0000 ROA not before: Sat 16 Aug 2025 08:55:00 +0000 ROA not after: Sat 15 Aug 2026 09:00:00 +0000 asID: 134620 IP address blocks: 103.203.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:0b:7d:fa:88:a6:77:9a:29:d2:16:28:2c:ac:62:e6:b4:64:82:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Validity Not Before: Aug 16 08:55:00 2025 GMT Not After : Aug 15 09:00:00 2026 GMT Subject: CN=90A45B2853735C585C585CDCAE3B41756FE9B40C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:75:2b:d8:e1:3e:03:49:51:fd:50:24:a5:de: a8:ea:de:8f:78:37:89:9d:c1:1d:b2:8e:33:09:8e: ea:3c:ac:49:5a:82:73:3d:9b:58:d0:51:68:3f:02: ba:c5:aa:8e:65:48:45:df:e7:28:d7:81:4c:28:35: 65:9d:d4:41:cf:03:f5:bb:86:ae:79:2e:40:00:86: f7:f6:ac:ee:65:5c:c6:28:12:57:2f:63:35:a5:43: 1b:a7:1e:d6:10:24:b6:40:2c:67:fa:3d:37:f8:49: be:72:ce:f3:ed:0d:0c:e2:06:1d:5f:4a:50:07:64: 29:57:88:cf:30:f9:7d:a3:d2:b8:bc:cf:be:99:ee: 4f:bd:10:2e:6d:d1:3a:eb:d9:00:21:63:8a:0e:c3: 55:d2:1b:5e:47:48:65:1c:e6:d4:dd:15:2a:ec:5f: 80:34:23:86:f5:23:77:23:54:97:b3:e7:5e:a5:54: 41:32:ae:ff:a0:1f:14:2a:f5:96:f8:88:db:ac:20: 90:2e:2f:35:fd:c7:00:06:fc:a6:c9:d3:66:5a:c5: 42:ea:33:d4:f2:4b:26:a7:03:53:91:f8:30:37:7e: e5:06:44:7d:b3:2e:80:d6:cf:58:8b:fe:b4:d3:2c: 32:da:e8:3a:cd:05:ff:2c:a0:50:fb:b4:03:54:e1: 5b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A4:5B:28:53:73:5C:58:5C:58:5C:DC:AE:3B:41:75:6F:E9:B4:0C X509v3 Authority Key Identifier: keyid:E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37372e302f32342d3234203d3e20313334363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.77.0/24 Signature Algorithm: sha256WithRSAEncryption cb:23:83:ee:92:39:c9:a0:6d:e0:52:57:75:78:f1:d5:01:84: 2c:81:10:27:a1:11:a8:8b:ad:63:3a:55:9d:8c:31:1d:a8:9d: b7:c6:35:7f:bd:4a:5d:a6:73:cb:d7:d1:60:81:60:cd:e8:08: 4f:4d:1e:13:37:a7:ce:42:f6:88:20:2c:a2:02:bf:1d:88:a6: 98:d3:9c:6e:d8:ff:c0:52:e3:e6:e8:72:7a:da:0d:b5:1f:71: 0f:a9:9b:83:fd:ef:b8:f1:46:1b:53:6f:55:5e:47:3a:30:10: d8:07:e3:be:0a:e6:f8:2c:49:98:48:77:2d:b5:6e:7e:1b:c0: 22:2e:e4:66:17:28:21:35:23:63:9f:e8:d0:dc:32:f8:9e:d7: 5a:25:b0:60:c9:20:43:83:c7:6a:e5:35:5d:8c:6c:fb:de:b5: 5a:e7:e2:06:dd:3d:40:86:07:0e:b3:c1:56:6c:db:02:6d:50: f0:46:c7:fa:4d:3f:4f:7e:e9:83:e9:e1:f8:b5:8c:25:58:9e: c6:58:b8:bd:8c:87:89:50:41:c1:f2:da:c7:d6:5c:5e:27:52: ae:01:ac:f3:8d:3e:f7:0d:c7:d5:90:f1:5f:32:97:ae:f6:c8: 0f:56:f4:2e:ce:77:10:f4:85:55:77:ab:eb:4d:58:9c:7a:79: 11:c1:94:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBwt9+oimd5op0hYoLKxi5rRkgpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFD REI2OTJBNDAeFw0yNTA4MTYwODU1MDBaFw0yNjA4MTUwOTAwMDBaMDMxMTAvBgNV BAMTKDkwQTQ1QjI4NTM3MzVDNTg1QzU4NUNEQ0FFM0I0MTc1NkZFOUI0MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6dSvY4T4DSVH9UCSl3qjq3o94 N4mdwR2yjjMJjuo8rElagnM9m1jQUWg/ArrFqo5lSEXf5yjXgUwoNWWd1EHPA/W7 hq55LkAAhvf2rO5lXMYoElcvYzWlQxunHtYQJLZALGf6PTf4Sb5yzvPtDQziBh1f SlAHZClXiM8w+X2j0ri8z76Z7k+9EC5t0Trr2QAhY4oOw1XSG15HSGUc5tTdFSrs X4A0I4b1I3cjVJez516lVEEyrv+gHxQq9Zb4iNusIJAuLzX9xwAG/KbJ02ZaxULq M9TySyanA1OR+DA3fuUGRH2zLoDWz1iL/rTTLDLa6DrNBf8soFD7tANU4VtlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkKRbKFNzXFhcWFzcrjtBdW/ptAwwHwYDVR0j BBgwFoAU4aJLCY6awHxlj2r+4JkHUc22kqQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGFhNGMwZi05OTkyLTQyZmMtYTU0Mi1lZmY3NDA5MWIzMzQvMC9FMUEyNEIwOThF OUFDMDdDNjU4RjZBRkVFMDk5MDc1MUNEQjY5MkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFDREI2 OTJBNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkYWE0YzBmLTk5OTItNDJmYy1h NTQyLWVmZjc0MDkxYjMzNC8wLzMxMzAzMzJlMzIzMDMzMmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8tNMA0GCSqG SIb3DQEBCwUAA4IBAQDLI4PukjnJoG3gUld1ePHVAYQsgRAnoRGoi61jOlWdjDEd qJ23xjV/vUpdpnPL19FggWDN6AhPTR4TN6fOQvaIICyiAr8diKaY05xu2P/AUuPm 6HJ62g21H3EPqZuD/e+48UYbU29VXkc6MBDYB+O+Cub4LEmYSHcttW5+G8AiLuRm FyghNSNjn+jQ3DL4ntdaJbBgySBDg8dq5TVdjGz73rVa5+IG3T1AhgcOs8FWbNsC bVDwRsf6TT9PfumD6eH4tYwlWJ7GWLi9jIeJUEHB8trH1lxeJ1KuAazzjT73DcfV kPFfMpeu9sgPVvQuzncQ9IVVd6vrTVicenkRwZSg -----END CERTIFICATE-----Generated at Sat Aug 23 16:37:10 2025 by rpki-client