$ rpki-client -vvf repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37392e302f32342d3234203d3e20313334363230.roa File: 3130332e3230332e37392e302f32342d3234203d3e20313334363230.roa (raw, json) Hash identifier: XFCtvmMAAUBkMVCFTzI1cVSJed8FZNsw+FTnuaIBLa8= Subject key identifier: A7:1D:EA:58:BD:4F:CD:DD:EB:4A:B7:88:55:9F:A8:77:18:4E:C3:58 Certificate issuer: /CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Certificate serial: 69383EC21953F7B0B0E4CF622A5A4458A6330D8A Authority key identifier: E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37392e302f32342d3234203d3e20313334363230.roa Signing time: Sat 16 Aug 2025 09:00:00 +0000 ROA not before: Sat 16 Aug 2025 08:55:00 +0000 ROA not after: Sat 15 Aug 2026 09:00:00 +0000 asID: 134620 IP address blocks: 103.203.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:38:3e:c2:19:53:f7:b0:b0:e4:cf:62:2a:5a:44:58:a6:33:0d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Validity Not Before: Aug 16 08:55:00 2025 GMT Not After : Aug 15 09:00:00 2026 GMT Subject: CN=A71DEA58BD4FCDDDEB4AB788559FA877184EC358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:03:d0:16:cf:07:ee:85:41:0a:ec:43:3a:f0: 46:02:87:c4:bb:c4:5f:b9:5d:4c:92:32:a0:be:b6: 3b:01:5b:ba:e8:dc:7c:1f:57:f6:c1:85:a8:a0:d4: a5:56:14:88:50:aa:8b:a2:ae:60:48:78:48:f7:ea: f4:51:33:3d:54:a7:7a:9e:30:5e:f5:85:83:88:15: 63:d2:53:f7:2b:4c:18:c0:1f:46:37:2a:aa:92:5f: bf:43:5b:a6:8f:5a:f1:73:26:12:07:e7:57:fa:c4: 99:46:24:cc:82:5c:1e:5d:26:72:90:25:18:1e:77: c5:1d:dc:7e:69:09:33:ba:a4:ad:fc:c4:5b:db:5d: 9d:7a:52:94:50:ff:62:45:df:1b:5f:a1:86:b1:77: 56:19:7e:02:16:1d:4a:e3:cc:15:fa:75:30:55:07: 66:c2:7d:84:13:4c:63:1f:09:68:fa:35:ca:ae:11: 2e:16:f3:2b:04:9b:30:83:57:d8:e0:d5:f7:72:55: 88:8a:ac:a5:38:eb:f8:c7:ed:4d:1f:d5:16:c3:53: 77:e2:ea:70:cf:25:b6:be:fc:e0:39:8d:f2:3c:39: f7:f0:73:8f:11:ee:89:fb:fc:0a:00:6c:93:f7:b9: 19:42:d9:11:54:89:f2:e4:17:29:87:82:9c:42:3f: 33:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:1D:EA:58:BD:4F:CD:DD:EB:4A:B7:88:55:9F:A8:77:18:4E:C3:58 X509v3 Authority Key Identifier: keyid:E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37392e302f32342d3234203d3e20313334363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.79.0/24 Signature Algorithm: sha256WithRSAEncryption d0:12:d3:de:13:c1:0f:3d:07:f8:98:44:bf:c2:84:df:07:29: 87:13:e3:11:82:13:7d:70:d5:73:be:65:32:2b:de:0d:da:be: 00:6d:f2:a5:50:76:10:c5:72:ae:cd:10:48:a9:15:5d:3d:9b: fc:da:8a:58:52:4f:45:0e:a8:ee:40:02:8b:85:dd:63:c4:19: cb:39:1e:d8:9b:39:8f:85:a1:37:20:e2:2b:8b:8a:0d:d2:1e: d9:db:47:17:cc:0b:f9:4c:e2:84:96:2a:4f:1b:6f:0c:36:31: 49:b1:4c:83:51:6c:88:77:53:f0:54:a0:82:45:e1:74:24:f1: 13:c7:c0:41:85:62:00:86:ab:76:4c:67:3b:66:7d:ae:e4:79: 88:16:dc:3b:51:8e:22:7a:23:cb:12:72:6a:62:3a:46:11:e5: a3:c5:80:c2:d5:44:8c:42:38:1b:a3:68:23:b0:93:3f:25:a0: 1f:1c:86:17:c7:02:72:df:cb:f5:ba:15:ce:1e:39:65:6f:41: 16:4b:3b:96:7d:d2:03:86:e7:f6:a7:e3:c8:19:6f:26:75:39: fe:69:2a:bb:50:5c:d2:a2:f1:e3:a5:a0:89:8e:9b:ef:5d:73: aa:20:71:13:55:3d:08:e4:ef:fc:fd:fb:ba:72:1a:40:6b:e1: 6c:17:5a:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaTg+whlT97Cw5M9iKlpEWKYzDYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFD REI2OTJBNDAeFw0yNTA4MTYwODU1MDBaFw0yNjA4MTUwOTAwMDBaMDMxMTAvBgNV BAMTKEE3MURFQTU4QkQ0RkNERERFQjRBQjc4ODU1OUZBODc3MTg0RUMzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsA9AWzwfuhUEK7EM68EYCh8S7 xF+5XUySMqC+tjsBW7ro3HwfV/bBhaig1KVWFIhQqouirmBIeEj36vRRMz1Up3qe MF71hYOIFWPSU/crTBjAH0Y3KqqSX79DW6aPWvFzJhIH51f6xJlGJMyCXB5dJnKQ JRged8Ud3H5pCTO6pK38xFvbXZ16UpRQ/2JF3xtfoYaxd1YZfgIWHUrjzBX6dTBV B2bCfYQTTGMfCWj6NcquES4W8ysEmzCDV9jg1fdyVYiKrKU46/jH7U0f1RbDU3fi 6nDPJba+/OA5jfI8Offwc48R7on7/AoAbJP3uRlC2RFUifLkFymHgpxCPzPrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpx3qWL1Pzd3rSreIVZ+odxhOw1gwHwYDVR0j BBgwFoAU4aJLCY6awHxlj2r+4JkHUc22kqQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGFhNGMwZi05OTkyLTQyZmMtYTU0Mi1lZmY3NDA5MWIzMzQvMC9FMUEyNEIwOThF OUFDMDdDNjU4RjZBRkVFMDk5MDc1MUNEQjY5MkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFDREI2 OTJBNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkYWE0YzBmLTk5OTItNDJmYy1h NTQyLWVmZjc0MDkxYjMzNC8wLzMxMzAzMzJlMzIzMDMzMmUzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8tPMA0GCSqG SIb3DQEBCwUAA4IBAQDQEtPeE8EPPQf4mES/woTfBymHE+MRghN9cNVzvmUyK94N 2r4AbfKlUHYQxXKuzRBIqRVdPZv82opYUk9FDqjuQAKLhd1jxBnLOR7YmzmPhaE3 IOIri4oN0h7Z20cXzAv5TOKElipPG28MNjFJsUyDUWyId1PwVKCCReF0JPETx8BB hWIAhqt2TGc7Zn2u5HmIFtw7UY4ieiPLEnJqYjpGEeWjxYDC1USMQjgbo2gjsJM/ JaAfHIYXxwJy38v1uhXOHjllb0EWSzuWfdIDhuf2p+PIGW8mdTn+aSq7UFzSovHj paCJjpvvXXOqIHETVT0I5O/8/fu6chpAa+FsF1ph -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:01 2025 by rpki-client