$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e34382e302f32342d3234203d3e20313338353938.roa File: 3130332e3133342e34382e302f32342d3234203d3e20313338353938.roa (raw, json) Hash identifier: vdRaqu+ifEWqE1r8nytgBjN36IR5VUDio5Qen7pybes= Subject key identifier: 70:28:F3:34:F7:CA:B3:64:DA:60:48:38:72:A6:8E:E5:81:AC:8D:10 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 6FFF22226B15A3409DC515AE6BE874B4AD98EFB9 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e34382e302f32342d3234203d3e20313338353938.roa Signing time: Fri 15 Aug 2025 19:00:02 +0000 ROA not before: Fri 15 Aug 2025 18:55:02 +0000 ROA not after: Fri 14 Aug 2026 19:00:02 +0000 asID: 138598 IP address blocks: 103.134.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 13:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ff:22:22:6b:15:a3:40:9d:c5:15:ae:6b:e8:74:b4:ad:98:ef:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 15 18:55:02 2025 GMT Not After : Aug 14 19:00:02 2026 GMT Subject: CN=7028F334F7CAB364DA60483872A68EE581AC8D10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:24:e0:4e:40:2d:a6:ab:a6:df:d8:7a:a0:d6: 13:2c:2a:d9:26:4c:ec:4d:25:10:74:bf:de:42:94: 75:b9:1b:ad:20:05:f4:f8:6d:13:a6:4b:0e:54:db: 1d:63:f1:ed:a5:54:ce:30:dd:6e:a8:c0:8e:22:09: f6:2f:45:bc:40:5f:6a:6a:59:6d:f4:81:9e:c8:e5: 3e:ce:7d:8b:5b:51:da:9d:68:28:bc:1d:45:71:50: 79:2f:94:c5:ed:d2:78:2a:e3:44:c4:5e:b2:6e:4f: 65:31:bf:1f:a4:b1:cf:55:95:10:55:96:c1:f2:a6: f8:8e:45:6b:e7:4f:62:f1:8b:17:b1:80:1b:4c:82: 8f:40:93:c5:57:2c:87:02:0c:94:9e:1d:50:f9:40: 65:b5:e0:9e:25:16:e8:81:2b:79:ac:52:7c:a6:43: d6:e3:50:2a:79:af:ae:cc:59:4c:c2:d6:44:08:43: 56:0e:f2:65:06:22:6b:fe:8c:81:19:98:ef:29:fa: 09:72:6b:f1:7c:a9:bc:bf:61:6a:ad:95:44:da:30: bb:0a:ea:9d:f7:97:48:40:8f:2d:09:9f:ce:d2:fd: d7:81:c5:72:43:4f:cd:6a:7f:61:e3:7c:d7:aa:59: a2:c0:57:2f:10:56:1b:79:1b:46:51:37:b4:9f:0d: 82:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:28:F3:34:F7:CA:B3:64:DA:60:48:38:72:A6:8E:E5:81:AC:8D:10 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e34382e302f32342d3234203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.48.0/24 Signature Algorithm: sha256WithRSAEncryption 28:d1:37:80:95:a8:bd:89:28:a2:9c:8d:0c:1b:dd:0a:e1:bd: 49:21:74:ce:4c:dd:61:4b:9d:97:c6:1d:83:bb:e3:ba:b1:1b: d6:02:db:20:97:77:c0:58:94:7a:08:d8:81:02:50:e6:30:13: d4:7f:af:ea:89:e5:e3:e5:e8:a1:7f:d6:20:f8:44:91:9c:3a: 8a:74:a6:ec:26:7b:0b:66:d2:66:5f:70:07:2c:3e:be:54:ee: a2:7f:3f:f1:c1:47:ed:df:f5:3f:7f:5e:bc:89:0b:2d:d9:e3: 0a:99:2e:04:d9:b3:85:0d:4a:c8:b5:c4:dd:7b:9b:21:c7:11: 40:31:22:27:12:a0:cf:f5:8f:c4:cf:b9:91:73:c0:5b:2b:da: 62:28:8d:b2:4e:78:89:b9:cc:f4:be:a8:a9:32:33:d5:4a:f2: 6e:e2:81:75:ed:bc:d1:87:c2:94:fd:19:75:57:de:19:77:a1: 98:2b:6e:7a:a3:8c:ce:0a:5a:15:cb:80:d7:21:fd:e3:49:af: f8:19:c3:ba:72:d6:6e:a1:08:0c:4c:d8:f2:89:d6:6b:ab:eb: 87:0f:7b:63:40:04:0d:16:de:ed:08:22:ee:b3:4f:69:05:ea: 66:de:be:23:4d:91:d4:d1:ca:c1:89:42:76:6a:8d:15:e7:9b: 49:76:31:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb/8iImsVo0CdxRWua+h0tK2Y77kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA4MTUxODU1MDJaFw0yNjA4MTQxOTAwMDJaMDMxMTAvBgNV BAMTKDcwMjhGMzM0RjdDQUIzNjREQTYwNDgzODcyQTY4RUU1ODFBQzhEMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGJOBOQC2mq6bf2Hqg1hMsKtkm TOxNJRB0v95ClHW5G60gBfT4bROmSw5U2x1j8e2lVM4w3W6owI4iCfYvRbxAX2pq WW30gZ7I5T7OfYtbUdqdaCi8HUVxUHkvlMXt0ngq40TEXrJuT2Uxvx+ksc9VlRBV lsHypviORWvnT2LxixexgBtMgo9Ak8VXLIcCDJSeHVD5QGW14J4lFuiBK3msUnym Q9bjUCp5r67MWUzC1kQIQ1YO8mUGImv+jIEZmO8p+glya/F8qby/YWqtlUTaMLsK 6p33l0hAjy0Jn87S/deBxXJDT81qf2HjfNeqWaLAVy8QVht5G0ZRN7SfDYILAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcCjzNPfKs2TaYEg4cqaO5YGsjRAwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMxMzAzMzJlMzEzMzM0MmUzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzUzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YwMA0GCSqG SIb3DQEBCwUAA4IBAQAo0TeAlai9iSiinI0MG90K4b1JIXTOTN1hS52Xxh2Du+O6 sRvWAtsgl3fAWJR6CNiBAlDmMBPUf6/qieXj5eihf9Yg+ESRnDqKdKbsJnsLZtJm X3AHLD6+VO6ifz/xwUft3/U/f168iQst2eMKmS4E2bOFDUrItcTde5shxxFAMSIn EqDP9Y/Ez7mRc8BbK9piKI2yTniJucz0vqipMjPVSvJu4oF17bzRh8KU/Rl1V94Z d6GYK256o4zOCloVy4DXIf3jSa/4GcO6ctZuoQgMTNjyidZrq+uHD3tjQAQNFt7t CCLus09pBepm3r4jTZHU0crBiUJ2ao0V55tJdjES -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:01 2025 by rpki-client