$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e35312e302f32342d3234203d3e20313338353938.roa File: 3130332e3133342e35312e302f32342d3234203d3e20313338353938.roa (raw, json) Hash identifier: rzmqH60uJRn3sGzkNJLLdHpbEepRCB0kAM+v2dcsYmc= Subject key identifier: 40:0A:FF:56:75:A4:1E:5D:55:08:37:27:58:0B:2E:A6:D1:56:91:DB Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 6C6B5A1F8DD2016F9FB61492C4D549D736CD6A99 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e35312e302f32342d3234203d3e20313338353938.roa Signing time: Fri 15 Aug 2025 19:00:02 +0000 ROA not before: Fri 15 Aug 2025 18:55:02 +0000 ROA not after: Fri 14 Aug 2026 19:00:02 +0000 asID: 138598 IP address blocks: 103.134.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 13:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:6b:5a:1f:8d:d2:01:6f:9f:b6:14:92:c4:d5:49:d7:36:cd:6a:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 15 18:55:02 2025 GMT Not After : Aug 14 19:00:02 2026 GMT Subject: CN=400AFF5675A41E5D55083727580B2EA6D15691DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ca:fc:2b:03:1d:3e:ca:43:7a:39:cf:51:9f: 40:e9:c5:a2:73:15:a6:57:85:2a:c1:9b:3b:bd:0c: 77:43:98:39:4d:fa:bd:8b:62:61:de:08:e2:6b:71: d2:67:04:ec:2f:f9:26:7b:ac:65:c0:ed:ef:08:e8: b2:6e:27:bc:b1:23:0b:5a:94:68:d0:19:6f:6e:be: ca:a9:f6:fa:69:b9:f7:82:ea:a8:0c:e3:cb:7a:e5: 06:b7:77:d6:b9:31:fb:9d:a6:63:8e:f9:99:1f:43: 92:88:bd:fe:8c:c4:c9:4d:79:d4:ad:3c:df:fd:55: 9f:9f:1a:90:c9:b3:6c:e2:2f:d4:80:ed:86:a2:2f: f7:8c:15:88:d6:c4:fb:b7:25:78:7e:5e:6d:8e:84: f4:7b:2f:3e:09:ec:de:4a:20:f1:38:ca:1f:be:aa: 72:12:55:f0:ef:6d:a0:08:f4:47:e7:07:87:de:98: 4f:30:d2:3e:89:ef:9f:cb:16:66:53:18:91:f9:ce: f3:0b:a9:7e:35:f3:18:61:51:17:14:5c:7d:be:11: ef:a1:25:86:21:df:de:27:bf:b8:93:51:5c:42:46: a6:79:f4:f3:b1:14:59:23:6f:d4:64:c6:40:ff:4a: cf:d6:3e:f2:0f:64:20:2e:f1:3e:a4:92:f4:64:94: 99:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0A:FF:56:75:A4:1E:5D:55:08:37:27:58:0B:2E:A6:D1:56:91:DB X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e35312e302f32342d3234203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.51.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:d9:bf:26:65:3b:57:e1:8e:8e:bc:6f:e1:81:31:d0:e0:fa: 93:68:cd:aa:c4:9e:c4:ca:cc:ff:94:06:dc:15:67:3d:6f:b6: 02:75:0f:f4:62:ff:29:61:dd:4c:f4:84:50:2f:76:18:25:d8: 0d:27:f8:5a:c2:a8:49:fd:c0:27:11:be:dd:d3:74:2e:c8:b5: fc:71:3c:20:b0:35:4c:32:d1:65:8f:27:64:1f:e1:10:91:a7: dd:15:f2:bf:52:2d:3d:0c:5c:61:ba:8d:8b:ec:98:0a:d6:67: d1:c6:6d:e4:48:e2:24:79:7d:81:25:3f:fe:d3:96:d7:92:cd: fd:c7:52:6f:63:39:17:5a:be:4c:93:42:bd:8c:12:85:e1:57: 6e:70:c0:0c:19:8a:7f:08:57:de:6c:4d:6e:af:e0:4f:8c:89: 4b:73:b7:fe:0b:89:cb:87:15:f5:4b:34:74:5c:6d:c5:49:51: ae:4f:d3:da:53:e5:e6:ca:fe:14:b1:0b:ed:70:26:a9:8e:8c: b7:b0:b0:e6:3d:64:f7:54:6e:16:41:8b:09:5b:67:4f:5a:a1: b0:d5:16:16:8c:d2:89:18:ed:a8:90:4b:4b:c1:a2:4b:ef:e3: a1:20:c5:a3:ea:03:65:a1:9f:3f:bf:e5:94:d4:cc:b9:36:e9: 97:55:af:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbGtaH43SAW+fthSSxNVJ1zbNapkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA4MTUxODU1MDJaFw0yNjA4MTQxOTAwMDJaMDMxMTAvBgNV BAMTKDQwMEFGRjU2NzVBNDFFNUQ1NTA4MzcyNzU4MEIyRUE2RDE1NjkxREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5yvwrAx0+ykN6Oc9Rn0DpxaJz FaZXhSrBmzu9DHdDmDlN+r2LYmHeCOJrcdJnBOwv+SZ7rGXA7e8I6LJuJ7yxIwta lGjQGW9uvsqp9vppufeC6qgM48t65Qa3d9a5MfudpmOO+ZkfQ5KIvf6MxMlNedSt PN/9VZ+fGpDJs2ziL9SA7YaiL/eMFYjWxPu3JXh+Xm2OhPR7Lz4J7N5KIPE4yh++ qnISVfDvbaAI9EfnB4femE8w0j6J75/LFmZTGJH5zvMLqX418xhhURcUXH2+Ee+h JYYh394nv7iTUVxCRqZ59POxFFkjb9RkxkD/Ss/WPvIPZCAu8T6kkvRklJnlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQAr/VnWkHl1VCDcnWAsuptFWkdswHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMxMzAzMzJlMzEzMzM0MmUzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzUzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YzMA0GCSqG SIb3DQEBCwUAA4IBAQBa2b8mZTtX4Y6OvG/hgTHQ4PqTaM2qxJ7Eysz/lAbcFWc9 b7YCdQ/0Yv8pYd1M9IRQL3YYJdgNJ/hawqhJ/cAnEb7d03QuyLX8cTwgsDVMMtFl jydkH+EQkafdFfK/Ui09DFxhuo2L7JgK1mfRxm3kSOIkeX2BJT/+05bXks39x1Jv YzkXWr5Mk0K9jBKF4VducMAMGYp/CFfebE1ur+BPjIlLc7f+C4nLhxX1SzR0XG3F SVGuT9PaU+Xmyv4UsQvtcCapjoy3sLDmPWT3VG4WQYsJW2dPWqGw1RYWjNKJGO2o kEtLwaJL7+OhIMWj6gNloZ8/v+WU1My5NumXVa93 -----END CERTIFICATE-----Generated at Sat Aug 23 15:39:28 2025 by rpki-client