$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa File: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (raw, json) Hash identifier: GYOdgB5E6zAfN6csGwKvCQu8t1dBnuZsHYI8ZcYsOXc= Subject key identifier: 1D:93:6A:62:F7:BE:E6:21:21:B6:4B:F0:52:56:87:1E:AD:0D:25:14 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 11FDC05353155005600F67942D15862F54114AA9 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa Signing time: Tue 19 Aug 2025 14:00:02 +0000 ROA not before: Tue 19 Aug 2025 13:55:02 +0000 ROA not after: Tue 18 Aug 2026 14:00:02 +0000 asID: 149930 IP address blocks: 103.191.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 23:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fd:c0:53:53:15:50:05:60:0f:67:94:2d:15:86:2f:54:11:4a:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Aug 19 13:55:02 2025 GMT Not After : Aug 18 14:00:02 2026 GMT Subject: CN=1D936A62F7BEE62121B64BF05256871EAD0D2514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:29:19:e0:1a:45:d5:f5:66:09:aa:9d:02:ab: 74:e8:3b:5a:7b:be:62:bd:1d:41:24:d8:21:bc:55: 07:82:3e:6a:43:06:68:f8:37:dc:53:c7:fa:e6:35: c7:09:f1:65:b1:b6:75:66:d2:4e:33:14:4f:e5:be: bd:05:e0:d5:48:31:f1:98:e3:60:11:70:9e:f9:18: 7b:e3:8b:f9:76:63:66:79:60:2a:7b:d7:7f:bf:35: cc:46:22:a4:9f:2a:f6:0f:9e:68:88:53:23:c6:e0: 57:53:3c:39:96:22:f3:85:57:63:90:d4:31:0e:15: 02:1b:eb:30:12:fe:b6:92:ac:42:fb:c9:71:70:df: 78:d2:d2:f8:10:82:b9:9c:42:e9:eb:44:8e:3c:95: c0:4d:4b:49:61:73:32:c2:8c:b0:fb:33:6c:c1:3b: 5f:19:23:6d:87:76:ce:28:bb:49:eb:ae:e4:73:04: 56:1d:59:cb:e3:1f:76:1d:00:03:c5:38:8f:af:43: f8:34:2a:ae:8f:04:b9:3d:ad:5b:3e:d6:6b:13:e9: f4:d2:99:89:d7:21:b0:7b:c5:2b:fe:79:ab:56:88: cc:ed:e7:bf:5a:6a:8e:39:c4:78:c9:14:9f:7e:43: a8:b3:60:d7:19:f4:c2:ca:7f:2e:94:32:e1:fe:bd: fa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:93:6A:62:F7:BE:E6:21:21:B6:4B:F0:52:56:87:1E:AD:0D:25:14 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.218.0/24 Signature Algorithm: sha256WithRSAEncryption 05:a3:2e:30:7b:90:b5:c5:2d:20:8a:d7:a0:85:63:d9:17:96: 29:13:aa:87:c2:09:db:fa:5b:ab:28:ca:9e:5d:64:e2:80:fd: 8c:21:83:f4:02:1b:5c:e4:b2:d7:87:f9:80:ae:70:00:c7:2a: dc:bc:fb:18:cf:69:ac:6c:35:72:9b:5c:5c:09:7e:13:37:49: c7:99:a5:70:0f:51:7d:05:dc:c7:42:2f:59:81:24:0c:43:22: fb:c0:15:75:ec:6b:46:ac:8c:7c:c7:73:43:f4:c8:f7:0d:a4: 5d:b1:ce:08:77:6a:c1:33:e0:00:0c:cb:3d:a5:4a:47:d0:3e: 0c:dc:d1:27:60:f4:25:3a:15:30:4b:1f:01:39:e9:e9:8f:d2: 94:bf:8e:5a:db:bd:b0:e7:62:8c:47:84:4e:c3:18:c7:db:bf: 12:3e:6f:28:9b:b4:b0:52:4c:c5:4f:5c:cf:cb:1f:89:6f:69: fc:be:36:12:00:32:b6:09:5e:77:e3:9f:96:71:8f:67:73:95: b6:4e:29:72:4e:eb:24:4b:e2:3e:bf:2a:4d:76:51:f2:6b:cb: d8:7d:cf:82:f9:f2:3e:56:11:e7:bb:94:f3:09:58:fd:31:f5: 85:39:b8:4f:df:0d:c4:7e:b4:ce:4d:e7:0e:58:b5:d8:d3:72: 5e:c8:0a:97 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEf3AU1MVUAVgD2eULRWGL1QRSqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNTA4MTkxMzU1MDJaFw0yNjA4MTgxNDAwMDJaMDMxMTAvBgNV BAMTKDFEOTM2QTYyRjdCRUU2MjEyMUI2NEJGMDUyNTY4NzFFQUQwRDI1MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrKRngGkXV9WYJqp0Cq3ToO1p7 vmK9HUEk2CG8VQeCPmpDBmj4N9xTx/rmNccJ8WWxtnVm0k4zFE/lvr0F4NVIMfGY 42ARcJ75GHvji/l2Y2Z5YCp713+/NcxGIqSfKvYPnmiIUyPG4FdTPDmWIvOFV2OQ 1DEOFQIb6zAS/raSrEL7yXFw33jS0vgQgrmcQunrRI48lcBNS0lhczLCjLD7M2zB O18ZI22Hds4ou0nrruRzBFYdWcvjH3YdAAPFOI+vQ/g0Kq6PBLk9rVs+1msT6fTS mYnXIbB7xSv+eatWiMzt579aao45xHjJFJ9+Q6izYNcZ9MLKfy6UMuH+vfq5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHZNqYve+5iEhtkvwUlaHHq0NJRQwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzMzcwZDI0LWE2NTYtNDMzNi04 NDJiLTliZDVkY2EyYjQwYS8wLzMxMzAzMzJlMzEzOTMxMmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv9owDQYJ KoZIhvcNAQELBQADggEBAAWjLjB7kLXFLSCK16CFY9kXlikTqofCCdv6W6soyp5d ZOKA/Ywhg/QCG1zksteH+YCucADHKty8+xjPaaxsNXKbXFwJfhM3SceZpXAPUX0F 3MdCL1mBJAxDIvvAFXXsa0asjHzHc0P0yPcNpF2xzgh3asEz4AAMyz2lSkfQPgzc 0Sdg9CU6FTBLHwE56emP0pS/jlrbvbDnYoxHhE7DGMfbvxI+byibtLBSTMVPXM/L H4lvafy+NhIAMrYJXnfjn5Zxj2dzlbZOKXJO6yRL4j6/Kk12UfJry9h9z4L58j5W Eee7lPMJWP0x9YU5uE/fDcR+tM5N5w5YtdjTcl7ICpc= -----END CERTIFICATE-----Generated at Sat Aug 23 15:43:31 2025 by rpki-client