$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa File: 3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa (raw, json) Hash identifier: +ocSAGB3dBIAVC5M40zigsYrVPiW6jAUz0b74ynxGfc= Subject key identifier: A2:20:EB:F9:91:1F:5D:DA:4C:59:BF:F8:BC:7B:1F:7C:75:F1:09:CF Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 1258D8E72AA6D89E1F78DEE69B74FBDCD9A10FEE Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa Signing time: Thu 21 Aug 2025 03:01:06 +0000 ROA not before: Thu 21 Aug 2025 02:56:06 +0000 ROA not after: Thu 20 Aug 2026 03:01:06 +0000 asID: 149736 IP address blocks: 103.188.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 14:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:58:d8:e7:2a:a6:d8:9e:1f:78:de:e6:9b:74:fb:dc:d9:a1:0f:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Aug 21 02:56:06 2025 GMT Not After : Aug 20 03:01:06 2026 GMT Subject: CN=A220EBF9911F5DDA4C59BFF8BC7B1F7C75F109CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:dd:ef:23:0d:86:41:b5:04:fe:ad:e9:ca: 27:f5:3c:02:b8:71:b8:21:62:bc:47:ac:e7:a3:7d: 0c:1f:7e:36:52:fd:e0:b5:d1:18:9a:cb:c7:a8:4d: ce:18:68:98:eb:95:0c:87:6d:c7:5e:d0:ef:fd:1d: 16:fb:ff:d0:56:62:fb:b1:87:78:19:49:29:c6:30: 3f:e8:6c:ba:50:46:91:96:f0:ba:15:3c:a3:e2:65: 22:38:61:0a:f5:81:9a:c6:11:c0:2a:7b:3b:d4:5c: 4a:3f:63:9e:da:a4:ab:72:62:1d:f0:8a:54:d7:0a: ff:91:1e:64:2c:aa:35:82:6b:ce:8f:9a:fa:55:90: 21:af:48:fb:ec:b1:ae:f7:11:d3:df:70:fd:94:6f: 78:ee:af:1e:10:8e:6b:af:e1:7e:2e:b9:7b:92:9d: 4a:d5:0f:0c:9a:a8:74:de:78:67:c3:26:01:a8:f6: fd:22:df:38:47:8f:66:7a:ce:21:6f:0a:a9:00:02: bf:86:31:12:9a:88:bd:3d:a7:f8:16:46:39:d2:d4: ca:74:d4:fc:b1:f6:89:b4:85:21:af:06:89:96:e6: 2d:89:90:4f:d0:ed:48:fe:4b:76:01:76:bf:50:9d: d0:08:6c:4c:80:4f:09:ac:33:06:74:16:34:10:29: 7c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:20:EB:F9:91:1F:5D:DA:4C:59:BF:F8:BC:7B:1F:7C:75:F1:09:CF X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.172.0/24 Signature Algorithm: sha256WithRSAEncryption 62:2f:7e:db:00:9d:bd:d7:e9:ec:fb:f3:a7:82:09:5c:a0:b0: f0:25:e9:06:19:dd:bb:d5:19:96:5d:c9:ff:9d:fc:87:93:e8: e9:b1:22:75:5b:0d:90:42:8b:20:93:30:90:be:08:8d:b5:35: eb:05:f7:3e:42:21:61:13:78:67:b2:67:59:cc:4e:59:92:d8: 89:eb:51:7e:1a:31:b0:c0:f6:f1:ca:80:e4:2e:c0:7f:83:c4: ca:9b:77:e4:79:14:da:19:3e:2c:7c:0a:81:27:6e:e2:c5:18: 7f:64:fe:0c:34:a1:ae:5a:99:a7:21:35:50:63:0d:3e:5e:d0: 82:e0:15:29:03:ba:36:41:7a:d3:37:8b:60:dc:45:46:d6:60: d5:0c:1f:5b:01:6e:4b:39:d0:dc:ed:09:ea:c4:15:85:21:04: 45:63:f6:23:70:c6:ae:5c:cc:d4:c2:7e:b7:5f:22:55:77:74: 17:d9:67:a0:93:47:a0:d3:28:e4:b8:1b:b8:b8:f0:50:40:25: 03:3c:d3:62:54:6c:89:aa:b0:45:2a:9e:c0:d2:a1:5c:22:8c: e6:28:d3:51:e0:18:03:08:4d:dd:0a:dd:ad:6f:00:11:63:0a: 4e:9d:c5:a2:a5:cd:96:a5:b1:37:62:36:cf:11:25:33:01:c0: a0:e5:cf:68 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEljY5yqm2J4feN7mm3T73NmhD+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNTA4MjEwMjU2MDZaFw0yNjA4MjAwMzAxMDZaMDMxMTAvBgNV BAMTKEEyMjBFQkY5OTExRjVEREE0QzU5QkZGOEJDN0IxRjdDNzVGMTA5Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPK93vIw2GQbUE/q3pyif1PAK4 cbghYrxHrOejfQwffjZS/eC10Riay8eoTc4YaJjrlQyHbcde0O/9HRb7/9BWYvux h3gZSSnGMD/obLpQRpGW8LoVPKPiZSI4YQr1gZrGEcAqezvUXEo/Y57apKtyYh3w ilTXCv+RHmQsqjWCa86PmvpVkCGvSPvssa73EdPfcP2Ub3jurx4Qjmuv4X4uuXuS nUrVDwyaqHTeeGfDJgGo9v0i3zhHj2Z6ziFvCqkAAr+GMRKaiL09p/gWRjnS1Mp0 1Pyx9om0hSGvBomW5i2JkE/Q7Uj+S3YBdr9QndAIbEyATwmsMwZ0FjQQKXytAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoiDr+ZEfXdpMWb/4vHsffHXxCc8wHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMxMzAzMzJlMzEzODM4MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvKwwDQYJ KoZIhvcNAQELBQADggEBAGIvftsAnb3X6ez786eCCVygsPAl6QYZ3bvVGZZdyf+d /IeT6OmxInVbDZBCiyCTMJC+CI21NesF9z5CIWETeGeyZ1nMTlmS2InrUX4aMbDA 9vHKgOQuwH+DxMqbd+R5FNoZPix8CoEnbuLFGH9k/gw0oa5amachNVBjDT5e0ILg FSkDujZBetM3i2DcRUbWYNUMH1sBbks50NztCerEFYUhBEVj9iNwxq5czNTCfrdf IlV3dBfZZ6CTR6DTKOS4G7i48FBAJQM802JUbImqsEUqnsDSoVwijOYo01HgGAMI Td0K3a1vABFjCk6dxaKlzZalsTdiNs8RJTMBwKDlz2g= -----END CERTIFICATE-----Generated at Sat Aug 23 18:40:33 2025 by rpki-client