$ rpki-client -vvf repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa File: 3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa (raw, json) Hash identifier: FEHaz0M5qWTtLzVTFwwxjOLyrh7B+FWo8+ydx+5qUx0= Subject key identifier: 3F:77:DE:56:71:07:6E:08:CB:2F:E4:09:FA:09:8F:39:EF:DF:C9:3A Certificate issuer: /CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682 Certificate serial: 4F2FEFD62F30376ED73E2B451508F75150146B7F Authority key identifier: B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa Signing time: Thu 21 Aug 2025 12:00:01 +0000 ROA not before: Thu 21 Aug 2025 11:55:01 +0000 ROA not after: Thu 20 Aug 2026 12:00:01 +0000 asID: 151559 IP address blocks: 103.38.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.crl rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:2f:ef:d6:2f:30:37:6e:d7:3e:2b:45:15:08:f7:51:50:14:6b:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682 Validity Not Before: Aug 21 11:55:01 2025 GMT Not After : Aug 20 12:00:01 2026 GMT Subject: CN=3F77DE5671076E08CB2FE409FA098F39EFDFC93A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d8:dd:5f:78:0f:fc:54:cc:2a:fc:66:38:3d: 4c:4a:83:22:4a:55:41:a2:f1:42:da:aa:1f:53:e5: 07:d0:6a:c6:bf:76:79:a4:4d:90:25:80:b4:d1:83: dc:eb:10:2c:08:07:f0:63:5c:52:9b:7b:30:4a:36: 5a:8a:a5:3c:ab:57:d9:a8:a2:44:d8:c0:eb:3c:3f: 51:af:d7:46:be:43:66:b4:d2:bd:35:c2:1d:b1:ed: 81:66:ee:8e:08:3d:8c:20:c7:5d:57:53:29:fb:ad: f3:fa:2c:91:e7:34:f3:6e:63:1d:99:8d:5d:e7:0e: 3e:6a:b7:07:05:8c:1e:12:76:51:0f:6c:02:f4:8e: c5:c2:a2:48:d7:a2:ed:bc:0d:a7:1b:81:10:61:f7: 90:f3:c2:ac:fd:0e:83:9a:4d:34:b6:47:54:f0:be: ef:f3:c9:96:bb:02:1a:ff:22:9d:b4:c6:8e:11:7f: d2:35:4e:e3:27:44:a2:75:17:4c:a7:a6:e4:47:df: 95:4b:b8:2d:f2:be:0f:56:ac:8f:2e:a3:76:80:c0: 41:38:90:54:74:19:c2:94:02:22:94:7c:84:79:7a: 6b:36:c6:17:3b:61:9b:3a:64:26:76:74:03:f9:95: f0:f9:3b:77:46:c8:98:95:e9:78:d8:cf:f6:c0:28: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:77:DE:56:71:07:6E:08:CB:2F:E4:09:FA:09:8F:39:EF:DF:C9:3A X509v3 Authority Key Identifier: keyid:B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.108.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:90:ca:9f:d3:60:3c:6a:ea:88:2e:75:fa:5f:ff:19:94:0e: 1b:74:7b:c8:fb:25:5f:4e:b9:ea:20:4c:0b:a3:2e:4c:47:98: 56:f9:e5:3d:e2:13:b4:b5:d8:6e:42:80:a6:36:4f:d8:8b:b2: 1e:63:4b:05:a0:8e:9c:67:b9:42:d4:fa:8e:a2:69:7d:f3:d1: 36:b2:58:7b:53:55:83:2d:2e:50:99:70:38:13:4e:85:17:63: d7:49:dd:bc:1e:09:5d:f4:fc:5f:2e:bc:fd:fb:be:91:02:c2: 65:d1:34:28:aa:91:f4:b1:44:35:8a:d0:80:4b:22:c0:8f:a9: 5b:2d:b4:e5:6c:25:c8:cb:ae:ca:5d:06:d1:39:e2:a6:58:d0: 97:e4:87:4e:e2:47:cc:18:cf:7b:f1:ce:3f:3f:b5:fe:8a:9a: 6b:56:bf:81:82:af:a9:8b:f6:e3:38:5b:87:e0:df:de:db:22: 95:58:d8:2a:a4:b7:97:ec:33:88:a8:9a:5b:ce:ee:90:7d:63: ba:3f:d6:ec:2e:aa:1b:81:62:ef:9b:26:f0:8b:5c:3a:41:1c: 5e:bc:0e:77:b0:35:70:11:3a:58:4a:72:0c:91:c8:18:d9:f6: 36:fc:be:70:31:26:f3:5f:8e:d5:28:be:94:b6:91:83:11:f9: 02:c8:23:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTy/v1i8wN27XPitFFQj3UVAUa38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVGOEU3NzEyQTgzQkUyQkQ3OENGQzQwNjU4QzgwMzJG MDNCNjY4MjAeFw0yNTA4MjExMTU1MDFaFw0yNjA4MjAxMjAwMDFaMDMxMTAvBgNV BAMTKDNGNzdERTU2NzEwNzZFMDhDQjJGRTQwOUZBMDk4RjM5RUZERkM5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl2N1feA/8VMwq/GY4PUxKgyJK VUGi8ULaqh9T5QfQasa/dnmkTZAlgLTRg9zrECwIB/BjXFKbezBKNlqKpTyrV9mo okTYwOs8P1Gv10a+Q2a00r01wh2x7YFm7o4IPYwgx11XUyn7rfP6LJHnNPNuYx2Z jV3nDj5qtwcFjB4SdlEPbAL0jsXCokjXou28DacbgRBh95Dzwqz9DoOaTTS2R1Tw vu/zyZa7Ahr/Ip20xo4Rf9I1TuMnRKJ1F0ynpuRH35VLuC3yvg9WrI8uo3aAwEE4 kFR0GcKUAiKUfIR5ems2xhc7YZs6ZCZ2dAP5lfD5O3dGyJiV6XjYz/bAKKLHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP3feVnEHbgjLL+QJ+gmPOe/fyTowHwYDVR0j BBgwFoAUtfjncSqDvivXjPxAZYyAMvA7ZoIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGI1OWExMC01OGQwLTQ2MmUtYjA5Yi0xOTE5YjFjMzVkNzIvMC9CNUY4RTc3MTJB ODNCRTJCRDc4Q0ZDNDA2NThDODAzMkYwM0I2NjgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVGOEU3NzEyQTgzQkUyQkQ3OENGQzQwNjU4QzgwMzJGMDNC NjY4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkYjU5YTEwLTU4ZDAtNDYyZS1i MDliLTE5MTliMWMzNWQ3Mi8wLzMxMzAzMzJlMzMzODJlMzEzMDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZyZsMA0GCSqG SIb3DQEBCwUAA4IBAQA7kMqf02A8auqILnX6X/8ZlA4bdHvI+yVfTrnqIEwLoy5M R5hW+eU94hO0tdhuQoCmNk/Yi7IeY0sFoI6cZ7lC1PqOoml989E2slh7U1WDLS5Q mXA4E06FF2PXSd28Hgld9PxfLrz9+76RAsJl0TQoqpH0sUQ1itCASyLAj6lbLbTl bCXIy67KXQbROeKmWNCX5IdO4kfMGM978c4/P7X+ipprVr+Bgq+pi/bjOFuH4N/e 2yKVWNgqpLeX7DOIqJpbzu6QfWO6P9bsLqobgWLvmybwi1w6QRxevA53sDVwETpY SnIMkcgY2fY2/L5wMSbzX47VKL6UtpGDEfkCyCOC -----END CERTIFICATE-----Generated at Sat Aug 23 15:48:18 2025 by rpki-client