$ rpki-client -vvf repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3232382e302f32342d3234203d3e203633383638.roa File: 3130332e34392e3232382e302f32342d3234203d3e203633383638.roa (raw, json) Hash identifier: +fz1OVHlNgOBqr0lbQQ+JDq3kgo82i16sacdT062DE8= Subject key identifier: DB:A5:42:6D:9D:5B:E2:A2:0D:47:72:12:0F:0A:6E:2C:98:92:94:0D Certificate issuer: /CN=A142E54B1173D871802220D7946F31C1C8F55F58 Certificate serial: 630A49B44C4774558F9603B06C88279E01F12227 Authority key identifier: A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3232382e302f32342d3234203d3e203633383638.roa Signing time: Wed 30 Jul 2025 08:51:47 +0000 ROA not before: Wed 30 Jul 2025 08:46:47 +0000 ROA not after: Wed 29 Jul 2026 08:51:47 +0000 asID: 63868 IP address blocks: 103.49.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:0a:49:b4:4c:47:74:55:8f:96:03:b0:6c:88:27:9e:01:f1:22:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A142E54B1173D871802220D7946F31C1C8F55F58 Validity Not Before: Jul 30 08:46:47 2025 GMT Not After : Jul 29 08:51:47 2026 GMT Subject: CN=DBA5426D9D5BE2A20D4772120F0A6E2C9892940D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d0:c2:17:71:ef:93:3d:d0:db:53:27:02:7f: 8c:88:a1:1d:d4:8f:3a:ce:5d:0e:8c:c5:57:fe:cb: 65:b3:87:c1:18:e3:4f:59:1e:8b:58:f2:4a:f9:0c: 93:5f:c0:47:2b:32:83:51:c0:5a:7e:8c:10:2a:dc: 7d:1e:78:7a:42:be:7f:4c:48:5f:3f:e9:6d:18:59: ee:63:d1:60:e5:f6:6e:79:d4:d6:f0:b3:1f:74:2a: fa:67:24:71:e5:33:eb:ad:d8:db:ab:0c:d4:64:35: a8:44:00:d3:e5:9f:72:8d:b0:56:8d:ec:dd:84:d8: 67:40:ac:f3:93:7c:f8:43:ff:53:5d:ca:c9:4a:76: 23:7f:59:e7:24:ff:35:fa:85:ee:de:34:9a:5d:b9: 13:9f:a1:27:a3:1f:39:39:f8:56:26:d6:e8:95:3b: 49:50:37:93:b1:3d:cb:82:2a:ca:b3:18:0c:e9:d8: ca:5e:7a:69:82:88:a0:f3:41:ff:80:4e:bf:d6:ad: 61:22:1b:73:8e:ba:5d:83:9f:68:8c:67:bc:65:1c: 9b:cd:f0:b2:26:9d:9a:6b:d1:a7:cd:ce:71:38:cd: ec:ee:f8:ae:f9:20:18:01:90:e2:6c:d9:bb:6e:45: 0e:58:2d:00:79:f1:e0:64:f9:c5:f4:3d:c2:f4:e2: 8f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A5:42:6D:9D:5B:E2:A2:0D:47:72:12:0F:0A:6E:2C:98:92:94:0D X509v3 Authority Key Identifier: keyid:A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3232382e302f32342d3234203d3e203633383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.228.0/24 Signature Algorithm: sha256WithRSAEncryption e0:f7:de:a7:cf:2f:a4:b5:a6:07:9a:a4:ee:fa:2c:47:37:00: 50:8b:b7:6f:52:65:23:5c:fd:5e:a4:cb:cd:d2:4c:01:7e:6a: 2c:45:6d:88:66:4d:7d:d6:c1:b4:03:d9:c6:4f:02:ad:bc:9d: f9:9d:2f:76:f1:ca:f2:72:f1:48:27:c7:54:79:88:90:dc:46: 9a:07:c6:44:5e:a1:71:9d:9e:23:ba:ab:dc:e7:03:55:00:e5: 87:fa:94:37:8e:c7:34:c4:0b:69:4f:89:bf:c7:98:77:f9:45: 5b:b8:23:2d:1c:90:c7:97:94:c7:25:59:eb:33:ed:00:ef:c2: bb:7c:0d:eb:ed:aa:0e:ce:95:f5:cf:00:ae:26:d9:8e:65:01: 1a:1c:fb:17:93:9f:5d:fa:8e:46:c2:01:65:ac:b3:f9:9e:be: 03:f7:08:ed:c8:09:96:83:8c:92:db:c9:41:2e:17:58:37:98: 14:f3:e9:63:1a:6b:da:fe:64:50:c7:bd:f9:43:05:44:3b:69: 1e:32:4c:13:d3:34:73:19:75:8b:06:cc:d6:e8:0c:8f:43:66: 10:45:06:13:ec:60:46:10:3a:2a:64:3b:5d:5b:59:83:31:74: 00:c4:b9:40:bc:b4:e6:ee:33:1b:14:1c:22:d9:65:e7:18:5c: a4:4f:68:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYwpJtExHdFWPlgOwbIgnngHxIicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFD OEY1NUY1ODAeFw0yNTA3MzAwODQ2NDdaFw0yNjA3MjkwODUxNDdaMDMxMTAvBgNV BAMTKERCQTU0MjZEOUQ1QkUyQTIwRDQ3NzIxMjBGMEE2RTJDOTg5Mjk0MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv0MIXce+TPdDbUycCf4yIoR3U jzrOXQ6MxVf+y2Wzh8EY409ZHotY8kr5DJNfwEcrMoNRwFp+jBAq3H0eeHpCvn9M SF8/6W0YWe5j0WDl9m551Nbwsx90KvpnJHHlM+ut2NurDNRkNahEANPln3KNsFaN 7N2E2GdArPOTfPhD/1NdyslKdiN/Weck/zX6he7eNJpduROfoSejHzk5+FYm1uiV O0lQN5OxPcuCKsqzGAzp2MpeemmCiKDzQf+ATr/WrWEiG3OOul2Dn2iMZ7xlHJvN 8LImnZpr0afNznE4zezu+K75IBgBkOJs2btuRQ5YLQB58eBk+cX0PcL04o8xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU26VCbZ1b4qINR3ISDwpuLJiSlA0wHwYDVR0j BBgwFoAUoULlSxFz2HGAIiDXlG8xwcj1X1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzcxOTI5ZC1jM2QwLTRkYWEtYjVmZC1hMjQ5NTYwZDVkMDQvMC9BMTQyRTU0QjEx NzNEODcxODAyMjIwRDc5NDZGMzFDMUM4RjU1RjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFDOEY1 NUY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzNzE5MjlkLWMzZDAtNGRhYS1i NWZkLWEyNDk1NjBkNWQwNC8wLzMxMzAzMzJlMzQzOTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcx5DANBgkqhkiG 9w0BAQsFAAOCAQEA4Pfep88vpLWmB5qk7vosRzcAUIu3b1JlI1z9XqTLzdJMAX5q LEVtiGZNfdbBtAPZxk8Crbyd+Z0vdvHK8nLxSCfHVHmIkNxGmgfGRF6hcZ2eI7qr 3OcDVQDlh/qUN47HNMQLaU+Jv8eYd/lFW7gjLRyQx5eUxyVZ6zPtAO/Cu3wN6+2q Ds6V9c8AribZjmUBGhz7F5OfXfqORsIBZayz+Z6+A/cI7cgJloOMktvJQS4XWDeY FPPpYxpr2v5kUMe9+UMFRDtpHjJME9M0cxl1iwbM1ugMj0NmEEUGE+xgRhA6KmQ7 XVtZgzF0AMS5QLy05u4zGxQcItll5xhcpE9oEw== -----END CERTIFICATE-----Generated at Sat Aug 23 13:34:13 2025 by rpki-client