$ rpki-client -vvf repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3232392e302f32342d3234203d3e203633383638.roa File: 3130332e34392e3232392e302f32342d3234203d3e203633383638.roa (raw, json) Hash identifier: bojMt0gtubfTBb5QRBM0eDsyEh+eiJmKiv8uVqn90p8= Subject key identifier: 46:61:18:64:C8:0E:B6:97:A8:5C:72:98:88:64:23:8D:97:6A:16:74 Certificate issuer: /CN=A142E54B1173D871802220D7946F31C1C8F55F58 Certificate serial: 43A0D5EDC4FA8314A293253D65CA8ED41CA3DEE9 Authority key identifier: A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3232392e302f32342d3234203d3e203633383638.roa Signing time: Wed 30 Jul 2025 09:07:14 +0000 ROA not before: Wed 30 Jul 2025 09:02:14 +0000 ROA not after: Wed 29 Jul 2026 09:07:14 +0000 asID: 63868 IP address blocks: 103.49.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a0:d5:ed:c4:fa:83:14:a2:93:25:3d:65:ca:8e:d4:1c:a3:de:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A142E54B1173D871802220D7946F31C1C8F55F58 Validity Not Before: Jul 30 09:02:14 2025 GMT Not After : Jul 29 09:07:14 2026 GMT Subject: CN=46611864C80EB697A85C72988864238D976A1674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:19:b8:9f:86:83:38:82:b3:c4:85:03:45:25: 61:30:29:a4:a3:45:53:49:6b:50:a1:1b:db:b0:cd: ce:ac:92:f7:61:ab:ff:a5:cd:01:9e:4b:6a:ae:df: a9:98:71:1d:47:99:0b:b1:9f:d4:b9:d0:14:fd:45: 69:cc:7d:2d:36:a8:84:6d:a8:f8:1e:a1:00:01:43: ec:f0:70:32:9c:bd:98:fc:6c:e1:5d:a2:31:bc:ed: fd:95:4d:47:25:fc:dd:78:77:7f:96:62:94:70:d9: 42:82:6d:f5:82:b7:17:d5:1f:05:28:13:f8:8c:4f: 4d:f9:9f:7a:e1:f1:e3:ec:da:56:e8:ff:5c:7d:5d: 4a:7a:ee:e4:84:7d:30:4b:e3:ca:b5:eb:7d:17:e9: 45:22:aa:c8:11:8f:6c:ef:43:6c:53:83:d4:3c:85: a3:fd:11:55:fc:6d:c0:df:18:a7:8e:3b:d7:01:86: ff:23:5a:4b:b5:6f:75:a7:cc:b9:a0:c6:93:82:1f: 08:56:a8:c1:ca:d0:ec:ef:e9:0d:cf:df:b0:d9:fd: 0e:d0:39:e9:0f:24:c0:9c:01:c3:2e:33:b8:0e:c4: 31:eb:77:98:45:c3:20:22:21:1b:51:43:3b:f9:94: 8d:1b:f8:08:e8:79:30:82:cd:d7:d5:e7:6a:57:09: 12:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:61:18:64:C8:0E:B6:97:A8:5C:72:98:88:64:23:8D:97:6A:16:74 X509v3 Authority Key Identifier: keyid:A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3232392e302f32342d3234203d3e203633383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.229.0/24 Signature Algorithm: sha256WithRSAEncryption b8:1f:62:53:9b:32:f0:54:1f:3d:58:ff:ee:9d:3a:37:4a:45: 95:25:fa:f0:ca:47:1d:65:af:61:56:89:b9:b6:19:d9:29:59: 5f:af:2f:e4:78:ca:9c:c6:98:56:39:e2:da:b1:39:74:ef:94: 73:ea:b5:28:85:98:c8:15:00:1f:e6:97:f2:a9:27:fe:02:94: 4b:74:60:c0:11:29:18:de:13:0a:ed:96:88:82:0c:c3:92:bd: e1:5e:c8:de:26:86:a5:aa:7a:1f:15:ab:9a:ca:70:0d:ab:be: 64:ce:72:03:2d:3c:97:a1:66:39:d7:0a:9e:f9:08:06:f5:66: da:de:01:5e:fb:fa:af:f9:20:2f:9b:58:d5:0b:55:10:01:3b: fc:74:ce:e6:fe:26:0b:09:da:fc:2c:81:6a:f9:b5:d4:8a:5f: b1:b5:53:8a:21:1a:1e:61:a8:df:f2:8b:22:cb:a4:38:06:22: e2:85:0f:d1:62:0a:af:f1:13:ca:9e:04:f8:a3:80:84:a8:64: 3c:77:1e:c0:6e:c7:01:30:c4:31:20:ad:e8:72:2a:1f:2e:f9: aa:e5:11:44:cc:15:d6:1c:45:8c:6a:f5:70:2d:ff:6d:8f:54: d3:b0:d5:23:44:11:58:d9:89:9b:3d:ed:2d:36:c5:0e:0f:45: 84:c2:25:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ6DV7cT6gxSikyU9ZcqO1Byj3ukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFD OEY1NUY1ODAeFw0yNTA3MzAwOTAyMTRaFw0yNjA3MjkwOTA3MTRaMDMxMTAvBgNV BAMTKDQ2NjExODY0QzgwRUI2OTdBODVDNzI5ODg4NjQyMzhEOTc2QTE2NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjGbifhoM4grPEhQNFJWEwKaSj RVNJa1ChG9uwzc6skvdhq/+lzQGeS2qu36mYcR1HmQuxn9S50BT9RWnMfS02qIRt qPgeoQABQ+zwcDKcvZj8bOFdojG87f2VTUcl/N14d3+WYpRw2UKCbfWCtxfVHwUo E/iMT035n3rh8ePs2lbo/1x9XUp67uSEfTBL48q1630X6UUiqsgRj2zvQ2xTg9Q8 haP9EVX8bcDfGKeOO9cBhv8jWku1b3WnzLmgxpOCHwhWqMHK0Ozv6Q3P37DZ/Q7Q OekPJMCcAcMuM7gOxDHrd5hFwyAiIRtRQzv5lI0b+AjoeTCCzdfV52pXCRKjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURmEYZMgOtpeoXHKYiGQjjZdqFnQwHwYDVR0j BBgwFoAUoULlSxFz2HGAIiDXlG8xwcj1X1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzcxOTI5ZC1jM2QwLTRkYWEtYjVmZC1hMjQ5NTYwZDVkMDQvMC9BMTQyRTU0QjEx NzNEODcxODAyMjIwRDc5NDZGMzFDMUM4RjU1RjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFDOEY1 NUY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzNzE5MjlkLWMzZDAtNGRhYS1i NWZkLWEyNDk1NjBkNWQwNC8wLzMxMzAzMzJlMzQzOTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcx5TANBgkqhkiG 9w0BAQsFAAOCAQEAuB9iU5sy8FQfPVj/7p06N0pFlSX68MpHHWWvYVaJubYZ2SlZ X68v5HjKnMaYVjni2rE5dO+Uc+q1KIWYyBUAH+aX8qkn/gKUS3RgwBEpGN4TCu2W iIIMw5K94V7I3iaGpap6HxWrmspwDau+ZM5yAy08l6FmOdcKnvkIBvVm2t4BXvv6 r/kgL5tY1QtVEAE7/HTO5v4mCwna/CyBavm11IpfsbVTiiEaHmGo3/KLIsukOAYi 4oUP0WIKr/ETyp4E+KOAhKhkPHcewG7HATDEMSCt6HIqHy75quURRMwV1hxFjGr1 cC3/bY9U07DVI0QRWNmJmz3tLTbFDg9FhMIlKA== -----END CERTIFICATE-----Generated at Sat Aug 23 13:34:10 2025 by rpki-client