$ rpki-client -vvf repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3233302e302f32342d3234203d3e203633383638.roa File: 3130332e34392e3233302e302f32342d3234203d3e203633383638.roa (raw, json) Hash identifier: OBFtgkraA2mAt61IcdsL1WjQ+6oatnIwsFiBr9g1HRk= Subject key identifier: 7E:FF:8B:41:B5:2F:6D:45:64:74:5C:3D:AB:AB:B0:C1:95:74:3F:65 Certificate issuer: /CN=A142E54B1173D871802220D7946F31C1C8F55F58 Certificate serial: 5C063B3BCF94058FD6EACAFDC4E85EC8CBFE47E4 Authority key identifier: A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3233302e302f32342d3234203d3e203633383638.roa Signing time: Wed 30 Jul 2025 09:07:35 +0000 ROA not before: Wed 30 Jul 2025 09:02:35 +0000 ROA not after: Wed 29 Jul 2026 09:07:35 +0000 asID: 63868 IP address blocks: 103.49.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:06:3b:3b:cf:94:05:8f:d6:ea:ca:fd:c4:e8:5e:c8:cb:fe:47:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A142E54B1173D871802220D7946F31C1C8F55F58 Validity Not Before: Jul 30 09:02:35 2025 GMT Not After : Jul 29 09:07:35 2026 GMT Subject: CN=7EFF8B41B52F6D4564745C3DABABB0C195743F65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:52:11:6f:3e:08:9b:e3:6b:4f:d6:f4:8c:b1: 80:01:ae:1b:35:6f:73:e4:58:97:54:e2:14:04:b9: 40:23:17:75:b9:76:c5:ce:3c:e0:62:a7:69:77:19: 7b:c2:fd:ee:eb:e1:ec:27:a0:0a:f0:ae:b3:b3:01: 99:43:da:f4:95:fe:38:3f:54:16:04:a6:65:76:8d: ad:3e:4a:a8:1d:a4:6d:76:f2:a7:ba:55:e3:73:25: 2c:4c:3f:c1:21:5b:a0:b0:ac:aa:02:f3:e1:80:51: e9:f9:67:33:c0:7c:d5:84:7b:dc:eb:9e:ae:4e:ce: 94:d4:4c:3e:3d:ca:eb:2b:1e:ac:a9:97:85:6d:d3: 2f:8a:7c:0e:55:7a:09:21:f8:e4:79:5e:fc:b1:8d: 9c:6a:52:75:5e:44:8a:2e:e0:3d:d6:6d:a1:d2:60: ca:7c:f5:61:96:54:75:51:14:4e:75:f0:ad:3d:e9: e2:29:a0:ea:c9:2b:bb:cd:70:ab:69:bc:58:b4:2a: 37:b5:b0:0a:73:2d:70:88:ce:8c:04:69:d7:9b:a4: ee:96:f6:73:71:aa:29:97:7c:3a:c9:2e:fa:f8:e5: 53:08:48:eb:5e:32:d5:cc:47:a5:62:07:27:29:39: 6d:aa:b6:1a:59:60:db:54:76:f0:95:df:14:02:84: 78:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FF:8B:41:B5:2F:6D:45:64:74:5C:3D:AB:AB:B0:C1:95:74:3F:65 X509v3 Authority Key Identifier: keyid:A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3233302e302f32342d3234203d3e203633383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.230.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:51:d6:f0:e3:c2:17:6a:a8:03:22:c7:7c:1f:7f:31:ea:fa: 53:0b:93:f5:a8:69:58:9a:58:61:f2:5b:ff:50:6f:e4:62:3b: c8:76:fc:98:52:a9:39:31:6b:02:b8:8a:4b:d7:c5:b3:7e:d0: 09:dd:2b:c0:3f:40:ce:ee:7a:74:15:4f:84:97:20:d5:2c:3f: 49:7c:30:52:75:e7:47:82:dc:bf:dc:4d:f9:90:f3:bd:fa:5c: db:b1:f2:1e:82:26:df:f2:56:01:e8:da:13:12:dd:6f:c8:b3: 1b:dd:d0:75:e5:a9:78:7c:38:a1:20:5a:e7:e0:63:83:93:2a: 0f:c6:29:4f:c3:a8:9d:ce:32:b1:5b:17:42:8d:e6:7c:77:6c: 9e:f5:7c:52:30:bf:7e:6f:e7:7b:11:91:87:e3:80:a8:c6:e3: 33:9c:3f:42:fc:74:b8:21:8e:26:92:79:9c:1b:93:1d:12:30: 0a:cf:a3:64:48:5e:a1:79:2c:b7:ca:0c:a2:44:da:c9:25:5a: 05:c1:59:4c:6f:10:ee:b8:c6:e3:4d:da:9b:c0:79:6d:af:67: 48:06:f1:66:7f:00:bb:9b:ba:b4:7a:48:8b:c2:57:de:0f:6f: b6:fc:81:be:7c:bc:5e:2d:80:75:e6:77:4c:b5:9a:9e:2b:a1: ef:a8:f3:ae -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXAY7O8+UBY/W6sr9xOheyMv+R+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFD OEY1NUY1ODAeFw0yNTA3MzAwOTAyMzVaFw0yNjA3MjkwOTA3MzVaMDMxMTAvBgNV BAMTKDdFRkY4QjQxQjUyRjZENDU2NDc0NUMzREFCQUJCMEMxOTU3NDNGNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYUhFvPgib42tP1vSMsYABrhs1 b3PkWJdU4hQEuUAjF3W5dsXOPOBip2l3GXvC/e7r4ewnoArwrrOzAZlD2vSV/jg/ VBYEpmV2ja0+SqgdpG128qe6VeNzJSxMP8EhW6CwrKoC8+GAUen5ZzPAfNWEe9zr nq5OzpTUTD49yusrHqypl4Vt0y+KfA5Vegkh+OR5XvyxjZxqUnVeRIou4D3WbaHS YMp89WGWVHVRFE518K096eIpoOrJK7vNcKtpvFi0Kje1sApzLXCIzowEadebpO6W 9nNxqimXfDrJLvr45VMISOteMtXMR6ViBycpOW2qthpZYNtUdvCV3xQChHhrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfv+LQbUvbUVkdFw9q6uwwZV0P2UwHwYDVR0j BBgwFoAUoULlSxFz2HGAIiDXlG8xwcj1X1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzcxOTI5ZC1jM2QwLTRkYWEtYjVmZC1hMjQ5NTYwZDVkMDQvMC9BMTQyRTU0QjEx NzNEODcxODAyMjIwRDc5NDZGMzFDMUM4RjU1RjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFDOEY1 NUY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzNzE5MjlkLWMzZDAtNGRhYS1i NWZkLWEyNDk1NjBkNWQwNC8wLzMxMzAzMzJlMzQzOTJlMzIzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcx5jANBgkqhkiG 9w0BAQsFAAOCAQEAa1HW8OPCF2qoAyLHfB9/Mer6UwuT9ahpWJpYYfJb/1Bv5GI7 yHb8mFKpOTFrAriKS9fFs37QCd0rwD9Azu56dBVPhJcg1Sw/SXwwUnXnR4Lcv9xN +ZDzvfpc27HyHoIm3/JWAejaExLdb8izG93QdeWpeHw4oSBa5+Bjg5MqD8YpT8Oo nc4ysVsXQo3mfHdsnvV8UjC/fm/nexGRh+OAqMbjM5w/Qvx0uCGOJpJ5nBuTHRIw Cs+jZEheoXkst8oMokTaySVaBcFZTG8Q7rjG403am8B5ba9nSAbxZn8Au5u6tHpI i8JX3g9vtvyBvny8Xi2AdeZ3TLWaniuh76jzrg== -----END CERTIFICATE-----Generated at Sat Aug 23 15:44:45 2025 by rpki-client