$ rpki-client -vvf repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3233312e302f32342d3234203d3e203633383638.roa File: 3130332e34392e3233312e302f32342d3234203d3e203633383638.roa (raw, json) Hash identifier: A87x9izjeE8fUDhqMlkHjoCuxbSOiZqmsAQhFIKjo7Y= Subject key identifier: 69:9B:D3:0A:0C:D0:87:35:2D:99:39:C7:EF:8C:52:5B:73:40:C5:C5 Certificate issuer: /CN=A142E54B1173D871802220D7946F31C1C8F55F58 Certificate serial: 044ACC64D6FF5FFBBF916600476099DA887C6657 Authority key identifier: A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3233312e302f32342d3234203d3e203633383638.roa Signing time: Wed 30 Jul 2025 09:07:56 +0000 ROA not before: Wed 30 Jul 2025 09:02:56 +0000 ROA not after: Wed 29 Jul 2026 09:07:56 +0000 asID: 63868 IP address blocks: 103.49.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:4a:cc:64:d6:ff:5f:fb:bf:91:66:00:47:60:99:da:88:7c:66:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A142E54B1173D871802220D7946F31C1C8F55F58 Validity Not Before: Jul 30 09:02:56 2025 GMT Not After : Jul 29 09:07:56 2026 GMT Subject: CN=699BD30A0CD087352D9939C7EF8C525B7340C5C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:59:dd:6a:39:8c:e4:5b:26:06:4f:74:2f:d2: 54:7e:6e:d4:40:dc:7f:6e:0f:72:02:be:da:fa:33: 90:f8:d1:ec:ef:fb:ef:e4:61:91:86:d1:36:9a:8f: 8d:b0:9f:d6:30:d3:60:7b:7c:51:b0:d9:55:c5:70: 8a:ac:bd:cc:33:b3:c5:fc:83:a8:7e:b9:8a:c3:6e: 3b:f8:df:e9:c3:5c:79:5d:74:1d:9d:e1:f9:4c:e7: ac:e0:db:78:ba:f7:3b:c3:a6:3e:5a:70:e2:a7:16: ad:b9:66:ec:38:2e:0a:27:21:79:09:6f:c1:7c:48: a8:fa:c0:35:49:c7:bf:e3:50:66:c4:0c:6a:e3:0f: 31:f5:e3:e1:aa:0a:8a:fd:e7:3c:f4:2e:37:b3:68: ad:89:cc:5b:fa:12:51:b7:b9:88:b4:9f:3a:6f:a2: e3:99:98:2b:91:d0:e4:63:6f:b1:64:38:62:a9:7f: 68:bf:76:3a:53:a9:14:7b:d5:0d:85:07:17:7a:2d: 2e:65:83:c8:4c:bd:95:44:f1:8f:7c:1c:b0:ef:ef: 11:52:6f:be:4a:ad:8b:db:36:3d:cf:99:6d:54:bc: 03:50:a3:a6:01:34:6a:66:0e:b4:85:f0:4d:72:26: e6:67:e1:58:dd:07:27:f1:2c:0a:26:4d:8a:9f:e1: b7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9B:D3:0A:0C:D0:87:35:2D:99:39:C7:EF:8C:52:5B:73:40:C5:C5 X509v3 Authority Key Identifier: keyid:A1:42:E5:4B:11:73:D8:71:80:22:20:D7:94:6F:31:C1:C8:F5:5F:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/A142E54B1173D871802220D7946F31C1C8F55F58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A142E54B1173D871802220D7946F31C1C8F55F58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d371929d-c3d0-4daa-b5fd-a249560d5d04/0/3130332e34392e3233312e302f32342d3234203d3e203633383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.231.0/24 Signature Algorithm: sha256WithRSAEncryption c3:d3:ef:9c:89:b7:39:7b:8e:ec:82:1f:0a:d7:38:96:a2:19: 3e:5a:d0:65:14:d5:92:3c:3e:12:4c:4c:d3:a7:65:9a:1e:cf: 0d:c8:b6:cd:97:8f:a5:19:d2:77:16:45:93:09:59:96:20:b2: 08:8a:02:2a:8d:69:8c:8d:97:76:98:02:ca:98:3e:e2:bd:87: 99:9e:62:d6:e7:22:f4:cb:1a:e4:e9:5c:01:c3:00:8c:42:db: 5c:f1:0f:30:42:1b:0d:af:8f:87:8c:21:4c:fc:84:a1:a8:c1: da:14:6c:92:bd:5f:6a:65:9f:0c:dc:7c:5f:78:57:a7:83:f7: 4e:aa:26:e8:54:fc:9b:d4:94:03:08:3d:5f:04:22:e9:07:4a: a7:87:a6:69:bb:0a:99:c6:f3:d3:25:b9:1b:41:e0:35:ff:39: 6e:cb:e4:78:eb:06:65:3a:62:c7:9a:b0:cc:04:2c:56:e3:5a: 08:e2:bf:6c:58:de:20:ae:de:77:d9:c2:07:f3:8c:2a:40:06: 02:9e:fe:c0:e7:5f:59:ba:f6:93:3c:6a:42:d4:93:eb:4b:c8: b5:69:51:04:f9:c8:9c:23:e3:8e:42:33:ae:bf:23:4d:6d:31: e5:50:5b:f8:c0:cc:50:93:e9:33:47:64:c4:85:9a:f1:5d:5a: 88:95:9b:8f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBErMZNb/X/u/kWYAR2CZ2oh8ZlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFD OEY1NUY1ODAeFw0yNTA3MzAwOTAyNTZaFw0yNjA3MjkwOTA3NTZaMDMxMTAvBgNV BAMTKDY5OUJEMzBBMENEMDg3MzUyRDk5MzlDN0VGOEM1MjVCNzM0MEM1QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRWd1qOYzkWyYGT3Qv0lR+btRA 3H9uD3ICvtr6M5D40ezv++/kYZGG0Taaj42wn9Yw02B7fFGw2VXFcIqsvcwzs8X8 g6h+uYrDbjv43+nDXHlddB2d4flM56zg23i69zvDpj5acOKnFq25Zuw4LgonIXkJ b8F8SKj6wDVJx7/jUGbEDGrjDzH14+GqCor95zz0LjezaK2JzFv6ElG3uYi0nzpv ouOZmCuR0ORjb7FkOGKpf2i/djpTqRR71Q2FBxd6LS5lg8hMvZVE8Y98HLDv7xFS b75KrYvbNj3PmW1UvANQo6YBNGpmDrSF8E1yJuZn4VjdByfxLAomTYqf4bf1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaZvTCgzQhzUtmTnH74xSW3NAxcUwHwYDVR0j BBgwFoAUoULlSxFz2HGAIiDXlG8xwcj1X1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzcxOTI5ZC1jM2QwLTRkYWEtYjVmZC1hMjQ5NTYwZDVkMDQvMC9BMTQyRTU0QjEx NzNEODcxODAyMjIwRDc5NDZGMzFDMUM4RjU1RjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE0MkU1NEIxMTczRDg3MTgwMjIyMEQ3OTQ2RjMxQzFDOEY1 NUY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzNzE5MjlkLWMzZDAtNGRhYS1i NWZkLWEyNDk1NjBkNWQwNC8wLzMxMzAzMzJlMzQzOTJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcx5zANBgkqhkiG 9w0BAQsFAAOCAQEAw9PvnIm3OXuO7IIfCtc4lqIZPlrQZRTVkjw+EkxM06dlmh7P Dci2zZePpRnSdxZFkwlZliCyCIoCKo1pjI2XdpgCypg+4r2HmZ5i1uci9Msa5Olc AcMAjELbXPEPMEIbDa+Ph4whTPyEoajB2hRskr1famWfDNx8X3hXp4P3Tqom6FT8 m9SUAwg9XwQi6QdKp4emabsKmcbz0yW5G0HgNf85bsvkeOsGZTpix5qwzAQsVuNa COK/bFjeIK7ed9nCB/OMKkAGAp7+wOdfWbr2kzxqQtST60vItWlRBPnInCPjjkIz rr8jTW0x5VBb+MDMUJPpM0dkxIWa8V1aiJWbjw== -----END CERTIFICATE-----Generated at Sat Aug 23 15:37:29 2025 by rpki-client