$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa File: 3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa (raw, json) Hash identifier: 7IHy7S58PrSgI+9s9OhKwDaIOEZSZJD9pKdINBx6ktw= Subject key identifier: 80:AF:4C:E9:92:9F:72:09:84:35:65:F1:94:71:E0:1B:F8:63:72:B3 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 329C5A578E6064EE06B0B2EA24DCE5C549F1C41A Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa Signing time: Tue 15 Jul 2025 10:00:00 +0000 ROA not before: Tue 15 Jul 2025 09:55:00 +0000 ROA not after: Tue 14 Jul 2026 10:00:00 +0000 asID: 150497 IP address blocks: 103.58.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9c:5a:57:8e:60:64:ee:06:b0:b2:ea:24:dc:e5:c5:49:f1:c4:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Jul 15 09:55:00 2025 GMT Not After : Jul 14 10:00:00 2026 GMT Subject: CN=80AF4CE9929F7209843565F19471E01BF86372B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:79:26:e4:c7:e5:27:fd:67:40:f1:2d:31: e8:91:9d:07:4b:3d:df:5a:64:4c:03:de:90:3b:b2: f8:86:59:26:be:79:2d:2e:09:63:58:de:b3:23:01: 42:c3:9e:fa:17:44:9b:ee:18:b7:cd:37:7b:91:99: 70:9c:4f:83:3f:0c:09:ef:45:8c:32:ec:c3:d3:75: ec:93:a1:75:ff:87:bb:02:08:0c:40:99:0b:eb:b6: 32:37:66:e2:ca:c3:d1:4d:83:2e:27:08:3e:e1:e0: 66:d7:3d:8a:9c:09:2b:7d:13:14:13:d5:28:84:1f: 97:2b:c4:31:ae:74:21:fc:6e:76:91:40:c3:6b:7e: 7c:16:34:a5:7d:dd:a2:60:39:d8:0b:07:6e:21:8f: 2a:ec:5f:8a:5a:d0:95:9d:7d:ef:9c:6f:25:4f:33: b5:1e:ad:dc:17:7b:97:b0:51:f1:46:16:94:ee:19: e3:c1:e9:ec:d1:42:78:09:d0:bc:d1:60:1f:a7:e1: 1a:ba:d5:30:b3:0d:8c:9e:ac:32:e3:65:74:15:17: 66:f2:07:e9:d3:60:3b:4e:ae:e1:d4:83:fc:46:19: c1:c6:55:7f:0b:8b:0e:24:cf:50:a5:07:cc:d6:79: e3:93:88:75:7b:b1:e3:5d:23:8a:a1:fe:4a:34:64: 29:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AF:4C:E9:92:9F:72:09:84:35:65:F1:94:71:E0:1B:F8:63:72:B3 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.198.0/24 Signature Algorithm: sha256WithRSAEncryption 83:e2:06:a9:82:f0:9f:02:eb:69:5e:ed:5c:0f:d0:92:53:b7: 43:e5:53:9a:88:50:a7:9d:44:0a:a8:1c:06:ed:71:67:a9:f4: 92:be:ca:d3:9f:56:6a:82:3b:de:e3:0c:8b:e1:fc:d4:7f:97: a0:10:ab:0a:c2:7e:3d:cc:1f:61:b3:59:41:03:af:99:67:54: 17:6e:4f:43:a4:60:ed:b1:20:54:0d:0c:f2:41:14:5b:7c:49: dc:56:66:84:97:57:3f:e3:24:f9:a7:54:d2:31:6c:5d:c4:2c: da:36:54:1a:7c:73:29:8f:ce:74:32:ac:2b:b2:09:43:c5:c7: f4:f2:ce:b3:ed:d7:08:54:36:9e:2e:78:29:89:15:82:1d:97: 9b:53:9a:0b:96:60:87:23:44:d7:9a:fc:5c:6c:91:2e:6d:4d: 68:de:f6:84:ea:4f:38:bf:60:30:ad:24:fc:52:d0:05:81:3f: b2:f9:73:17:54:b0:29:51:d7:37:ba:78:03:17:69:bd:5c:38: 64:cf:4a:7b:1c:a5:b7:9d:fc:ca:47:07:ba:ca:f0:70:bd:a1: 75:81:10:96:ed:30:02:4f:d7:f4:6b:1d:b9:20:f3:b2:af:56: ee:64:c0:8d:b0:60:d0:79:85:9e:f1:8e:12:57:cf:d9:4a:66: 78:49:8b:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMpxaV45gZO4GsLLqJNzlxUnxxBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNTA3MTUwOTU1MDBaFw0yNjA3MTQxMDAwMDBaMDMxMTAvBgNV BAMTKDgwQUY0Q0U5OTI5RjcyMDk4NDM1NjVGMTk0NzFFMDFCRjg2MzcyQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB9nkm5MflJ/1nQPEtMeiRnQdL Pd9aZEwD3pA7sviGWSa+eS0uCWNY3rMjAULDnvoXRJvuGLfNN3uRmXCcT4M/DAnv RYwy7MPTdeyToXX/h7sCCAxAmQvrtjI3ZuLKw9FNgy4nCD7h4GbXPYqcCSt9ExQT 1SiEH5crxDGudCH8bnaRQMNrfnwWNKV93aJgOdgLB24hjyrsX4pa0JWdfe+cbyVP M7UerdwXe5ewUfFGFpTuGePB6ezRQngJ0LzRYB+n4Rq61TCzDYyerDLjZXQVF2by B+nTYDtOruHUg/xGGcHGVX8Liw4kz1ClB8zWeeOTiHV7seNdI4qh/ko0ZCkzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgK9M6ZKfcgmENWXxlHHgG/hjcrMwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrGMA0GCSqG SIb3DQEBCwUAA4IBAQCD4gapgvCfAutpXu1cD9CSU7dD5VOaiFCnnUQKqBwG7XFn qfSSvsrTn1Zqgjve4wyL4fzUf5egEKsKwn49zB9hs1lBA6+ZZ1QXbk9DpGDtsSBU DQzyQRRbfEncVmaEl1c/4yT5p1TSMWxdxCzaNlQafHMpj850MqwrsglDxcf08s6z 7dcIVDaeLngpiRWCHZebU5oLlmCHI0TXmvxcbJEubU1o3vaE6k84v2AwrST8UtAF gT+y+XMXVLApUdc3ungDF2m9XDhkz0p7HKW3nfzKRwe6yvBwvaF1gRCW7TACT9f0 ax25IPOyr1buZMCNsGDQeYWe8Y4SV8/ZSmZ4SYtN -----END CERTIFICATE-----Generated at Sun Aug 24 00:35:48 2025 by rpki-client