$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa File: 3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa (raw, json) Hash identifier: iDhsHzDkVNr/vSSmI9ZIctObh09TpaY2vp55/txIX4E= Subject key identifier: 65:EB:F4:21:92:57:E1:46:DF:45:22:98:7E:8E:26:9F:BE:7B:48:01 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 2F5E87AB1A049D6A712B7BAEBAA489B071273A7B Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa Signing time: Tue 15 Jul 2025 10:00:00 +0000 ROA not before: Tue 15 Jul 2025 09:55:00 +0000 ROA not after: Tue 14 Jul 2026 10:00:00 +0000 asID: 150497 IP address blocks: 103.58.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5e:87:ab:1a:04:9d:6a:71:2b:7b:ae:ba:a4:89:b0:71:27:3a:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Jul 15 09:55:00 2025 GMT Not After : Jul 14 10:00:00 2026 GMT Subject: CN=65EBF4219257E146DF4522987E8E269FBE7B4801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:41:7e:95:04:22:7c:fd:55:ec:4f:de:f7:f9: 0b:51:3d:b5:a4:4a:e5:90:61:2b:07:26:e2:86:93: d5:0e:08:92:bb:b4:43:c8:2f:67:14:3e:80:62:7e: 1b:04:22:0e:58:e0:d5:fb:70:ae:0b:3c:4e:89:ad: a3:77:e2:51:91:64:33:db:de:e9:32:ae:f5:31:10: 83:02:8f:f8:aa:fb:0c:e6:53:eb:e9:ef:1e:62:1e: 69:5a:10:3a:f7:f1:6c:7b:4c:33:ea:66:44:ce:e5: 79:7f:e8:cd:a5:10:08:ad:74:6f:8d:56:80:bb:8c: 3d:29:2d:eb:19:2f:b8:e3:cf:11:de:ad:55:b5:5d: fc:27:8b:01:c9:8f:17:3a:5c:e7:73:98:77:03:f8: 16:9a:c5:59:a6:4c:cd:7a:48:48:f9:88:ef:ac:54: ac:ca:c6:e3:dc:5f:1b:a9:2f:29:14:63:d4:58:68: c6:64:a8:44:fd:fa:9d:90:ba:de:d4:eb:90:de:23: 04:45:c4:6b:93:1b:1c:22:fe:e5:04:cd:c0:09:c9: d4:22:e0:f0:34:39:04:49:7a:06:20:9a:b1:bf:e6: eb:8b:59:23:35:34:f1:7d:f1:b0:49:64:d4:c6:64: c4:71:e7:41:d0:04:c6:7c:b0:e2:75:7d:49:88:83: 70:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:EB:F4:21:92:57:E1:46:DF:45:22:98:7E:8E:26:9F:BE:7B:48:01 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.199.0/24 Signature Algorithm: sha256WithRSAEncryption aa:ea:dc:6b:3b:65:2c:d0:e8:33:87:45:4a:4e:31:98:29:00: 3b:55:6e:4b:90:56:f9:06:8c:0a:63:1c:6c:f5:55:62:49:25: ae:f8:2a:53:8c:51:58:8f:bc:11:51:57:75:4f:5a:f8:c5:b1: ac:9c:90:4d:ae:b0:5b:ba:5b:9d:03:12:9b:c3:6f:7c:5a:5e: e9:e6:bb:ae:b1:68:f9:fe:d8:16:12:ac:94:29:23:8d:e6:9f: c7:85:06:8f:9b:c7:81:ef:12:b0:3f:08:91:e2:a2:59:2a:69: fe:63:60:9b:dc:38:e3:bd:7a:7f:d3:fd:a9:49:65:a8:e7:54: 7a:38:6a:30:c5:cb:e2:da:45:17:f7:1f:24:99:75:38:4c:94: e5:c6:86:ab:07:98:c5:be:ed:ee:d3:5e:64:55:de:a2:8c:ce: 76:55:06:e5:2d:80:aa:09:42:cd:0c:3e:1c:e9:95:2e:0a:05: 09:94:cd:a6:c6:ab:64:9f:18:5c:27:0b:93:7c:93:0b:a0:a9: b9:0f:9a:19:9b:8c:5f:ff:55:d3:86:0a:ad:e4:5f:43:2f:0a: c6:d7:a4:7f:c4:ea:be:0b:f1:d2:56:1c:9b:a4:aa:42:aa:3e: c6:18:4f:27:ed:69:33:8e:10:12:a4:86:a0:7c:47:4b:75:8b: 2e:12:34:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL16HqxoEnWpxK3uuuqSJsHEnOnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNTA3MTUwOTU1MDBaFw0yNjA3MTQxMDAwMDBaMDMxMTAvBgNV BAMTKDY1RUJGNDIxOTI1N0UxNDZERjQ1MjI5ODdFOEUyNjlGQkU3QjQ4MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkQX6VBCJ8/VXsT973+QtRPbWk SuWQYSsHJuKGk9UOCJK7tEPIL2cUPoBifhsEIg5Y4NX7cK4LPE6JraN34lGRZDPb 3ukyrvUxEIMCj/iq+wzmU+vp7x5iHmlaEDr38Wx7TDPqZkTO5Xl/6M2lEAitdG+N VoC7jD0pLesZL7jjzxHerVW1XfwniwHJjxc6XOdzmHcD+BaaxVmmTM16SEj5iO+s VKzKxuPcXxupLykUY9RYaMZkqET9+p2Qut7U65DeIwRFxGuTGxwi/uUEzcAJydQi 4PA0OQRJegYgmrG/5uuLWSM1NPF98bBJZNTGZMRx50HQBMZ8sOJ1fUmIg3AdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZev0IZJX4UbfRSKYfo4mn757SAEwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrHMA0GCSqG SIb3DQEBCwUAA4IBAQCq6txrO2Us0Ogzh0VKTjGYKQA7VW5LkFb5BowKYxxs9VVi SSWu+CpTjFFYj7wRUVd1T1r4xbGsnJBNrrBbuludAxKbw298Wl7p5ruusWj5/tgW EqyUKSON5p/HhQaPm8eB7xKwPwiR4qJZKmn+Y2Cb3DjjvXp/0/2pSWWo51R6OGow xcvi2kUX9x8kmXU4TJTlxoarB5jFvu3u015kVd6ijM52VQblLYCqCULNDD4c6ZUu CgUJlM2mxqtknxhcJwuTfJMLoKm5D5oZm4xf/1XThgqt5F9DLwrG16R/xOq+C/HS VhybpKpCqj7GGE8n7WkzjhASpIagfEdLdYsuEjSo -----END CERTIFICATE-----Generated at Sun Aug 24 00:35:52 2025 by rpki-client