$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa File: 3130332e332e3231342e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: 1FiHn4gIC4kH5MoP4rKX52q2L0AmuUmzqqq7XVdC5N0= Subject key identifier: 67:96:22:84:8B:FA:B7:F6:40:F9:3A:DE:FA:C1:EE:19:0F:79:A4:BF Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 5092C64EFE22E1C51D67D2598E45EA630E8CBE84 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa Signing time: Tue 19 Aug 2025 01:00:01 +0000 ROA not before: Tue 19 Aug 2025 00:55:01 +0000 ROA not after: Tue 18 Aug 2026 01:00:01 +0000 asID: 38149 IP address blocks: 103.3.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 06:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:92:c6:4e:fe:22:e1:c5:1d:67:d2:59:8e:45:ea:63:0e:8c:be:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Aug 19 00:55:01 2025 GMT Not After : Aug 18 01:00:01 2026 GMT Subject: CN=679622848BFAB7F640F93ADEFAC1EE190F79A4BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:c5:61:98:1c:66:7d:bc:cd:aa:7e:3a:dc: 64:a3:c4:f4:71:74:b0:81:e8:bb:df:ca:81:b4:f7: 07:32:96:34:3d:60:b7:32:0c:7d:f0:13:57:73:15: b9:41:e2:58:c3:e5:78:c4:f8:02:03:42:99:e8:fb: 02:d6:ec:8d:32:46:9d:e9:89:95:1d:bd:b3:1c:fc: c7:05:a5:8f:eb:d1:3d:23:2f:f9:ec:03:9c:77:89: 56:86:43:f6:ae:5b:4f:04:48:2e:52:a2:94:5a:47: 6a:78:01:86:79:19:2f:d7:d2:b4:02:8d:07:db:51: 70:ff:52:d2:0e:86:cb:05:e9:94:9e:a9:fe:4a:6f: 41:da:ce:9f:bb:6f:ee:3a:ec:cd:97:cb:b6:f1:fe: 06:02:31:16:b4:b3:55:17:0e:aa:25:a2:fe:8d:a7: 3a:6b:d1:af:75:62:70:c5:b6:24:d3:d8:20:c1:8f: 88:fa:25:aa:7e:7e:fc:48:ad:d2:a9:06:6a:0d:a0: 4c:cb:b5:d6:b4:0f:c9:ba:55:02:40:87:b8:68:7e: cc:5d:ac:af:12:37:e7:eb:3d:b9:e4:0c:3b:c2:1a: cc:19:79:31:c1:a7:8a:8b:08:ab:4b:62:e8:44:63: f0:57:63:f0:55:4a:72:29:3c:e0:91:fc:b5:11:f3: 64:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:96:22:84:8B:FA:B7:F6:40:F9:3A:DE:FA:C1:EE:19:0F:79:A4:BF X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.214.0/24 Signature Algorithm: sha256WithRSAEncryption 53:8e:0b:df:2b:21:d1:51:53:02:10:fc:90:64:26:23:ac:4c: c7:1e:10:a2:da:0b:a9:57:5b:a0:64:c1:af:55:21:1f:c2:23: 67:c7:4d:04:78:d9:0c:0e:20:53:66:1a:d2:b2:8e:8c:16:10: 35:4f:33:69:b8:93:2d:51:a5:74:a8:d9:ac:d6:d8:12:72:33: 9b:51:85:4d:a0:c3:f7:2b:ad:66:8c:ce:9d:5e:3f:77:b3:80: 3b:32:fb:75:a3:33:13:a2:c0:ba:a8:98:f4:34:f7:7f:ed:f5: b6:5b:90:f8:e5:10:58:21:18:1e:d0:36:39:af:c2:4f:be:84: 93:65:de:3c:06:de:57:3f:09:a4:50:38:40:28:ec:f1:dc:b6: 7a:36:2e:9a:9b:da:83:34:50:12:aa:74:7b:4a:83:67:52:af: 6c:56:d2:b5:a6:ec:52:4a:c7:f6:38:8d:a0:4c:cc:79:6c:fc: 3b:46:a7:d5:b2:3d:d3:0a:60:83:28:1c:7a:4a:a2:7c:1a:ea: e0:03:22:a8:fa:38:52:cf:85:dd:5e:53:3e:4a:3f:54:ff:c7: d7:56:70:60:3f:49:05:36:d0:66:c4:f1:4f:ce:4a:13:af:87: ff:7a:85:cb:4b:aa:48:2d:fd:f7:9e:bf:02:2a:cf:fa:ae:de: ca:4f:a6:3a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUJLGTv4i4cUdZ9JZjkXqYw6MvoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA4MTkwMDU1MDFaFw0yNjA4MTgwMTAwMDFaMDMxMTAvBgNV BAMTKDY3OTYyMjg0OEJGQUI3RjY0MEY5M0FERUZBQzFFRTE5MEY3OUE0QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC37sVhmBxmfbzNqn463GSjxPRx dLCB6LvfyoG09wcyljQ9YLcyDH3wE1dzFblB4ljD5XjE+AIDQpno+wLW7I0yRp3p iZUdvbMc/McFpY/r0T0jL/nsA5x3iVaGQ/auW08ESC5SopRaR2p4AYZ5GS/X0rQC jQfbUXD/UtIOhssF6ZSeqf5Kb0Hazp+7b+467M2Xy7bx/gYCMRa0s1UXDqolov6N pzpr0a91YnDFtiTT2CDBj4j6Jap+fvxIrdKpBmoNoEzLtda0D8m6VQJAh7hofsxd rK8SN+frPbnkDDvCGswZeTHBp4qLCKtLYuhEY/BXY/BVSnIpPOCR/LUR82QlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZ5YihIv6t/ZA+Tre+sHuGQ95pL8wHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzAzMzJlMzMyZTMyMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnA9YwDQYJKoZIhvcN AQELBQADggEBAFOOC98rIdFRUwIQ/JBkJiOsTMceEKLaC6lXW6Bkwa9VIR/CI2fH TQR42QwOIFNmGtKyjowWEDVPM2m4ky1RpXSo2azW2BJyM5tRhU2gw/crrWaMzp1e P3ezgDsy+3WjMxOiwLqomPQ093/t9bZbkPjlEFghGB7QNjmvwk++hJNl3jwG3lc/ CaRQOEAo7PHctno2Lpqb2oM0UBKqdHtKg2dSr2xW0rWm7FJKx/Y4jaBMzHls/DtG p9WyPdMKYIMoHHpKonwa6uADIqj6OFLPhd1eUz5KP1T/x9dWcGA/SQU20GbE8U/O ShOvh/96hctLqkgt/feevwIqz/qu3spPpjo= -----END CERTIFICATE-----Generated at Sun Aug 24 07:34:27 2025 by rpki-client