$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231352e302f32342d3234203d3e203338313439.roa File: 3130332e332e3231352e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: bv5LzXPokHumo/dvq5YJkiJ3tW65e9vUsHegrZVMVXk= Subject key identifier: D2:50:FE:CF:A4:BF:16:32:B8:46:9C:E4:33:41:3B:A7:B8:21:3F:4C Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 5EDC132555D31D74E36BBC8F057DB4BD1AC4F37A Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231352e302f32342d3234203d3e203338313439.roa Signing time: Tue 19 Aug 2025 01:00:01 +0000 ROA not before: Tue 19 Aug 2025 00:55:01 +0000 ROA not after: Tue 18 Aug 2026 01:00:01 +0000 asID: 38149 IP address blocks: 103.3.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 06:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:dc:13:25:55:d3:1d:74:e3:6b:bc:8f:05:7d:b4:bd:1a:c4:f3:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Aug 19 00:55:01 2025 GMT Not After : Aug 18 01:00:01 2026 GMT Subject: CN=D250FECFA4BF1632B8469CE433413BA7B8213F4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f4:21:84:13:00:58:12:47:d3:fd:75:61:9e: 08:82:6f:46:f8:82:75:40:8e:23:70:bb:92:5b:12: 4d:47:7e:34:bb:28:5f:e7:a1:4e:91:fd:2c:83:25: e1:7a:14:cb:e6:e3:e5:24:9a:81:b0:c6:0c:d5:63: 39:84:b6:48:78:04:15:56:52:87:86:47:07:6a:33: dd:cd:ba:d1:08:70:df:53:b7:41:05:dd:3a:7d:d1: f0:27:ff:58:d8:66:2b:bb:23:f3:d5:b6:8a:36:66: 1b:08:b2:41:a0:d7:6a:ae:43:bf:89:92:d8:11:07: 81:da:bf:36:a6:07:c1:c7:fe:7b:fe:9b:5c:ad:f1: 92:0a:f1:18:20:e0:ee:5e:12:f2:51:02:0d:a1:13: 01:d8:d8:a0:72:d6:df:7d:8b:4a:56:73:27:46:bf: 84:7e:f3:90:2c:ca:d2:c7:84:fa:d6:64:4b:a4:e1: eb:88:48:b8:90:90:dc:04:32:cc:2b:66:da:f6:1e: 49:63:11:a0:49:a6:24:12:19:c6:91:94:30:0e:3c: b7:6e:13:37:b9:14:c7:76:a6:43:03:c5:e3:09:5a: 50:76:f8:77:5d:0d:4b:17:8f:10:40:59:69:3a:54: a3:5e:93:f4:7f:8c:64:fe:a7:35:a9:42:06:17:14: d1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:50:FE:CF:A4:BF:16:32:B8:46:9C:E4:33:41:3B:A7:B8:21:3F:4C X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231352e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.215.0/24 Signature Algorithm: sha256WithRSAEncryption ac:d3:99:59:21:97:ae:53:65:47:5e:f1:42:80:ee:2b:0f:3d: 04:94:7c:fc:30:f2:d7:05:be:18:07:a0:e8:61:ec:45:db:a0: 16:90:bb:fb:57:0f:43:23:ab:c2:bc:0c:d9:50:94:61:6c:52: 79:84:e4:97:57:92:9a:83:7e:54:8f:33:c8:d5:03:44:58:20: ef:f4:20:ae:c1:1d:e7:98:33:5c:c3:31:c3:1a:4b:57:a2:eb: c0:79:a6:49:33:44:bd:bf:dd:78:f0:72:3d:14:9e:da:65:3b: 39:19:17:85:59:17:e3:18:70:e8:1c:1c:fa:82:9d:7c:3d:80: 27:22:d4:4b:87:71:63:21:d3:5f:be:7a:5a:cf:72:a1:14:e4: d9:15:a3:ac:82:57:b4:f9:e6:be:1d:09:8c:7f:b5:83:96:4e: 43:a0:ab:8d:9f:29:de:1c:44:d8:6a:48:5c:24:0a:8e:25:78: 1d:e1:44:22:cb:9d:44:cf:fa:fc:b9:1c:28:86:0b:04:74:78: 8f:97:08:ad:26:89:6f:3f:b8:3c:ea:c4:15:9b:a6:23:5b:00: 1a:35:df:a4:09:24:6c:3f:bf:8c:b4:08:15:fa:03:a2:9c:02: 47:2e:69:9e:dd:d9:db:c3:20:4d:25:96:17:1f:16:e0:28:97: 13:1a:8f:2b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXtwTJVXTHXTja7yPBX20vRrE83owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNTA4MTkwMDU1MDFaFw0yNjA4MTgwMTAwMDFaMDMxMTAvBgNV BAMTKEQyNTBGRUNGQTRCRjE2MzJCODQ2OUNFNDMzNDEzQkE3QjgyMTNGNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC29CGEEwBYEkfT/XVhngiCb0b4 gnVAjiNwu5JbEk1HfjS7KF/noU6R/SyDJeF6FMvm4+UkmoGwxgzVYzmEtkh4BBVW UoeGRwdqM93NutEIcN9Tt0EF3Tp90fAn/1jYZiu7I/PVtoo2ZhsIskGg12quQ7+J ktgRB4HavzamB8HH/nv+m1yt8ZIK8Rgg4O5eEvJRAg2hEwHY2KBy1t99i0pWcydG v4R+85AsytLHhPrWZEuk4euISLiQkNwEMswrZtr2HkljEaBJpiQSGcaRlDAOPLdu Eze5FMd2pkMDxeMJWlB2+HddDUsXjxBAWWk6VKNek/R/jGT+pzWpQgYXFNGRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0lD+z6S/FjK4RpzkM0E7p7ghP0wwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzAzMzJlMzMyZTMyMzEzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnA9cwDQYJKoZIhvcN AQELBQADggEBAKzTmVkhl65TZUde8UKA7isPPQSUfPww8tcFvhgHoOhh7EXboBaQ u/tXD0Mjq8K8DNlQlGFsUnmE5JdXkpqDflSPM8jVA0RYIO/0IK7BHeeYM1zDMcMa S1ei68B5pkkzRL2/3Xjwcj0UntplOzkZF4VZF+MYcOgcHPqCnXw9gCci1EuHcWMh 01++elrPcqEU5NkVo6yCV7T55r4dCYx/tYOWTkOgq42fKd4cRNhqSFwkCo4leB3h RCLLnUTP+vy5HCiGCwR0eI+XCK0miW8/uDzqxBWbpiNbABo136QJJGw/v4y0CBX6 A6KcAkcuaZ7d2dvDIE0llhcfFuAolxMajys= -----END CERTIFICATE-----Generated at Sun Aug 24 07:34:30 2025 by rpki-client