$ rpki-client -vvf repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa File: 3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa (raw, json) Hash identifier: pCMyJ/CDctVRd1Fs9qRQyHuJ7biOZTx5YqB4FZP9gKI= Subject key identifier: C2:5D:08:D5:13:EB:1E:3A:AA:41:1F:9F:59:46:AE:43:7B:C0:C1:87 Certificate issuer: /CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Certificate serial: 7759A4EDDDBD0F2C6291E18E22B48D58E42E0103 Authority key identifier: 25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa Signing time: Fri 15 Aug 2025 13:00:01 +0000 ROA not before: Fri 15 Aug 2025 12:55:01 +0000 ROA not after: Fri 14 Aug 2026 13:00:01 +0000 asID: 138842 IP address blocks: 103.138.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 22:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:59:a4:ed:dd:bd:0f:2c:62:91:e1:8e:22:b4:8d:58:e4:2e:01:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Validity Not Before: Aug 15 12:55:01 2025 GMT Not After : Aug 14 13:00:01 2026 GMT Subject: CN=C25D08D513EB1E3AAA411F9F5946AE437BC0C187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:21:2e:d3:35:28:92:d7:df:da:a1:cd:b4:02: f9:9a:08:4e:4f:fc:1a:ec:8b:30:8e:33:e8:aa:7c: 86:c2:7f:27:f8:dd:c9:f1:a2:4b:12:5d:61:80:6c: 2b:44:ba:d2:28:0f:ba:9f:07:25:d3:b5:7d:20:d7: f5:97:e1:e5:67:b9:96:90:ce:97:4f:30:77:50:75: 45:dc:7d:b3:e0:4f:44:74:8a:95:4b:79:bc:89:a4: ce:a8:6e:5a:50:fa:0e:c8:29:87:14:92:61:02:20: 21:0f:2c:96:1f:6c:84:fc:a0:69:b5:b1:5c:42:89: 3f:d0:91:2b:0a:38:fd:3b:59:80:98:c6:25:0e:6f: f8:59:ce:6a:18:11:b6:5e:d1:d8:b5:7d:7d:f2:23: a3:d9:67:9d:f4:97:dd:c3:17:b4:c8:7f:f5:c6:37: 2d:30:0e:37:a1:1a:4f:0c:4c:c6:a2:f4:b8:58:6d: ab:50:64:05:30:8a:d3:78:a6:80:c1:29:d4:7b:98: 83:94:10:17:2c:65:66:ae:7d:6c:42:a1:a5:db:e9: 7c:df:e5:fb:a8:27:29:d7:79:8f:d5:b0:40:e7:e0: ae:ce:12:50:77:27:a5:1f:23:2e:53:4e:d1:ae:ef: 17:74:09:0e:ed:7c:2c:f2:51:d5:87:a7:5f:5c:ae: b2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5D:08:D5:13:EB:1E:3A:AA:41:1F:9F:59:46:AE:43:7B:C0:C1:87 X509v3 Authority Key Identifier: keyid:25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.68.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:3f:cc:43:60:46:7a:96:62:04:fd:2a:fe:8f:9c:e1:c6:69: db:2f:df:35:e1:33:9d:46:89:e0:75:de:20:f6:d6:6d:6f:11: 01:6b:b3:95:75:dc:75:e1:69:9f:6b:55:e6:31:60:42:07:2f: f6:55:67:7c:a2:7d:74:b2:75:df:2a:17:78:26:b3:1b:bd:2f: 2f:27:6e:7c:a0:63:a7:a1:15:7b:e3:fa:84:39:a5:5a:08:4d: c2:1a:8b:98:71:32:54:6b:84:46:0c:7d:41:b0:5e:d0:2e:dc: ec:68:dc:0c:94:ff:e8:ab:ba:48:ca:33:f7:46:40:19:be:33: d6:3f:95:8f:3b:ae:ca:63:35:c8:b0:cf:f1:5f:e0:9a:02:1c: 6a:9f:de:ce:7f:41:15:31:25:c0:70:81:9c:54:12:07:c3:77: 30:70:d9:9a:99:23:f6:87:17:ae:8a:13:64:47:75:82:29:7b: e9:66:27:1b:61:6d:f4:46:b1:cd:1f:91:a1:1d:50:b7:6c:70: ae:45:70:83:61:e3:7a:db:92:a7:51:57:61:fd:02:a3:64:c5: 0d:4d:0c:1a:c6:70:0d:2e:b1:13:3d:53:d0:2e:dd:79:10:55: d0:67:c5:ea:38:2a:2c:8a:dc:3b:16:2c:24:30:56:f3:ab:59: 67:d6:b0:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd1mk7d29DyxikeGOIrSNWOQuAQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1 NTgxQTkzODAeFw0yNTA4MTUxMjU1MDFaFw0yNjA4MTQxMzAwMDFaMDMxMTAvBgNV BAMTKEMyNUQwOEQ1MTNFQjFFM0FBQTQxMUY5RjU5NDZBRTQzN0JDMEMxODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKIS7TNSiS19/aoc20AvmaCE5P /BrsizCOM+iqfIbCfyf43cnxoksSXWGAbCtEutIoD7qfByXTtX0g1/WX4eVnuZaQ zpdPMHdQdUXcfbPgT0R0ipVLebyJpM6oblpQ+g7IKYcUkmECICEPLJYfbIT8oGm1 sVxCiT/QkSsKOP07WYCYxiUOb/hZzmoYEbZe0di1fX3yI6PZZ530l93DF7TIf/XG Ny0wDjehGk8MTMai9LhYbatQZAUwitN4poDBKdR7mIOUEBcsZWaufWxCoaXb6Xzf 5fuoJynXeY/VsEDn4K7OElB3J6UfIy5TTtGu7xd0CQ7tfCzyUdWHp19crrJJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwl0I1RPrHjqqQR+fWUauQ3vAwYcwHwYDVR0j BBgwFoAUJRhZ+nJuhOuO8Vhcax89klWBqTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTM2NzRhNi0xMTRmLTRiYjUtODViYi1jYmI2N2RiMmE5NTUvMC8yNTE4NTlGQTcy NkU4NEVCOEVGMTU4NUM2QjFGM0Q5MjU1ODFBOTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1NTgx QTkzOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MzY3NGE2LTExNGYtNGJiNS04 NWJiLWNiYjY3ZGIyYTk1NS8wLzMxMzAzMzJlMzEzMzM4MmUzNjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4pEMA0GCSqG SIb3DQEBCwUAA4IBAQAOP8xDYEZ6lmIE/Sr+j5zhxmnbL9814TOdRongdd4g9tZt bxEBa7OVddx14Wmfa1XmMWBCBy/2VWd8on10snXfKhd4JrMbvS8vJ258oGOnoRV7 4/qEOaVaCE3CGouYcTJUa4RGDH1BsF7QLtzsaNwMlP/oq7pIyjP3RkAZvjPWP5WP O67KYzXIsM/xX+CaAhxqn97Of0EVMSXAcIGcVBIHw3cwcNmamSP2hxeuihNkR3WC KXvpZicbYW30RrHNH5GhHVC3bHCuRXCDYeN625KnUVdh/QKjZMUNTQwaxnANLrET PVPQLt15EFXQZ8XqOCositw7FiwkMFbzq1ln1rBF -----END CERTIFICATE-----Generated at Sat Aug 23 18:37:00 2025 by rpki-client