$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138342e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: i+BMvBMmVVTEpYNTmdoQENhpS5cxM86h+HpscKBpaXw= Subject key identifier: 98:96:57:57:62:65:CF:49:37:2B:C0:59:CA:B1:A6:47:90:1D:AE:CF Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 39021149BED6BE4C0E59A04F69D94E08F6D0CA76 Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa Signing time: Mon 18 Aug 2025 16:00:00 +0000 ROA not before: Mon 18 Aug 2025 15:55:00 +0000 ROA not after: Mon 17 Aug 2026 16:00:00 +0000 asID: 58553 IP address blocks: 103.20.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:02:11:49:be:d6:be:4c:0e:59:a0:4f:69:d9:4e:08:f6:d0:ca:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Aug 18 15:55:00 2025 GMT Not After : Aug 17 16:00:00 2026 GMT Subject: CN=989657576265CF49372BC059CAB1A647901DAECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c5:b8:9f:60:b5:f4:f7:1e:33:2a:cc:19:58: 61:d2:9d:0e:76:c5:93:9c:5d:0d:91:85:21:5d:fb: 30:dc:20:42:ad:b0:84:f5:19:1b:8f:94:56:f9:f5: 03:9b:97:b2:75:46:10:b3:6a:72:f8:57:18:fa:bf: 10:8e:b0:e7:92:2d:56:63:98:46:0c:01:53:37:f4: b3:2f:ca:2f:f3:1b:1d:f0:26:1d:09:48:af:ef:dd: 83:8e:42:85:c8:91:cf:08:df:f6:9a:bd:d8:a8:ed: f2:fd:af:64:87:2b:81:8d:5a:29:f6:dc:0e:e4:9b: 11:e5:14:8d:fb:07:2a:5d:68:63:11:a1:da:f3:60: da:e8:aa:61:00:96:df:61:72:b1:f4:17:0a:42:50: 4d:30:e4:18:46:97:58:23:c3:0f:c4:a5:c5:3d:a1: 6c:9f:92:91:ad:a8:96:61:46:99:c4:b6:e4:87:22: 02:71:97:f6:a5:19:3a:59:e8:89:94:06:e7:96:34: dc:97:4c:84:5e:a0:61:23:b0:40:44:00:cc:e0:96: 3f:4c:3b:90:94:01:e6:15:54:d1:14:b1:8e:da:d9: 52:79:86:db:73:13:70:81:46:af:35:a6:87:c6:20: 11:11:55:89:25:70:71:c5:cd:af:35:e9:08:d0:09: 28:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:96:57:57:62:65:CF:49:37:2B:C0:59:CA:B1:A6:47:90:1D:AE:CF X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.184.0/24 Signature Algorithm: sha256WithRSAEncryption 02:5e:f0:16:83:39:c4:27:15:ec:4d:98:d2:78:eb:f7:df:e0: 43:db:1e:c4:9e:1a:ea:b5:26:03:a9:5a:4a:b0:79:10:20:ba: dd:8a:5d:a1:b5:e8:4f:12:ad:47:57:01:3d:6d:ca:aa:c4:55: f1:5a:86:6d:6b:42:21:5b:ca:f2:f4:c1:e3:38:22:f6:31:9f: fa:33:d3:8c:c7:de:e7:b3:eb:d3:f8:25:67:d3:8f:49:ea:ae: bf:b5:c0:a2:a3:0e:b9:7b:50:0a:66:88:3d:74:00:cb:62:7a: 22:6c:a8:4b:f7:3c:fd:e6:7b:9c:e7:8b:30:10:8c:a2:f1:2a: 6e:94:94:3d:46:5a:c0:c9:a8:94:9d:28:0c:fe:ba:52:23:55: f1:eb:fe:20:0a:9b:2e:14:f3:ab:ce:ee:72:ac:70:4b:fc:c1: 53:cf:c6:6b:dc:1e:1c:00:f8:1e:97:92:20:c1:59:ea:d0:b3: 96:c5:7b:0d:16:eb:10:a5:7f:5f:85:57:ff:5c:11:04:71:13: 2c:5a:1a:c7:59:b4:b9:a5:af:db:21:12:e2:80:7a:b2:21:28: 04:13:a3:9e:a9:0e:50:06:7b:60:03:87:8d:50:dd:b7:21:21: 34:bd:a4:af:67:d0:32:3e:5b:a3:ea:45:8d:3e:29:eb:34:bd: 9f:96:aa:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOQIRSb7WvkwOWaBPadlOCPbQynYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yNTA4MTgxNTU1MDBaFw0yNjA4MTcxNjAwMDBaMDMxMTAvBgNV BAMTKDk4OTY1NzU3NjI2NUNGNDkzNzJCQzA1OUNBQjFBNjQ3OTAxREFFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrxbifYLX09x4zKswZWGHSnQ52 xZOcXQ2RhSFd+zDcIEKtsIT1GRuPlFb59QObl7J1RhCzanL4Vxj6vxCOsOeSLVZj mEYMAVM39LMvyi/zGx3wJh0JSK/v3YOOQoXIkc8I3/aavdio7fL9r2SHK4GNWin2 3A7kmxHlFI37BypdaGMRodrzYNroqmEAlt9hcrH0FwpCUE0w5BhGl1gjww/EpcU9 oWyfkpGtqJZhRpnEtuSHIgJxl/alGTpZ6ImUBueWNNyXTIReoGEjsEBEAMzglj9M O5CUAeYVVNEUsY7a2VJ5httzE3CBRq81pofGIBERVYklcHHFza816QjQCSgFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmJZXV2Jlz0k3K8BZyrGmR5Adrs8wHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUuDANBgkqhkiG 9w0BAQsFAAOCAQEAAl7wFoM5xCcV7E2Y0njr99/gQ9sexJ4a6rUmA6laSrB5ECC6 3YpdobXoTxKtR1cBPW3KqsRV8VqGbWtCIVvK8vTB4zgi9jGf+jPTjMfe57Pr0/gl Z9OPSequv7XAoqMOuXtQCmaIPXQAy2J6ImyoS/c8/eZ7nOeLMBCMovEqbpSUPUZa wMmolJ0oDP66UiNV8ev+IAqbLhTzq87ucqxwS/zBU8/Ga9weHAD4HpeSIMFZ6tCz lsV7DRbrEKV/X4VX/1wRBHETLFoax1m0uaWv2yES4oB6siEoBBOjnqkOUAZ7YAOH jVDdtyEhNL2kr2fQMj5bo+pFjT4p6zS9n5aqTA== -----END CERTIFICATE-----Generated at Sat Aug 23 18:08:48 2025 by rpki-client