$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138362e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: QybRgJegIYGeRxA3jiD0BSJ2fZTSXZHC+zlS6Kajh80= Subject key identifier: 2A:6A:33:F9:3B:8D:A0:37:33:4D:5F:D1:16:7F:89:89:7E:C7:72:9F Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 054D7BB3434D85825737F24900AFDA0853DC7053 Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa Signing time: Mon 18 Aug 2025 16:00:00 +0000 ROA not before: Mon 18 Aug 2025 15:55:00 +0000 ROA not after: Mon 17 Aug 2026 16:00:00 +0000 asID: 58553 IP address blocks: 103.20.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:4d:7b:b3:43:4d:85:82:57:37:f2:49:00:af:da:08:53:dc:70:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Aug 18 15:55:00 2025 GMT Not After : Aug 17 16:00:00 2026 GMT Subject: CN=2A6A33F93B8DA037334D5FD1167F89897EC7729F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:ab:05:6e:c0:72:8d:46:3e:24:34:ee:66: 6e:7e:2e:a1:24:8e:29:c7:7e:74:bc:b5:52:7b:e8: 5c:d9:00:81:fa:e5:c3:6d:47:4a:f2:74:1b:0c:65: ca:f8:f0:ab:18:30:46:3c:0b:b4:91:68:4f:fc:3b: e1:53:12:dc:ad:33:15:57:3b:ea:cb:a9:b2:c0:40: 6e:28:28:93:cd:b8:c2:f7:93:5b:b0:3d:b3:6e:f1: ab:64:6e:6c:5c:a4:58:f6:59:b3:2d:39:a1:13:5c: c3:ac:f1:72:89:9b:3e:9e:37:98:77:35:50:18:b7: fb:a7:cf:e7:6c:d4:a8:94:a9:bc:9e:7d:c8:61:04: 99:c7:3e:5d:dd:5c:1e:52:09:7a:ba:f9:c8:42:68: cc:b5:b5:69:13:6c:e7:73:43:57:51:26:d9:39:ed: b1:a7:95:9f:77:8b:01:0a:6e:03:45:27:25:90:e6: d1:ad:cc:c6:ae:8f:28:0a:ab:ad:8a:7f:cc:ba:5d: b2:54:be:67:2c:6f:9e:78:31:b0:5e:73:40:40:6a: 03:c9:31:38:16:5b:76:ee:84:02:58:b6:34:5c:9c: 81:a7:49:1f:c8:3c:e2:d5:87:c8:38:e7:fc:a5:49: a7:02:0f:3c:76:e4:1d:75:51:85:a5:2a:ab:26:86: 9a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6A:33:F9:3B:8D:A0:37:33:4D:5F:D1:16:7F:89:89:7E:C7:72:9F X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.186.0/24 Signature Algorithm: sha256WithRSAEncryption 68:a9:e0:bf:5b:a5:9e:07:18:34:ff:88:75:a3:e7:02:6b:80: 55:8b:02:72:72:93:86:96:51:e5:0c:5a:19:4f:32:42:cd:36: bd:46:0e:5b:5f:07:4e:a4:fe:a3:78:97:56:df:67:c5:1f:43: 6c:1c:ee:18:d7:4a:59:8e:3c:fe:c6:8c:08:b7:4e:ed:64:9a: 4e:e1:62:78:a7:79:70:89:7f:ce:d0:cc:c9:1e:83:18:e5:34: c2:4e:8b:3d:1f:c2:78:fe:e2:f8:ee:75:f8:98:13:ba:6d:18: ca:12:03:0c:6c:fe:db:7e:f7:cc:f0:d2:d2:f7:04:ec:da:c6: bc:97:4c:09:e9:fe:a9:30:47:15:35:e6:a2:27:ba:af:fc:2f: 40:d6:96:f3:df:b6:98:a5:d8:78:6f:2d:35:24:08:fa:76:92: a9:05:37:7f:dd:a5:ac:e7:48:07:4d:ee:8d:ee:eb:3c:ad:7e: 36:2e:ce:a6:7b:0b:ff:01:41:35:79:63:27:39:29:f7:ee:cb: 2a:e3:a4:fb:00:93:1a:3b:50:a5:60:4a:17:12:7f:30:31:37: 44:9a:7c:a9:24:96:48:49:70:26:6c:74:9a:b6:76:c0:83:b9: fb:f1:55:91:f7:92:47:17:c2:b4:21:08:8d:9e:70:6a:96:d1: ff:db:b0:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBU17s0NNhYJXN/JJAK/aCFPccFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yNTA4MTgxNTU1MDBaFw0yNjA4MTcxNjAwMDBaMDMxMTAvBgNV BAMTKDJBNkEzM0Y5M0I4REEwMzczMzRENUZEMTE2N0Y4OTg5N0VDNzcyOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+qsFbsByjUY+JDTuZm5+LqEk jinHfnS8tVJ76FzZAIH65cNtR0rydBsMZcr48KsYMEY8C7SRaE/8O+FTEtytMxVX O+rLqbLAQG4oKJPNuML3k1uwPbNu8atkbmxcpFj2WbMtOaETXMOs8XKJmz6eN5h3 NVAYt/unz+ds1KiUqbyefchhBJnHPl3dXB5SCXq6+chCaMy1tWkTbOdzQ1dRJtk5 7bGnlZ93iwEKbgNFJyWQ5tGtzMaujygKq62Kf8y6XbJUvmcsb554MbBec0BAagPJ MTgWW3buhAJYtjRcnIGnSR/IPOLVh8g45/ylSacCDzx25B11UYWlKqsmhppxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKmoz+TuNoDczTV/RFn+JiX7Hcp8wHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUujANBgkqhkiG 9w0BAQsFAAOCAQEAaKngv1ulngcYNP+IdaPnAmuAVYsCcnKThpZR5QxaGU8yQs02 vUYOW18HTqT+o3iXVt9nxR9DbBzuGNdKWY48/saMCLdO7WSaTuFieKd5cIl/ztDM yR6DGOU0wk6LPR/CeP7i+O51+JgTum0YyhIDDGz+2373zPDS0vcE7NrGvJdMCen+ qTBHFTXmoie6r/wvQNaW89+2mKXYeG8tNSQI+naSqQU3f92lrOdIB03uje7rPK1+ Ni7OpnsL/wFBNXljJzkp9+7LKuOk+wCTGjtQpWBKFxJ/MDE3RJp8qSSWSElwJmx0 mrZ2wIO5+/FVkfeSRxfCtCEIjZ5wapbR/9uwkw== -----END CERTIFICATE-----Generated at Sat Aug 23 18:13:24 2025 by rpki-client