$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/3130332e3130362e3231392e302f32342d3234203d3e20313337333239.roa File: 3130332e3130362e3231392e302f32342d3234203d3e20313337333239.roa (raw, json) Hash identifier: WewuJXzVlBORg3zM7f78L++639jfr5b/XQq8c9iPr1A= Subject key identifier: 66:EB:D4:D0:3D:F0:3F:06:E5:F1:21:78:45:B0:74:41:6C:5A:26:68 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 1CE85AD84C30C372903360CF560FB1C3E64189EA Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/3130332e3130362e3231392e302f32342d3234203d3e20313337333239.roa Signing time: Wed 06 Aug 2025 18:00:02 +0000 ROA not before: Wed 06 Aug 2025 17:55:02 +0000 ROA not after: Wed 05 Aug 2026 18:00:02 +0000 asID: 137329 IP address blocks: 103.106.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e8:5a:d8:4c:30:c3:72:90:33:60:cf:56:0f:b1:c3:e6:41:89:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Aug 6 17:55:02 2025 GMT Not After : Aug 5 18:00:02 2026 GMT Subject: CN=66EBD4D03DF03F06E5F1217845B074416C5A2668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:0e:d9:b4:7d:3c:ba:6a:9e:d9:e4:de:aa: de:8c:61:62:52:ad:ab:72:48:67:a0:96:71:50:30: 93:f8:bb:62:42:d5:39:ea:d8:3d:2b:40:4b:d3:d7: 89:16:26:be:11:17:e4:5e:0f:2e:a8:d7:ea:2d:16: 66:58:55:7a:96:30:b8:fc:03:79:76:e4:a8:64:41: c1:25:77:3a:de:da:49:51:63:3b:8c:d6:e1:ac:84: c6:0f:60:6e:ab:56:4c:4d:d4:54:01:c4:52:f5:f8: a0:87:83:b1:aa:f1:3a:d8:92:4e:c8:b0:37:85:53: 9a:fd:ae:77:14:71:45:cb:07:c7:6e:d6:3c:a4:a4: cc:0a:64:95:0b:b6:ba:5f:fc:df:38:42:9d:e9:51: cc:ee:de:25:a7:21:17:8b:06:69:05:c3:f9:1e:0f: 82:6e:36:72:ac:54:d1:56:cb:7f:22:d2:72:ba:5d: c1:6b:9b:5e:94:5f:e5:2e:b9:ac:09:f5:03:8a:21: cb:41:ab:92:fd:86:37:37:5f:86:d9:3d:3f:e2:0a: 5f:27:0d:9d:4b:98:f7:9a:4e:a0:74:44:3b:8a:40: f2:d2:cd:83:61:00:57:c7:bf:f7:7e:6b:fb:74:ea: c9:25:4b:a6:f2:9e:d6:dd:c5:1b:55:b8:64:23:0c: 42:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EB:D4:D0:3D:F0:3F:06:E5:F1:21:78:45:B0:74:41:6C:5A:26:68 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/3130332e3130362e3231392e302f32342d3234203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.219.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:93:d5:c7:dc:09:0f:f6:12:30:4e:ca:ed:bf:ae:f3:b3:4d: 19:f3:93:ad:ec:27:d5:fb:3b:f2:02:91:55:d6:d2:93:3a:5e: 11:9e:ae:12:a2:3a:c9:cd:85:5a:bc:18:2e:78:1d:f6:d1:3c: 2d:f7:28:f3:f6:fc:35:81:97:e5:5b:fd:44:1f:6c:c9:51:67: e7:1a:bd:c1:fe:a1:51:9b:05:bf:15:12:e6:1d:d3:11:06:87: 66:69:3f:09:8b:85:67:cb:c4:f1:98:6f:2d:b4:0b:a6:b1:62: e8:29:c5:35:62:e2:5f:64:10:02:69:0c:81:00:26:f4:3b:0d: 98:11:eb:60:b8:2c:e4:3e:43:14:d2:b3:8d:b3:05:ec:3f:7b: f7:74:d0:84:fe:3d:ce:1a:b5:71:41:f8:0e:5b:5c:94:0f:58: 2d:00:e0:9c:58:d5:3d:d6:e6:c4:4e:a3:43:6b:76:54:17:72: 5b:d0:42:4c:e0:8a:d9:60:83:29:46:b8:ce:7a:f6:88:bc:ff: 87:32:be:b7:1a:50:67:1c:aa:8e:42:b2:2a:18:67:6f:0f:56: 34:c7:98:5e:7d:d8:6f:89:80:c8:57:15:ff:51:ae:bc:54:0c: d5:1d:b2:3a:b6:88:57:8f:58:79:44:aa:a1:fc:9c:71:ec:c7: 94:4d:d8:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHOha2Ewww3KQM2DPVg+xw+ZBieowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA4MDYxNzU1MDJaFw0yNjA4MDUxODAwMDJaMDMxMTAvBgNV BAMTKDY2RUJENEQwM0RGMDNGMDZFNUYxMjE3ODQ1QjA3NDQxNkM1QTI2NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCytg7ZtH08umqe2eTeqt6MYWJS ratySGeglnFQMJP4u2JC1Tnq2D0rQEvT14kWJr4RF+ReDy6o1+otFmZYVXqWMLj8 A3l25KhkQcEldzre2klRYzuM1uGshMYPYG6rVkxN1FQBxFL1+KCHg7Gq8TrYkk7I sDeFU5r9rncUcUXLB8du1jykpMwKZJULtrpf/N84Qp3pUczu3iWnIReLBmkFw/ke D4JuNnKsVNFWy38i0nK6XcFrm16UX+UuuawJ9QOKIctBq5L9hjc3X4bZPT/iCl8n DZ1LmPeaTqB0RDuKQPLSzYNhAFfHv/d+a/t06sklS6byntbdxRtVuGQjDEKlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZuvU0D3wPwbl8SF4RbB0QWxaJmgwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMxMzAzMzJlMzEzMDM2MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnatswDQYJ KoZIhvcNAQELBQADggEBAByT1cfcCQ/2EjBOyu2/rvOzTRnzk63sJ9X7O/ICkVXW 0pM6XhGerhKiOsnNhVq8GC54HfbRPC33KPP2/DWBl+Vb/UQfbMlRZ+cavcH+oVGb Bb8VEuYd0xEGh2ZpPwmLhWfLxPGYby20C6axYugpxTVi4l9kEAJpDIEAJvQ7DZgR 62C4LOQ+QxTSs42zBew/e/d00IT+Pc4atXFB+A5bXJQPWC0A4JxY1T3W5sROo0Nr dlQXclvQQkzgitlggylGuM569oi8/4cyvrcaUGccqo5CsioYZ28PVjTHmF592G+J gMhXFf9RrrxUDNUdsjq2iFePWHlEqqH8nHHsx5RN2Mc= -----END CERTIFICATE-----Generated at Sat Aug 23 18:52:02 2025 by rpki-client