$ rpki-client -vvf repo-rpki.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa File: 3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa (raw, json) Hash identifier: jU/SQlHFg0i0t2XT427YG+4xTKw9TASNvTEDlba6svA= Subject key identifier: 15:8E:06:D3:4D:39:2D:5A:31:F5:45:78:C7:80:91:27:75:B1:2C:06 Certificate issuer: /CN=E4858A261547AAC065CDF96C21F8A9A2C36CEE65 Certificate serial: 17BEBA8E0F04157FABA421427A066E45189179C1 Authority key identifier: E4:85:8A:26:15:47:AA:C0:65:CD:F9:6C:21:F8:A9:A2:C3:6C:EE:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4858A261547AAC065CDF96C21F8A9A2C36CEE65.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa Signing time: Fri 15 Aug 2025 16:00:01 +0000 ROA not before: Fri 15 Aug 2025 15:55:01 +0000 ROA not after: Fri 14 Aug 2026 16:00:01 +0000 asID: 139364 IP address blocks: 103.169.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/E4858A261547AAC065CDF96C21F8A9A2C36CEE65.crl rsync://repo-rpki.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/E4858A261547AAC065CDF96C21F8A9A2C36CEE65.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4858A261547AAC065CDF96C21F8A9A2C36CEE65.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:be:ba:8e:0f:04:15:7f:ab:a4:21:42:7a:06:6e:45:18:91:79:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4858A261547AAC065CDF96C21F8A9A2C36CEE65 Validity Not Before: Aug 15 15:55:01 2025 GMT Not After : Aug 14 16:00:01 2026 GMT Subject: CN=158E06D34D392D5A31F54578C780912775B12C06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e6:40:af:74:93:36:64:4b:c4:38:a3:82:22: fe:04:7c:a3:a7:46:78:88:ac:5d:5f:a0:db:59:c4: c7:b6:85:1b:0f:2e:e3:7b:b8:f2:49:54:52:72:24: e1:ee:1a:b9:1f:60:89:0d:8c:8c:f1:0b:39:ae:44: 8c:6d:99:55:34:ca:42:b7:4d:de:83:14:7b:58:21: 32:6b:6b:12:9d:6f:1a:29:ff:9e:e9:d3:37:03:38: 5b:b7:64:03:46:1b:39:c4:29:25:89:b3:d6:a3:ae: 7e:ec:b4:a5:c2:7a:d2:28:d7:01:ff:fb:0c:69:a1: 63:ce:b4:cb:46:bb:39:30:90:db:1a:ba:4f:1a:d3: 92:83:ea:60:b4:f1:95:be:42:fe:4f:ec:0b:60:55: 3d:d9:7a:63:8b:44:38:c4:1f:46:fa:6e:34:cc:0b: 32:8b:bf:ad:bd:e3:be:af:ec:eb:29:46:68:0e:10: ba:4f:1c:9f:0a:56:52:db:53:5a:56:fc:8b:2a:ac: c5:0e:ab:c2:64:a8:66:59:90:65:fd:31:bb:71:bf: ce:aa:9b:a4:27:b7:e0:f9:b7:a1:22:23:c8:e5:a8: 11:88:56:95:68:f1:a5:f7:26:35:27:ee:f7:50:7e: c3:59:7e:a8:90:cb:3a:41:2c:15:39:a7:d2:95:3b: b4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8E:06:D3:4D:39:2D:5A:31:F5:45:78:C7:80:91:27:75:B1:2C:06 X509v3 Authority Key Identifier: keyid:E4:85:8A:26:15:47:AA:C0:65:CD:F9:6C:21:F8:A9:A2:C3:6C:EE:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/E4858A261547AAC065CDF96C21F8A9A2C36CEE65.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4858A261547AAC065CDF96C21F8A9A2C36CEE65.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.200.0/24 Signature Algorithm: sha256WithRSAEncryption 86:04:0e:45:24:e3:83:13:88:c2:0a:42:42:bb:a9:33:38:ad: 4d:73:01:d8:66:0a:74:47:5c:dd:4a:2c:27:57:06:d4:c2:43: 8c:d4:21:72:a9:34:91:e9:94:04:a6:b9:05:ae:83:06:6a:70: fb:9e:34:33:f6:b2:e1:5f:7b:ff:aa:dc:78:09:93:c0:9f:47: fc:0e:bd:7e:f2:0d:d8:8f:03:6e:0e:6a:14:5e:e9:d0:92:b3: 08:ef:40:e2:89:83:9b:83:a3:12:c9:ec:9a:ba:43:ff:d8:f9: 80:42:ef:7b:44:62:bf:cd:61:c9:aa:8e:79:27:d2:f2:b7:bc: a0:4d:01:ef:e0:21:f3:fc:1c:30:10:8e:51:9f:19:87:de:b9: 1e:c7:13:89:e2:f3:2f:03:dd:ad:8a:a8:15:19:cb:3d:66:ff: 8c:55:94:ac:67:2d:b4:69:1c:e2:63:52:0b:01:73:b4:6f:6f: 90:1f:f6:e9:33:e8:ae:dd:c5:1d:02:c0:50:92:a8:e8:65:0f: 1e:f6:6a:3f:29:cb:82:48:46:4f:19:3e:88:03:7e:af:10:b2: b6:e1:4f:33:24:50:23:ca:c9:29:e4:09:5e:04:f6:4f:a3:ab: f3:4a:18:65:85:71:36:32:36:db:11:8a:ee:77:8d:dd:80:0d: 1e:a6:93:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF766jg8EFX+rpCFCegZuRRiRecEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ4NThBMjYxNTQ3QUFDMDY1Q0RGOTZDMjFGOEE5QTJD MzZDRUU2NTAeFw0yNTA4MTUxNTU1MDFaFw0yNjA4MTQxNjAwMDFaMDMxMTAvBgNV BAMTKDE1OEUwNkQzNEQzOTJENUEzMUY1NDU3OEM3ODA5MTI3NzVCMTJDMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG5kCvdJM2ZEvEOKOCIv4EfKOn RniIrF1foNtZxMe2hRsPLuN7uPJJVFJyJOHuGrkfYIkNjIzxCzmuRIxtmVU0ykK3 Td6DFHtYITJraxKdbxop/57p0zcDOFu3ZANGGznEKSWJs9ajrn7stKXCetIo1wH/ +wxpoWPOtMtGuzkwkNsauk8a05KD6mC08ZW+Qv5P7AtgVT3ZemOLRDjEH0b6bjTM CzKLv629476v7OspRmgOELpPHJ8KVlLbU1pW/IsqrMUOq8JkqGZZkGX9Mbtxv86q m6Qnt+D5t6EiI8jlqBGIVpVo8aX3JjUn7vdQfsNZfqiQyzpBLBU5p9KVO7S3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFY4G0005LVox9UV4x4CRJ3WxLAYwHwYDVR0j BBgwFoAU5IWKJhVHqsBlzflsIfiposNs7mUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzI4YWFjMy0wMDk0LTQyMWYtYTIwMS0yNGQ4MjBlMmFiM2QvMC9FNDg1OEEyNjE1 NDdBQUMwNjVDREY5NkMyMUY4QTlBMkMzNkNFRTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ4NThBMjYxNTQ3QUFDMDY1Q0RGOTZDMjFGOEE5QTJDMzZD RUU2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzMjhhYWMzLTAwOTQtNDIxZi1h MjAxLTI0ZDgyMGUyYWIzZC8wLzMxMzAzMzJlMzEzNjM5MmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqcgwDQYJ KoZIhvcNAQELBQADggEBAIYEDkUk44MTiMIKQkK7qTM4rU1zAdhmCnRHXN1KLCdX BtTCQ4zUIXKpNJHplASmuQWugwZqcPueNDP2suFfe/+q3HgJk8CfR/wOvX7yDdiP A24OahRe6dCSswjvQOKJg5uDoxLJ7Jq6Q//Y+YBC73tEYr/NYcmqjnkn0vK3vKBN Ae/gIfP8HDAQjlGfGYfeuR7HE4ni8y8D3a2KqBUZyz1m/4xVlKxnLbRpHOJjUgsB c7Rvb5Af9ukz6K7dxR0CwFCSqOhlDx72aj8py4JIRk8ZPogDfq8QsrbhTzMkUCPK ySnkCV4E9k+jq/NKGGWFcTYyNtsRiu53jd2ADR6mk3U= -----END CERTIFICATE-----Generated at Sat Aug 23 16:17:41 2025 by rpki-client