$ rpki-client -vvf repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/3130332e3135392e39322e302f32342d3234203d3e20313431313339.roa File: 3130332e3135392e39322e302f32342d3234203d3e20313431313339.roa (raw, json) Hash identifier: fg/QZptFLqxRoiOqaYt9GVklul/Zo57x2b9Yx8hCCKw= Subject key identifier: 76:7F:EF:54:06:B7:41:4B:B0:3D:ED:6F:B0:C5:DB:1B:7B:CC:4B:4F Certificate issuer: /CN=42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE Certificate serial: 21D629D2B0EDF911B1E04B1F8729C39C41752F16 Authority key identifier: 42:C6:E1:0C:B4:D5:AF:0F:92:CC:A6:A9:59:5C:CC:05:E2:E8:29:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/3130332e3135392e39322e302f32342d3234203d3e20313431313339.roa Signing time: Tue 19 Aug 2025 19:00:01 +0000 ROA not before: Tue 19 Aug 2025 18:55:01 +0000 ROA not after: Tue 18 Aug 2026 19:00:01 +0000 asID: 141139 IP address blocks: 103.159.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.crl rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d6:29:d2:b0:ed:f9:11:b1:e0:4b:1f:87:29:c3:9c:41:75:2f:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE Validity Not Before: Aug 19 18:55:01 2025 GMT Not After : Aug 18 19:00:01 2026 GMT Subject: CN=767FEF5406B7414BB03DED6FB0C5DB1B7BCC4B4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5a:cb:26:c8:9f:a4:bf:39:b2:0d:63:93:60: 62:4f:cc:83:17:32:f6:d8:72:48:77:1c:c0:88:eb: 9f:70:55:e7:56:4c:8d:89:19:23:27:1b:0e:05:22: 6e:fd:4b:58:da:af:01:67:65:59:ab:d6:c0:0a:13: c9:0d:6b:50:19:bd:b6:fd:5c:49:97:11:90:3f:8f: 11:54:c9:9f:9b:c2:ac:c9:bc:b5:53:94:7e:8c:e2: eb:0d:b2:7a:c7:f3:f2:2d:2b:9e:1a:d6:97:23:9c: 36:45:28:83:9e:c0:6d:20:4b:2f:dd:0d:8d:d6:6e: 75:a2:db:6c:ab:86:5c:78:d5:76:9a:1f:cf:38:e2: 04:41:87:0f:f6:60:1a:66:6a:8f:f0:c7:ba:e1:60: ba:10:a0:71:1c:7a:0b:41:bf:bf:0b:6c:be:43:e3: 70:b9:e7:69:36:20:62:e7:07:f3:73:7b:12:55:70: dc:c5:04:3a:1a:42:33:25:d2:55:a3:85:86:de:a4: 5e:55:b8:90:16:57:26:1d:b4:20:c8:fc:44:f5:79: bf:37:09:9b:03:68:21:6a:5e:eb:c1:d3:8e:25:51: e1:01:d4:27:76:fb:b9:b1:24:80:55:20:d5:e2:ea: c2:21:46:c0:d0:a2:f8:65:34:05:83:fc:e1:10:02: ba:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7F:EF:54:06:B7:41:4B:B0:3D:ED:6F:B0:C5:DB:1B:7B:CC:4B:4F X509v3 Authority Key Identifier: keyid:42:C6:E1:0C:B4:D5:AF:0F:92:CC:A6:A9:59:5C:CC:05:E2:E8:29:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/3130332e3135392e39322e302f32342d3234203d3e20313431313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.92.0/24 Signature Algorithm: sha256WithRSAEncryption bc:26:21:cd:af:ee:63:b5:9f:ed:c9:63:63:a6:45:5d:0f:7f: fc:cb:34:d0:eb:d5:f3:a7:cb:3a:e1:8d:99:17:1f:6c:8d:e3: 92:01:c2:8e:b7:79:bf:b5:ca:05:68:83:ad:33:85:47:a3:17: b1:57:61:32:50:f2:e8:65:18:95:f8:96:a9:16:6e:45:86:1f: 8a:bb:96:4a:44:1c:f3:a8:bd:01:63:7c:b4:2a:a1:71:63:e0: eb:3b:90:99:cc:94:1d:2c:6f:b2:93:1d:aa:f2:32:39:be:79: 68:56:4a:74:85:74:14:8e:58:cf:03:42:a0:97:df:a9:ca:1c: 32:37:8c:8d:8f:a1:1c:c9:80:72:7a:b1:cd:78:71:6a:60:b5: 3e:9d:fe:c4:38:3c:3f:32:12:36:b0:8f:d1:2e:24:1f:0b:6c: 19:4f:cf:35:e5:9b:58:7a:5d:7c:17:a6:23:ab:dd:c5:02:38: 80:ca:78:f2:9b:00:c5:f6:25:e7:8f:cf:1c:f6:d5:b2:02:82: 69:58:00:03:39:f2:9b:ee:ce:ac:70:04:6b:02:72:6b:c1:1b: ea:af:fe:22:32:7a:00:a7:87:a5:82:b7:b0:88:23:ae:8c:ac: 16:62:d0:1f:26:e3:14:64:7a:48:1e:a3:89:c7:10:95:42:7e: a9:e3:3b:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIdYp0rDt+RGx4EsfhynDnEF1LxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDNkUxMENCNEQ1QUYwRjkyQ0NBNkE5NTk1Q0NDMDVF MkU4MjlBRTAeFw0yNTA4MTkxODU1MDFaFw0yNjA4MTgxOTAwMDFaMDMxMTAvBgNV BAMTKDc2N0ZFRjU0MDZCNzQxNEJCMDNERUQ2RkIwQzVEQjFCN0JDQzRCNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeWssmyJ+kvzmyDWOTYGJPzIMX MvbYckh3HMCI659wVedWTI2JGSMnGw4FIm79S1jarwFnZVmr1sAKE8kNa1AZvbb9 XEmXEZA/jxFUyZ+bwqzJvLVTlH6M4usNsnrH8/ItK54a1pcjnDZFKIOewG0gSy/d DY3WbnWi22yrhlx41XaaH8844gRBhw/2YBpmao/wx7rhYLoQoHEcegtBv78LbL5D 43C552k2IGLnB/NzexJVcNzFBDoaQjMl0lWjhYbepF5VuJAWVyYdtCDI/ET1eb83 CZsDaCFqXuvB044lUeEB1Cd2+7mxJIBVINXi6sIhRsDQovhlNAWD/OEQArqfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdn/vVAa3QUuwPe1vsMXbG3vMS08wHwYDVR0j BBgwFoAUQsbhDLTVrw+SzKapWVzMBeLoKa4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NzM0MTliOS01NDIyLTRmYzItYTNlMC1jNDlhOGFhMDdmNzMvMC80MkM2RTEwQ0I0 RDVBRjBGOTJDQ0E2QTk1OTVDQ0MwNUUyRTgyOUFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDNkUxMENCNEQ1QUYwRjkyQ0NBNkE5NTk1Q0NDMDVFMkU4 MjlBRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3MzQxOWI5LTU0MjItNGZjMi1h M2UwLWM0OWE4YWEwN2Y3My8wLzMxMzAzMzJlMzEzNTM5MmUzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ59cMA0GCSqG SIb3DQEBCwUAA4IBAQC8JiHNr+5jtZ/tyWNjpkVdD3/8yzTQ69Xzp8s64Y2ZFx9s jeOSAcKOt3m/tcoFaIOtM4VHoxexV2EyUPLoZRiV+JapFm5Fhh+Ku5ZKRBzzqL0B Y3y0KqFxY+DrO5CZzJQdLG+ykx2q8jI5vnloVkp0hXQUjljPA0Kgl9+pyhwyN4yN j6EcyYByerHNeHFqYLU+nf7EODw/MhI2sI/RLiQfC2wZT8815ZtYel18F6Yjq93F AjiAynjymwDF9iXnj88c9tWyAoJpWAADOfKb7s6scARrAnJrwRvqr/4iMnoAp4el grewiCOujKwWYtAfJuMUZHpIHqOJxxCVQn6p4zvu -----END CERTIFICATE-----Generated at Sat Aug 23 17:55:50 2025 by rpki-client