$ rpki-client -vvf repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3130332e3232382e3234302e302f32322d3234203d3e203435373030.roa File: 3130332e3232382e3234302e302f32322d3234203d3e203435373030.roa (raw, json) Hash identifier: q34ctZRabkzgVMwhpjzkGD0HvYBu2zTW+lnhs8q/u94= Subject key identifier: E9:E1:CD:22:EF:0E:58:05:05:52:8A:85:1F:50:5C:0D:F8:68:EA:B0 Certificate issuer: /CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Certificate serial: 340E5D1704592EACF0E78ADA472C6F5244B375D3 Authority key identifier: 8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3130332e3232382e3234302e302f32322d3234203d3e203435373030.roa Signing time: Tue 12 Aug 2025 04:00:01 +0000 ROA not before: Tue 12 Aug 2025 03:55:01 +0000 ROA not after: Tue 11 Aug 2026 04:00:01 +0000 asID: 45700 IP address blocks: 103.228.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 21:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:0e:5d:17:04:59:2e:ac:f0:e7:8a:da:47:2c:6f:52:44:b3:75:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Validity Not Before: Aug 12 03:55:01 2025 GMT Not After : Aug 11 04:00:01 2026 GMT Subject: CN=E9E1CD22EF0E580505528A851F505C0DF868EAB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:32:c4:ed:7f:d8:f3:53:3d:76:80:27:05:ab: 18:0f:2d:46:df:09:56:04:72:c5:ae:17:05:ca:db: c8:60:6e:06:10:68:05:67:a7:7d:f5:19:e9:14:d8: 57:3e:7f:3f:15:ce:ae:c0:06:50:9c:84:b6:e9:f9: 77:a6:a6:62:2d:35:aa:fc:7b:89:e1:3a:d6:01:21: 85:cf:0d:db:b3:e3:16:d8:53:42:02:06:e5:e4:52: 08:3c:2c:60:7c:30:b5:7b:3b:b5:e8:a0:b6:f0:38: 0c:5b:5b:9a:cf:41:d2:69:7d:0e:12:49:84:65:fb: 79:ea:73:27:fb:b5:34:24:40:12:fe:1e:d3:2d:8a: 7f:62:2d:f8:9e:a4:8d:4c:86:fc:4c:3c:38:35:a9: 1b:dc:c6:72:7e:76:90:9f:13:96:79:37:0f:90:00: 7d:e3:1a:4a:5f:88:36:1c:ad:d9:eb:2e:b6:44:66: ab:e7:46:c9:66:27:a4:3a:4e:c4:c0:f1:43:4c:61: d0:a6:4e:34:47:d4:94:01:63:8e:b3:60:22:8d:f4: 54:49:ed:b1:34:1f:f2:39:a9:e2:fd:2f:29:d5:83: 6b:f3:5c:13:68:1c:7f:44:57:7a:a0:f6:77:d0:a3: 7f:2f:22:c6:10:fe:7a:54:5c:ec:32:0b:2f:44:82: bf:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E1:CD:22:EF:0E:58:05:05:52:8A:85:1F:50:5C:0D:F8:68:EA:B0 X509v3 Authority Key Identifier: keyid:8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3130332e3232382e3234302e302f32322d3234203d3e203435373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.240.0/22 Signature Algorithm: sha256WithRSAEncryption 32:cc:87:db:99:31:64:76:f1:fa:1f:73:f6:13:91:4d:7d:2c: 69:3b:36:30:4e:92:88:30:41:6c:b7:94:33:8a:3a:ee:f6:4a: a3:00:c9:6c:6c:12:3e:34:96:0e:ec:e7:94:0f:12:61:69:c8: 05:cc:26:6e:c5:b8:69:18:90:52:3d:f5:84:81:2f:8e:12:19: 17:20:e3:7e:7d:2f:a4:4f:d7:c0:50:f3:f1:8a:d3:69:07:d1: f9:db:a6:3a:ca:a0:60:c4:a0:e8:ce:48:45:52:e3:94:de:46: fc:51:68:cb:6d:39:9f:15:8b:5a:77:d3:4a:82:d9:80:52:13: 54:58:4e:b6:d0:93:f4:8c:81:8c:bb:44:23:4e:48:ff:f0:c2: 69:e4:91:b6:49:27:1d:93:d7:d0:15:56:31:c3:ac:35:a8:39: 86:8e:36:36:2f:d1:8f:80:3a:0a:bb:d7:87:c0:2c:78:62:cb: f5:b9:80:71:24:2f:6e:e5:42:81:0b:70:a0:48:79:1c:bc:21: 66:f8:b1:e5:b9:f7:a5:65:91:7d:6c:16:2c:cf:fc:47:9b:e9: 45:82:fc:59:5d:4d:2b:a0:07:d8:10:7c:41:38:37:eb:89:8d: c2:18:5f:44:3f:8a:06:a1:60:cf:62:40:61:50:1e:e7:cf:5d: 9d:af:d0:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNA5dFwRZLqzw54raRyxvUkSzddMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1 Q0Y0OEY5RjAeFw0yNTA4MTIwMzU1MDFaFw0yNjA4MTEwNDAwMDFaMDMxMTAvBgNV BAMTKEU5RTFDRDIyRUYwRTU4MDUwNTUyOEE4NTFGNTA1QzBERjg2OEVBQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjMsTtf9jzUz12gCcFqxgPLUbf CVYEcsWuFwXK28hgbgYQaAVnp331GekU2Fc+fz8Vzq7ABlCchLbp+XempmItNar8 e4nhOtYBIYXPDduz4xbYU0ICBuXkUgg8LGB8MLV7O7XooLbwOAxbW5rPQdJpfQ4S SYRl+3nqcyf7tTQkQBL+HtMtin9iLfiepI1MhvxMPDg1qRvcxnJ+dpCfE5Z5Nw+Q AH3jGkpfiDYcrdnrLrZEZqvnRslmJ6Q6TsTA8UNMYdCmTjRH1JQBY46zYCKN9FRJ 7bE0H/I5qeL9LynVg2vzXBNoHH9EV3qg9nfQo38vIsYQ/npUXOwyCy9Egr8dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6eHNIu8OWAUFUoqFH1BcDfho6rAwHwYDVR0j BBgwFoAUig92Wb5skWcCmU8bZTymM1z0j58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGE5MjljNi0xZTI1LTQ5NGEtYjBmOS01NWZjNGZjOTRmYmMvMC84QTBGNzY1OUJF NkM5MTY3MDI5OTRGMUI2NTNDQTYzMzVDRjQ4RjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1Q0Y0 OEY5Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwYTkyOWM2LTFlMjUtNDk0YS1i MGY5LTU1ZmM0ZmM5NGZiYy8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+TwMA0GCSqG SIb3DQEBCwUAA4IBAQAyzIfbmTFkdvH6H3P2E5FNfSxpOzYwTpKIMEFst5Qzijru 9kqjAMlsbBI+NJYO7OeUDxJhacgFzCZuxbhpGJBSPfWEgS+OEhkXION+fS+kT9fA UPPxitNpB9H526Y6yqBgxKDozkhFUuOU3kb8UWjLbTmfFYtad9NKgtmAUhNUWE62 0JP0jIGMu0QjTkj/8MJp5JG2SScdk9fQFVYxw6w1qDmGjjY2L9GPgDoKu9eHwCx4 Ysv1uYBxJC9u5UKBC3CgSHkcvCFm+LHlufelZZF9bBYsz/xHm+lFgvxZXU0roAfY EHxBODfriY3CGF9EP4oGoWDPYkBhUB7nz12dr9Dm -----END CERTIFICATE-----Generated at Sat Aug 23 19:54:18 2025 by rpki-client