$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa File: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (raw, json) Hash identifier: DGmbIbAAoCUymOY6DDh+0S4rcPuhCP+BlaH232+y3TY= Subject key identifier: 1A:F4:23:2E:2F:16:4C:C9:AB:63:2E:AC:B3:01:D5:BD:C0:D7:EB:43 Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 230C98BF0EF88659DA9DED477016683E00F33DD2 Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa Signing time: Wed 13 Aug 2025 05:00:01 +0000 ROA not before: Wed 13 Aug 2025 04:55:01 +0000 ROA not after: Wed 12 Aug 2026 05:00:01 +0000 asID: 141939 IP address blocks: 103.164.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:0c:98:bf:0e:f8:86:59:da:9d:ed:47:70:16:68:3e:00:f3:3d:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Aug 13 04:55:01 2025 GMT Not After : Aug 12 05:00:01 2026 GMT Subject: CN=1AF4232E2F164CC9AB632EACB301D5BDC0D7EB43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e5:b6:a4:98:52:56:17:72:c8:10:35:c9:e3: 2e:ae:4b:1d:a4:3d:9e:a8:33:69:2a:aa:96:0b:98: 17:9e:f4:30:6d:1e:64:2e:45:2e:df:9c:38:23:0e: a4:7a:b8:62:9d:e6:46:b0:b5:f4:51:a1:02:51:43: 67:0e:de:d2:7d:2a:ed:0b:5d:a8:a3:52:9c:b2:2e: e9:f0:77:af:55:c8:62:c7:5f:37:3e:18:ae:6a:17: 33:69:e2:9d:3e:de:83:c0:b4:18:84:77:f3:fe:d1: 33:95:17:61:85:1b:8c:0c:6f:33:ed:47:0c:55:9b: 6d:23:62:fd:a3:1c:83:d7:d9:bc:92:66:37:40:7d: 8c:b0:6c:1a:da:ce:cc:23:78:d2:9c:e5:61:74:64: d0:3a:d6:1c:29:11:a5:50:c5:1b:a0:ac:6b:f7:0f: cf:e9:1d:cb:fb:6d:5c:c8:fa:f0:12:9e:e9:6d:9e: ef:d9:3d:fa:85:27:c0:ca:9c:fc:92:cd:15:bc:cd: ee:c2:bb:1e:2e:98:f7:50:3c:ee:be:80:0c:5b:7d: 7d:1d:8f:5d:7e:ce:1f:4c:8e:82:14:33:42:6d:a4: 57:6f:7d:28:27:70:b6:ef:08:db:e5:56:29:e1:7a: fd:95:79:92:28:e2:92:ac:2b:ca:10:9f:a3:0a:31: 21:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F4:23:2E:2F:16:4C:C9:AB:63:2E:AC:B3:01:D5:BD:C0:D7:EB:43 X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.192.0/23 Signature Algorithm: sha256WithRSAEncryption 24:af:8e:b4:2a:69:dd:c4:d9:26:38:f1:28:80:85:b4:30:ee: 69:57:2a:51:48:6e:8b:9f:27:8a:32:f9:4e:4d:a6:81:ab:cc: 23:f5:59:1d:8a:88:b0:3b:ba:f5:0a:ab:a2:c9:ad:80:61:78: 4e:f0:a5:ae:89:d4:aa:55:3d:b9:42:fc:59:a8:2f:02:97:0b: f4:7a:97:34:d1:4f:5e:41:c2:a3:00:b0:b7:64:74:b7:ad:1f: af:44:1f:54:b9:ff:0d:18:22:a2:c1:4f:15:5f:54:a1:6c:93: dc:26:77:44:12:54:bb:01:bc:7e:ac:d1:9d:24:96:6c:c0:6a: 25:05:76:f3:48:53:47:ec:d1:d8:eb:e9:3f:bd:4c:3d:72:4d: ca:a7:45:d3:ff:41:99:a2:20:ac:3d:37:89:85:d5:fd:cf:1a: 48:98:65:d1:e6:80:a9:06:50:bb:49:4c:b2:1d:4a:f2:cd:ef: a5:0a:f7:90:40:4e:c7:87:b9:3e:32:25:15:57:c7:d1:21:79: 76:bf:a2:40:40:21:bb:bc:95:1e:2f:a7:6b:13:4e:33:76:0e: 0c:8a:89:97:5c:ad:96:50:de:87:61:9e:f5:c3:5a:eb:f4:d3: bf:a0:a4:99:74:c8:6d:e7:b1:eb:75:db:c3:cf:d4:fd:e9:09: fc:7f:e4:92 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIwyYvw74hlnane1HcBZoPgDzPdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNTA4MTMwNDU1MDFaFw0yNjA4MTIwNTAwMDFaMDMxMTAvBgNV BAMTKDFBRjQyMzJFMkYxNjRDQzlBQjYzMkVBQ0IzMDFENUJEQzBEN0VCNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK5bakmFJWF3LIEDXJ4y6uSx2k PZ6oM2kqqpYLmBee9DBtHmQuRS7fnDgjDqR6uGKd5kawtfRRoQJRQ2cO3tJ9Ku0L XaijUpyyLunwd69VyGLHXzc+GK5qFzNp4p0+3oPAtBiEd/P+0TOVF2GFG4wMbzPt RwxVm20jYv2jHIPX2bySZjdAfYywbBrazswjeNKc5WF0ZNA61hwpEaVQxRugrGv3 D8/pHcv7bVzI+vASnultnu/ZPfqFJ8DKnPySzRW8ze7Cux4umPdQPO6+gAxbfX0d j11+zh9MjoIUM0JtpFdvfSgncLbvCNvlVinhev2VeZIo4pKsK8oQn6MKMSEBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGvQjLi8WTMmrYy6sswHVvcDX60MwHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYTQ4ZTRlLWZjOTUtNGFjZi1i ZWFjLWQ5M2EwZjY5NDQyMS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpMAwDQYJ KoZIhvcNAQELBQADggEBACSvjrQqad3E2SY48SiAhbQw7mlXKlFIboufJ4oy+U5N poGrzCP1WR2KiLA7uvUKq6LJrYBheE7wpa6J1KpVPblC/FmoLwKXC/R6lzTRT15B wqMAsLdkdLetH69EH1S5/w0YIqLBTxVfVKFsk9wmd0QSVLsBvH6s0Z0klmzAaiUF dvNIU0fs0djr6T+9TD1yTcqnRdP/QZmiIKw9N4mF1f3PGkiYZdHmgKkGULtJTLId SvLN76UK95BATseHuT4yJRVXx9EheXa/okBAIbu8lR4vp2sTTjN2DgyKiZdcrZZQ 3odhnvXDWuv007+gpJl0yG3nset128PP1P3pCfx/5JI= -----END CERTIFICATE-----Generated at Sat Aug 23 16:07:23 2025 by rpki-client