$ rpki-client -vvf repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa File: 3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: KkYyNZh9ZDbNoVpyOM3q+Wq6B9uj3EG/cdRvxrx75Ic= Subject key identifier: 01:3A:DF:87:E5:54:8B:D7:15:13:85:3E:0C:00:FE:20:2F:EB:2C:8E Certificate issuer: /CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Certificate serial: 61E49C7B6D362A8313F6360A0F7FC402D430CD3D Authority key identifier: BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa Signing time: Wed 23 Jul 2025 14:15:49 +0000 ROA not before: Wed 23 Jul 2025 14:10:49 +0000 ROA not after: Wed 22 Jul 2026 14:15:49 +0000 asID: 149746 IP address blocks: 103.189.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e4:9c:7b:6d:36:2a:83:13:f6:36:0a:0f:7f:c4:02:d4:30:cd:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Validity Not Before: Jul 23 14:10:49 2025 GMT Not After : Jul 22 14:15:49 2026 GMT Subject: CN=013ADF87E5548BD71513853E0C00FE202FEB2C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:25:6c:7e:a1:9d:0f:01:0a:67:1d:90:2e:6c: af:d6:63:cb:ed:27:de:ce:a3:ed:90:f4:be:b1:c8: 79:c0:65:3e:ea:f9:ed:05:2e:e4:63:e9:41:9e:ad: 4e:46:a1:fc:91:e6:3e:54:f5:8d:7e:67:5d:0f:2c: 14:0c:d2:74:3a:d7:f7:aa:f6:d2:91:67:1d:af:ef: 08:3d:ef:c3:0a:43:24:0e:14:5e:15:83:89:d1:83: 96:47:93:ec:06:3c:8c:6a:d0:97:34:6c:5a:f6:b4: 38:72:1f:f0:6d:96:b3:37:6a:4a:99:a7:f9:42:ee: 0e:ca:c0:18:55:64:24:c6:7b:ec:a6:d9:3c:c9:61: 32:f2:6a:b8:41:6d:df:b4:fa:09:f7:83:d3:4e:f6: 49:33:5b:1e:44:6b:aa:84:f2:74:4b:89:43:fa:ee: bb:80:f8:d2:72:77:af:9d:6d:57:6c:dc:8c:c8:27: 91:3d:ca:5d:13:bf:f8:53:27:a6:cb:6e:8f:34:df: d5:e5:09:c7:f4:52:ca:d1:67:57:f3:d2:61:a6:eb: eb:97:92:42:7b:30:b4:63:d0:df:be:c2:bc:83:9b: fd:e7:f0:0a:2f:00:18:62:2d:a2:d3:22:05:d9:67: 06:15:17:81:8d:a8:a2:50:2a:f2:c4:06:d8:50:5d: 30:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3A:DF:87:E5:54:8B:D7:15:13:85:3E:0C:00:FE:20:2F:EB:2C:8E X509v3 Authority Key Identifier: keyid:BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.63.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:41:04:e2:0b:ff:e2:fc:84:0e:f5:0f:8c:49:38:a9:aa:18: 3a:e4:ea:60:16:f3:3a:cc:b7:a3:72:3b:57:4b:03:79:62:57: d8:85:ab:8d:c5:ad:43:69:74:d3:32:91:43:14:52:cd:93:f1: 16:17:0a:3c:ea:b7:18:56:dd:3c:85:b9:c2:e1:ac:f2:96:c6: 38:4e:4c:37:a0:ae:2f:94:1a:59:2c:47:ab:67:14:b1:0a:04: 13:d3:f4:68:64:73:f1:fa:a1:ac:a3:c1:ab:0e:74:a7:56:21: 33:5c:90:e7:ea:3e:66:f2:fd:25:52:95:f2:fb:44:81:f6:54: fb:ee:f0:52:ed:b6:23:a6:85:69:9c:83:7f:17:d9:18:36:90: 46:e9:97:dc:45:47:2c:51:a8:df:56:5e:97:95:dc:67:5e:d2: 6a:83:e3:f2:b5:91:ed:eb:2c:27:71:e0:f7:3b:60:fc:ba:40: 5b:9c:33:f5:08:ff:83:71:23:a2:8e:27:de:30:a8:f3:47:a4: 0e:dd:d1:a6:f4:10:22:41:64:ea:b1:39:29:3a:85:e7:64:9c: c3:4a:89:70:df:78:6c:cb:0e:1b:18:d2:bc:eb:c7:af:15:d6: cf:16:d3:96:85:d9:93:a5:b0:b5:7d:7c:23:2b:ff:d1:fc:c6: d2:db:a1:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYeSce202KoMT9jYKD3/EAtQwzT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZF RTczRjMwNzAeFw0yNTA3MjMxNDEwNDlaFw0yNjA3MjIxNDE1NDlaMDMxMTAvBgNV BAMTKDAxM0FERjg3RTU1NDhCRDcxNTEzODUzRTBDMDBGRTIwMkZFQjJDOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfJWx+oZ0PAQpnHZAubK/WY8vt J97Oo+2Q9L6xyHnAZT7q+e0FLuRj6UGerU5GofyR5j5U9Y1+Z10PLBQM0nQ61/eq 9tKRZx2v7wg978MKQyQOFF4Vg4nRg5ZHk+wGPIxq0Jc0bFr2tDhyH/BtlrM3akqZ p/lC7g7KwBhVZCTGe+ym2TzJYTLyarhBbd+0+gn3g9NO9kkzWx5Ea6qE8nRLiUP6 7ruA+NJyd6+dbVds3IzIJ5E9yl0Tv/hTJ6bLbo8039XlCcf0UsrRZ1fz0mGm6+uX kkJ7MLRj0N++wryDm/3n8AovABhiLaLTIgXZZwYVF4GNqKJQKvLEBthQXTBhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUATrfh+VUi9cVE4U+DAD+IC/rLI4wHwYDVR0j BBgwFoAUvzjd1doqvwjrHdjYe1ZvNu5z8wcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjM0ZWYxZC03MzRkLTRjNzEtOGJhNy1kMzFlMTY4YjYzMmMvMC9CRjM4RERENURB MkFCRjA4RUIxREQ4RDg3QjU2NkYzNkVFNzNGMzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZFRTcz RjMwNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMzRlZjFkLTczNGQtNGM3MS04 YmE3LWQzMWUxNjhiNjMyYy8wLzMxMzAzMzJlMzEzODM5MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ70/MA0GCSqG SIb3DQEBCwUAA4IBAQCaQQTiC//i/IQO9Q+MSTipqhg65OpgFvM6zLejcjtXSwN5 YlfYhauNxa1DaXTTMpFDFFLNk/EWFwo86rcYVt08hbnC4azylsY4Tkw3oK4vlBpZ LEerZxSxCgQT0/RoZHPx+qGso8GrDnSnViEzXJDn6j5m8v0lUpXy+0SB9lT77vBS 7bYjpoVpnIN/F9kYNpBG6ZfcRUcsUajfVl6XldxnXtJqg+PytZHt6ywnceD3O2D8 ukBbnDP1CP+DcSOijifeMKjzR6QO3dGm9BAiQWTqsTkpOoXnZJzDSolw33hsyw4b GNK868evFdbPFtOWhdmTpbC1fXwjK//R/MbS26Em -----END CERTIFICATE-----Generated at Thu Aug 7 20:25:54 2025 by rpki-client