$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa File: 3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa (raw, json) Hash identifier: NWVwsgB2dXAzGfRzRtWC/6x1tcqD7Irs7AzETBCx59Q= Subject key identifier: AF:8F:9E:1C:1B:03:39:4B:84:8C:CF:7F:BF:47:F1:A0:6A:1E:A1:46 Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 5CB349C139E3672DDA965D93FFD20EBB9DEBC8C5 Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa Signing time: Wed 23 Jul 2025 15:00:00 +0000 ROA not before: Wed 23 Jul 2025 14:55:00 +0000 ROA not after: Wed 22 Jul 2026 15:00:00 +0000 asID: 142339 IP address blocks: 103.169.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 13:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b3:49:c1:39:e3:67:2d:da:96:5d:93:ff:d2:0e:bb:9d:eb:c8:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Jul 23 14:55:00 2025 GMT Not After : Jul 22 15:00:00 2026 GMT Subject: CN=AF8F9E1C1B03394B848CCF7FBF47F1A06A1EA146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:92:eb:79:da:6e:68:42:18:d5:89:92:9a:15: 4b:f3:91:80:02:0a:33:0d:97:88:ae:17:e9:94:91: 77:1f:a8:59:69:32:98:c6:54:35:c7:ea:33:bc:bb: 34:c8:80:63:bd:1c:b2:dd:51:7b:ab:29:a2:86:d1: 67:27:59:cb:e8:4a:89:33:9f:f9:95:98:34:30:ed: 0c:90:5e:ae:26:fb:23:f1:07:68:67:c5:5e:b1:b8: ed:2b:11:12:49:db:56:14:d0:15:b8:aa:51:d3:5d: 9e:40:8e:f2:95:54:6d:e9:95:ee:cc:59:51:cf:91: 3a:f3:22:68:93:8e:f4:1a:57:e1:f5:3d:27:fa:59: bd:f7:bd:c6:80:b3:7f:06:3f:16:71:2c:8e:80:af: c9:9c:b0:59:08:6e:e9:49:f3:ff:4e:cc:cd:ad:18: f0:2d:8f:a1:88:29:25:6c:9c:63:eb:89:3b:29:61: 43:f4:88:0d:39:1e:8f:62:38:ea:3c:36:68:0d:8c: 18:96:5b:d6:06:9e:1e:c4:31:31:0d:98:f3:d6:74: e6:95:32:0e:f1:a7:6a:e6:82:f0:37:53:28:2e:9d: cb:d1:b1:ed:05:27:27:d9:18:08:56:a4:0a:26:bc: d7:4d:06:91:b5:7f:d4:56:a2:4c:74:51:c7:a4:fa: f0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8F:9E:1C:1B:03:39:4B:84:8C:CF:7F:BF:47:F1:A0:6A:1E:A1:46 X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.148.0/24 Signature Algorithm: sha256WithRSAEncryption 33:92:fd:15:da:e7:b7:64:3b:5e:15:16:54:cc:e3:4a:66:0a: ff:19:e8:b7:a4:89:da:b3:d6:f5:39:73:57:a4:09:26:4b:7d: 69:b0:14:50:9d:46:fe:5b:27:9b:e5:54:7e:7e:be:f3:9f:c2: b0:39:c4:da:96:d7:2c:0d:5e:4d:70:87:50:33:f7:a8:f2:b8: 3a:58:c6:21:9a:97:1a:f3:89:df:ae:7c:7f:97:2c:ef:8f:1a: c0:e4:76:5b:22:14:ae:7f:3f:c1:ec:2d:ad:79:45:d3:38:0f: 44:0b:14:c9:d5:de:26:5f:33:32:a8:d9:7d:9b:cb:52:1d:fd: 73:d4:cc:02:ba:be:53:7d:39:56:e5:d3:e8:18:e8:57:99:ad: 41:8d:d2:23:64:7d:0e:ba:e6:ea:60:47:56:17:ac:44:95:a6: 27:23:63:26:2e:f1:51:43:e3:a0:af:d3:ca:65:ca:fb:87:6b: 86:bd:a0:91:3e:4e:7b:8a:5d:f6:a0:61:c7:78:30:d8:4f:a7: b4:04:5c:33:b1:70:98:1c:30:4d:17:66:62:ea:d0:20:49:ca: 8d:5c:a0:5b:ae:42:42:f5:ff:31:b7:a9:a0:41:8e:1b:2d:1e: 0e:b4:49:b6:7c:d7:83:cb:ca:64:6c:05:11:0d:09:fd:80:ae: 4a:68:ed:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXLNJwTnjZy3all2T/9IOu53ryMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNTA3MjMxNDU1MDBaFw0yNjA3MjIxNTAwMDBaMDMxMTAvBgNV BAMTKEFGOEY5RTFDMUIwMzM5NEI4NDhDQ0Y3RkJGNDdGMUEwNkExRUExNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4kut52m5oQhjViZKaFUvzkYAC CjMNl4iuF+mUkXcfqFlpMpjGVDXH6jO8uzTIgGO9HLLdUXurKaKG0WcnWcvoSokz n/mVmDQw7QyQXq4m+yPxB2hnxV6xuO0rERJJ21YU0BW4qlHTXZ5AjvKVVG3ple7M WVHPkTrzImiTjvQaV+H1PSf6Wb33vcaAs38GPxZxLI6Ar8mcsFkIbulJ8/9OzM2t GPAtj6GIKSVsnGPriTspYUP0iA05Ho9iOOo8NmgNjBiWW9YGnh7EMTENmPPWdOaV Mg7xp2rmgvA3UyguncvRse0FJyfZGAhWpAomvNdNBpG1f9RWokx0Ucek+vBTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUr4+eHBsDOUuEjM9/v0fxoGoeoUYwHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqZQwDQYJ KoZIhvcNAQELBQADggEBADOS/RXa57dkO14VFlTM40pmCv8Z6Lekidqz1vU5c1ek CSZLfWmwFFCdRv5bJ5vlVH5+vvOfwrA5xNqW1ywNXk1wh1Az96jyuDpYxiGalxrz id+ufH+XLO+PGsDkdlsiFK5/P8HsLa15RdM4D0QLFMnV3iZfMzKo2X2by1Id/XPU zAK6vlN9OVbl0+gY6FeZrUGN0iNkfQ665upgR1YXrESVpicjYyYu8VFD46Cv08pl yvuHa4a9oJE+TnuKXfagYcd4MNhPp7QEXDOxcJgcME0XZmLq0CBJyo1coFuuQkL1 /zG3qaBBjhstHg60SbZ814PLymRsBRENCf2Arkpo7aQ= -----END CERTIFICATE-----Generated at Fri Aug 8 20:55:55 2025 by rpki-client