$ rpki-client -vvf repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa File: 3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa (raw, json) Hash identifier: eAolVNFu5RbZ8vrRSJHTSAnnItGXFwJM+Qxe0653Ja4= Subject key identifier: FA:2A:75:2E:A9:35:34:30:44:B0:56:D0:B3:9B:D4:09:86:0C:DA:D1 Certificate issuer: /CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Certificate serial: 736C34E56E447B0D8B6E46506E81A8F57CE63DB4 Authority key identifier: B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa Signing time: Mon 04 Aug 2025 19:00:00 +0000 ROA not before: Mon 04 Aug 2025 18:55:00 +0000 ROA not after: Mon 03 Aug 2026 19:00:00 +0000 asID: 142400 IP address blocks: 103.172.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:6c:34:e5:6e:44:7b:0d:8b:6e:46:50:6e:81:a8:f5:7c:e6:3d:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Validity Not Before: Aug 4 18:55:00 2025 GMT Not After : Aug 3 19:00:00 2026 GMT Subject: CN=FA2A752EA935343044B056D0B39BD409860CDAD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:da:8f:f5:ad:a9:91:dd:64:1c:e2:03:4d:84: c2:d1:c7:4b:e8:31:f3:a2:14:65:8a:bf:66:4f:52: 4d:52:b4:d4:45:7f:7b:71:a4:6f:b3:35:46:9e:5b: f6:09:82:4d:c7:27:6c:cd:95:de:8c:9b:0d:6a:b8: 72:08:04:f3:ed:bc:58:fe:d3:d9:8c:43:06:8d:99: a8:2c:b8:b8:83:fd:3a:1f:be:28:4d:2d:fb:7a:02: 38:09:bc:5b:a4:e1:ea:08:5e:37:44:dc:d0:cd:0d: 2b:de:a3:5e:ae:c9:81:1e:5b:b6:89:69:1c:6c:b6: 7f:89:c2:ab:58:f7:a7:66:15:e5:27:92:24:f3:d9: 07:ca:96:c3:5a:97:1b:7a:3a:01:99:1f:1b:ca:d5: a2:1d:07:b2:e3:75:35:fe:11:06:46:a0:aa:fb:c3: 71:d4:1f:3f:51:7c:58:bd:8c:ef:29:ba:4c:79:c0: 2e:fc:e9:20:05:a7:85:29:4b:4f:6a:4b:db:f5:36: b2:dd:a0:88:35:c7:78:eb:03:a4:f3:b5:ff:a4:fa: 32:50:6a:1a:15:a0:4d:24:db:3b:d2:70:4e:f1:4d: c2:66:98:a4:01:b8:4e:4d:cc:5f:5a:2e:1c:91:89: bc:c4:77:d0:48:af:fc:85:8e:e2:09:45:e1:28:c4: 2e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2A:75:2E:A9:35:34:30:44:B0:56:D0:B3:9B:D4:09:86:0C:DA:D1 X509v3 Authority Key Identifier: keyid:B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.186.0/23 Signature Algorithm: sha256WithRSAEncryption 17:e2:21:52:a5:90:de:1b:5e:b9:1d:e3:e5:56:4d:7e:91:a1: b9:23:d2:52:aa:b8:3a:56:41:7a:0a:60:a8:57:d7:d9:6c:43: b1:cf:ce:7d:94:35:7c:ee:f7:ec:64:b8:3c:1a:85:ab:6f:cc: 40:53:50:16:25:1c:ad:56:bc:7e:85:44:94:c6:3f:6c:d0:0b: ef:6f:94:da:4b:9a:ee:b8:e0:e5:bd:58:48:c1:2f:13:65:99: c5:ea:5f:e1:71:95:a6:c8:45:17:b9:d0:52:c0:f2:82:33:00: d3:2e:fe:71:be:16:77:71:3c:b8:c9:00:92:03:e6:85:e6:a4: 67:be:86:0a:ae:a3:4d:21:3c:f6:d1:43:e5:b0:12:86:f8:20: 13:e8:24:9f:a7:da:55:a0:d8:97:9c:a5:5d:98:26:cc:14:de: ad:4c:df:a1:b6:b2:29:22:88:80:68:04:6d:56:92:5b:4c:55: b6:12:17:53:7f:26:d4:c5:6c:fa:fe:7f:0c:eb:c9:00:71:ff: 05:cf:10:37:5f:d2:d1:ea:ef:34:ee:9c:c2:d6:1c:14:0f:bc: 43:58:ba:65:7d:ff:3b:54:73:0c:a5:1d:ac:1a:30:03:ac:e3: cb:34:98:85:cd:c2:c7:e1:8c:3b:d1:55:78:bf:51:43:71:04: ab:23:9b:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc2w05W5Eew2LbkZQboGo9XzmPbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4 NkU4M0QwMzAeFw0yNTA4MDQxODU1MDBaFw0yNjA4MDMxOTAwMDBaMDMxMTAvBgNV BAMTKEZBMkE3NTJFQTkzNTM0MzA0NEIwNTZEMEIzOUJENDA5ODYwQ0RBRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF2o/1ramR3WQc4gNNhMLRx0vo MfOiFGWKv2ZPUk1StNRFf3txpG+zNUaeW/YJgk3HJ2zNld6Mmw1quHIIBPPtvFj+ 09mMQwaNmagsuLiD/TofvihNLft6AjgJvFuk4eoIXjdE3NDNDSveo16uyYEeW7aJ aRxstn+JwqtY96dmFeUnkiTz2QfKlsNalxt6OgGZHxvK1aIdB7LjdTX+EQZGoKr7 w3HUHz9RfFi9jO8pukx5wC786SAFp4UpS09qS9v1NrLdoIg1x3jrA6Tztf+k+jJQ ahoVoE0k2zvScE7xTcJmmKQBuE5NzF9aLhyRibzEd9BIr/yFjuIJReEoxC7NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+ip1Lqk1NDBEsFbQs5vUCYYM2tEwHwYDVR0j BBgwFoAUtXh9ZI5w1g4OCVEOvxgJ1oboPQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmY1ZjA3Yy1mMDdiLTRhYWEtYTBjMi1kZjE3YzkxMGM1ODYvMC9CNTc4N0Q2NDhF NzBENjBFMEUwOTUxMEVCRjE4MDlENjg2RTgzRDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4NkU4 M0QwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyZjVmMDdjLWYwN2ItNGFhYS1h MGMyLWRmMTdjOTEwYzU4Ni8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrLowDQYJ KoZIhvcNAQELBQADggEBABfiIVKlkN4bXrkd4+VWTX6Robkj0lKquDpWQXoKYKhX 19lsQ7HPzn2UNXzu9+xkuDwahatvzEBTUBYlHK1WvH6FRJTGP2zQC+9vlNpLmu64 4OW9WEjBLxNlmcXqX+FxlabIRRe50FLA8oIzANMu/nG+FndxPLjJAJID5oXmpGe+ hgquo00hPPbRQ+WwEob4IBPoJJ+n2lWg2JecpV2YJswU3q1M36G2sikiiIBoBG1W kltMVbYSF1N/JtTFbPr+fwzryQBx/wXPEDdf0tHq7zTunMLWHBQPvENYumV9/ztU cwylHawaMAOs48s0mIXNwsfhjDvRVXi/UUNxBKsjm/Y= -----END CERTIFICATE-----Generated at Sun Aug 10 19:49:08 2025 by rpki-client