$ rpki-client -vvf repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa File: 3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa (raw, json) Hash identifier: hdRTJYsi8eswhC1onrTfel6azdbRvum1qwnVMu+58TM= Subject key identifier: 79:5A:A2:27:5F:51:86:80:5B:46:29:6E:9B:5F:58:86:6D:3B:89:A4 Certificate issuer: /CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Certificate serial: 48FB8F313C28FDAF54C9553BB828307B2E003534 Authority key identifier: B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa Signing time: Mon 04 Aug 2025 19:00:00 +0000 ROA not before: Mon 04 Aug 2025 18:55:00 +0000 ROA not after: Mon 03 Aug 2026 19:00:00 +0000 asID: 142400 IP address blocks: 103.172.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:fb:8f:31:3c:28:fd:af:54:c9:55:3b:b8:28:30:7b:2e:00:35:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Validity Not Before: Aug 4 18:55:00 2025 GMT Not After : Aug 3 19:00:00 2026 GMT Subject: CN=795AA2275F5186805B46296E9B5F58866D3B89A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:92:ea:7b:9e:ea:8d:30:6f:30:d4:43:d1:01: 39:0b:c9:64:87:70:40:47:da:cd:97:ad:dd:3b:93: fd:0c:8f:08:70:ed:5e:20:83:82:9a:4d:ef:b2:3a: 6b:37:4c:ac:ed:08:5c:92:c8:26:9a:5d:86:64:ed: 98:56:8c:61:26:fd:33:5e:ed:95:ed:72:b1:f7:bb: 38:83:f3:ac:59:2d:b3:73:ff:e2:2f:77:db:97:d1: d2:0a:6a:3c:7a:d1:02:6d:13:7e:65:a8:ba:ef:09: 96:65:79:99:2a:f3:ea:db:ad:31:bd:92:64:c9:21: 1d:27:03:e0:72:cb:ed:7d:3c:30:46:fa:75:17:1f: e1:53:d4:f5:d7:08:ba:4f:e5:53:bd:5e:00:ee:4c: 0c:d1:f4:3f:87:24:9a:51:1c:2d:d1:88:8c:51:2d: a1:be:28:bb:dd:93:43:db:c9:73:1a:5f:25:f6:6b: ae:09:55:f5:f3:de:10:96:7e:55:be:a2:c6:a5:a7: 26:f1:50:19:e5:85:6a:bd:aa:b1:78:46:b5:85:55: 8d:0d:f0:34:31:b2:65:dd:c7:97:df:e8:6e:36:28: 25:23:8e:3a:c3:85:21:13:02:58:75:09:84:38:b1: 18:35:dc:00:29:3c:70:56:64:a3:ef:9b:62:02:b3: 8e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5A:A2:27:5F:51:86:80:5B:46:29:6E:9B:5F:58:86:6D:3B:89:A4 X509v3 Authority Key Identifier: keyid:B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.186.0/24 Signature Algorithm: sha256WithRSAEncryption 41:5e:88:37:af:8a:14:ad:5b:60:d3:47:5c:6e:77:04:8c:2d: 37:3a:14:bc:2f:f7:d3:c2:85:a7:e0:6b:73:6b:f4:10:e0:86: d0:e8:c5:a8:80:b8:69:fc:8e:24:51:8d:c5:2d:ba:f9:28:78: 7b:77:fd:86:fc:9a:cc:77:0d:2a:e7:59:24:11:86:81:03:56: 34:c4:58:58:71:6f:88:ad:e0:f3:da:fc:aa:c7:85:fb:9e:10: b2:0c:51:b4:99:dd:09:5e:fb:6b:7b:99:0b:b4:7c:f4:77:d1: f4:24:14:7f:c2:7d:d4:53:14:73:16:49:99:68:ba:7d:ae:8a: 3d:fa:27:3b:a4:e0:c0:c5:89:38:80:38:6e:12:4d:80:e1:01: 4e:9f:fc:0c:43:48:5a:50:56:14:73:97:e6:ee:bc:f7:97:6b: 09:a4:9b:7f:f2:52:fa:1c:27:91:cf:65:c7:8e:a0:ad:6f:91: 66:ac:e0:56:17:7b:35:5a:23:da:fd:dc:14:c0:90:b4:70:bf: e2:01:b7:00:46:15:4b:e8:cc:f1:1a:a8:c0:b9:66:de:15:fc: e0:85:b5:1d:55:6b:78:c8:a1:c2:d5:b0:a1:db:80:5a:63:cd: a0:08:ca:12:14:72:71:81:93:8a:05:b3:25:01:4d:5e:29:ea: 79:f2:6c:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSPuPMTwo/a9UyVU7uCgwey4ANTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4 NkU4M0QwMzAeFw0yNTA4MDQxODU1MDBaFw0yNjA4MDMxOTAwMDBaMDMxMTAvBgNV BAMTKDc5NUFBMjI3NUY1MTg2ODA1QjQ2Mjk2RTlCNUY1ODg2NkQzQjg5QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWkup7nuqNMG8w1EPRATkLyWSH cEBH2s2Xrd07k/0Mjwhw7V4gg4KaTe+yOms3TKztCFySyCaaXYZk7ZhWjGEm/TNe 7ZXtcrH3uziD86xZLbNz/+Ivd9uX0dIKajx60QJtE35lqLrvCZZleZkq8+rbrTG9 kmTJIR0nA+Byy+19PDBG+nUXH+FT1PXXCLpP5VO9XgDuTAzR9D+HJJpRHC3RiIxR LaG+KLvdk0PbyXMaXyX2a64JVfXz3hCWflW+osalpybxUBnlhWq9qrF4RrWFVY0N 8DQxsmXdx5ff6G42KCUjjjrDhSETAlh1CYQ4sRg13AApPHBWZKPvm2ICs467AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUeVqiJ19RhoBbRilum19Yhm07iaQwHwYDVR0j BBgwFoAUtXh9ZI5w1g4OCVEOvxgJ1oboPQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmY1ZjA3Yy1mMDdiLTRhYWEtYTBjMi1kZjE3YzkxMGM1ODYvMC9CNTc4N0Q2NDhF NzBENjBFMEUwOTUxMEVCRjE4MDlENjg2RTgzRDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4NkU4 M0QwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyZjVmMDdjLWYwN2ItNGFhYS1h MGMyLWRmMTdjOTEwYzU4Ni8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrLowDQYJ KoZIhvcNAQELBQADggEBAEFeiDevihStW2DTR1xudwSMLTc6FLwv99PChafga3Nr 9BDghtDoxaiAuGn8jiRRjcUtuvkoeHt3/Yb8msx3DSrnWSQRhoEDVjTEWFhxb4it 4PPa/KrHhfueELIMUbSZ3Qle+2t7mQu0fPR30fQkFH/CfdRTFHMWSZloun2uij36 Jzuk4MDFiTiAOG4STYDhAU6f/AxDSFpQVhRzl+buvPeXawmkm3/yUvocJ5HPZceO oK1vkWas4FYXezVaI9r93BTAkLRwv+IBtwBGFUvozPEaqMC5Zt4V/OCFtR1Va3jI ocLVsKHbgFpjzaAIyhIUcnGBk4oFsyUBTV4p6nnybDM= -----END CERTIFICATE-----Generated at Sun Aug 10 19:48:55 2025 by rpki-client