$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa File: 3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa (raw, json) Hash identifier: bV9xBqFWWdQNpl4xPPj/IRLaOQzWewk+JeafEOq6H8g= Subject key identifier: 0B:BC:89:B6:14:D3:0D:E5:BD:4C:C3:0E:82:26:E7:7C:FD:B0:C2:A8 Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 675AE3C97BA9A2A63FFD2BD07C91298D508485C2 Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa Signing time: Mon 04 Aug 2025 13:00:01 +0000 ROA not before: Mon 04 Aug 2025 12:55:01 +0000 ROA not after: Mon 03 Aug 2026 13:00:01 +0000 asID: 139421 IP address blocks: 103.144.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:5a:e3:c9:7b:a9:a2:a6:3f:fd:2b:d0:7c:91:29:8d:50:84:85:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Aug 4 12:55:01 2025 GMT Not After : Aug 3 13:00:01 2026 GMT Subject: CN=0BBC89B614D30DE5BD4CC30E8226E77CFDB0C2A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:81:70:a0:0c:3c:3a:38:d2:6e:b1:2c:8d: 5d:71:4a:a0:d2:67:6c:3d:31:71:44:8c:3b:da:2c: 5b:f9:17:85:79:7c:76:4a:86:c9:b6:40:b5:92:1f: 35:c8:c8:87:5d:02:75:a3:dd:af:1b:18:c0:c5:0a: 29:ba:50:7f:1d:3b:43:92:ac:9e:a3:50:bf:48:80: 2c:96:b7:56:dc:56:64:d4:19:69:cb:54:0c:38:85: 98:5a:3f:41:52:4e:55:38:bb:3c:74:08:4d:66:12: 0f:e1:36:81:0b:cf:34:c3:87:9c:29:9a:d6:13:e9: 8f:95:b0:96:01:26:bd:cb:2f:48:a1:06:cd:76:99: af:07:ce:a6:ce:63:58:a7:ac:9e:a0:30:6c:3b:5f: 31:93:df:75:f8:be:f5:09:80:6a:2d:c1:84:47:29: 1f:b8:40:c5:46:c1:46:78:49:98:c4:d7:cb:07:0e: 10:cb:20:4d:e2:61:71:ff:22:1a:bd:ed:f1:03:a0: eb:8b:9a:fe:cd:18:8c:c3:d1:1d:d8:e1:20:be:c0: f1:2b:ea:7e:ca:b1:c3:8c:6c:d8:2a:63:7e:7d:e9: 85:0c:fb:32:92:f7:73:23:dc:8e:63:b9:82:d7:51: 08:d5:25:a1:5b:76:41:22:13:76:9b:8b:56:28:f6: 9c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BC:89:B6:14:D3:0D:E5:BD:4C:C3:0E:82:26:E7:7C:FD:B0:C2:A8 X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.102.0/24 Signature Algorithm: sha256WithRSAEncryption 57:75:1d:23:0d:23:ed:61:0c:cf:a9:51:45:7f:d9:73:33:3c: e4:e0:86:2c:f5:a5:72:e4:32:aa:57:37:f2:49:ae:a6:2c:ff: 62:44:46:14:15:67:d7:4a:c9:2b:82:a3:6d:6f:15:08:10:73: 90:55:69:71:d1:a8:2e:2b:16:13:79:dc:d0:24:b4:b1:f6:6d: 73:e7:c8:52:16:de:d8:5f:74:a4:03:de:33:91:ba:a5:7f:ee: ae:0e:5d:c0:76:f6:4f:48:ed:c7:72:3b:01:8e:67:5e:9f:60: 50:7e:ce:57:76:06:cc:e3:f4:ce:c4:3f:a6:19:df:83:92:e9: f6:b1:c8:0e:47:7f:f0:c9:51:e3:ed:be:e5:68:8a:0b:6e:89: af:70:af:62:df:38:a2:c2:4f:37:b5:04:ff:52:aa:dc:d5:91: 86:f6:c2:5d:52:67:00:e8:30:2f:ff:11:16:34:33:5c:e5:cb: 8a:9f:f6:7d:f5:40:fe:20:b5:5b:f7:aa:80:a1:8a:8b:30:ab: 7e:44:8f:a1:67:51:0a:f6:cb:43:14:50:14:c7:de:d0:c1:58: 95:23:e9:d4:7d:4c:74:1d:f5:30:ae:51:d3:21:d1:bf:fa:42: 8d:23:67:9e:b4:8a:12:6a:61:07:21:d2:d0:e2:14:0d:14:ef: 62:dc:a6:cf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ1rjyXupoqY//SvQfJEpjVCEhcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yNTA4MDQxMjU1MDFaFw0yNjA4MDMxMzAwMDFaMDMxMTAvBgNV BAMTKDBCQkM4OUI2MTREMzBERTVCRDRDQzMwRTgyMjZFNzdDRkRCMEMyQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzYFwoAw8OjjSbrEsjV1xSqDS Z2w9MXFEjDvaLFv5F4V5fHZKhsm2QLWSHzXIyIddAnWj3a8bGMDFCim6UH8dO0OS rJ6jUL9IgCyWt1bcVmTUGWnLVAw4hZhaP0FSTlU4uzx0CE1mEg/hNoELzzTDh5wp mtYT6Y+VsJYBJr3LL0ihBs12ma8HzqbOY1inrJ6gMGw7XzGT33X4vvUJgGotwYRH KR+4QMVGwUZ4SZjE18sHDhDLIE3iYXH/Ihq97fEDoOuLmv7NGIzD0R3Y4SC+wPEr 6n7KscOMbNgqY3596YUM+zKS93Mj3I5juYLXUQjVJaFbdkEiE3abi1Yo9pxXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUC7yJthTTDeW9TMMOgibnfP2wwqgwHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkGYwDQYJ KoZIhvcNAQELBQADggEBAFd1HSMNI+1hDM+pUUV/2XMzPOTghiz1pXLkMqpXN/JJ rqYs/2JERhQVZ9dKySuCo21vFQgQc5BVaXHRqC4rFhN53NAktLH2bXPnyFIW3thf dKQD3jORuqV/7q4OXcB29k9I7cdyOwGOZ16fYFB+zld2Bszj9M7EP6YZ34OS6fax yA5Hf/DJUePtvuVoigtuia9wr2LfOKLCTze1BP9SqtzVkYb2wl1SZwDoMC//ERY0 M1zly4qf9n31QP4gtVv3qoChioswq35Ej6FnUQr2y0MUUBTH3tDBWJUj6dR9THQd 9TCuUdMh0b/6Qo0jZ560ihJqYQch0tDiFA0U72Lcps8= -----END CERTIFICATE-----Generated at Thu Aug 7 20:14:29 2025 by rpki-client