$ rpki-client -vvf repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/3130332e3136332e38312e302f32342d3234203d3e20313431363734.roa File: 3130332e3136332e38312e302f32342d3234203d3e20313431363734.roa (raw, json) Hash identifier: 39I2VRz2Pwheop/Q/95GW6wOO98caUDbgzZuoNjlDio= Subject key identifier: 16:21:77:70:E5:C1:85:9E:1D:4E:D2:00:58:43:46:F4:D3:31:B7:E8 Certificate issuer: /CN=81C94BE998ECBDD2EF897BFE8E8E51B874C0A652 Certificate serial: 34BC754678870EB8159261004EC5E1EDA19928B7 Authority key identifier: 81:C9:4B:E9:98:EC:BD:D2:EF:89:7B:FE:8E:8E:51:B8:74:C0:A6:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/3130332e3136332e38312e302f32342d3234203d3e20313431363734.roa Signing time: Sun 03 Aug 2025 03:00:02 +0000 ROA not before: Sun 03 Aug 2025 02:55:02 +0000 ROA not after: Sun 02 Aug 2026 03:00:02 +0000 asID: 141674 IP address blocks: 103.163.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.crl rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 18:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:bc:75:46:78:87:0e:b8:15:92:61:00:4e:c5:e1:ed:a1:99:28:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C94BE998ECBDD2EF897BFE8E8E51B874C0A652 Validity Not Before: Aug 3 02:55:02 2025 GMT Not After : Aug 2 03:00:02 2026 GMT Subject: CN=16217770E5C1859E1D4ED200584346F4D331B7E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:06:39:24:5c:b2:a9:2d:5c:1f:3c:8d:4e:9e: 2a:c3:75:28:d2:d7:e0:c4:a4:24:a5:46:19:95:f9: 1a:07:ea:16:c5:6c:a6:dd:86:86:9f:39:66:c5:ba: 95:d6:07:ed:30:e8:2d:f6:7b:c1:b4:5b:78:c3:27: e4:04:9c:55:6a:11:7c:a9:f9:55:d7:17:c9:62:a4: 78:2c:e8:2e:09:c9:3a:c2:88:e7:50:20:18:b0:c2: c8:86:c8:dd:da:74:c5:a4:b4:c0:a1:8b:00:9d:cc: 2a:a6:ff:8e:2f:84:43:c0:7b:63:ec:a7:b5:b0:c5: 1f:08:23:d5:76:fb:55:a0:a0:9d:ee:1c:8f:ea:4f: a8:ed:4b:90:82:b1:70:e7:c4:2e:79:a2:c1:ac:10: 79:19:3f:8b:f4:48:6e:53:31:5a:49:71:15:bf:fc: 3d:7d:02:7a:bd:c9:39:a2:6c:1b:aa:57:d3:b4:ae: 8a:85:cc:b5:a0:f1:72:80:89:f5:31:e9:b0:52:58: b8:b2:d3:4d:d7:2a:91:cd:2a:da:a4:de:f2:8e:89: f6:dc:ab:8e:ac:95:2c:32:a7:5f:cf:87:05:d5:5c: 37:a9:7f:40:f4:63:e7:90:b9:94:4d:be:31:ce:7b: 37:72:b5:39:7d:d9:af:40:c1:26:fe:c7:4b:87:a3: 5a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:21:77:70:E5:C1:85:9E:1D:4E:D2:00:58:43:46:F4:D3:31:B7:E8 X509v3 Authority Key Identifier: keyid:81:C9:4B:E9:98:EC:BD:D2:EF:89:7B:FE:8E:8E:51:B8:74:C0:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/3130332e3136332e38312e302f32342d3234203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.81.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:71:47:1b:bd:f6:f5:d2:4d:7b:31:5f:06:50:da:21:8a:04: 78:4d:71:f9:9a:3a:ed:32:78:c1:27:54:2a:1b:5f:b7:44:4e: 03:7c:e7:80:0a:26:2d:e6:78:ed:07:ae:4e:c4:87:38:82:1d: b3:0f:24:9a:d8:bc:53:a9:27:d0:69:9b:59:d5:50:b9:22:98: d0:31:36:28:27:ad:f2:aa:95:c3:5e:4f:c0:f4:8f:18:ba:12: de:49:1d:ba:4c:ba:3f:4e:86:4c:59:5f:2e:f6:9c:03:68:fc: c9:91:7b:10:a8:84:7b:ee:a1:3f:f2:5b:7c:8e:6d:d8:dc:31: 96:00:2b:f4:d1:90:98:a7:5d:4b:d6:76:3a:ea:22:28:e7:69: 94:27:d0:b1:33:14:b0:54:9f:ef:f2:6b:f7:57:70:2a:32:3f: 02:5c:4e:e2:22:7d:8d:61:bd:24:78:18:d8:51:33:20:12:ef: 73:61:f3:4e:35:23:ef:09:63:a1:46:23:31:23:3a:1b:76:ab: 84:cf:c0:d8:27:c8:fc:da:7a:52:cb:8f:ce:e4:90:ea:9a:4f: 68:eb:2f:07:1c:03:71:4f:a3:0f:fe:ed:4f:02:52:ed:83:f6: 7b:9d:22:d1:03:3e:73:05:64:99:f4:a8:36:29:4c:eb:c0:bf: 9b:f9:ed:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNLx1RniHDrgVkmEATsXh7aGZKLcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDOTRCRTk5OEVDQkREMkVGODk3QkZFOEU4RTUxQjg3 NEMwQTY1MjAeFw0yNTA4MDMwMjU1MDJaFw0yNjA4MDIwMzAwMDJaMDMxMTAvBgNV BAMTKDE2MjE3NzcwRTVDMTg1OUUxRDRFRDIwMDU4NDM0NkY0RDMzMUI3RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8BjkkXLKpLVwfPI1OnirDdSjS 1+DEpCSlRhmV+RoH6hbFbKbdhoafOWbFupXWB+0w6C32e8G0W3jDJ+QEnFVqEXyp +VXXF8lipHgs6C4JyTrCiOdQIBiwwsiGyN3adMWktMChiwCdzCqm/44vhEPAe2Ps p7WwxR8II9V2+1WgoJ3uHI/qT6jtS5CCsXDnxC55osGsEHkZP4v0SG5TMVpJcRW/ /D19Anq9yTmibBuqV9O0roqFzLWg8XKAifUx6bBSWLiy003XKpHNKtqk3vKOifbc q46slSwyp1/PhwXVXDepf0D0Y+eQuZRNvjHOezdytTl92a9AwSb+x0uHo1rlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFiF3cOXBhZ4dTtIAWENG9NMxt+gwHwYDVR0j BBgwFoAUgclL6ZjsvdLviXv+jo5RuHTAplIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDIzNGQ1MC02N2UxLTQxOWMtODViYS02NGJhOGMxMTEyMjUvMC84MUM5NEJFOTk4 RUNCREQyRUY4OTdCRkU4RThFNTFCODc0QzBBNjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDOTRCRTk5OEVDQkREMkVGODk3QkZFOEU4RTUxQjg3NEMw QTY1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMjM0ZDUwLTY3ZTEtNDE5Yy04 NWJhLTY0YmE4YzExMTIyNS8wLzMxMzAzMzJlMzEzNjMzMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6NRMA0GCSqG SIb3DQEBCwUAA4IBAQAbcUcbvfb10k17MV8GUNohigR4TXH5mjrtMnjBJ1QqG1+3 RE4DfOeACiYt5njtB65OxIc4gh2zDySa2LxTqSfQaZtZ1VC5IpjQMTYoJ63yqpXD Xk/A9I8YuhLeSR26TLo/ToZMWV8u9pwDaPzJkXsQqIR77qE/8lt8jm3Y3DGWACv0 0ZCYp11L1nY66iIo52mUJ9CxMxSwVJ/v8mv3V3AqMj8CXE7iIn2NYb0keBjYUTMg Eu9zYfNONSPvCWOhRiMxIzobdquEz8DYJ8j82npSy4/O5JDqmk9o6y8HHANxT6MP /u1PAlLtg/Z7nSLRAz5zBWSZ9Kg2KUzrwL+b+e0G -----END CERTIFICATE-----Generated at Thu Aug 7 17:37:00 2025 by rpki-client