$ rpki-client -vvf repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233382e302f32342d3234203d3e20313430333834.roa File: 3130332e3134392e3233382e302f32342d3234203d3e20313430333834.roa (raw, json) Hash identifier: nzGXD+WO9jNdAgLBDWw3XXsmMEFx1ERW+wySreu0Q7o= Subject key identifier: 79:72:AA:24:09:5F:30:A4:A5:3F:2F:FB:6F:E0:1F:06:5F:D1:A3:5C Certificate issuer: /CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Certificate serial: 130B2CEDEB8CA481E241BC407852D2BDEFF9EA44 Authority key identifier: B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233382e302f32342d3234203d3e20313430333834.roa Signing time: Thu 31 Jul 2025 03:00:00 +0000 ROA not before: Thu 31 Jul 2025 02:55:00 +0000 ROA not after: Thu 30 Jul 2026 03:00:00 +0000 asID: 140384 IP address blocks: 103.149.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 23:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:0b:2c:ed:eb:8c:a4:81:e2:41:bc:40:78:52:d2:bd:ef:f9:ea:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Validity Not Before: Jul 31 02:55:00 2025 GMT Not After : Jul 30 03:00:00 2026 GMT Subject: CN=7972AA24095F30A4A53F2FFB6FE01F065FD1A35C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2d:ee:be:0f:f1:22:d9:10:8f:d7:a6:dd:9f: bb:6b:c6:7f:1d:c0:fe:a4:01:9a:ec:98:b4:31:93: a3:86:2f:a8:41:12:a8:43:c9:65:1b:d6:6e:af:a7: 63:8e:98:67:39:ab:e5:84:41:84:4d:a9:0c:05:b0: 8e:33:f4:fd:15:90:5c:8f:b1:bd:88:58:3e:e8:3f: bc:ef:8a:e7:c3:b4:96:71:eb:1f:ea:27:57:9d:c2: 51:03:83:0c:3f:51:f4:dd:59:00:94:79:b1:2d:12: de:87:49:79:0b:b8:8f:13:b2:6a:63:1f:c9:47:06: 41:51:8a:d5:fc:ab:b8:bc:19:72:79:b7:8a:ca:46: 71:3b:1a:20:ef:c3:11:2d:7f:9c:d0:43:05:ec:e0: cd:d9:9b:34:2f:c7:c0:a0:0f:0e:bc:22:9d:98:25: da:d1:d7:f3:3e:d3:ab:8c:ca:c9:2c:d9:43:b5:25: b9:97:a2:19:c0:76:e2:49:54:f1:b0:43:19:6b:95: 4b:ba:a9:17:4d:78:e7:87:42:1c:c4:0b:67:68:27: fb:bf:e4:1c:e5:41:00:12:aa:95:95:81:c3:25:19: 66:2f:c6:80:16:47:ee:7c:8b:8b:b0:e7:b0:b2:66: 88:f7:eb:17:f1:01:69:7e:9d:80:c8:b7:7b:7e:dd: 57:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:72:AA:24:09:5F:30:A4:A5:3F:2F:FB:6F:E0:1F:06:5F:D1:A3:5C X509v3 Authority Key Identifier: keyid:B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233382e302f32342d3234203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.238.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:3a:dc:8e:bf:7a:d0:95:ab:4e:ba:50:83:67:f4:79:61:c8: 9e:54:df:d9:cc:66:02:73:08:25:b1:82:f6:d2:14:9e:a3:41: c2:28:72:f0:0e:93:7d:6a:7d:ef:84:07:5e:65:c5:9a:50:8e: 93:26:09:61:10:d8:d7:2d:4d:a7:ae:ac:4d:63:73:ad:85:b4: 4f:3e:f2:74:fe:86:22:bb:00:4a:d9:59:7c:c6:5b:3e:6f:69: 2d:a4:74:44:8a:b8:fd:9d:b8:89:75:20:82:ec:53:2f:97:a8: 91:e5:93:68:21:e1:d4:9d:bb:9e:66:f5:80:ec:8a:af:79:6c: a6:d2:3f:7f:2f:11:a1:8d:fd:43:d7:ee:33:df:b6:28:fc:f1: 3f:64:65:8b:de:25:3d:63:85:33:ba:73:59:d1:73:e9:9d:3f: b3:39:fd:7b:f4:48:f1:8e:bb:17:81:af:45:e5:b8:2e:7a:5f: eb:42:ab:d4:8f:57:1b:50:cf:dc:3c:12:ba:a2:8b:fb:3a:eb: 01:85:05:f0:80:e9:b8:2e:0a:92:b6:ee:3f:1c:9a:37:32:28: c3:8b:cc:27:12:d9:98:8a:6f:5c:ca:b9:ac:7b:a3:4c:df:76: 42:6e:61:ed:93:ba:a5:96:12:b5:c5:9e:73:b0:be:2c:6d:2e: b8:5f:af:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEwss7euMpIHiQbxAeFLSve/56kQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJE MEI0RDhCRDAeFw0yNTA3MzEwMjU1MDBaFw0yNjA3MzAwMzAwMDBaMDMxMTAvBgNV BAMTKDc5NzJBQTI0MDk1RjMwQTRBNTNGMkZGQjZGRTAxRjA2NUZEMUEzNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Le6+D/Ei2RCP16bdn7trxn8d wP6kAZrsmLQxk6OGL6hBEqhDyWUb1m6vp2OOmGc5q+WEQYRNqQwFsI4z9P0VkFyP sb2IWD7oP7zviufDtJZx6x/qJ1edwlEDgww/UfTdWQCUebEtEt6HSXkLuI8Tsmpj H8lHBkFRitX8q7i8GXJ5t4rKRnE7GiDvwxEtf5zQQwXs4M3ZmzQvx8CgDw68Ip2Y JdrR1/M+06uMysks2UO1JbmXohnAduJJVPGwQxlrlUu6qRdNeOeHQhzEC2doJ/u/ 5BzlQQASqpWVgcMlGWYvxoAWR+58i4uw57CyZoj36xfxAWl+nYDIt3t+3Vf/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUeXKqJAlfMKSlPy/7b+AfBl/Ro1wwHwYDVR0j BBgwFoAUti5ELI0scND1q14qOh8RstC02L0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MGQzNGU3Ny02Y2Y2LTQxODctOTA4My0xYzdhODgxOWU5NjUvMC9CNjJFNDQyQzhE MkM3MEQwRjVBQjVFMkEzQTFGMTFCMkQwQjREOEJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJEMEI0 RDhCRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMxMzAzMzJlMzEzNDM5MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnle4wDQYJ KoZIhvcNAQELBQADggEBAEw63I6/etCVq066UINn9HlhyJ5U39nMZgJzCCWxgvbS FJ6jQcIocvAOk31qfe+EB15lxZpQjpMmCWEQ2NctTaeurE1jc62FtE8+8nT+hiK7 AErZWXzGWz5vaS2kdESKuP2duIl1IILsUy+XqJHlk2gh4dSdu55m9YDsiq95bKbS P38vEaGN/UPX7jPftij88T9kZYveJT1jhTO6c1nRc+mdP7M5/Xv0SPGOuxeBr0Xl uC56X+tCq9SPVxtQz9w8Erqii/s66wGFBfCA6bguCpK27j8cmjcyKMOLzCcS2ZiK b1zKuax7o0zfdkJuYe2TuqWWErXFnnOwvixtLrhfr+I= -----END CERTIFICATE-----Generated at Fri Aug 8 00:18:58 2025 by rpki-client