$ rpki-client -vvf repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa File: 3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa (raw, json) Hash identifier: qwBhVFJ/29JkjYJBmiXis9vZ9dZgJ/dBqQTkQKD7IUk= Subject key identifier: 56:43:74:74:0E:CE:33:A5:B8:BA:E6:40:91:02:85:DA:67:8D:FD:73 Certificate issuer: /CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Certificate serial: 0D759954DB2DEEAEF96ACC07A153392ACC8073F4 Authority key identifier: B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa Signing time: Thu 31 Jul 2025 04:00:00 +0000 ROA not before: Thu 31 Jul 2025 03:55:00 +0000 ROA not after: Thu 30 Jul 2026 04:00:00 +0000 asID: 140384 IP address blocks: 103.149.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 23:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:75:99:54:db:2d:ee:ae:f9:6a:cc:07:a1:53:39:2a:cc:80:73:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Validity Not Before: Jul 31 03:55:00 2025 GMT Not After : Jul 30 04:00:00 2026 GMT Subject: CN=564374740ECE33A5B8BAE640910285DA678DFD73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fb:fd:17:c8:39:83:3d:72:45:94:4a:c9:22: 7d:e9:b0:7f:5b:c6:1e:83:21:98:20:19:62:1b:2c: 50:e0:54:90:e2:ef:4a:ea:fa:bb:8c:27:e0:51:06: a6:6f:7b:78:cd:f5:28:83:1d:77:75:c5:7f:e8:51: e0:5c:c4:e8:16:05:cf:0f:42:ff:65:4b:a2:f3:15: ff:0e:ba:5c:f1:6f:65:87:32:d6:8f:fd:5f:58:77: 8c:64:7c:8d:c1:a7:9d:8e:c3:9a:bd:97:9b:5a:a5: 64:8c:48:ab:0e:c1:cf:6a:c0:ae:a0:70:fd:72:69: 67:df:10:b3:26:9f:71:15:31:81:28:6b:7e:05:29: c5:c9:6d:dc:49:19:9a:0a:3a:bf:0e:77:43:52:ab: 47:aa:ab:08:45:87:46:ce:18:3d:e5:27:b9:f9:d3: 76:85:ca:75:f2:f1:95:bc:c6:a2:da:2c:ed:e0:c5: a0:48:a0:b5:a0:1b:cc:19:c6:2c:1d:41:d9:79:a2: c8:91:38:6a:70:d0:c4:55:ac:35:72:f4:0d:a7:6d: 26:0e:16:81:f7:08:98:29:38:32:46:9f:d7:62:f7: 3b:bb:3c:b0:a7:2f:2c:64:09:12:ab:2a:e8:a9:d1: 40:d3:6e:0c:13:b1:81:fd:d8:3b:a8:b3:96:aa:74: 19:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:43:74:74:0E:CE:33:A5:B8:BA:E6:40:91:02:85:DA:67:8D:FD:73 X509v3 Authority Key Identifier: keyid:B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.239.0/24 Signature Algorithm: sha256WithRSAEncryption 15:ed:4d:3a:b9:6e:63:c1:ca:20:00:4e:ae:44:b8:8a:36:5d: 12:8b:e3:38:4b:1e:13:ec:9d:bb:66:dd:04:35:3b:85:9d:02: b2:b3:d9:eb:da:23:ae:4c:95:90:63:e8:a7:74:38:ab:e9:7d: de:d6:0a:93:c8:e3:2a:ce:20:54:06:25:be:6b:1f:f7:96:30: cc:11:02:85:c0:b3:b1:dc:b9:e4:e3:85:2f:b9:c7:50:b7:b1: df:3b:f8:77:4d:83:0a:33:b8:af:ec:18:35:a2:cb:19:e1:6b: 2d:f1:84:7d:d5:25:74:cd:46:f8:83:10:64:94:6b:2f:9e:ab: fb:47:64:e1:84:de:38:4a:62:5c:da:f5:f7:23:ff:d5:67:53: bd:dd:ff:4b:e2:4a:69:96:18:38:e4:8c:46:41:1c:ca:6d:e7: ce:f4:2a:8d:1f:58:03:9b:93:8a:89:06:00:d8:f3:05:c2:12: 6c:77:1d:e3:73:e4:d9:e8:61:02:b1:c0:0c:bf:a8:1b:86:f4: e6:e7:cb:48:c7:50:90:3d:e9:b3:91:1d:3b:f2:9f:16:56:2d: 50:b4:9f:61:92:36:ad:d9:f6:69:b9:44:19:dc:97:5d:54:b9: ae:c6:bf:25:f5:c5:02:99:14:12:e4:36:e6:89:93:41:8a:9b: f8:ff:89:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDXWZVNst7q75aswHoVM5KsyAc/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJE MEI0RDhCRDAeFw0yNTA3MzEwMzU1MDBaFw0yNjA3MzAwNDAwMDBaMDMxMTAvBgNV BAMTKDU2NDM3NDc0MEVDRTMzQTVCOEJBRTY0MDkxMDI4NURBNjc4REZENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc+/0XyDmDPXJFlErJIn3psH9b xh6DIZggGWIbLFDgVJDi70rq+ruMJ+BRBqZve3jN9SiDHXd1xX/oUeBcxOgWBc8P Qv9lS6LzFf8Oulzxb2WHMtaP/V9Yd4xkfI3Bp52Ow5q9l5tapWSMSKsOwc9qwK6g cP1yaWffELMmn3EVMYEoa34FKcXJbdxJGZoKOr8Od0NSq0eqqwhFh0bOGD3lJ7n5 03aFynXy8ZW8xqLaLO3gxaBIoLWgG8wZxiwdQdl5osiROGpw0MRVrDVy9A2nbSYO FoH3CJgpODJGn9di9zu7PLCnLyxkCRKrKuip0UDTbgwTsYH92Duos5aqdBmbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVkN0dA7OM6W4uuZAkQKF2meN/XMwHwYDVR0j BBgwFoAUti5ELI0scND1q14qOh8RstC02L0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MGQzNGU3Ny02Y2Y2LTQxODctOTA4My0xYzdhODgxOWU5NjUvMC9CNjJFNDQyQzhE MkM3MEQwRjVBQjVFMkEzQTFGMTFCMkQwQjREOEJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJEMEI0 RDhCRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMxMzAzMzJlMzEzNDM5MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnle8wDQYJ KoZIhvcNAQELBQADggEBABXtTTq5bmPByiAATq5EuIo2XRKL4zhLHhPsnbtm3QQ1 O4WdArKz2evaI65MlZBj6Kd0OKvpfd7WCpPI4yrOIFQGJb5rH/eWMMwRAoXAs7Hc ueTjhS+5x1C3sd87+HdNgwozuK/sGDWiyxnhay3xhH3VJXTNRviDEGSUay+eq/tH ZOGE3jhKYlza9fcj/9VnU73d/0viSmmWGDjkjEZBHMpt5870Ko0fWAObk4qJBgDY 8wXCEmx3HeNz5NnoYQKxwAy/qBuG9Obny0jHUJA96bORHTvynxZWLVC0n2GSNq3Z 9mm5RBncl11Uua7GvyX1xQKZFBLkNuaJk0GKm/j/iQU= -----END CERTIFICATE-----Generated at Thu Aug 7 20:19:36 2025 by rpki-client