$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa File: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM= Subject key identifier: DC:41:77:E2:5C:91:C8:CC:41:DA:A4:ED:25:24:3C:4C:01:95:B1:06 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 531F3D8A58E75593CEE43161426F136A493E0620 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa Signing time: Sat 09 Aug 2025 15:00:01 +0000 ROA not before: Sat 09 Aug 2025 14:55:01 +0000 ROA not after: Sat 08 Aug 2026 15:00:01 +0000 asID: 147128 IP address blocks: 103.176.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 03:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:1f:3d:8a:58:e7:55:93:ce:e4:31:61:42:6f:13:6a:49:3e:06:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Aug 9 14:55:01 2025 GMT Not After : Aug 8 15:00:01 2026 GMT Subject: CN=DC4177E25C91C8CC41DAA4ED25243C4C0195B106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:d4:fd:77:fb:0a:17:47:6e:1a:f8:a8:23: 6a:00:f8:ba:e6:52:d5:2f:5e:ac:36:83:15:0e:a2: 48:53:fc:1c:e2:48:e8:d0:94:07:cd:05:2e:1f:c9: 4c:e1:8b:3b:c2:79:47:e3:98:aa:38:ff:14:66:18: 45:e2:e9:bf:be:2a:5a:f5:93:cf:05:20:c9:0e:d2: 1d:9f:d7:6e:5c:37:90:02:0f:de:c6:ba:fd:f3:ec: 01:0b:84:56:d6:84:fa:9f:00:f7:04:e4:ec:6b:21: 41:58:4c:11:43:b6:af:f2:b3:7f:44:f0:66:89:95: f3:79:ea:e1:e3:3f:6f:48:f4:37:44:1e:5a:c3:d9: c5:f2:92:0f:20:e8:2c:95:56:22:75:3a:1e:04:73: 0c:3f:18:50:cf:53:c6:bd:82:c6:1e:e3:83:ee:4b: f9:66:f4:b3:0a:f6:31:b0:bc:a9:ba:4c:76:b9:73: 3f:8b:e8:4b:52:54:be:07:64:0d:1b:78:36:a1:3b: 35:fc:f7:77:10:53:f8:e5:fb:85:d9:eb:c1:bc:56: d7:bc:21:92:81:fb:84:51:89:a4:29:dc:fe:73:8e: 8a:37:3f:b6:58:65:1e:2e:47:52:0d:44:cd:28:de: 0c:7c:0a:86:29:77:c3:f8:2f:93:28:a5:00:b4:7c: 6d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:41:77:E2:5C:91:C8:CC:41:DA:A4:ED:25:24:3C:4C:01:95:B1:06 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.44.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9b:4c:94:fd:db:02:bb:40:2b:53:38:2c:03:f7:93:12:d3: 5b:c8:bb:16:e8:4a:c3:a2:d5:4b:df:1c:01:a3:66:5d:9e:65: 09:d9:c7:73:18:04:1e:f6:96:a0:ec:9b:bc:f0:ab:96:f4:54: 1f:f9:4f:74:74:8b:0c:e9:b5:86:f0:3e:00:2f:20:92:29:4b: a0:38:72:39:3b:b2:0a:f8:fb:b7:54:b0:71:64:33:7e:b5:e9: 7b:fc:05:bf:41:f4:b1:98:42:36:1e:79:b1:56:20:58:5a:eb: ad:53:c9:ec:c3:88:1d:e2:e0:3a:2c:70:04:47:68:f3:04:25: 90:c6:bc:f6:6b:dd:89:06:f0:25:29:41:c7:e9:3c:3d:88:c0: 9d:4f:fd:57:a4:f9:56:c3:43:5d:51:93:b6:80:65:55:96:2f: 74:7b:bd:96:1d:50:d7:96:f2:e3:8f:97:a8:ca:3a:81:3b:a0: 7f:29:7f:69:5d:d4:8d:1a:7d:8a:bc:f1:8e:20:a6:b2:2c:90: 07:15:e3:f7:8b:8c:14:8b:13:ee:fa:5a:8e:a4:a9:88:3b:17: 78:bf:c3:09:24:88:55:eb:79:9a:56:92:69:f0:9d:de:42:79: d3:b3:5e:4c:ef:7a:d9:7e:e3:59:29:37:2c:e8:2e:9e:df:84: 7e:68:df:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUx89iljnVZPO5DFhQm8Takk+BiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTA4MDkxNDU1MDFaFw0yNjA4MDgxNTAwMDFaMDMxMTAvBgNV BAMTKERDNDE3N0UyNUM5MUM4Q0M0MURBQTRFRDI1MjQzQzRDMDE5NUIxMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKaNT9d/sKF0duGvioI2oA+Lrm UtUvXqw2gxUOokhT/BziSOjQlAfNBS4fyUzhizvCeUfjmKo4/xRmGEXi6b++Klr1 k88FIMkO0h2f125cN5ACD97Guv3z7AELhFbWhPqfAPcE5OxrIUFYTBFDtq/ys39E 8GaJlfN56uHjP29I9DdEHlrD2cXykg8g6CyVViJ1Oh4Ecww/GFDPU8a9gsYe44Pu S/lm9LMK9jGwvKm6THa5cz+L6EtSVL4HZA0beDahOzX893cQU/jl+4XZ68G8Vte8 IZKB+4RRiaQp3P5zjoo3P7ZYZR4uR1INRM0o3gx8CoYpd8P4L5MopQC0fG27AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3EF34lyRyMxB2qTtJSQ8TAGVsQYwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2LTNjMzUtNDcwZS1i ZjM0LTMwZTdlNDE2MDJjYi8wLzMxMzAzMzJlMzEzNzM2MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7AsMA0GCSqG SIb3DQEBCwUAA4IBAQCNm0yU/dsCu0ArUzgsA/eTEtNbyLsW6ErDotVL3xwBo2Zd nmUJ2cdzGAQe9pag7Ju88KuW9FQf+U90dIsM6bWG8D4ALyCSKUugOHI5O7IK+Pu3 VLBxZDN+tel7/AW/QfSxmEI2HnmxViBYWuutU8nsw4gd4uA6LHAER2jzBCWQxrz2 a92JBvAlKUHH6Tw9iMCdT/1XpPlWw0NdUZO2gGVVli90e72WHVDXlvLjj5eoyjqB O6B/KX9pXdSNGn2KvPGOIKayLJAHFeP3i4wUixPu+lqOpKmIOxd4v8MJJIhV63ma VpJp8J3eQnnTs15M73rZfuNZKTcs6C6e34R+aN83 -----END CERTIFICATE-----Generated at Sat Aug 9 22:39:53 2025 by rpki-client