$ rpki-client -vvf repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa File: 3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa (raw, json) Hash identifier: EWWFrGWk8wRtOz9/UzZazsAdPEBVpBh7hezsdiFevxg= Subject key identifier: E4:2E:2D:3D:4C:E9:66:21:E2:7B:5B:A8:0D:57:71:6A:4E:BC:89:CE Certificate issuer: /CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Certificate serial: 7E793A6EDE7A99B854F4530C87C4405C03F17A17 Authority key identifier: 42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa Signing time: Tue 08 Jul 2025 03:00:01 +0000 ROA not before: Tue 08 Jul 2025 02:55:01 +0000 ROA not after: Tue 07 Jul 2026 03:00:01 +0000 asID: 141130 IP address blocks: 103.158.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 19:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:79:3a:6e:de:7a:99:b8:54:f4:53:0c:87:c4:40:5c:03:f1:7a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Validity Not Before: Jul 8 02:55:01 2025 GMT Not After : Jul 7 03:00:01 2026 GMT Subject: CN=E42E2D3D4CE96621E27B5BA80D57716A4EBC89CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:37:ae:cf:f7:3c:0d:19:46:e7:04:9f:0d:b2: e9:4a:2e:74:ca:15:a5:f7:5b:89:68:81:6d:5d:f5: 6d:0d:2f:ea:65:d2:b0:51:4a:72:21:c4:07:70:dd: 05:2e:ff:dc:30:46:ab:60:ee:ff:32:7c:2f:8d:7b: 75:c3:f1:1a:a2:41:77:c0:e8:a8:d4:36:86:6d:96: ae:5a:12:a2:ab:0a:d4:7d:6a:b1:bb:c3:a6:25:aa: 54:8b:82:76:0f:34:c2:2e:f8:d0:c7:30:68:f9:fd: 8f:d0:50:33:e2:d0:da:80:3d:c8:5c:34:63:e5:89: 57:e2:97:ab:7a:90:94:cc:12:a1:e5:46:9d:65:58: c8:96:5e:5a:7f:10:ff:87:5e:6a:52:c8:98:60:c9: 94:4d:77:8d:51:60:e8:52:3e:e9:c8:70:ea:b2:bb: 80:70:d6:db:e0:3c:05:f4:bb:13:8e:5f:f2:4e:31: a2:d9:ac:76:59:7b:f7:7d:9c:33:9f:1f:ae:4e:e6: e7:d2:de:aa:05:9f:bc:24:65:5d:86:27:27:9e:31: 16:8c:43:d9:2e:37:60:4e:59:77:83:8a:ad:25:c9: 83:90:58:7b:71:6b:31:f1:96:06:eb:f1:d7:03:dc: e7:81:36:03:0b:a2:72:07:86:62:10:10:a9:07:68: a9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2E:2D:3D:4C:E9:66:21:E2:7B:5B:A8:0D:57:71:6A:4E:BC:89:CE X509v3 Authority Key Identifier: keyid:42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.97.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:9e:ec:78:97:af:b9:21:28:14:76:48:c6:3c:ee:d1:02:2d: 31:5a:51:c5:3a:6e:f9:b8:f0:49:7c:b6:68:1d:14:41:ab:61: 4a:c9:60:60:65:dc:8d:3b:61:bd:a1:50:da:20:65:55:5b:6b: de:73:d0:12:18:f9:29:8a:72:7c:a2:a7:a5:96:a5:92:20:34: f7:df:71:c9:71:77:f5:d1:1d:4c:72:ce:16:61:53:67:35:4e: 09:6b:cd:61:99:8f:c6:df:d3:40:2e:d0:6e:72:03:92:d5:14: 47:20:b4:93:1e:41:c2:7d:0c:37:e4:ea:02:1e:1e:e4:68:4a: 1a:b1:8a:4d:ff:3e:93:f9:eb:c1:60:c2:17:2a:03:8b:fc:0d: d6:09:2f:fc:74:40:82:de:5a:c5:05:b3:b0:11:5f:e6:d1:14: 03:95:ed:ae:32:a0:fa:7f:b6:74:72:74:5a:f6:8d:be:ee:2b: 75:23:ff:96:6b:13:28:9d:1f:ec:82:f4:a3:93:67:d5:d4:1a: c8:5e:f5:38:1e:b2:93:5f:c8:0c:f9:97:c2:ae:1e:ee:e2:1d: e4:1f:1b:64:39:60:73:5a:ef:b0:8a:d4:cd:67:a7:9a:43:14: b6:b7:30:55:34:59:b1:78:67:86:c7:35:20:25:92:d9:a1:03: 03:ba:59:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfnk6bt56mbhU9FMMh8RAXAPxehcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhB REVBRTg1MDAeFw0yNTA3MDgwMjU1MDFaFw0yNjA3MDcwMzAwMDFaMDMxMTAvBgNV BAMTKEU0MkUyRDNENENFOTY2MjFFMjdCNUJBODBENTc3MTZBNEVCQzg5Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrN67P9zwNGUbnBJ8NsulKLnTK FaX3W4logW1d9W0NL+pl0rBRSnIhxAdw3QUu/9wwRqtg7v8yfC+Ne3XD8RqiQXfA 6KjUNoZtlq5aEqKrCtR9arG7w6YlqlSLgnYPNMIu+NDHMGj5/Y/QUDPi0NqAPchc NGPliVfil6t6kJTMEqHlRp1lWMiWXlp/EP+HXmpSyJhgyZRNd41RYOhSPunIcOqy u4Bw1tvgPAX0uxOOX/JOMaLZrHZZe/d9nDOfH65O5ufS3qoFn7wkZV2GJyeeMRaM Q9kuN2BOWXeDiq0lyYOQWHtxazHxlgbr8dcD3OeBNgMLonIHhmIQEKkHaKkzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5C4tPUzpZiHie1uoDVdxak68ic4wHwYDVR0j BBgwFoAUQs04v3leAJm9PhQ92Dg3eK3q6FAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTI5MjkxMS1kYTdkLTQ2MzYtYjE1My0wMmE0YjY2MjA1YjUvMC80MkNEMzhCRjc5 NUUwMDk5QkQzRTE0M0REODM4Mzc3OEFERUFFODUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhBREVB RTg1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjkyOTExLWRhN2QtNDYzNi1i MTUzLTAyYTRiNjYyMDViNS8wLzMxMzAzMzJlMzEzNTM4MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ55hMA0GCSqG SIb3DQEBCwUAA4IBAQBMnux4l6+5ISgUdkjGPO7RAi0xWlHFOm75uPBJfLZoHRRB q2FKyWBgZdyNO2G9oVDaIGVVW2vec9ASGPkpinJ8oqellqWSIDT333HJcXf10R1M cs4WYVNnNU4Ja81hmY/G39NALtBucgOS1RRHILSTHkHCfQw35OoCHh7kaEoasYpN /z6T+evBYMIXKgOL/A3WCS/8dECC3lrFBbOwEV/m0RQDle2uMqD6f7Z0cnRa9o2+ 7it1I/+WaxMonR/sgvSjk2fV1BrIXvU4HrKTX8gM+ZfCrh7u4h3kHxtkOWBzWu+w itTNZ6eaQxS2tzBVNFmxeGeGxzUgJZLZoQMDulmL -----END CERTIFICATE-----Generated at Fri Aug 8 19:30:12 2025 by rpki-client