$ rpki-client -vvf repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/3130332e392e3134342e302f32322d3234203d3e20313331373133.roa File: 3130332e392e3134342e302f32322d3234203d3e20313331373133.roa (raw, json) Hash identifier: DgLKkC/jF8zKIVNdNQyUD9vzgLj84NQLEk3DQtPjHPw= Subject key identifier: AD:5D:DC:70:34:DD:B7:5B:93:78:6C:B6:3B:8A:B2:3D:9B:0F:EE:24 Certificate issuer: /CN=8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8 Certificate serial: 61FD5C2F5CB2A94B151CF68D3FE6D5C7F551227A Authority key identifier: 8B:E1:F5:0A:90:93:8A:E6:D4:E6:D7:A6:A2:A2:2F:00:3B:07:2E:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/3130332e392e3134342e302f32322d3234203d3e20313331373133.roa Signing time: Tue 29 Jul 2025 05:02:24 +0000 ROA not before: Tue 29 Jul 2025 04:57:24 +0000 ROA not after: Tue 28 Jul 2026 05:02:24 +0000 asID: 131713 IP address blocks: 103.9.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.crl rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 09:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:fd:5c:2f:5c:b2:a9:4b:15:1c:f6:8d:3f:e6:d5:c7:f5:51:22:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8 Validity Not Before: Jul 29 04:57:24 2025 GMT Not After : Jul 28 05:02:24 2026 GMT Subject: CN=AD5DDC7034DDB75B93786CB63B8AB23D9B0FEE24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:ed:3f:dc:87:98:9c:dd:96:0d:fa:59:18: 9a:1b:d3:0d:88:f1:03:9c:96:49:30:3b:fa:4c:d7: 87:dd:d1:a1:83:36:ad:59:25:7a:3d:5c:7b:ee:fc: 00:39:5f:b5:4c:48:81:8f:13:e4:f0:4a:a8:41:99: 00:ad:01:4f:28:32:c6:63:42:74:53:a1:03:ac:98: 8e:98:a5:cc:09:5a:bf:ce:9d:1f:5d:80:44:9d:bb: 73:16:98:32:7d:cd:0c:1b:43:2a:8e:0a:f2:e4:31: 6c:19:66:50:3a:23:1a:03:1c:ce:b0:64:ee:bc:01: 0a:a0:b8:78:1f:48:03:1e:c6:5f:dc:a3:bf:c7:84: d4:fb:e4:69:0b:7c:40:46:7b:82:05:f5:d7:6c:ad: fb:8d:df:94:aa:c2:67:e7:9a:33:c9:cd:77:16:28: d7:7f:7f:4c:0d:ad:7e:37:a9:66:6e:00:b7:5d:9f: 8e:53:14:55:2f:af:2f:09:45:c6:10:60:02:1d:b4: 18:e1:63:63:ba:10:c4:c4:06:cb:3e:64:e8:f8:82: 9f:42:e8:7c:01:63:ba:56:0f:f1:03:ae:cc:6a:0f: a3:61:dc:e4:54:dd:7b:1f:bf:c0:23:09:98:1b:d1: 3c:72:07:8b:d5:62:59:81:68:0e:6c:9f:a8:d3:02: 97:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5D:DC:70:34:DD:B7:5B:93:78:6C:B6:3B:8A:B2:3D:9B:0F:EE:24 X509v3 Authority Key Identifier: keyid:8B:E1:F5:0A:90:93:8A:E6:D4:E6:D7:A6:A2:A2:2F:00:3B:07:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/3130332e392e3134342e302f32322d3234203d3e20313331373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.9.144.0/22 Signature Algorithm: sha256WithRSAEncryption 83:80:fe:b2:8a:f5:84:1a:dc:04:57:b3:a3:5d:dd:b6:7a:fd: fe:a8:75:99:23:c7:d4:c5:11:ea:0d:fe:bd:e0:cf:5d:87:af: 07:68:7d:8d:05:0f:30:19:a9:60:72:ae:63:9b:e2:6c:3c:e4: 65:d1:a2:69:79:3e:b1:06:04:94:42:90:48:af:f9:d5:85:d9: d2:21:d3:cc:70:3f:5e:c2:00:fa:8e:3d:2b:67:6d:9b:0b:d0: 40:3f:7c:37:78:a2:4c:a8:99:47:27:30:2a:ea:8c:5f:3c:a2: 37:33:d0:bc:66:8f:f6:ba:69:11:97:e6:57:c3:b7:fa:ce:9d: 47:43:4a:2d:ea:1e:1d:e7:6b:b6:66:bc:59:3b:d1:13:73:e3: f9:17:df:ab:ef:a2:ec:a7:c0:b1:d0:7d:08:dc:39:dc:0c:a7: 49:b5:d9:94:49:42:41:9b:68:b0:0b:63:7c:3c:2a:1a:61:bb: b0:37:d1:06:4f:dd:ae:86:8c:c2:7f:84:ca:86:bc:dc:fc:db: 9f:34:51:41:e1:44:c7:2d:af:10:1a:f7:54:62:c7:8b:09:1b: a6:4c:3f:90:ba:b3:cf:fc:db:95:7d:e2:3e:68:59:3e:a9:15: 5d:33:94:4b:66:94:b3:23:88:a9:98:74:65:5e:4f:47:f6:50: 3a:2e:c2:0d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYf1cL1yyqUsVHPaNP+bVx/VRInowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJFMUY1MEE5MDkzOEFFNkQ0RTZEN0E2QTJBMjJGMDAz QjA3MkVEODAeFw0yNTA3MjkwNDU3MjRaFw0yNjA3MjgwNTAyMjRaMDMxMTAvBgNV BAMTKEFENUREQzcwMzREREI3NUI5Mzc4NkNCNjNCOEFCMjNEOUIwRkVFMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtZ+0/3IeYnN2WDfpZGJob0w2I 8QOclkkwO/pM14fd0aGDNq1ZJXo9XHvu/AA5X7VMSIGPE+TwSqhBmQCtAU8oMsZj QnRToQOsmI6YpcwJWr/OnR9dgESdu3MWmDJ9zQwbQyqOCvLkMWwZZlA6IxoDHM6w ZO68AQqguHgfSAMexl/co7/HhNT75GkLfEBGe4IF9ddsrfuN35SqwmfnmjPJzXcW KNd/f0wNrX43qWZuALddn45TFFUvry8JRcYQYAIdtBjhY2O6EMTEBss+ZOj4gp9C 6HwBY7pWD/EDrsxqD6Nh3ORU3Xsfv8AjCZgb0TxyB4vVYlmBaA5sn6jTApflAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrV3ccDTdt1uTeGy2O4qyPZsP7iQwHwYDVR0j BBgwFoAUi+H1CpCTiubU5temoqIvADsHLtgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OGI1OGFlZS1lOGVlLTQyODctYTJiOC02MTYxNTVjM2VlYzIvMC84QkUxRjUwQTkw OTM4QUU2RDRFNkQ3QTZBMkEyMkYwMDNCMDcyRUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJFMUY1MEE5MDkzOEFFNkQ0RTZEN0E2QTJBMjJGMDAzQjA3 MkVEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4YjU4YWVlLWU4ZWUtNDI4Ny1h MmI4LTYxNjE1NWMzZWVjMi8wLzMxMzAzMzJlMzkyZTMxMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcJkDANBgkqhkiG 9w0BAQsFAAOCAQEAg4D+sor1hBrcBFezo13dtnr9/qh1mSPH1MUR6g3+veDPXYev B2h9jQUPMBmpYHKuY5vibDzkZdGiaXk+sQYElEKQSK/51YXZ0iHTzHA/XsIA+o49 K2dtmwvQQD98N3iiTKiZRycwKuqMXzyiNzPQvGaP9rppEZfmV8O3+s6dR0NKLeoe Hedrtma8WTvRE3Pj+Rffq++i7KfAsdB9CNw53AynSbXZlElCQZtosAtjfDwqGmG7 sDfRBk/droaMwn+Eyoa83PzbnzRRQeFExy2vEBr3VGLHiwkbpkw/kLqzz/zblX3i PmhZPqkVXTOUS2aUsyOIqZh0ZV5PR/ZQOi7CDQ== -----END CERTIFICATE-----Generated at Fri Aug 8 12:49:07 2025 by rpki-client