$ rpki-client -vvf repo-rpki.idnic.net/repo/5cde8ece-97a2-4b0d-a064-17cea61f45cc/0/3130332e31392e3135382e302f32332d3234203d3e20313530323339.roa File: 3130332e31392e3135382e302f32332d3234203d3e20313530323339.roa (raw, json) Hash identifier: 2pmnEjpV6xKfD9pUClZgIAGRZy9Yz1iTckvB+l+9+U4= Subject key identifier: 7C:9A:E3:59:04:7C:98:CC:73:3A:E2:29:65:00:64:01:6D:77:E8:2D Certificate issuer: /CN=3EDDCA40C3F0CF912B003BB19F9C03E48B43F727 Certificate serial: 4B0B35D269E85A378503E4FFD72FD569FD4D0EB8 Authority key identifier: 3E:DD:CA:40:C3:F0:CF:91:2B:00:3B:B1:9F:9C:03:E4:8B:43:F7:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDDCA40C3F0CF912B003BB19F9C03E48B43F727.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5cde8ece-97a2-4b0d-a064-17cea61f45cc/0/3130332e31392e3135382e302f32332d3234203d3e20313530323339.roa Signing time: Tue 29 Jul 2025 08:00:00 +0000 ROA not before: Tue 29 Jul 2025 07:55:00 +0000 ROA not after: Tue 28 Jul 2026 08:00:00 +0000 asID: 150239 IP address blocks: 103.19.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5cde8ece-97a2-4b0d-a064-17cea61f45cc/0/3EDDCA40C3F0CF912B003BB19F9C03E48B43F727.crl rsync://repo-rpki.idnic.net/repo/5cde8ece-97a2-4b0d-a064-17cea61f45cc/0/3EDDCA40C3F0CF912B003BB19F9C03E48B43F727.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDDCA40C3F0CF912B003BB19F9C03E48B43F727.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0b:35:d2:69:e8:5a:37:85:03:e4:ff:d7:2f:d5:69:fd:4d:0e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3EDDCA40C3F0CF912B003BB19F9C03E48B43F727 Validity Not Before: Jul 29 07:55:00 2025 GMT Not After : Jul 28 08:00:00 2026 GMT Subject: CN=7C9AE359047C98CC733AE229650064016D77E82D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:0f:56:68:97:30:40:2b:0c:30:92:02:6a: 1b:5b:68:5d:01:96:3b:7b:26:b8:9c:60:35:a4:e1: ec:89:3e:82:36:62:81:10:4c:b5:41:dd:f8:03:40: fb:3c:d9:6c:39:b9:b5:87:99:a2:9a:33:ae:05:62: be:af:42:43:ce:07:df:a3:57:f5:bd:77:05:4d:99: dd:5b:35:cb:79:42:a6:a4:b5:b6:af:10:37:14:63: ee:ea:5a:04:d7:84:0e:6a:83:e3:71:1f:ec:dd:6a: 0e:f3:8e:33:49:ab:a7:5a:b1:e1:db:a9:07:7b:ff: 46:e7:0f:ec:97:c8:99:22:64:04:c6:5d:19:b5:b4: be:5a:5e:80:70:c1:bc:b7:e7:f7:05:a1:73:7c:35: 42:7c:c0:d1:09:1c:9d:a3:cf:c3:5d:25:9f:03:e2: 85:e9:8e:b2:3d:28:9f:16:75:1b:a8:93:41:85:0c: 0a:39:4f:10:6a:87:10:c4:87:93:bc:66:d4:d4:a6: 95:e7:6f:ba:98:9c:80:65:58:46:8b:50:09:db:a8: f4:61:f0:05:fd:57:08:7e:75:4c:13:00:47:b3:7a: 6a:f1:96:96:2e:7c:1b:8e:11:c7:42:e5:7f:7a:73: 80:99:04:52:4e:c2:55:e6:cb:34:06:4f:41:45:60: 8f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9A:E3:59:04:7C:98:CC:73:3A:E2:29:65:00:64:01:6D:77:E8:2D X509v3 Authority Key Identifier: keyid:3E:DD:CA:40:C3:F0:CF:91:2B:00:3B:B1:9F:9C:03:E4:8B:43:F7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5cde8ece-97a2-4b0d-a064-17cea61f45cc/0/3EDDCA40C3F0CF912B003BB19F9C03E48B43F727.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDDCA40C3F0CF912B003BB19F9C03E48B43F727.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5cde8ece-97a2-4b0d-a064-17cea61f45cc/0/3130332e31392e3135382e302f32332d3234203d3e20313530323339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.158.0/23 Signature Algorithm: sha256WithRSAEncryption 26:79:6d:67:ea:d9:65:ad:dd:8a:d7:4d:ac:7b:91:cd:3a:09: 09:78:9d:d5:c0:32:90:04:a8:ea:fd:3c:8c:91:1f:ee:a6:14: a1:93:80:2b:b4:0b:8a:06:d0:84:f6:10:50:2f:c3:40:c0:a2: 53:78:49:1b:41:5b:9e:c0:94:61:b2:94:f0:6e:8b:57:f1:53: e7:31:df:94:22:14:bc:84:b3:a1:18:9f:60:f9:58:8c:b1:4f: ba:f5:24:01:85:a8:bf:a6:3b:c8:b9:89:f1:40:fb:2f:4f:17: b8:f0:50:60:ac:cb:a0:91:60:f8:b8:47:0a:4f:f0:59:45:20: 37:a9:0b:26:b2:f0:0b:08:45:0f:a6:72:69:37:89:43:c4:ec: 7a:b5:fe:e4:bb:7c:85:d4:ce:43:77:22:c9:1b:f1:1a:e7:41: 70:e0:b3:c0:06:98:bf:bc:10:a9:6b:30:1b:06:b2:bc:ec:81: 31:60:89:30:8c:7e:a9:7f:76:c4:69:28:bb:a2:9f:98:32:6c: 6b:c2:2d:93:87:40:78:30:c4:3a:12:42:3e:bd:a1:c4:20:3b: 2f:49:35:be:af:eb:c2:ab:d8:6e:ef:55:d4:f9:f3:a6:33:c3: 0f:39:1b:94:41:6c:71:7f:03:b3:85:c0:43:ac:da:fc:b1:cf: 3a:0f:9d:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSws10mnoWjeFA+T/1y/Vaf1NDrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VERENBNDBDM0YwQ0Y5MTJCMDAzQkIxOUY5QzAzRTQ4 QjQzRjcyNzAeFw0yNTA3MjkwNzU1MDBaFw0yNjA3MjgwODAwMDBaMDMxMTAvBgNV BAMTKDdDOUFFMzU5MDQ3Qzk4Q0M3MzNBRTIyOTY1MDA2NDAxNkQ3N0U4MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+uQ9WaJcwQCsMMJICahtbaF0B ljt7JricYDWk4eyJPoI2YoEQTLVB3fgDQPs82Ww5ubWHmaKaM64FYr6vQkPOB9+j V/W9dwVNmd1bNct5QqaktbavEDcUY+7qWgTXhA5qg+NxH+zdag7zjjNJq6daseHb qQd7/0bnD+yXyJkiZATGXRm1tL5aXoBwwby35/cFoXN8NUJ8wNEJHJ2jz8NdJZ8D 4oXpjrI9KJ8WdRuok0GFDAo5TxBqhxDEh5O8ZtTUppXnb7qYnIBlWEaLUAnbqPRh 8AX9Vwh+dUwTAEezemrxlpYufBuOEcdC5X96c4CZBFJOwlXmyzQGT0FFYI/nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfJrjWQR8mMxzOuIpZQBkAW136C0wHwYDVR0j BBgwFoAUPt3KQMPwz5ErADuxn5wD5ItD9ycwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Y2RlOGVjZS05N2EyLTRiMGQtYTA2NC0xN2NlYTYxZjQ1Y2MvMC8zRUREQ0E0MEMz RjBDRjkxMkIwMDNCQjE5RjlDMDNFNDhCNDNGNzI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VERENBNDBDM0YwQ0Y5MTJCMDAzQkIxOUY5QzAzRTQ4QjQz RjcyNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjZGU4ZWNlLTk3YTItNGIwZC1h MDY0LTE3Y2VhNjFmNDVjYy8wLzMxMzAzMzJlMzEzOTJlMzEzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxOeMA0GCSqG SIb3DQEBCwUAA4IBAQAmeW1n6tllrd2K102se5HNOgkJeJ3VwDKQBKjq/TyMkR/u phShk4ArtAuKBtCE9hBQL8NAwKJTeEkbQVuewJRhspTwbotX8VPnMd+UIhS8hLOh GJ9g+ViMsU+69SQBhai/pjvIuYnxQPsvTxe48FBgrMugkWD4uEcKT/BZRSA3qQsm svALCEUPpnJpN4lDxOx6tf7ku3yF1M5DdyLJG/Ea50Fw4LPABpi/vBCpazAbBrK8 7IExYIkwjH6pf3bEaSi7op+YMmxrwi2Th0B4MMQ6EkI+vaHEIDsvSTW+r+vCq9hu 71XU+fOmM8MPORuUQWxxfwOzhcBDrNr8sc86D53A -----END CERTIFICATE-----Generated at Sun Aug 10 19:47:48 2025 by rpki-client