$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa File: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (raw, json) Hash identifier: Hm8P4hacYfkZNd8sZfNbLj4+ngt9DzF5s+/x8t3BFqA= Subject key identifier: BD:D2:79:A6:EC:48:51:B5:E9:23:8C:64:3C:AC:8A:C7:4E:62:D1:30 Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 5A56BD636B73DDB41A9EE52E952303B5CE8D33C4 Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa Signing time: Fri 11 Jul 2025 05:02:11 +0000 ROA not before: Fri 11 Jul 2025 04:57:11 +0000 ROA not after: Fri 10 Jul 2026 05:02:11 +0000 asID: 149923 IP address blocks: 103.191.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 17:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:56:bd:63:6b:73:dd:b4:1a:9e:e5:2e:95:23:03:b5:ce:8d:33:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: Jul 11 04:57:11 2025 GMT Not After : Jul 10 05:02:11 2026 GMT Subject: CN=BDD279A6EC4851B5E9238C643CAC8AC74E62D130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:85:7a:26:64:66:54:95:50:9e:cd:d4:e4:f2: d8:19:5a:4b:3e:94:40:8a:79:90:98:ce:ad:1f:f2: b2:e7:bc:4e:af:f9:ec:e1:b1:13:76:d8:df:15:91: 5a:4d:a6:9b:30:75:4d:45:66:df:82:65:c8:c7:c1: 5f:c8:76:1b:0e:0a:f2:90:c1:27:90:a3:26:0f:9b: 57:15:e9:fb:b6:96:e3:cd:1a:ba:14:c5:17:97:72: 95:6a:15:f5:2b:75:01:f0:8c:57:a8:cc:0c:fe:9d: 17:ad:aa:a0:bd:b3:b5:30:26:d9:97:b3:d5:b3:d9: 13:99:3a:7b:fb:66:96:16:46:c8:b8:5c:5b:21:1f: b0:66:53:0a:f9:49:09:5a:84:91:b6:35:25:0a:40: 94:80:b6:7e:96:62:32:cc:60:b4:35:0c:ba:e7:73: df:87:47:22:79:9f:60:f8:20:0b:0d:20:0f:da:b0: 0b:66:d1:4f:fe:e3:b2:68:6d:08:f9:97:5d:59:cd: 89:56:ad:92:77:46:8b:8f:6d:c5:8e:a8:6f:9f:22: db:ca:91:03:c1:1e:a9:cc:1d:5b:56:8e:78:69:52: 95:cf:54:45:34:b4:5c:8d:3b:51:fd:f0:6b:fa:bc: 41:ea:74:bd:d1:5d:6c:21:88:53:4a:26:4c:09:79: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D2:79:A6:EC:48:51:B5:E9:23:8C:64:3C:AC:8A:C7:4E:62:D1:30 X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.39.0/24 Signature Algorithm: sha256WithRSAEncryption 56:74:66:ac:06:23:ea:2b:38:2e:e7:dd:b1:34:d2:eb:1a:b2: 27:ae:fc:f0:9a:e4:a5:ba:f5:72:c0:a1:7f:2f:a6:f5:f3:1d: c2:36:94:88:e3:5a:75:e3:1e:da:5c:82:49:47:b0:59:56:81: 29:e2:1d:a8:f0:4f:00:65:11:0a:5d:39:de:d9:a0:70:b1:bc: 31:1b:45:50:a0:ec:be:0e:b2:5b:7f:04:7d:b1:8e:a4:30:91: 2d:00:c5:d3:88:9c:90:3a:d3:c5:a9:14:83:bc:57:49:97:be: de:fa:7d:03:c9:ca:19:d4:99:5d:ca:96:e7:93:95:0d:8f:8e: 04:39:bd:52:c5:07:5e:0b:5b:93:86:0e:37:4b:79:17:bc:5c: 8c:67:53:b1:43:b3:e1:f9:bc:7b:98:b6:6b:f3:77:e4:32:55: d4:f0:74:b9:a8:c3:5b:bd:39:06:7e:4e:45:5b:ae:10:90:db: 29:21:70:c7:08:77:e2:95:27:67:fd:3c:1e:7a:ef:31:1a:7c: 23:2f:f2:57:9d:ea:ff:e9:98:b1:03:da:c3:12:d1:f7:6b:92: 6a:35:1b:c3:12:af:20:c1:79:69:4d:d0:46:6e:8f:11:2d:bc: 41:e1:fc:79:30:21:5f:f0:01:66:f0:58:6f:ad:9f:55:0d:92: 69:ca:e1:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWla9Y2tz3bQanuUulSMDtc6NM8QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNTA3MTEwNDU3MTFaFw0yNjA3MTAwNTAyMTFaMDMxMTAvBgNV BAMTKEJERDI3OUE2RUM0ODUxQjVFOTIzOEM2NDNDQUM4QUM3NEU2MkQxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyhXomZGZUlVCezdTk8tgZWks+ lECKeZCYzq0f8rLnvE6v+ezhsRN22N8VkVpNppswdU1FZt+CZcjHwV/IdhsOCvKQ wSeQoyYPm1cV6fu2luPNGroUxReXcpVqFfUrdQHwjFeozAz+nRetqqC9s7UwJtmX s9Wz2ROZOnv7ZpYWRsi4XFshH7BmUwr5SQlahJG2NSUKQJSAtn6WYjLMYLQ1DLrn c9+HRyJ5n2D4IAsNIA/asAtm0U/+47JobQj5l11ZzYlWrZJ3RouPbcWOqG+fItvK kQPBHqnMHVtWjnhpUpXPVEU0tFyNO1H98Gv6vEHqdL3RXWwhiFNKJkwJedinAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvdJ5puxIUbXpI4xkPKyKx05i0TAwHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1Zjg0Mjc4LWUwNmQtNDExOS1i YTQ0LTVjMzI5NjhhOGJiZC8wLzMxMzAzMzJlMzEzOTMxMmUzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ78nMA0GCSqG SIb3DQEBCwUAA4IBAQBWdGasBiPqKzgu592xNNLrGrInrvzwmuSluvVywKF/L6b1 8x3CNpSI41p14x7aXIJJR7BZVoEp4h2o8E8AZREKXTne2aBwsbwxG0VQoOy+DrJb fwR9sY6kMJEtAMXTiJyQOtPFqRSDvFdJl77e+n0DycoZ1Jldypbnk5UNj44EOb1S xQdeC1uThg43S3kXvFyMZ1OxQ7Ph+bx7mLZr83fkMlXU8HS5qMNbvTkGfk5FW64Q kNspIXDHCHfilSdn/Tweeu8xGnwjL/JXner/6ZixA9rDEtH3a5JqNRvDEq8gwXlp TdBGbo8RLbxB4fx5MCFf8AFm8FhvrZ9VDZJpyuEJ -----END CERTIFICATE-----Generated at Mon Aug 11 04:09:49 2025 by rpki-client