$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e31392e38312e302f32342d3234203d3e20313332363339.roa File: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (raw, json) Hash identifier: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc= Subject key identifier: 72:94:B7:8C:9A:AB:A0:5B:24:EF:8C:19:55:DA:7F:7D:38:12:08:46 Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 5CE386B115774EF3BAE13C1371394616B0605852 Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e31392e38312e302f32342d3234203d3e20313332363339.roa Signing time: Wed 25 Jun 2025 14:01:17 +0000 ROA not before: Wed 25 Jun 2025 13:56:17 +0000 ROA not after: Wed 24 Jun 2026 14:01:17 +0000 asID: 132639 IP address blocks: 103.19.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 14:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e3:86:b1:15:77:4e:f3:ba:e1:3c:13:71:39:46:16:b0:60:58:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: Jun 25 13:56:17 2025 GMT Not After : Jun 24 14:01:17 2026 GMT Subject: CN=7294B78C9AABA05B24EF8C1955DA7F7D38120846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fc:30:b2:3c:9f:89:93:ca:75:de:e8:5b:c7: 91:19:ed:72:86:17:4a:cc:b3:3a:cf:74:e4:f6:a7: 2d:fe:32:ea:09:80:d2:33:d2:2a:ce:f9:98:1c:5f: 38:73:b1:13:3e:e7:7d:60:e7:56:cc:de:7d:1b:b1: 6f:24:cc:e5:c0:b6:1d:f6:1c:1e:2b:4b:01:01:b0: 87:e7:87:8f:1d:c1:56:a6:4e:53:a0:50:58:cf:3a: fd:81:22:49:dd:d4:f1:86:81:10:4b:e6:94:ea:d9: a5:e6:c6:95:47:89:37:e3:1d:8c:ed:e5:1d:04:bb: 53:89:f0:9c:b6:59:11:df:a1:0a:32:2a:b8:a1:23: c1:ca:36:83:23:39:3d:08:a4:2b:28:fa:b9:e9:25: 47:6e:16:15:e5:27:f7:cf:0a:4a:d2:11:f4:6f:9f: 9a:2b:2d:9c:e3:f8:78:cf:d6:ff:a6:da:bb:3b:b5: 48:3f:dc:9e:60:13:f5:c9:aa:e4:e0:f1:b4:b1:c7: a0:cf:8f:23:1e:2a:c7:fd:5d:e6:11:6b:bd:42:37: 73:5d:1e:32:31:37:db:e5:0b:8a:44:b7:0e:b5:b9: 1e:f4:cb:ac:3c:7e:6d:16:72:21:da:4a:f5:7e:14: 03:78:e8:7f:b3:15:f2:40:33:c5:8a:3e:fd:6e:20: a1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:94:B7:8C:9A:AB:A0:5B:24:EF:8C:19:55:DA:7F:7D:38:12:08:46 X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e31392e38312e302f32342d3234203d3e20313332363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.81.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:1b:2f:b5:b3:18:60:07:2b:46:68:49:5c:de:54:79:1b:c0: e3:50:5a:0e:e7:90:6c:7f:76:71:a6:f5:f7:d5:c0:ff:15:45: d4:de:72:7d:2b:b4:52:c6:54:ad:bf:c2:3e:a4:b8:8a:1b:f7: 59:f6:69:96:09:9f:f3:38:7e:4c:3a:53:13:d5:76:66:1a:24: 7b:fa:28:b9:9d:0d:c8:98:15:56:a5:cf:a2:be:22:10:e3:e3: 9d:32:00:4c:ef:32:3a:d3:7b:16:27:54:bc:18:01:43:2e:7c: 41:2a:eb:f2:bf:c1:87:5d:55:2d:f2:4e:45:64:cb:70:8f:59: f9:39:ab:32:ba:d2:c6:a5:93:a4:43:1a:98:56:37:4a:f3:4c: 1e:4a:52:58:9e:47:22:f4:fe:19:21:4e:c7:8c:5b:6b:19:a9: ff:37:3a:4f:94:0c:40:c4:ee:f5:b5:95:34:b8:9b:c4:32:68: 7e:18:05:db:26:36:8e:ab:58:5d:f4:4f:6f:ca:76:69:00:8a: 2f:6e:a7:7f:f8:48:e6:a9:45:a7:d3:49:0c:8a:26:0f:7d:0f: a5:67:3d:d7:fc:be:e9:90:16:eb:60:8e:72:20:b4:e6:c4:cd: e4:8f:5b:c3:8e:62:60:8f:1a:c3:65:58:97:16:03:01:a7:ee: a4:00:54:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXOOGsRV3TvO64TwTcTlGFrBgWFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNTA2MjUxMzU2MTdaFw0yNjA2MjQxNDAxMTdaMDMxMTAvBgNV BAMTKDcyOTRCNzhDOUFBQkEwNUIyNEVGOEMxOTU1REE3RjdEMzgxMjA4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp/DCyPJ+Jk8p13uhbx5EZ7XKG F0rMszrPdOT2py3+MuoJgNIz0irO+ZgcXzhzsRM+531g51bM3n0bsW8kzOXAth32 HB4rSwEBsIfnh48dwVamTlOgUFjPOv2BIknd1PGGgRBL5pTq2aXmxpVHiTfjHYzt 5R0Eu1OJ8Jy2WRHfoQoyKrihI8HKNoMjOT0IpCso+rnpJUduFhXlJ/fPCkrSEfRv n5orLZzj+HjP1v+m2rs7tUg/3J5gE/XJquTg8bSxx6DPjyMeKsf9XeYRa71CN3Nd HjIxN9vlC4pEtw61uR70y6w8fm0WciHaSvV+FAN46H+zFfJAM8WKPv1uIKEnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcpS3jJqroFsk74wZVdp/fTgSCEYwHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYTQyNzQyLTg5ZDItNDliYi04 YTNlLTI5NGMzNjg5NzFmNS8wLzMxMzAzMzJlMzEzOTJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTUTANBgkqhkiG 9w0BAQsFAAOCAQEAChsvtbMYYAcrRmhJXN5UeRvA41BaDueQbH92cab199XA/xVF 1N5yfSu0UsZUrb/CPqS4ihv3WfZplgmf8zh+TDpTE9V2Zhoke/oouZ0NyJgVVqXP or4iEOPjnTIATO8yOtN7FidUvBgBQy58QSrr8r/Bh11VLfJORWTLcI9Z+TmrMrrS xqWTpEMamFY3SvNMHkpSWJ5HIvT+GSFOx4xbaxmp/zc6T5QMQMTu9bWVNLibxDJo fhgF2yY2jqtYXfRPb8p2aQCKL26nf/hI5qlFp9NJDIomD30PpWc91/y+6ZAW62CO ciC05sTN5I9bw45iYI8aw2VYlxYDAafupABU/Q== -----END CERTIFICATE-----Generated at Fri Aug 8 20:46:14 2025 by rpki-client