$ rpki-client -vvf repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa File: 3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa (raw, json) Hash identifier: we24I32s5ELSTaYXFb0D1dL9DqvAx3yOmh/lu/NzD+s= Subject key identifier: 84:D1:95:F8:7C:46:84:C5:E3:69:F7:C2:48:5E:9C:2F:3B:39:F6:B2 Certificate issuer: /CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Certificate serial: 67FE87952FBC9F828221DB5B95DB1CDFF98C5D86 Authority key identifier: FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa Signing time: Thu 24 Jul 2025 06:00:02 +0000 ROA not before: Thu 24 Jul 2025 05:55:02 +0000 ROA not after: Thu 23 Jul 2026 06:00:02 +0000 asID: 141125 IP address blocks: 103.158.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 19:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fe:87:95:2f:bc:9f:82:82:21:db:5b:95:db:1c:df:f9:8c:5d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Validity Not Before: Jul 24 05:55:02 2025 GMT Not After : Jul 23 06:00:02 2026 GMT Subject: CN=84D195F87C4684C5E369F7C2485E9C2F3B39F6B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0d:39:79:3c:14:a0:56:82:41:5b:60:52:51: c9:dd:84:d5:46:b9:9e:7e:d4:69:68:f5:9c:90:4a: 1a:14:18:1e:5b:00:c9:b2:8e:1f:36:27:91:c0:25: fc:71:d0:e9:a5:fb:7e:50:16:14:6c:0d:d3:69:85: 87:7d:a9:09:02:fb:0e:ef:d1:7a:1a:e0:9d:44:d3: cd:f4:ce:ab:58:e0:ef:44:b2:ba:70:66:ac:5a:2d: 24:c4:60:5b:28:f5:46:90:20:08:24:26:c1:86:42: 49:08:f6:12:f5:fa:ce:21:49:ec:3c:4d:23:0c:98: cf:46:91:72:9b:f9:02:3c:b7:a3:8a:86:19:de:69: 5b:4a:da:65:4d:10:74:04:9f:58:b7:e4:bf:81:37: ac:c0:18:b3:c6:f0:0a:e5:59:ab:a9:fe:2f:d3:44: 2a:98:3a:67:5d:36:cf:f9:a5:7d:71:d0:51:99:d7: 0c:31:35:3e:da:d6:57:a6:ec:0d:b6:19:6c:01:fc: 42:af:40:81:0e:d2:4b:4d:eb:51:02:f9:cf:89:df: 6a:aa:cd:7c:02:36:3c:52:73:fc:5a:54:bc:ea:0b: 78:ed:93:6e:6e:82:b4:fa:72:09:f3:18:31:ac:8d: 2a:fd:a0:41:bd:8e:b9:5e:10:9e:c8:f2:fe:9b:69: a8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D1:95:F8:7C:46:84:C5:E3:69:F7:C2:48:5E:9C:2F:3B:39:F6:B2 X509v3 Authority Key Identifier: keyid:FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.98.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:7d:47:09:b7:61:59:8d:2c:8d:9c:c4:98:15:75:86:ad:a1: fb:f9:f6:40:bd:d7:d9:59:44:03:01:78:9f:a3:96:d7:07:f8: 97:70:06:70:91:09:b2:b8:d8:8c:d4:36:f5:48:4d:b3:ad:14: 2a:ba:ef:4a:67:3c:f1:5c:a6:ec:98:22:d9:e1:10:97:89:90: 8d:c9:61:03:76:6a:c3:f1:a7:01:f2:8d:c3:3d:9b:a0:ba:26: 4a:58:08:3a:18:c7:c3:56:60:d4:43:01:1c:80:b7:13:bf:a6: 0f:6e:82:52:95:d5:c0:90:d2:6c:c1:d4:d1:c2:d4:27:aa:7c: ca:99:70:ae:e5:92:b6:b4:a4:3c:52:e5:b5:50:12:25:c2:a0: e3:94:53:4c:a8:27:37:99:2b:dd:36:11:2b:8d:a8:69:f7:bd: ae:55:a0:b0:dd:d9:9e:41:22:7c:03:49:0d:fa:8a:10:46:41: 43:1c:a2:2a:8a:44:72:bc:66:0f:3d:6b:f5:50:cb:c6:2f:48: 7c:40:f4:ad:be:fd:43:fa:b3:a6:f0:3c:6d:2d:ff:b8:a6:88: 84:2b:24:f2:be:6c:cd:f1:f7:71:31:b3:fb:a5:8c:bd:66:ab: 34:84:0f:0c:14:65:07:53:63:4b:c6:7f:0c:45:05:43:46:36: 20:db:02:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ/6HlS+8n4KCIdtbldsc3/mMXYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZB Q0Q1QTNCQTAeFw0yNTA3MjQwNTU1MDJaFw0yNjA3MjMwNjAwMDJaMDMxMTAvBgNV BAMTKDg0RDE5NUY4N0M0Njg0QzVFMzY5RjdDMjQ4NUU5QzJGM0IzOUY2QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSDTl5PBSgVoJBW2BSUcndhNVG uZ5+1Glo9ZyQShoUGB5bAMmyjh82J5HAJfxx0Oml+35QFhRsDdNphYd9qQkC+w7v 0Xoa4J1E0830zqtY4O9EsrpwZqxaLSTEYFso9UaQIAgkJsGGQkkI9hL1+s4hSew8 TSMMmM9GkXKb+QI8t6OKhhneaVtK2mVNEHQEn1i35L+BN6zAGLPG8ArlWaup/i/T RCqYOmddNs/5pX1x0FGZ1wwxNT7a1lem7A22GWwB/EKvQIEO0ktN61EC+c+J32qq zXwCNjxSc/xaVLzqC3jtk25ugrT6cgnzGDGsjSr9oEG9jrleEJ7I8v6baagdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhNGV+HxGhMXjaffCSF6cLzs59rIwHwYDVR0j BBgwFoAU/Q84l5I3FDoNRBZZEueeL6zVo7owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDY4NTAwYy00OWY4LTRmMDEtODc3NC1mN2MzMTY0YTBhNTgvMC9GRDBGMzg5Nzky MzcxNDNBMEQ0NDE2NTkxMkU3OUUyRkFDRDVBM0JBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZBQ0Q1 QTNCQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNjg1MDBjLTQ5ZjgtNGYwMS04 Nzc0LWY3YzMxNjRhMGE1OC8wLzMxMzAzMzJlMzEzNTM4MmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ55iMA0GCSqG SIb3DQEBCwUAA4IBAQBPfUcJt2FZjSyNnMSYFXWGraH7+fZAvdfZWUQDAXifo5bX B/iXcAZwkQmyuNiM1Db1SE2zrRQquu9KZzzxXKbsmCLZ4RCXiZCNyWEDdmrD8acB 8o3DPZuguiZKWAg6GMfDVmDUQwEcgLcTv6YPboJSldXAkNJswdTRwtQnqnzKmXCu 5ZK2tKQ8UuW1UBIlwqDjlFNMqCc3mSvdNhErjahp972uVaCw3dmeQSJ8A0kN+ooQ RkFDHKIqikRyvGYPPWv1UMvGL0h8QPStvv1D+rOm8DxtLf+4poiEKyTyvmzN8fdx MbP7pYy9Zqs0hA8MFGUHU2NLxn8MRQVDRjYg2wJx -----END CERTIFICATE-----Generated at Sat Aug 9 20:41:06 2025 by rpki-client