$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa File: 3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa (raw, json) Hash identifier: 2g7rbutz6JGpSI0ieoT3F+50As6HjTWRVSvDXVVxKnA= Subject key identifier: 2F:25:A1:10:59:23:66:58:01:D2:CB:D5:44:5B:B2:20:AA:31:F1:08 Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 23745F1B7CD022F3FB2BB078E0F4C7441BCBD816 Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa Signing time: Wed 30 Jul 2025 08:02:24 +0000 ROA not before: Wed 30 Jul 2025 07:57:24 +0000 ROA not after: Wed 29 Jul 2026 08:02:24 +0000 asID: 138129 IP address blocks: 103.132.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 11:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:74:5f:1b:7c:d0:22:f3:fb:2b:b0:78:e0:f4:c7:44:1b:cb:d8:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Jul 30 07:57:24 2025 GMT Not After : Jul 29 08:02:24 2026 GMT Subject: CN=2F25A1105923665801D2CBD5445BB220AA31F108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fb:14:4f:b7:4c:2f:3e:e1:45:6a:c3:94:05: 37:94:0c:0f:0b:26:54:8b:f9:f9:3b:77:41:a2:18: d3:ee:f7:c0:ac:28:20:5c:52:90:f7:8f:d8:14:db: 3f:10:48:0e:b4:49:f1:05:86:e4:57:41:fb:97:c0: 3e:9f:b4:b4:ae:bc:8c:42:e2:69:11:83:0a:79:62: 38:a0:fd:61:92:a9:9d:87:8a:47:f3:d1:89:13:54: 59:9e:5b:02:48:26:64:2b:c3:b9:d9:bd:99:99:cf: 40:36:c6:39:b6:bd:5c:d1:e5:1f:cd:12:1a:31:8b: cf:01:2a:7a:c3:64:9a:91:d9:a7:c2:ec:c2:34:6d: e0:88:14:72:7e:a7:74:d3:7c:79:3b:ab:11:ea:ef: 21:5a:36:34:65:3f:23:f5:2b:79:34:4f:98:35:72: 51:dd:b7:d2:b6:a7:a6:23:76:73:fc:1d:06:38:2f: a5:0c:d9:dd:e6:84:ed:c1:8f:38:96:2f:56:70:da: bb:bc:f0:a9:9a:38:78:eb:7a:59:f9:be:66:7a:5a: 6f:ec:df:f3:41:20:fe:63:69:d5:a6:0e:e6:55:b8: 5c:0b:02:ff:42:94:63:7d:a6:a7:aa:41:da:16:96: f6:84:fd:d3:21:ee:66:99:a4:67:20:c7:0f:c5:31: 05:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:25:A1:10:59:23:66:58:01:D2:CB:D5:44:5B:B2:20:AA:31:F1:08 X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.236.0/22 Signature Algorithm: sha256WithRSAEncryption c6:f6:c3:d8:a8:72:b0:4b:a8:88:be:b6:78:71:9d:9b:9e:82: e6:c8:5b:ad:eb:0a:60:dd:44:af:69:60:55:f4:a6:4e:4a:a5: 87:4c:15:9f:a8:32:0d:e0:35:a7:bd:ac:78:d6:e4:9a:ec:1e: 23:1b:27:e8:de:2c:71:0f:b3:d3:42:40:45:ee:b9:b4:43:43: 81:bf:fc:e2:b6:fe:e1:b0:26:ef:a8:0a:da:c4:e5:5d:45:1f: cd:de:a0:78:2c:da:d2:4b:4c:88:b0:25:18:14:50:30:20:73: 7b:e2:4b:cb:51:e2:56:0d:a0:f1:f7:a5:6c:7f:34:66:67:fc: b2:4b:7c:f5:1a:dd:75:bb:f2:6d:7d:11:a8:bd:dd:71:ff:6c: 6d:9c:e9:ec:1a:2e:ed:d1:42:d3:f5:3c:24:d6:24:e9:63:3a: 8a:1c:48:1c:06:6f:2f:16:11:19:c6:8a:cd:fa:3c:f9:25:e9: 72:3a:c0:51:65:33:98:85:78:0c:6f:89:60:f4:53:06:b6:73: d4:8a:39:df:f0:2f:1f:01:8e:28:49:a9:fc:e5:ae:05:ce:38: de:dd:93:a9:87:c1:88:66:6d:63:c7:ef:19:7c:f3:23:6b:17: 8d:b6:1c:f2:5d:d8:b7:71:e5:ba:42:0e:05:5c:0b:1e:ea:26: a8:50:25:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI3RfG3zQIvP7K7B44PTHRBvL2BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNTA3MzAwNzU3MjRaFw0yNjA3MjkwODAyMjRaMDMxMTAvBgNV BAMTKDJGMjVBMTEwNTkyMzY2NTgwMUQyQ0JENTQ0NUJCMjIwQUEzMUYxMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc+xRPt0wvPuFFasOUBTeUDA8L JlSL+fk7d0GiGNPu98CsKCBcUpD3j9gU2z8QSA60SfEFhuRXQfuXwD6ftLSuvIxC 4mkRgwp5Yjig/WGSqZ2Hikfz0YkTVFmeWwJIJmQrw7nZvZmZz0A2xjm2vVzR5R/N Ehoxi88BKnrDZJqR2afC7MI0beCIFHJ+p3TTfHk7qxHq7yFaNjRlPyP1K3k0T5g1 clHdt9K2p6YjdnP8HQY4L6UM2d3mhO3BjziWL1Zw2ru88KmaOHjreln5vmZ6Wm/s 3/NBIP5jadWmDuZVuFwLAv9ClGN9pqeqQdoWlvaE/dMh7maZpGcgxw/FMQV9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULyWhEFkjZlgB0svVRFuyIKox8QgwHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMxMzAzMzJlMzEzMzMyMmUzMjMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnhOwwDQYJ KoZIhvcNAQELBQADggEBAMb2w9iocrBLqIi+tnhxnZuegubIW63rCmDdRK9pYFX0 pk5KpYdMFZ+oMg3gNae9rHjW5JrsHiMbJ+jeLHEPs9NCQEXuubRDQ4G//OK2/uGw Ju+oCtrE5V1FH83eoHgs2tJLTIiwJRgUUDAgc3viS8tR4lYNoPH3pWx/NGZn/LJL fPUa3XW78m19Eai93XH/bG2c6ewaLu3RQtP1PCTWJOljOoocSBwGby8WERnGis36 PPkl6XI6wFFlM5iFeAxviWD0Uwa2c9SKOd/wLx8BjihJqfzlrgXOON7dk6mHwYhm bWPH7xl88yNrF422HPJd2Ldx5bpCDgVcCx7qJqhQJa0= -----END CERTIFICATE-----Generated at Sun Aug 10 05:35:24 2025 by rpki-client