$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa File: 3130332e32392e342e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: N+iF+GQSxaVEL0rnsleH957ue+LrcgSG1//ZspjzW7Q= Subject key identifier: F4:80:25:48:C5:3C:54:89:F9:B9:4C:9F:A7:DF:C6:BD:B3:A6:E0:48 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 130540AE543E765CC0087683CD110178BDB73264 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa Signing time: Thu 07 Aug 2025 09:00:01 +0000 ROA not before: Thu 07 Aug 2025 08:55:01 +0000 ROA not after: Thu 06 Aug 2026 09:00:01 +0000 asID: 38753 IP address blocks: 103.29.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 14:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:05:40:ae:54:3e:76:5c:c0:08:76:83:cd:11:01:78:bd:b7:32:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Aug 7 08:55:01 2025 GMT Not After : Aug 6 09:00:01 2026 GMT Subject: CN=F4802548C53C5489F9B94C9FA7DFC6BDB3A6E048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:66:65:3e:9c:33:56:0d:52:fd:10:30:c4:fd: 5a:04:b2:7a:64:8f:50:33:d0:ec:c7:2b:ae:1d:da: 3a:55:cc:94:f8:59:0f:64:b8:9a:2c:32:e6:a4:8e: af:a5:1c:85:fe:90:cb:58:15:0e:02:9f:08:b5:f4: b0:4c:8f:56:10:98:b7:7c:30:7a:1a:0e:a6:21:04: a4:2a:c0:15:d9:be:e9:8d:e1:95:32:89:8e:c4:79: de:46:9f:fb:84:37:58:01:5b:d5:66:ef:84:95:b8: 0e:63:ed:c7:40:0d:af:dd:09:91:c0:d6:21:29:e7: 11:c9:3a:76:96:b8:a3:fe:a2:1f:1d:96:41:43:1b: 9f:c5:06:bd:be:89:86:e7:cd:95:f5:d8:c0:c9:f8: 3a:68:30:e0:82:51:0b:dc:52:56:77:f1:fc:da:87: 54:df:8f:e0:04:79:09:98:95:81:44:11:61:ca:13: c5:88:ec:39:56:24:5b:3b:d0:88:64:28:1b:c2:f1: e8:a3:a5:9b:1d:da:99:fc:3f:7a:37:28:5b:91:72: ac:13:d9:f7:23:20:89:e0:f0:d0:90:7e:41:34:07: e1:6e:49:a3:1b:44:cd:88:41:dc:c9:06:ac:b0:a5: fd:2e:81:ab:77:2f:b6:fc:fd:84:f1:8f:c0:10:d8: 73:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:80:25:48:C5:3C:54:89:F9:B9:4C:9F:A7:DF:C6:BD:B3:A6:E0:48 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.4.0/24 Signature Algorithm: sha256WithRSAEncryption 50:f0:fe:99:73:ae:ef:cd:24:11:21:15:a2:f5:13:88:07:1c: 27:c0:03:03:95:12:ab:e2:35:5c:16:9d:f4:b6:56:d1:25:5a: e3:23:2a:63:dd:45:3e:58:37:88:b1:2f:08:40:04:a7:02:54: 72:ba:f4:6a:58:28:eb:cb:42:95:01:59:8e:a0:b4:73:a9:0c: 61:ce:25:c9:50:91:53:2a:ed:b9:fd:35:9c:f1:71:12:f2:4b: 58:d8:34:48:56:d2:dc:9e:bd:50:ca:b3:48:a5:5f:0e:49:24: f6:ab:cd:ab:04:6f:34:31:62:fa:41:ba:ef:98:1c:34:b2:5d: db:9d:b5:f9:4a:f9:dc:cf:22:f7:0b:e1:04:a2:5b:b2:64:4a: 30:25:c4:53:50:f9:c2:bb:69:eb:0b:d4:da:8a:ec:8b:ed:be: dd:40:90:5c:6e:e3:03:30:45:90:fa:c9:13:f7:fa:83:28:c1: d5:28:f6:78:9c:b8:43:d7:a8:52:1e:a8:9b:3f:82:02:54:74: 22:d6:a2:0d:3d:f1:59:c9:91:ba:df:da:72:f7:46:35:ae:5c: fc:82:01:fe:2e:ac:6c:f6:a5:03:5a:0c:7c:8e:70:45:19:e9: e6:91:55:8a:93:ae:b8:2f:12:31:f4:51:3b:9c:4f:be:17:61: ce:57:b6:6e -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUEwVArlQ+dlzACHaDzREBeL23MmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA4MDcwODU1MDFaFw0yNjA4MDYwOTAwMDFaMDMxMTAvBgNV BAMTKEY0ODAyNTQ4QzUzQzU0ODlGOUI5NEM5RkE3REZDNkJEQjNBNkUwNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyZmU+nDNWDVL9EDDE/VoEsnpk j1Az0OzHK64d2jpVzJT4WQ9kuJosMuakjq+lHIX+kMtYFQ4Cnwi19LBMj1YQmLd8 MHoaDqYhBKQqwBXZvumN4ZUyiY7Eed5Gn/uEN1gBW9Vm74SVuA5j7cdADa/dCZHA 1iEp5xHJOnaWuKP+oh8dlkFDG5/FBr2+iYbnzZX12MDJ+DpoMOCCUQvcUlZ38fza h1Tfj+AEeQmYlYFEEWHKE8WI7DlWJFs70IhkKBvC8eijpZsd2pn8P3o3KFuRcqwT 2fcjIIng8NCQfkE0B+FuSaMbRM2IQdzJBqywpf0ugat3L7b8/YTxj8AQ2HOtAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU9IAlSMU8VIn5uUyfp9/GvbOm4EgwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzEzMDMzMmUzMjM5MmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHQQwDQYJKoZIhvcNAQEL BQADggEBAFDw/plzru/NJBEhFaL1E4gHHCfAAwOVEqviNVwWnfS2VtElWuMjKmPd RT5YN4ixLwhABKcCVHK69GpYKOvLQpUBWY6gtHOpDGHOJclQkVMq7bn9NZzxcRLy S1jYNEhW0tyevVDKs0ilXw5JJParzasEbzQxYvpBuu+YHDSyXdudtflK+dzPIvcL 4QSiW7JkSjAlxFNQ+cK7aesL1NqK7Ivtvt1AkFxu4wMwRZD6yRP3+oMowdUo9nic uEPXqFIeqJs/ggJUdCLWog098VnJkbrf2nL3RjWuXPyCAf4urGz2pQNaDHyOcEUZ 6eaRVYqTrrgvEjH0UTucT74XYc5Xtm4= -----END CERTIFICATE-----Generated at Sat Aug 9 14:16:19 2025 by rpki-client