$ rpki-client -vvf repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa File: 3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa (raw, json) Hash identifier: gicJjzX38cvUlj+q/M4Y/XP1+pLgazBAyQOFz8mgKiM= Subject key identifier: E4:B8:E1:C9:B8:06:DC:72:C8:B9:B0:0B:97:71:6E:9B:40:00:B1:B8 Certificate issuer: /CN=D51CE7B1B9196EF73BFF65318453095C925ECF91 Certificate serial: 59AAFDE734849A887B55083A9DC62B5136215541 Authority key identifier: D5:1C:E7:B1:B9:19:6E:F7:3B:FF:65:31:84:53:09:5C:92:5E:CF:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa Signing time: Thu 24 Jul 2025 09:00:00 +0000 ROA not before: Thu 24 Jul 2025 08:55:00 +0000 ROA not after: Thu 23 Jul 2026 09:00:00 +0000 asID: 140028 IP address blocks: 103.146.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.crl rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:aa:fd:e7:34:84:9a:88:7b:55:08:3a:9d:c6:2b:51:36:21:55:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D51CE7B1B9196EF73BFF65318453095C925ECF91 Validity Not Before: Jul 24 08:55:00 2025 GMT Not After : Jul 23 09:00:00 2026 GMT Subject: CN=E4B8E1C9B806DC72C8B9B00B97716E9B4000B1B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bb:5f:d6:ed:28:fd:11:53:93:ba:ee:fa:75: 71:32:89:3d:b8:3f:2e:72:7e:4f:cc:4e:e2:31:a4: b7:36:1b:35:eb:1d:68:e8:b4:c7:5b:67:03:c3:16: 92:45:69:9f:34:3b:a6:82:e5:b5:37:87:6c:fa:c8: 88:5a:87:e5:6c:36:a3:ce:b6:7b:a3:e1:71:81:6c: ab:f1:58:f3:67:f4:19:4e:fd:68:62:2d:49:d8:e7: ad:58:8e:4b:55:b4:a2:f1:7c:73:9d:73:85:da:6c: 4d:08:b9:0f:c4:bd:58:15:e4:87:47:a3:22:f9:30: 91:53:49:77:80:cf:16:a0:f8:e4:76:8b:36:ee:d1: 9b:c4:64:f0:c1:87:eb:bc:02:02:76:07:d2:e8:a3: a4:37:62:4c:14:20:aa:21:b6:46:40:1e:b5:56:02: 2f:13:72:7d:64:5c:91:52:37:14:e1:83:28:eb:25: 0d:19:dd:33:3e:60:31:84:ff:06:ab:6b:03:f9:6b: 4c:c6:bd:f7:56:32:52:ee:70:88:48:b7:1a:dd:b0: 27:49:80:d0:e1:bd:ac:74:cc:16:9c:8b:3c:dd:4a: 55:2f:e7:a3:20:cf:5b:9d:43:cb:22:26:85:fd:35: 41:17:fe:fc:61:40:25:b5:59:5f:c3:02:4f:7e:a2: 52:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B8:E1:C9:B8:06:DC:72:C8:B9:B0:0B:97:71:6E:9B:40:00:B1:B8 X509v3 Authority Key Identifier: keyid:D5:1C:E7:B1:B9:19:6E:F7:3B:FF:65:31:84:53:09:5C:92:5E:CF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.128.0/24 Signature Algorithm: sha256WithRSAEncryption 15:e9:bb:ac:b2:3e:52:a6:73:3f:db:31:fd:eb:f0:94:50:14: be:bb:0f:4d:51:b1:1a:5d:3b:76:06:87:17:97:a2:92:61:1b: 06:32:77:12:bc:8e:53:7a:41:9c:2a:19:19:ea:a4:4f:0e:0f: 01:a8:0a:93:ec:02:7e:3b:9e:2a:f8:82:dd:9b:f4:7e:1c:1a: 7c:7b:db:f6:d1:f2:9f:79:91:10:52:62:b8:06:83:7f:c5:f8: ae:dd:87:0f:98:97:78:54:60:57:c3:a6:79:34:9d:d0:e5:82: b8:2a:c8:2a:07:26:db:3c:f2:d7:47:1a:8a:8f:9a:95:e0:8a: 5d:84:cb:11:83:ab:a7:b9:41:68:02:af:77:c3:c1:cc:63:bb: 96:2a:eb:2d:d9:4c:67:57:66:b5:d1:67:17:69:01:b6:41:04: 72:4a:fd:94:a1:b4:f0:c9:6b:53:1a:6a:6a:f3:ae:da:5d:8b: c4:36:b4:c0:10:02:b5:9b:2e:d1:9c:9a:87:d4:b5:59:4b:c0: 0b:ec:1b:1f:26:dd:a2:63:0d:fe:38:fe:91:49:cf:f7:2d:fb: a0:0c:aa:64:3f:57:14:42:0d:fc:68:38:c0:c9:d7:5e:fe:7e: 76:54:ed:8e:20:71:90:0b:1c:38:b4:63:32:fe:9a:c7:be:6c: b2:ba:51:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWar95zSEmoh7VQg6ncYrUTYhVUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDUxQ0U3QjFCOTE5NkVGNzNCRkY2NTMxODQ1MzA5NUM5 MjVFQ0Y5MTAeFw0yNTA3MjQwODU1MDBaFw0yNjA3MjMwOTAwMDBaMDMxMTAvBgNV BAMTKEU0QjhFMUM5QjgwNkRDNzJDOEI5QjAwQjk3NzE2RTlCNDAwMEIxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSu1/W7Sj9EVOTuu76dXEyiT24 Py5yfk/MTuIxpLc2GzXrHWjotMdbZwPDFpJFaZ80O6aC5bU3h2z6yIhah+VsNqPO tnuj4XGBbKvxWPNn9BlO/WhiLUnY561YjktVtKLxfHOdc4XabE0IuQ/EvVgV5IdH oyL5MJFTSXeAzxag+OR2izbu0ZvEZPDBh+u8AgJ2B9Loo6Q3YkwUIKohtkZAHrVW Ai8Tcn1kXJFSNxThgyjrJQ0Z3TM+YDGE/warawP5a0zGvfdWMlLucIhItxrdsCdJ gNDhvax0zBacizzdSlUv56Mgz1udQ8siJoX9NUEX/vxhQCW1WV/DAk9+olJBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5LjhybgG3HLIubALl3Fum0AAsbgwHwYDVR0j BBgwFoAU1RznsbkZbvc7/2UxhFMJXJJez5EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDJhYTBhOS00NTg4LTRmODctYWI4OS1mM2I5ZGM2MTA3YjYvMC9ENTFDRTdCMUI5 MTk2RUY3M0JGRjY1MzE4NDUzMDk1QzkyNUVDRjkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDUxQ0U3QjFCOTE5NkVGNzNCRkY2NTMxODQ1MzA5NUM5MjVF Q0Y5MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0MmFhMGE5LTQ1ODgtNGY4Ny1h Yjg5LWYzYjlkYzYxMDdiNi8wLzMxMzAzMzJlMzEzNDM2MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkoAwDQYJ KoZIhvcNAQELBQADggEBABXpu6yyPlKmcz/bMf3r8JRQFL67D01RsRpdO3YGhxeX opJhGwYydxK8jlN6QZwqGRnqpE8ODwGoCpPsAn47nir4gt2b9H4cGnx72/bR8p95 kRBSYrgGg3/F+K7dhw+Yl3hUYFfDpnk0ndDlgrgqyCoHJts88tdHGoqPmpXgil2E yxGDq6e5QWgCr3fDwcxju5Yq6y3ZTGdXZrXRZxdpAbZBBHJK/ZShtPDJa1Maamrz rtpdi8Q2tMAQArWbLtGcmofUtVlLwAvsGx8m3aJjDf44/pFJz/ct+6AMqmQ/VxRC DfxoOMDJ117+fnZU7Y4gcZALHDi0YzL+mse+bLK6Udo= -----END CERTIFICATE-----Generated at Sun Aug 10 05:38:24 2025 by rpki-client