$ rpki-client -vvf repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa File: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (raw, json) Hash identifier: gtfNgouP3xqwRZMc2rLq5YYKkcJUcC8NmXsS5NHSV5Y= Subject key identifier: 8E:4D:C3:F5:54:E2:50:B8:23:A6:CE:C3:AA:1C:23:58:7B:A4:02:C9 Certificate issuer: /CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Certificate serial: 220697D759424879A1E39EBC015F03944E20A8BC Authority key identifier: 20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa Signing time: Mon 28 Jul 2025 18:00:00 +0000 ROA not before: Mon 28 Jul 2025 17:55:00 +0000 ROA not after: Mon 27 Jul 2026 18:00:00 +0000 asID: 149749 IP address blocks: 103.189.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 09:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:06:97:d7:59:42:48:79:a1:e3:9e:bc:01:5f:03:94:4e:20:a8:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Validity Not Before: Jul 28 17:55:00 2025 GMT Not After : Jul 27 18:00:00 2026 GMT Subject: CN=8E4DC3F554E250B823A6CEC3AA1C23587BA402C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0a:ff:bf:4c:51:9c:77:65:fa:8d:b6:e1:9c: cc:48:37:d8:fc:ed:9c:c0:30:59:70:98:72:61:b1: 1b:14:6c:ab:8c:25:7e:45:74:1e:29:5b:2b:1e:32: d6:da:a4:73:34:a5:99:a1:17:4b:c9:e2:22:0d:e5: b3:4c:f1:ff:ec:12:a5:42:59:2d:95:5a:cf:58:2b: ce:93:89:0b:18:73:84:dc:82:d5:70:2b:aa:c4:da: 76:fe:b3:1a:b5:d6:b8:7f:74:80:02:ec:03:86:73: 54:06:5d:b5:d0:3b:74:0f:35:a8:8a:1d:e7:c9:ef: 56:19:42:65:93:4c:28:54:49:29:ee:ad:ab:e6:be: 0e:a5:2a:bd:06:7b:54:b8:4c:95:01:c7:e2:99:fd: d2:71:6f:a9:c7:c6:c0:a5:ab:90:03:a2:ec:29:1f: bd:30:e2:f3:58:b9:1d:77:bb:b4:75:5e:bb:9b:a9: 66:8e:28:64:12:a5:da:30:ae:dd:1b:96:99:4e:b0: b2:83:b8:24:08:e3:57:c1:39:bc:09:c8:6b:48:6d: ff:50:1e:cc:ed:c3:71:31:85:50:15:d6:d6:95:1b: d6:f2:98:d9:f7:f6:ca:e4:1d:44:b6:a1:71:5a:7a: 63:d0:3c:aa:fe:60:27:06:65:50:a5:4c:a1:45:dd: 85:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:4D:C3:F5:54:E2:50:B8:23:A6:CE:C3:AA:1C:23:58:7B:A4:02:C9 X509v3 Authority Key Identifier: keyid:20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.111.0/24 Signature Algorithm: sha256WithRSAEncryption 31:51:08:c9:e9:8c:47:fb:ac:2e:83:a8:1d:ca:84:f1:a0:93: 19:74:9f:af:28:3b:df:55:e7:74:e8:f3:1b:03:6d:77:34:36: 4a:5d:e1:0d:52:9e:82:96:c0:8d:39:f1:cf:9a:4c:0e:54:cf: 79:ea:93:4b:4e:cd:b0:82:f2:ff:ef:ec:64:db:74:bc:f2:a3: ac:79:82:1b:f3:34:f4:7f:e6:e4:fa:b7:fc:f2:35:cc:cc:90: 63:64:af:17:3a:e7:15:1a:f9:da:bb:29:f1:09:66:f0:a8:e7: 55:54:8e:7f:30:1c:f5:7b:82:93:aa:3e:e5:8f:e0:a6:17:02: db:c8:79:80:88:f2:27:b8:74:de:9a:93:88:d0:1d:0c:98:2b: ab:e5:c8:d6:f6:8d:66:b8:81:ad:4d:14:22:85:b8:45:0a:b1: 66:51:43:c9:d3:e8:21:0b:09:15:dd:7f:30:49:c2:42:0d:47: 9e:c9:8d:71:0c:28:d8:6c:4c:62:c7:5e:4f:3a:8a:28:d7:8a: 98:76:66:01:69:73:55:bb:a7:aa:9c:40:bb:22:29:8e:e4:19: e2:cc:2c:9d:94:8e:9f:97:37:49:87:8b:b1:f0:51:12:9b:55: ef:5c:7a:ff:bb:e2:77:21:d8:4a:47:9a:ad:eb:f6:a9:de:45: 33:cd:d6:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIgaX11lCSHmh4568AV8DlE4gqLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENC OTAzQjg5NzAeFw0yNTA3MjgxNzU1MDBaFw0yNjA3MjcxODAwMDBaMDMxMTAvBgNV BAMTKDhFNERDM0Y1NTRFMjUwQjgyM0E2Q0VDM0FBMUMyMzU4N0JBNDAyQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdCv+/TFGcd2X6jbbhnMxIN9j8 7ZzAMFlwmHJhsRsUbKuMJX5FdB4pWyseMtbapHM0pZmhF0vJ4iIN5bNM8f/sEqVC WS2VWs9YK86TiQsYc4TcgtVwK6rE2nb+sxq11rh/dIAC7AOGc1QGXbXQO3QPNaiK HefJ71YZQmWTTChUSSnuravmvg6lKr0Ge1S4TJUBx+KZ/dJxb6nHxsClq5ADouwp H70w4vNYuR13u7R1XrubqWaOKGQSpdowrt0blplOsLKDuCQI41fBObwJyGtIbf9Q Hsztw3ExhVAV1taVG9bymNn39srkHUS2oXFaemPQPKr+YCcGZVClTKFF3YV/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjk3D9VTiULgjps7DqhwjWHukAskwHwYDVR0j BBgwFoAUIO+buZb5hOmV+f8GWPC5DLkDuJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDVlNWEzMC0wODAyLTRjNWMtOTQ3ZS05OGVmMjg1ZjRmNmIvMC8yMEVGOUJCOTk2 Rjk4NEU5OTVGOUZGMDY1OEYwQjkwQ0I5MDNCODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENCOTAz Qjg5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNWU1YTMwLTA4MDItNGM1Yy05 NDdlLTk4ZWYyODVmNGY2Yi8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvW8wDQYJ KoZIhvcNAQELBQADggEBADFRCMnpjEf7rC6DqB3KhPGgkxl0n68oO99V53To8xsD bXc0Nkpd4Q1SnoKWwI058c+aTA5Uz3nqk0tOzbCC8v/v7GTbdLzyo6x5ghvzNPR/ 5uT6t/zyNczMkGNkrxc65xUa+dq7KfEJZvCo51VUjn8wHPV7gpOqPuWP4KYXAtvI eYCI8ie4dN6ak4jQHQyYK6vlyNb2jWa4ga1NFCKFuEUKsWZRQ8nT6CELCRXdfzBJ wkINR57JjXEMKNhsTGLHXk86iijXiph2ZgFpc1W7p6qcQLsiKY7kGeLMLJ2Ujp+X N0mHi7HwURKbVe9cev+74nch2EpHmq3r9qneRTPN1ro= -----END CERTIFICATE-----Generated at Sat Aug 9 10:33:07 2025 by rpki-client