$ rpki-client -vvf repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/3130332e3133382e31302e302f32342d3234203d3e20313338383335.roa File: 3130332e3133382e31302e302f32342d3234203d3e20313338383335.roa (raw, json) Hash identifier: G/xb7tdZk9UZaq4hfvb/m2IU6lYeHr5mMwL3BOuVZMU= Subject key identifier: 28:C0:C2:51:34:61:9D:D3:A8:38:50:24:4A:B1:70:64:8E:4E:94:97 Certificate issuer: /CN=2D23C629ED956F1736B7DAECCD2AAF31C4F17C26 Certificate serial: 44D079CC603D6689C6DAFAEFAE07DD584D0034C8 Authority key identifier: 2D:23:C6:29:ED:95:6F:17:36:B7:DA:EC:CD:2A:AF:31:C4:F1:7C:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/3130332e3133382e31302e302f32342d3234203d3e20313338383335.roa Signing time: Fri 01 Aug 2025 12:00:02 +0000 ROA not before: Fri 01 Aug 2025 11:55:02 +0000 ROA not after: Fri 31 Jul 2026 12:00:02 +0000 asID: 138835 IP address blocks: 103.138.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.crl rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 18:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d0:79:cc:60:3d:66:89:c6:da:fa:ef:ae:07:dd:58:4d:00:34:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D23C629ED956F1736B7DAECCD2AAF31C4F17C26 Validity Not Before: Aug 1 11:55:02 2025 GMT Not After : Jul 31 12:00:02 2026 GMT Subject: CN=28C0C25134619DD3A83850244AB170648E4E9497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0e:98:79:c5:20:5b:a1:19:6c:70:48:cd:46: 40:0a:4e:8f:75:68:9a:16:8d:33:bb:02:03:a5:56: 3f:61:5f:a3:ae:dc:83:47:df:d0:95:b6:69:40:10: c7:13:aa:b2:7a:d9:3f:25:7c:e5:1b:32:74:40:51: ea:61:e5:03:09:2b:34:1a:58:2a:61:f4:ba:05:70: 41:8e:ac:26:ab:cc:8f:da:e8:30:28:e4:10:a1:cb: 91:ac:3e:fa:3f:75:8f:14:a7:ce:05:5f:6e:b0:b7: f6:ed:0b:63:e9:6a:50:be:b5:fe:ac:17:56:d4:3f: a4:00:b4:6d:ab:04:af:41:42:4d:69:e7:66:8c:be: 8c:27:e5:21:28:45:8b:4a:aa:5a:9a:e2:b0:a5:e7: d9:f8:ae:3e:0a:21:2d:c5:88:d3:ec:5a:44:a1:dc: 78:8d:0c:bb:ec:ac:91:38:97:3f:77:75:f2:22:5e: 1a:b5:8c:96:f7:82:e1:f1:83:23:37:69:ca:60:47: ef:3e:3d:b8:79:40:47:a7:0c:f3:f6:49:4e:6f:c4: 49:f6:d9:de:9d:89:e5:72:fa:b0:2c:32:d4:ea:61: 05:c2:32:71:32:65:06:96:49:ca:cd:bf:ec:4e:2e: ca:ac:7e:8c:99:ef:df:c8:7e:f3:e1:2e:24:7d:40: c7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C0:C2:51:34:61:9D:D3:A8:38:50:24:4A:B1:70:64:8E:4E:94:97 X509v3 Authority Key Identifier: keyid:2D:23:C6:29:ED:95:6F:17:36:B7:DA:EC:CD:2A:AF:31:C4:F1:7C:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/3130332e3133382e31302e302f32342d3234203d3e20313338383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.10.0/24 Signature Algorithm: sha256WithRSAEncryption 11:73:a5:d5:13:eb:7b:5c:a3:b8:84:7a:b0:69:00:30:b1:dd: aa:b6:a4:0a:08:91:87:77:da:c2:3d:f3:ed:87:15:4e:a1:20: 72:1b:80:c4:9a:c9:2d:a6:7c:a4:bc:bf:b5:84:c3:cb:46:71: ce:81:2d:a9:d7:a4:f1:85:4e:91:46:3d:eb:93:1e:e6:b0:91: 0c:02:a6:07:8c:09:8c:20:a4:c1:89:0c:f3:2b:ff:21:0d:64: 95:c7:03:97:94:6b:0b:2a:02:73:f8:32:14:97:a2:0a:05:0e: 58:ae:be:18:5e:80:10:2e:f6:f2:2b:cf:5f:b5:0a:c6:d3:f4: 6c:dd:14:e0:af:10:71:48:8d:53:71:62:4f:26:ec:12:a0:74: dd:e8:87:63:52:30:bb:2d:9c:e2:8b:28:f8:0f:6b:35:7f:7b: 5d:b0:d7:cb:94:09:ac:86:45:ab:b8:21:ee:2b:ee:e5:cf:6f: fc:22:19:1d:51:34:2f:ca:82:d2:1c:bf:81:58:a3:79:90:28: a6:36:d1:70:5e:5b:e8:1b:09:e7:3a:54:6b:c5:4d:69:53:f5: c3:ae:c1:48:9a:8c:61:44:7c:e0:ab:a2:5b:45:86:09:4f:94: 10:7b:b3:fe:e3:ae:9f:0b:91:69:ce:e4:20:3c:e2:0e:d3:1e: 27:97:0c:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURNB5zGA9ZonG2vrvrgfdWE0ANMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyM0M2MjlFRDk1NkYxNzM2QjdEQUVDQ0QyQUFGMzFD NEYxN0MyNjAeFw0yNTA4MDExMTU1MDJaFw0yNjA3MzExMjAwMDJaMDMxMTAvBgNV BAMTKDI4QzBDMjUxMzQ2MTlERDNBODM4NTAyNDRBQjE3MDY0OEU0RTk0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Dph5xSBboRlscEjNRkAKTo91 aJoWjTO7AgOlVj9hX6Ou3INH39CVtmlAEMcTqrJ62T8lfOUbMnRAUeph5QMJKzQa WCph9LoFcEGOrCarzI/a6DAo5BChy5GsPvo/dY8Up84FX26wt/btC2PpalC+tf6s F1bUP6QAtG2rBK9BQk1p52aMvown5SEoRYtKqlqa4rCl59n4rj4KIS3FiNPsWkSh 3HiNDLvsrJE4lz93dfIiXhq1jJb3guHxgyM3acpgR+8+Pbh5QEenDPP2SU5vxEn2 2d6dieVy+rAsMtTqYQXCMnEyZQaWScrNv+xOLsqsfoyZ79/IfvPhLiR9QMcLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKMDCUTRhndOoOFAkSrFwZI5OlJcwHwYDVR0j BBgwFoAULSPGKe2Vbxc2t9rszSqvMcTxfCYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ODY4Y2YyMi1kMDI5LTQ1ZTItOWUyMS1kOTg5MmQzYWY3YTYvMC8yRDIzQzYyOUVE OTU2RjE3MzZCN0RBRUNDRDJBQUYzMUM0RjE3QzI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyM0M2MjlFRDk1NkYxNzM2QjdEQUVDQ0QyQUFGMzFDNEYx N0MyNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4NjhjZjIyLWQwMjktNDVlMi05 ZTIxLWQ5ODkyZDNhZjdhNi8wLzMxMzAzMzJlMzEzMzM4MmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4oKMA0GCSqG SIb3DQEBCwUAA4IBAQARc6XVE+t7XKO4hHqwaQAwsd2qtqQKCJGHd9rCPfPthxVO oSByG4DEmsktpnykvL+1hMPLRnHOgS2p16TxhU6RRj3rkx7msJEMAqYHjAmMIKTB iQzzK/8hDWSVxwOXlGsLKgJz+DIUl6IKBQ5Yrr4YXoAQLvbyK89ftQrG0/Rs3RTg rxBxSI1TcWJPJuwSoHTd6IdjUjC7LZziiyj4D2s1f3tdsNfLlAmshkWruCHuK+7l z2/8IhkdUTQvyoLSHL+BWKN5kCimNtFwXlvoGwnnOlRrxU1pU/XDrsFImoxhRHzg q6JbRYYJT5QQe7P+466fC5FpzuQgPOIO0x4nlwyq -----END CERTIFICATE-----Generated at Fri Aug 8 00:00:56 2025 by rpki-client