$ rpki-client -vvf repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131372e302f32342d3234203d3e203634303234.roa File: 3130332e3231302e3131372e302f32342d3234203d3e203634303234.roa (raw, json) Hash identifier: rvryrNsii8p5FWEuXQ/ZA1z3QEXlw8MezShqHde9HFo= Subject key identifier: 81:2E:41:DD:B5:B9:89:6E:9C:B8:5D:55:7F:7C:65:52:2F:72:B3:C3 Certificate issuer: /CN=BFE0F552446CE5C263D85414C72E8DD74CBC5EE9 Certificate serial: 51C46952D921FFFEE8C5050B25754CC9FA5F7D24 Authority key identifier: BF:E0:F5:52:44:6C:E5:C2:63:D8:54:14:C7:2E:8D:D7:4C:BC:5E:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131372e302f32342d3234203d3e203634303234.roa Signing time: Tue 01 Jul 2025 10:00:02 +0000 ROA not before: Tue 01 Jul 2025 09:55:02 +0000 ROA not after: Tue 30 Jun 2026 10:00:02 +0000 asID: 64024 IP address blocks: 103.210.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.crl rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:c4:69:52:d9:21:ff:fe:e8:c5:05:0b:25:75:4c:c9:fa:5f:7d:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFE0F552446CE5C263D85414C72E8DD74CBC5EE9 Validity Not Before: Jul 1 09:55:02 2025 GMT Not After : Jun 30 10:00:02 2026 GMT Subject: CN=812E41DDB5B9896E9CB85D557F7C65522F72B3C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:cd:0d:4e:ae:bd:7a:4f:4a:df:18:96:93: 55:1d:94:03:fd:bd:e3:c7:f0:64:ca:3a:b1:30:0c: 04:32:48:dc:5e:69:71:9d:d6:29:55:78:fe:be:6a: 0a:b6:a7:ab:dc:74:22:84:0d:56:2c:e7:c6:02:7d: a4:d5:32:a3:e1:8c:06:29:52:e2:e9:1b:7e:2f:30: 0c:b4:7c:15:b8:3a:73:b2:68:78:04:69:ef:21:0f: 59:df:8d:5c:05:c5:f9:00:0b:f3:38:f2:25:ff:6a: 18:45:45:3c:7c:6b:24:55:3b:a6:8b:89:72:bc:11: be:d9:29:bd:eb:13:33:91:c5:f7:d4:52:37:04:37: 90:dd:29:ad:48:4a:b8:95:65:21:14:0b:17:5b:ee: 0a:24:6a:89:f6:f1:10:7c:e4:a6:7d:04:f9:39:3b: 4e:a1:15:e9:41:f3:89:ab:fb:83:da:6c:2d:29:87: c3:bf:e5:95:7f:1e:94:2e:b3:b3:fa:ab:33:77:a7: 88:04:bb:8e:cc:9d:39:53:9d:4d:7e:d4:d5:fc:63: ac:85:d1:65:60:e0:48:f3:07:c9:d6:6d:ba:72:2e: 55:f2:a1:29:aa:ca:3e:0f:df:20:d1:a7:a3:07:78: 8a:3d:e1:25:eb:d8:5f:0b:16:73:ce:cd:ad:77:7e: bd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2E:41:DD:B5:B9:89:6E:9C:B8:5D:55:7F:7C:65:52:2F:72:B3:C3 X509v3 Authority Key Identifier: keyid:BF:E0:F5:52:44:6C:E5:C2:63:D8:54:14:C7:2E:8D:D7:4C:BC:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131372e302f32342d3234203d3e203634303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.117.0/24 Signature Algorithm: sha256WithRSAEncryption 42:5d:df:96:fa:fe:80:b1:52:1e:9f:e0:db:0c:05:f1:81:f1: 24:48:2f:3f:5c:5e:20:a2:3d:95:69:cf:49:da:fd:de:11:23: 65:5b:48:d3:e8:2b:41:7d:b6:7b:db:1d:e8:f9:00:9c:ee:55: 54:90:b2:eb:97:af:a6:9b:7d:5e:80:36:e7:28:fa:7d:4c:66: d6:fa:5b:6e:59:25:30:8a:77:2f:15:5d:4b:4d:8d:40:dc:b5: 01:64:1b:92:da:61:c4:71:b5:3b:f0:bd:fb:28:71:48:e3:ca: 6a:92:76:54:7e:5b:ee:b1:27:36:7f:03:81:d9:c2:21:84:35: bd:34:e4:d7:55:ea:9d:18:f7:89:a5:0e:14:35:3b:e3:4f:82: f8:84:93:f0:5f:3c:b1:a3:7f:8f:a4:68:14:a3:c9:74:d1:7b: 19:9d:6a:2c:5f:58:68:a7:f8:55:50:ac:23:b6:47:54:6f:b8: 21:11:28:30:55:ee:62:40:bf:ea:77:10:4c:ab:8c:15:5f:97: 1a:0e:69:b7:a2:c6:38:8a:eb:96:b9:d1:51:6d:f6:dd:d9:19: 2c:20:8f:cb:6d:d2:78:ca:f1:58:ba:9e:09:85:8c:71:8b:55: e7:bb:e8:20:07:9f:9e:92:fa:6c:54:63:32:43:22:d7:a9:5e: a4:05:6f:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUcRpUtkh//7oxQULJXVMyfpffSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZFMEY1NTI0NDZDRTVDMjYzRDg1NDE0QzcyRThERDc0 Q0JDNUVFOTAeFw0yNTA3MDEwOTU1MDJaFw0yNjA2MzAxMDAwMDJaMDMxMTAvBgNV BAMTKDgxMkU0MUREQjVCOTg5NkU5Q0I4NUQ1NTdGN0M2NTUyMkY3MkIzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kM0NTq69ek9K3xiWk1UdlAP9 vePH8GTKOrEwDAQySNxeaXGd1ilVeP6+agq2p6vcdCKEDVYs58YCfaTVMqPhjAYp UuLpG34vMAy0fBW4OnOyaHgEae8hD1nfjVwFxfkAC/M48iX/ahhFRTx8ayRVO6aL iXK8Eb7ZKb3rEzORxffUUjcEN5DdKa1ISriVZSEUCxdb7gokaon28RB85KZ9BPk5 O06hFelB84mr+4PabC0ph8O/5ZV/HpQus7P6qzN3p4gEu47MnTlTnU1+1NX8Y6yF 0WVg4EjzB8nWbbpyLlXyoSmqyj4P3yDRp6MHeIo94SXr2F8LFnPOza13fr2NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgS5B3bW5iW6cuF1Vf3xlUi9ys8MwHwYDVR0j BBgwFoAUv+D1UkRs5cJj2FQUxy6N10y8XukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWZkMzUxZS0yYmQ3LTQxOTEtOTEwNi01M2Y4NzUwMTZmMGUvMC9CRkUwRjU1MjQ0 NkNFNUMyNjNEODU0MTRDNzJFOERENzRDQkM1RUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkZFMEY1NTI0NDZDRTVDMjYzRDg1NDE0QzcyRThERDc0Q0JD NUVFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxZmQzNTFlLTJiZDctNDE5MS05 MTA2LTUzZjg3NTAxNmYwZS8wLzMxMzAzMzJlMzIzMTMwMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9J1MA0GCSqG SIb3DQEBCwUAA4IBAQBCXd+W+v6AsVIen+DbDAXxgfEkSC8/XF4goj2Vac9J2v3e ESNlW0jT6CtBfbZ72x3o+QCc7lVUkLLrl6+mm31egDbnKPp9TGbW+ltuWSUwincv FV1LTY1A3LUBZBuS2mHEcbU78L37KHFI48pqknZUflvusSc2fwOB2cIhhDW9NOTX VeqdGPeJpQ4UNTvjT4L4hJPwXzyxo3+PpGgUo8l00XsZnWosX1hop/hVUKwjtkdU b7ghESgwVe5iQL/qdxBMq4wVX5caDmm3osY4iuuWudFRbfbd2RksII/LbdJ4yvFY up4JhYxxi1Xnu+ggB5+ekvpsVGMyQyLXqV6kBW/H -----END CERTIFICATE-----Generated at Sat Aug 9 20:36:26 2025 by rpki-client