$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa File: 3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa (raw, json) Hash identifier: Oqn/4hUIUai1+mMhRgpHuJU5fSEKD5vusBmxtK4Q6/8= Subject key identifier: C9:43:B1:54:3C:C3:44:6C:F2:3E:C4:DA:A7:64:4A:E7:0B:B4:8E:A9 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 44C0CE68F52933088BAE90F80773F471B773FB8F Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa Signing time: Sat 02 Aug 2025 10:00:58 +0000 ROA not before: Sat 02 Aug 2025 09:55:58 +0000 ROA not after: Sat 01 Aug 2026 10:00:58 +0000 asID: 138087 IP address blocks: 103.125.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c0:ce:68:f5:29:33:08:8b:ae:90:f8:07:73:f4:71:b7:73:fb:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Aug 2 09:55:58 2025 GMT Not After : Aug 1 10:00:58 2026 GMT Subject: CN=C943B1543CC3446CF23EC4DAA7644AE70BB48EA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b8:34:a1:7a:20:15:c6:68:ab:7c:15:01:0e: d9:68:7b:d8:99:ea:02:57:3d:dd:8f:c5:02:5b:26: bf:14:92:96:a0:ae:1e:e6:cb:8a:c8:3b:75:73:d3: b2:0b:de:9c:0b:3d:38:f1:aa:65:5b:bd:39:bf:04: 83:a3:73:91:42:ef:b9:18:e0:48:e2:f0:58:48:f0: 08:c9:d7:13:cc:95:bc:2e:1d:45:0a:94:19:8f:07: f2:c5:8b:57:7f:0b:d2:db:ec:21:f3:96:16:08:b6: 0a:ff:d3:99:55:88:1d:56:8e:fc:63:87:9e:0b:c6: 35:fa:5e:05:c9:e5:ec:b8:9b:de:7a:06:13:e9:d1: dc:73:a5:c5:48:df:71:7e:f5:a0:c9:64:09:63:17: f4:33:fc:c9:61:12:ec:d0:dc:d0:42:33:24:95:ee: 1f:d5:3a:00:d1:09:be:28:51:fe:d9:9a:4f:b1:af: 5b:c7:ec:af:18:53:fe:83:34:49:ae:ff:10:0a:f3: 87:a7:9f:ce:fd:a8:3d:ec:d0:a6:05:24:97:66:5d: 2a:f6:41:2e:ef:6a:34:46:56:2e:b3:79:62:11:c8: c6:63:fc:23:8a:9c:f0:14:4b:da:6a:cb:47:fb:26: 69:4f:6b:95:49:cb:52:c6:be:38:c5:cf:2f:f8:2a: 02:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:43:B1:54:3C:C3:44:6C:F2:3E:C4:DA:A7:64:4A:E7:0B:B4:8E:A9 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.16.0/23 Signature Algorithm: sha256WithRSAEncryption 93:6e:34:70:8a:db:3f:be:72:18:6a:84:ba:c3:0c:8a:a1:06: 7d:44:0a:1c:24:ea:f4:42:4c:2d:c7:12:28:42:60:ad:88:de: c6:fd:7e:20:e1:fe:79:22:f3:0e:58:e3:b2:40:d5:6b:cc:80: 9b:08:3a:0b:a3:64:e8:62:94:d3:ad:cf:42:d0:b6:51:2c:d6: 85:be:f2:b7:02:a8:5c:6a:f8:f5:21:5d:35:52:f6:5f:85:5b: 69:4f:fb:e9:1a:f2:59:43:5a:88:47:56:ca:c9:43:43:cc:62: 23:76:8b:a0:c1:c5:40:43:8a:8e:e5:43:df:2b:12:10:83:15: 52:fe:82:cf:4f:dc:03:2b:0f:4d:25:59:70:bf:24:6d:fb:f4: 6e:f0:21:01:6d:d2:b3:d1:4c:f2:dd:19:97:78:26:ae:16:56: 20:e2:21:22:c6:ea:3f:d5:6a:2c:80:9c:c1:21:5c:6b:1f:5f: be:d1:8e:8d:da:b0:bb:82:bd:83:67:93:94:cf:cd:14:15:88: 41:b6:47:4f:72:ce:9b:a1:02:46:25:80:6f:6d:27:4c:8a:94: 64:18:18:6b:d8:af:7c:a6:bd:f7:a3:e9:73:be:a6:0d:e2:83: 52:61:d6:4b:d8:ca:86:1d:60:cd:85:0f:70:d0:c8:45:4f:93: 87:fb:24:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURMDOaPUpMwiLrpD4B3P0cbdz+48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNTA4MDIwOTU1NThaFw0yNjA4MDExMDAwNThaMDMxMTAvBgNV BAMTKEM5NDNCMTU0M0NDMzQ0NkNGMjNFQzREQUE3NjQ0QUU3MEJCNDhFQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCguDSheiAVxmirfBUBDtloe9iZ 6gJXPd2PxQJbJr8Ukpagrh7my4rIO3Vz07IL3pwLPTjxqmVbvTm/BIOjc5FC77kY 4Eji8FhI8AjJ1xPMlbwuHUUKlBmPB/LFi1d/C9Lb7CHzlhYItgr/05lViB1Wjvxj h54LxjX6XgXJ5ey4m956BhPp0dxzpcVI33F+9aDJZAljF/Qz/MlhEuzQ3NBCMySV 7h/VOgDRCb4oUf7Zmk+xr1vH7K8YU/6DNEmu/xAK84enn879qD3s0KYFJJdmXSr2 QS7vajRGVi6zeWIRyMZj/COKnPAUS9pqy0f7JmlPa5VJy1LGvjjFzy/4KgJFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyUOxVDzDRGzyPsTap2RK5wu0jqkwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ30QMA0GCSqG SIb3DQEBCwUAA4IBAQCTbjRwits/vnIYaoS6wwyKoQZ9RAocJOr0QkwtxxIoQmCt iN7G/X4g4f55IvMOWOOyQNVrzICbCDoLo2ToYpTTrc9C0LZRLNaFvvK3Aqhcavj1 IV01UvZfhVtpT/vpGvJZQ1qIR1bKyUNDzGIjdougwcVAQ4qO5UPfKxIQgxVS/oLP T9wDKw9NJVlwvyRt+/Ru8CEBbdKz0Uzy3RmXeCauFlYg4iEixuo/1WosgJzBIVxr H1++0Y6N2rC7gr2DZ5OUz80UFYhBtkdPcs6boQJGJYBvbSdMipRkGBhr2K98pr33 o+lzvqYN4oNSYdZL2MqGHWDNhQ9w0MhFT5OH+yTx -----END CERTIFICATE-----Generated at Thu Aug 7 11:21:23 2025 by rpki-client