$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e39302e302f32332d3234203d3e203538343034.roa File: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI= Subject key identifier: 95:2E:47:37:50:5C:00:FB:DD:45:E8:70:41:82:E2:CC:72:ED:47:AE Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 170C8C857C8DA9F5FD9D2ACDA383698683FB7E64 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e39302e302f32332d3234203d3e203538343034.roa Signing time: Wed 23 Jul 2025 06:02:21 +0000 ROA not before: Wed 23 Jul 2025 05:57:21 +0000 ROA not after: Wed 22 Jul 2026 06:02:21 +0000 asID: 58404 IP address blocks: 103.195.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 08:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:0c:8c:85:7c:8d:a9:f5:fd:9d:2a:cd:a3:83:69:86:83:fb:7e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jul 23 05:57:21 2025 GMT Not After : Jul 22 06:02:21 2026 GMT Subject: CN=952E4737505C00FBDD45E8704182E2CC72ED47AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2b:be:8e:c6:96:6e:53:85:67:6d:65:a8:fb: 6c:41:78:bf:7f:d0:d6:1e:ae:bf:50:b5:8b:71:d6: d8:0b:88:0a:54:7c:2f:c7:b3:a3:c8:cc:b3:24:18: be:06:e7:21:6a:13:09:f6:1b:f2:c4:d4:a6:1d:0b: 3f:27:2d:c1:08:68:8d:eb:db:bf:be:d5:fd:de:d7: ec:0c:32:ff:bf:fe:52:48:a7:fa:d9:12:42:7e:d0: 97:83:68:5b:14:05:df:3c:a4:0d:96:e1:9b:81:ec: 96:91:3e:db:68:2e:8b:be:32:a9:49:95:7c:e2:10: 5f:f9:5b:5a:47:62:e0:23:d4:a8:ea:db:13:5c:1b: 81:52:b0:79:da:6d:45:87:30:ac:0d:ee:b4:cd:8a: a1:45:7b:c0:7a:12:c2:37:99:72:35:7d:c0:94:d1: 5f:ee:f7:2e:78:c4:d4:ac:63:2e:8b:37:86:70:9a: 63:8c:7c:ba:80:18:2d:bf:7c:a3:d0:94:4b:28:d3: d8:f9:df:a2:1a:a6:97:9b:0e:82:ae:27:bd:91:19: 86:db:8d:b7:b9:bb:e5:94:fe:77:42:ec:28:ef:d2: bf:77:5a:b5:fa:01:44:26:61:39:51:bc:7d:6a:39: 82:2b:36:2f:48:a6:d7:9b:7c:6e:e7:e7:38:ea:f9: 5f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2E:47:37:50:5C:00:FB:DD:45:E8:70:41:82:E2:CC:72:ED:47:AE X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e39302e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.90.0/23 Signature Algorithm: sha256WithRSAEncryption 11:db:f1:58:0e:31:03:14:63:30:9a:59:46:cd:2b:eb:70:01: a7:dc:22:51:fb:90:d6:0e:3d:24:f2:ae:f0:38:69:b0:16:00: 01:fc:c4:54:ac:99:19:a0:0d:8d:41:c5:4a:e8:45:ed:ac:06: 24:a4:41:c9:3f:01:7d:5f:9e:d9:37:88:85:ba:c6:b4:b0:57: 2c:83:3f:50:e4:da:46:5f:b4:10:7e:d3:da:a6:f6:0d:36:de: a0:c1:bd:0a:f4:22:2e:db:12:e3:bf:fa:94:c3:c3:6c:46:91: 67:55:7f:39:c6:5e:4b:ee:0c:ab:9b:9e:41:15:0c:5a:06:a5: 1e:3d:38:59:e6:18:7a:5d:21:6e:17:ae:11:c8:70:8d:bd:33: e6:b5:d2:53:dc:b3:e7:58:74:d5:74:4a:ba:e5:47:21:43:69: d7:1b:fd:cb:cc:9c:f8:8a:27:e8:f0:1a:a5:36:ba:38:30:25: 9f:e8:9b:96:2d:96:42:00:fa:2b:01:b5:8e:16:7a:16:8f:a8: c3:b9:14:17:70:6f:2f:4d:da:26:7d:5b:2b:67:23:51:1b:76: 08:f9:79:28:44:15:43:07:73:97:07:41:82:e6:10:51:a0:f3: 42:e3:9e:49:00:26:87:69:a6:b7:58:14:fb:0c:a5:c8:a0:ab: d0:ae:36:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFwyMhXyNqfX9nSrNo4NphoP7fmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA3MjMwNTU3MjFaFw0yNjA3MjIwNjAyMjFaMDMxMTAvBgNV BAMTKDk1MkU0NzM3NTA1QzAwRkJERDQ1RTg3MDQxODJFMkNDNzJFRDQ3QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiK76OxpZuU4VnbWWo+2xBeL9/ 0NYerr9QtYtx1tgLiApUfC/Hs6PIzLMkGL4G5yFqEwn2G/LE1KYdCz8nLcEIaI3r 27++1f3e1+wMMv+//lJIp/rZEkJ+0JeDaFsUBd88pA2W4ZuB7JaRPttoLou+MqlJ lXziEF/5W1pHYuAj1Kjq2xNcG4FSsHnabUWHMKwN7rTNiqFFe8B6EsI3mXI1fcCU 0V/u9y54xNSsYy6LN4ZwmmOMfLqAGC2/fKPQlEso09j536IappebDoKuJ72RGYbb jbe5u+WU/ndC7Cjv0r93WrX6AUQmYTlRvH1qOYIrNi9IptebfG7n5zjq+V9rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlS5HN1BcAPvdRehwQYLizHLtR64wHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMzLWU0ZTEtNDFhMS1h YWYwLWQ2MTNhY2E0OTMwYy8wLzMxMzAzMzJlMzEzOTM1MmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfDWjANBgkqhkiG 9w0BAQsFAAOCAQEAEdvxWA4xAxRjMJpZRs0r63ABp9wiUfuQ1g49JPKu8DhpsBYA AfzEVKyZGaANjUHFSuhF7awGJKRByT8BfV+e2TeIhbrGtLBXLIM/UOTaRl+0EH7T 2qb2DTbeoMG9CvQiLtsS47/6lMPDbEaRZ1V/OcZeS+4Mq5ueQRUMWgalHj04WeYY el0hbheuEchwjb0z5rXSU9yz51h01XRKuuVHIUNp1xv9y8yc+Ion6PAapTa6ODAl n+ibli2WQgD6KwG1jhZ6Fo+ow7kUF3BvL03aJn1bK2cjURt2CPl5KEQVQwdzlwdB guYQUaDzQuOeSQAmh2mmt1gU+wylyKCr0K42Mg== -----END CERTIFICATE-----Generated at Thu Aug 7 20:11:01 2025 by rpki-client