$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3130332e33312e34342e302f32332d3234203d3e203233363739.roa File: 3130332e33312e34342e302f32332d3234203d3e203233363739.roa (raw, json) Hash identifier: JtLnMUl2TatqDRCZSv6zx5MWDjxWMqAwP4W1vsEMsHQ= Subject key identifier: 8D:B9:34:CE:68:87:01:B7:F2:6D:8C:D1:CA:61:54:D5:57:A2:8B:D4 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 2F5FC31EE2BA6329E98E41447B29051BDDB65527 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3130332e33312e34342e302f32332d3234203d3e203233363739.roa Signing time: Fri 11 Jul 2025 06:02:22 +0000 ROA not before: Fri 11 Jul 2025 05:57:22 +0000 ROA not after: Fri 10 Jul 2026 06:02:22 +0000 asID: 23679 IP address blocks: 103.31.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5f:c3:1e:e2:ba:63:29:e9:8e:41:44:7b:29:05:1b:dd:b6:55:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 11 05:57:22 2025 GMT Not After : Jul 10 06:02:22 2026 GMT Subject: CN=8DB934CE688701B7F26D8CD1CA6154D557A28BD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c6:76:bc:bd:d7:99:13:df:ef:0f:2c:2d:96: 4d:05:f6:1f:0b:0e:67:35:0f:37:f8:17:48:7c:5c: db:1b:c3:fa:c3:8c:3c:43:bb:d7:52:a8:18:1b:dc: 2d:c6:7a:0c:3a:0d:5c:e1:6a:a9:3e:1b:5f:db:b6: 69:26:41:49:b7:9e:54:79:2d:7d:20:fe:80:c7:de: ea:67:7d:e8:d8:98:6b:31:86:47:99:da:1b:cd:2b: 96:31:f8:da:fa:88:d8:d7:87:6c:a3:6d:d3:d9:89: 0b:3c:6b:f0:74:66:5c:b5:d4:52:fc:52:35:76:7b: 25:21:99:65:51:3d:36:4e:9b:bb:72:1f:e8:4f:4c: bf:5e:b9:91:b1:e2:d2:35:73:0d:5d:95:d4:d4:07: 65:85:b0:d6:16:3d:9b:e9:3e:72:c1:09:9b:37:a2: 32:3f:74:40:7b:25:ca:01:a7:ae:af:86:83:b7:b8: 07:1c:03:22:1d:35:db:f8:30:77:fa:d2:8e:2b:03: 19:4b:17:4c:c8:b6:7f:5e:89:50:23:f5:bb:c2:b1: 81:c1:e9:6f:51:a8:bf:15:30:f3:7c:39:7f:5a:5a: eb:a5:47:3a:76:9d:9e:2f:01:ae:f7:0f:d3:53:c9: 11:ce:38:94:a5:8a:6d:b6:cf:40:d1:64:0d:76:b9: 5c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B9:34:CE:68:87:01:B7:F2:6D:8C:D1:CA:61:54:D5:57:A2:8B:D4 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3130332e33312e34342e302f32332d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.44.0/23 Signature Algorithm: sha256WithRSAEncryption 41:20:df:7e:2d:f8:5a:b2:36:b4:01:94:27:70:ac:9b:b4:0b: 88:3e:fa:49:ec:ac:85:64:b5:d1:e8:76:be:0e:1a:37:df:a4: b2:8a:41:0a:26:15:94:7b:b8:f7:f4:c7:09:1b:47:f4:f8:6c: 01:bd:e0:24:69:cb:88:4b:f3:12:c9:bd:4e:6b:9b:13:dd:5a: 4f:17:4f:76:b3:5b:a9:24:68:24:c5:ff:75:27:15:58:ea:3e: 0b:f7:06:99:dd:0f:7a:b4:89:46:33:2a:86:4c:87:f5:49:d8: 9d:4d:f5:d4:43:e2:dd:5b:d8:08:b0:32:f0:5c:7b:22:c5:cd: 7e:6c:45:4e:22:17:27:d3:fd:2e:b7:1f:dd:dc:bf:88:ca:3b: bf:5a:ff:1b:a8:6f:5e:cd:79:13:87:8d:69:95:2d:2d:a7:82: bb:cd:91:22:1a:0e:bd:33:02:86:1e:5a:fd:2a:41:49:f1:3b: cf:c9:31:a4:83:fe:b5:1b:f1:aa:54:2a:b9:f6:70:13:a0:42: eb:df:4f:eb:b9:3a:7d:4e:90:2a:55:f6:59:42:ef:71:57:14: 1c:ed:16:fa:df:5c:5e:56:85:53:82:c7:76:1d:2d:45:f5:9c: b9:b9:cb:c4:4c:dd:61:ff:33:1d:e5:66:87:a5:c3:f5:c1:68: 64:4f:1d:99 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL1/DHuK6YynpjkFEeykFG922VScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MTEwNTU3MjJaFw0yNjA3MTAwNjAyMjJaMDMxMTAvBgNV BAMTKDhEQjkzNENFNjg4NzAxQjdGMjZEOENEMUNBNjE1NEQ1NTdBMjhCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOxna8vdeZE9/vDywtlk0F9h8L Dmc1Dzf4F0h8XNsbw/rDjDxDu9dSqBgb3C3Gegw6DVzhaqk+G1/btmkmQUm3nlR5 LX0g/oDH3upnfejYmGsxhkeZ2hvNK5Yx+Nr6iNjXh2yjbdPZiQs8a/B0Zly11FL8 UjV2eyUhmWVRPTZOm7tyH+hPTL9euZGx4tI1cw1dldTUB2WFsNYWPZvpPnLBCZs3 ojI/dEB7JcoBp66vhoO3uAccAyIdNdv4MHf60o4rAxlLF0zItn9eiVAj9bvCsYHB 6W9RqL8VMPN8OX9aWuulRzp2nZ4vAa73D9NTyRHOOJSlim22z0DRZA12uVw3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjbk0zmiHAbfybYzRymFU1Veii9QwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzAzMzJlMzMzMTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMyMzMzNjM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHywwDQYJKoZIhvcN AQELBQADggEBAEEg334t+FqyNrQBlCdwrJu0C4g++knsrIVktdHodr4OGjffpLKK QQomFZR7uPf0xwkbR/T4bAG94CRpy4hL8xLJvU5rmxPdWk8XT3azW6kkaCTF/3Un FVjqPgv3BpndD3q0iUYzKoZMh/VJ2J1N9dRD4t1b2AiwMvBceyLFzX5sRU4iFyfT /S63H93cv4jKO79a/xuob17NeROHjWmVLS2ngrvNkSIaDr0zAoYeWv0qQUnxO8/J MaSD/rUb8apUKrn2cBOgQuvfT+u5On1OkCpV9llC73FXFBztFvrfXF5WhVOCx3Yd LUX1nLm5y8RM3WH/Mx3lZoelw/XBaGRPHZk= -----END CERTIFICATE-----Generated at Fri Jul 25 18:13:33 2025 by rpki-client