$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa File: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (raw, json) Hash identifier: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA= Subject key identifier: 05:3C:AA:A8:26:9B:72:A4:78:50:87:50:BA:52:E4:A3:46:CA:22:00 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 3BB0A6872E12B09FDD3E7D2D742862C73454E483 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa Signing time: Sat 19 Jul 2025 12:00:01 +0000 ROA not before: Sat 19 Jul 2025 11:55:01 +0000 ROA not after: Sat 18 Jul 2026 12:00:01 +0000 asID: 136070 IP address blocks: 103.157.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 10:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b0:a6:87:2e:12:b0:9f:dd:3e:7d:2d:74:28:62:c7:34:54:e4:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Jul 19 11:55:01 2025 GMT Not After : Jul 18 12:00:01 2026 GMT Subject: CN=053CAAA8269B72A478508750BA52E4A346CA2200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:13:8c:97:8a:2e:89:64:67:7d:f9:7b:de:b5: ce:b4:c4:1e:2b:9c:20:4d:81:19:15:d8:fe:ca:49: 50:29:9a:39:66:c4:25:2f:6b:9e:65:81:f2:13:c1: 8c:54:82:b0:f8:21:c6:c7:14:e0:05:23:92:42:6e: 3f:da:de:11:cd:d1:71:d9:24:40:4b:ea:3e:58:ee: 28:00:69:99:78:76:b0:2b:e3:46:32:c9:bb:98:2c: 14:4a:ec:bd:c2:e8:8c:db:93:3f:08:49:31:2b:db: 76:9f:c2:15:ae:b3:35:42:4a:a2:5c:77:80:3e:4f: 7f:87:6b:72:61:29:7d:9a:9c:46:6c:96:5f:dd:4c: 2f:ff:23:d6:d4:bb:4f:66:d9:ed:55:6c:f0:91:7f: cb:34:e6:87:0a:0d:fa:8d:21:f0:6d:fb:2e:b5:04: f8:e6:97:ef:16:f6:1c:82:0a:93:6e:ec:7d:66:02: 66:61:76:62:59:58:6d:55:c9:b7:b0:db:58:3f:17: 1d:2a:58:e6:c6:5a:0b:55:2d:c3:40:1e:72:f6:de: 3e:4b:db:1b:26:40:1f:de:79:96:8c:58:24:b8:4b: bf:c3:37:5f:29:c8:0d:b0:ad:54:19:ac:30:e3:7c: 86:43:6e:0e:d5:f9:fd:1b:19:14:b2:ee:71:a2:9b: c0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3C:AA:A8:26:9B:72:A4:78:50:87:50:BA:52:E4:A3:46:CA:22:00 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.55.0/24 Signature Algorithm: sha256WithRSAEncryption b0:4f:97:0c:f7:86:b6:cd:fc:3a:f8:31:4c:6a:6d:e8:83:a6: 72:5f:87:92:7c:54:f1:2d:23:a9:83:35:30:6a:5e:3a:3b:1f: 16:97:cc:29:18:89:a0:d2:bb:4d:f3:83:1a:1e:c3:e4:d8:e5: 3d:e5:04:db:fe:7d:33:9c:b5:36:80:cd:e1:13:87:07:93:07: d7:dc:b1:a4:e4:b3:d6:14:dc:5b:0b:2e:73:5f:33:76:23:ea: fb:07:33:3f:50:4f:bb:ef:b4:af:5a:dc:60:21:ec:41:52:b1: 5f:3c:fc:c5:5b:34:99:af:3e:67:32:79:ca:0e:91:a4:fa:6d: 32:90:12:c9:ad:ef:05:03:c9:6f:06:24:b7:7a:44:2e:58:0e: cf:34:b9:63:04:51:38:47:b3:00:69:d3:ea:1d:86:51:5c:33: 7f:e5:41:06:ec:d2:40:12:36:b1:d7:df:05:69:13:91:fa:1c: 48:3a:72:77:35:76:12:70:55:e0:f6:58:9a:f0:fe:17:ea:a5: 1a:c8:7f:77:4a:59:2e:8c:e2:b9:df:53:b1:9e:b3:1b:c0:73: c7:2f:d8:44:7b:33:48:1a:06:04:bc:6c:fc:fe:7a:5b:52:cb: 20:dc:d6:ed:5e:1e:5f:6b:a1:cd:cf:ea:25:cc:7b:19:70:b4: fa:32:f6:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO7Cmhy4SsJ/dPn0tdChixzRU5IMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA3MTkxMTU1MDFaFw0yNjA3MTgxMjAwMDFaMDMxMTAvBgNV BAMTKDA1M0NBQUE4MjY5QjcyQTQ3ODUwODc1MEJBNTJFNEEzNDZDQTIyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbE4yXii6JZGd9+Xvetc60xB4r nCBNgRkV2P7KSVApmjlmxCUva55lgfITwYxUgrD4IcbHFOAFI5JCbj/a3hHN0XHZ JEBL6j5Y7igAaZl4drAr40YyybuYLBRK7L3C6Izbkz8ISTEr23afwhWuszVCSqJc d4A+T3+Ha3JhKX2anEZsll/dTC//I9bUu09m2e1VbPCRf8s05ocKDfqNIfBt+y61 BPjml+8W9hyCCpNu7H1mAmZhdmJZWG1Vybew21g/Fx0qWObGWgtVLcNAHnL23j5L 2xsmQB/eeZaMWCS4S7/DN18pyA2wrVQZrDDjfIZDbg7V+f0bGRSy7nGim8DDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBTyqqCabcqR4UIdQulLko0bKIgAwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzExLTFlM2QtNGU1YS1h NGFjLTA1YTFjNTAyYWQyOC8wLzMxMzAzMzJlMzEzNTM3MmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ503MA0GCSqG SIb3DQEBCwUAA4IBAQCwT5cM94a2zfw6+DFMam3og6ZyX4eSfFTxLSOpgzUwal46 Ox8Wl8wpGImg0rtN84MaHsPk2OU95QTb/n0znLU2gM3hE4cHkwfX3LGk5LPWFNxb Cy5zXzN2I+r7BzM/UE+777SvWtxgIexBUrFfPPzFWzSZrz5nMnnKDpGk+m0ykBLJ re8FA8lvBiS3ekQuWA7PNLljBFE4R7MAadPqHYZRXDN/5UEG7NJAEjax198FaROR +hxIOnJ3NXYScFXg9lia8P4X6qUayH93SlkujOK531OxnrMbwHPHL9hEezNIGgYE vGz8/npbUssg3NbtXh5fa6HNz+olzHsZcLT6MvbZ -----END CERTIFICATE-----Generated at Sat Jul 26 11:32:54 2025 by rpki-client