$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa File: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (raw, json) Hash identifier: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490= Subject key identifier: 82:EC:34:93:C7:D4:84:EF:25:AB:E1:BA:A6:2D:94:C6:54:57:2F:EA Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 10C7A59DC9ACA50DF12C5D2E694DC5799FDF01E5 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa Signing time: Sat 19 Jul 2025 12:00:01 +0000 ROA not before: Sat 19 Jul 2025 11:55:01 +0000 ROA not after: Sat 18 Jul 2026 12:00:01 +0000 asID: 136070 IP address blocks: 103.84.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 10:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:c7:a5:9d:c9:ac:a5:0d:f1:2c:5d:2e:69:4d:c5:79:9f:df:01:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Jul 19 11:55:01 2025 GMT Not After : Jul 18 12:00:01 2026 GMT Subject: CN=82EC3493C7D484EF25ABE1BAA62D94C654572FEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:d7:1a:85:de:2e:11:73:65:cd:69:89:22: be:01:57:48:c8:d8:20:e3:a1:23:f1:ad:b4:7b:aa: 93:35:40:03:60:57:a8:40:36:d9:ba:ed:52:72:34: 70:09:60:4f:67:7e:05:f9:45:10:cb:de:70:7d:34: fa:e1:14:aa:82:86:dc:bc:4f:bc:38:b4:70:f6:67: c2:0e:12:aa:ec:4d:37:8e:ef:b3:4c:e5:b1:e8:21: e8:10:26:0b:5a:22:79:ed:9a:a1:36:57:05:6c:e2: ff:8c:0d:17:2f:1c:88:70:09:e1:50:50:27:1e:81: 9d:d7:65:77:aa:de:98:dd:5b:d0:07:7b:98:66:6f: 7e:c3:47:03:65:5c:33:f6:c7:ed:52:8b:c2:5a:9a: 9b:7f:6c:88:c9:09:33:a7:2b:92:1e:b0:c3:0c:e0: 6a:9e:85:a6:55:b1:fb:43:af:38:4e:fd:dd:12:d5: d8:0f:19:44:16:99:f2:8f:ec:e9:e8:ab:10:67:09: 10:49:63:36:58:de:97:b4:37:3f:f9:90:0d:be:2a: f7:49:9e:94:0b:e5:96:40:5f:b2:d0:88:c6:19:93: 3c:0f:35:3b:80:30:ac:dc:21:2e:69:01:53:a3:cf: 70:68:7b:a2:02:21:c6:95:18:1f:89:80:e3:92:54: b6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:EC:34:93:C7:D4:84:EF:25:AB:E1:BA:A6:2D:94:C6:54:57:2F:EA X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.116.0/24 Signature Algorithm: sha256WithRSAEncryption 80:88:1c:96:0e:f5:ff:47:19:80:ea:dc:ea:c1:70:cf:b8:df: 7b:81:b1:e1:62:cc:4d:92:0a:48:46:b4:00:b7:8e:a3:55:e7: f3:91:cb:04:d7:db:b8:19:a2:9e:f3:53:c9:09:06:7f:29:8e: b2:e8:95:d8:cd:62:a0:ca:f0:00:54:63:33:6d:16:5d:5e:1b: 98:64:32:9e:f1:75:52:f7:05:d8:ba:52:65:81:87:e8:63:14: 29:49:f5:32:73:c1:31:6f:a3:31:8f:5a:36:a5:0b:fd:64:d1: a8:c8:b7:6c:70:ae:3c:d1:a2:3f:a7:bf:23:ef:f7:73:5d:e3: f7:b7:27:0b:2f:e0:f2:28:c7:db:27:c8:45:b2:fe:db:4e:cd: 59:99:60:ba:43:f5:c3:d1:0b:6f:83:23:18:ab:95:9a:86:3c: 3b:2a:3f:58:71:a1:c0:bb:0e:ed:30:bc:3d:29:1e:07:c0:f8: e2:e9:d9:c2:df:05:50:c4:65:f5:a6:15:20:23:8d:24:85:74: 60:f0:3d:11:65:3e:4c:15:eb:a8:52:db:a0:17:d2:fb:b2:34: 7a:38:d7:d8:c5:1e:e7:f7:52:fe:6e:ed:34:3f:97:b0:e0:43: a7:65:17:6b:84:57:dd:18:99:ce:22:5c:40:93:8f:7f:29:42: 72:b3:2d:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEMelncmspQ3xLF0uaU3FeZ/fAeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA3MTkxMTU1MDFaFw0yNjA3MTgxMjAwMDFaMDMxMTAvBgNV BAMTKDgyRUMzNDkzQzdENDg0RUYyNUFCRTFCQUE2MkQ5NEM2NTQ1NzJGRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI1tcahd4uEXNlzWmJIr4BV0jI 2CDjoSPxrbR7qpM1QANgV6hANtm67VJyNHAJYE9nfgX5RRDL3nB9NPrhFKqChty8 T7w4tHD2Z8IOEqrsTTeO77NM5bHoIegQJgtaInntmqE2VwVs4v+MDRcvHIhwCeFQ UCcegZ3XZXeq3pjdW9AHe5hmb37DRwNlXDP2x+1Si8Jampt/bIjJCTOnK5IesMMM 4GqehaZVsftDrzhO/d0S1dgPGUQWmfKP7OnoqxBnCRBJYzZY3pe0Nz/5kA2+KvdJ npQL5ZZAX7LQiMYZkzwPNTuAMKzcIS5pAVOjz3Boe6ICIcaVGB+JgOOSVLY7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUguw0k8fUhO8lq+G6pi2UxlRXL+owHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzExLTFlM2QtNGU1YS1h NGFjLTA1YTFjNTAyYWQyOC8wLzMxMzAzMzJlMzgzNDJlMzEzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1R0MA0GCSqG SIb3DQEBCwUAA4IBAQCAiByWDvX/RxmA6tzqwXDPuN97gbHhYsxNkgpIRrQAt46j VefzkcsE19u4GaKe81PJCQZ/KY6y6JXYzWKgyvAAVGMzbRZdXhuYZDKe8XVS9wXY ulJlgYfoYxQpSfUyc8Exb6Mxj1o2pQv9ZNGoyLdscK480aI/p78j7/dzXeP3tycL L+DyKMfbJ8hFsv7bTs1ZmWC6Q/XD0QtvgyMYq5Wahjw7Kj9YcaHAuw7tMLw9KR4H wPji6dnC3wVQxGX1phUgI40khXRg8D0RZT5MFeuoUtugF9L7sjR6ONfYxR7n91L+ bu00P5ew4EOnZRdrhFfdGJnOIlxAk49/KUJysy1+ -----END CERTIFICATE-----Generated at Sat Jul 26 11:33:07 2025 by rpki-client