$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa File: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: 92iPAvFoV8ZIni26oBvQBCMwojDuPtSnBMptGXhyF7g= Subject key identifier: DE:04:09:81:E5:F1:65:24:74:7F:6D:EE:FD:0C:D9:CB:D2:A4:6D:B1 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 214CB468AAF47D78B9DB5431395F991EF9EC9B89 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa Signing time: Tue 22 Jul 2025 06:02:24 +0000 ROA not before: Tue 22 Jul 2025 05:57:24 +0000 ROA not after: Tue 21 Jul 2026 06:02:24 +0000 asID: 136052 IP address blocks: 103.15.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:4c:b4:68:aa:f4:7d:78:b9:db:54:31:39:5f:99:1e:f9:ec:9b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Jul 22 05:57:24 2025 GMT Not After : Jul 21 06:02:24 2026 GMT Subject: CN=DE040981E5F16524747F6DEEFD0CD9CBD2A46DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:52:6c:c3:b7:fc:82:30:0a:56:b1:96:21:ac: b6:5b:2f:c1:e7:e5:58:ad:9f:69:f1:ff:50:18:96: c3:cd:96:c5:25:79:a5:70:8e:df:ad:1b:0d:5b:87: be:07:ca:48:87:d0:d4:3d:cd:61:5f:1d:3c:e6:5f: b2:7e:57:d2:5c:8c:59:04:13:db:54:54:04:80:70: ee:2a:19:ae:1c:0c:39:46:b3:94:28:ff:77:62:ed: 4c:97:97:75:1d:fc:07:b0:a2:04:fc:db:d2:b4:bf: 3c:5d:f6:d6:b8:3e:6c:aa:ef:7c:5e:0c:b4:eb:ac: e6:09:6d:04:b9:18:b1:50:7e:79:3b:55:c9:4a:39: ed:01:6c:3e:ee:45:ca:32:82:b7:9d:2b:88:ed:f8: f2:f4:aa:97:be:52:d5:82:75:b8:df:09:de:b0:26: f8:e0:63:72:30:c2:fd:1e:e0:f5:0a:9d:9e:4c:13: b2:68:18:15:2a:ce:5e:69:44:12:cb:8e:9b:01:aa: 76:d9:5f:81:3d:fb:d9:ba:be:a6:50:93:8d:38:24: 69:bb:34:8d:fb:8b:ee:c5:16:ef:8d:e5:18:3f:3b: 0f:68:cd:98:a8:55:b2:0d:3b:87:45:98:e1:de:9f: 6d:c8:fd:a9:d1:78:e9:88:3c:6f:1d:a2:cf:6d:82: e2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:04:09:81:E5:F1:65:24:74:7F:6D:EE:FD:0C:D9:CB:D2:A4:6D:B1 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.226.0/24 Signature Algorithm: sha256WithRSAEncryption 71:7f:1e:99:95:40:59:5d:44:6c:b3:1c:e5:88:0a:b6:5f:8b: ee:bd:fa:23:6f:aa:a8:68:cb:f5:83:98:82:e1:df:94:d1:0b: 13:ce:20:60:9e:a7:85:12:54:6c:8f:11:55:b4:4b:eb:52:4d: 0d:a1:4c:2e:10:04:b9:b2:7b:14:8b:2e:72:9c:1d:06:39:09: 3f:43:d4:3e:55:80:7c:0a:c8:f2:1c:f2:5f:8e:4c:c9:31:76: b0:f5:d6:11:1f:8e:da:98:51:88:82:7c:bc:ac:d1:94:96:b4: 9d:a7:02:1f:92:26:76:fc:31:5d:66:2f:d3:f5:c1:72:b9:60: 28:47:c0:14:25:56:b6:71:0e:69:e0:29:ec:57:9e:db:29:5b: 3e:0d:bf:68:d2:74:26:a3:73:34:8f:d3:36:e0:5c:17:07:c8: de:8c:15:90:3a:9f:cf:f2:70:4c:5f:a0:f5:fe:85:cb:00:15: 41:ac:76:5f:d0:ae:91:25:50:cd:b9:50:d5:53:1c:78:2d:2b: c5:7e:4c:79:0b:c5:94:b5:de:07:2a:3f:55:76:4b:fb:5f:8d: fa:61:61:a4:33:26:6b:77:a1:c4:0c:b5:ce:e5:bb:6b:c4:b6: 87:23:08:f8:f5:22:c4:dd:35:bf:5a:2d:ba:79:72:44:a0:6e: eb:14:d4:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIUy0aKr0fXi521QxOV+ZHvnsm4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTA3MjIwNTU3MjRaFw0yNjA3MjEwNjAyMjRaMDMxMTAvBgNV BAMTKERFMDQwOTgxRTVGMTY1MjQ3NDdGNkRFRUZEMENEOUNCRDJBNDZEQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEUmzDt/yCMApWsZYhrLZbL8Hn 5Vitn2nx/1AYlsPNlsUleaVwjt+tGw1bh74HykiH0NQ9zWFfHTzmX7J+V9JcjFkE E9tUVASAcO4qGa4cDDlGs5Qo/3di7UyXl3Ud/AewogT829K0vzxd9ta4Pmyq73xe DLTrrOYJbQS5GLFQfnk7VclKOe0BbD7uRcoygredK4jt+PL0qpe+UtWCdbjfCd6w JvjgY3Iwwv0e4PUKnZ5ME7JoGBUqzl5pRBLLjpsBqnbZX4E9+9m6vqZQk404JGm7 NI37i+7FFu+N5Rg/Ow9ozZioVbINO4dFmOHen23I/anReOmIPG8dos9tguLLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3gQJgeXxZSR0f23u/QzZy9KkbbEwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzEzNTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw/iMA0GCSqG SIb3DQEBCwUAA4IBAQBxfx6ZlUBZXURssxzliAq2X4vuvfojb6qoaMv1g5iC4d+U 0QsTziBgnqeFElRsjxFVtEvrUk0NoUwuEAS5snsUiy5ynB0GOQk/Q9Q+VYB8Csjy HPJfjkzJMXaw9dYRH47amFGIgny8rNGUlrSdpwIfkiZ2/DFdZi/T9cFyuWAoR8AU JVa2cQ5p4CnsV57bKVs+Db9o0nQmo3M0j9M24FwXB8jejBWQOp/P8nBMX6D1/oXL ABVBrHZf0K6RJVDNuVDVUxx4LSvFfkx5C8WUtd4HKj9Vdkv7X436YWGkMyZrd6HE DLXO5btrxLaHIwj49SLE3TW/Wi26eXJEoG7rFNSE -----END CERTIFICATE-----Generated at Wed Jul 23 12:03:39 2025 by rpki-client