$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e35352e33362e302f32322d3234203d3e20313336303532.roa File: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (raw, json) Hash identifier: Co7QnH1utLTo+OaXOBXDzn1d7u1X3FX72sJ2/V1LcRI= Subject key identifier: 0C:04:83:89:EB:BB:35:B9:5A:E9:7C:23:1B:21:D2:B9:26:6F:5D:C9 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 1127C77C2DF0162AB996857B69C4C01D01CF48BA Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e35352e33362e302f32322d3234203d3e20313336303532.roa Signing time: Tue 22 Jul 2025 06:02:24 +0000 ROA not before: Tue 22 Jul 2025 05:57:24 +0000 ROA not after: Tue 21 Jul 2026 06:02:24 +0000 asID: 136052 IP address blocks: 103.55.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:27:c7:7c:2d:f0:16:2a:b9:96:85:7b:69:c4:c0:1d:01:cf:48:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Jul 22 05:57:24 2025 GMT Not After : Jul 21 06:02:24 2026 GMT Subject: CN=0C048389EBBB35B95AE97C231B21D2B9266F5DC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:29:97:86:c2:37:5f:6f:4b:21:05:c6:36: 00:44:8e:80:ca:83:ec:72:20:3f:ab:2d:92:6e:cc: 6f:27:d5:c2:21:ea:07:69:29:06:ab:1e:b2:ed:ac: 5f:17:fa:07:85:35:74:08:ba:42:2f:70:3f:f7:9f: bb:68:a4:70:07:69:be:f9:fe:62:85:5e:2d:67:e6: ef:eb:91:a1:22:3b:0b:aa:78:63:83:c6:4f:23:5a: bb:3d:7c:5b:13:d0:b4:58:81:0a:c6:24:c4:10:66: f3:74:db:a2:7d:00:f7:6a:79:04:73:1b:7a:7e:9d: d8:f9:dc:28:06:b2:78:75:7b:24:a4:40:ce:74:2d: ef:c5:af:09:23:8e:54:ae:ff:73:eb:a0:bd:00:01: cc:90:b7:b3:cd:c8:3d:10:7b:f8:4f:c3:1f:33:16: 8a:79:81:bf:13:a5:d1:91:44:0b:28:fc:f1:a8:60: a8:0e:77:2a:15:3d:0f:a6:14:47:ce:86:b7:2b:ea: 70:87:61:ed:b0:b4:a7:c1:95:7e:76:a8:b7:cb:ec: 5e:fb:74:bd:5f:c4:4e:41:24:63:cf:2c:a6:b9:a5: 8a:31:bd:c1:3c:7b:cc:21:14:58:b7:22:f6:22:91: 35:4d:2b:c0:aa:45:c4:78:0a:85:5f:54:c7:85:a2: 93:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:04:83:89:EB:BB:35:B9:5A:E9:7C:23:1B:21:D2:B9:26:6F:5D:C9 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e35352e33362e302f32322d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.36.0/22 Signature Algorithm: sha256WithRSAEncryption 40:b0:c9:29:30:52:64:61:45:ab:14:38:2b:d5:4b:85:bb:91: 3a:88:e3:6c:b4:16:c2:74:f8:f6:19:1e:97:d5:8a:a9:c5:c6: ed:6c:5c:9f:28:35:ce:3e:b8:62:b5:58:a7:82:0a:79:16:43: 27:e9:db:af:24:d1:03:68:a8:31:cd:c9:d5:33:1e:d3:84:4d: 52:c6:4e:f0:1b:ad:86:b2:2a:08:9b:27:56:38:c8:d3:96:c9: d7:b3:7a:ad:07:69:a1:45:e1:a8:78:e7:b3:89:2d:17:bc:77: ec:a5:34:9f:9a:54:7d:ac:50:3a:b0:82:22:8e:06:e8:10:88: 00:14:b6:a2:76:d4:1a:24:cd:76:6a:d4:2d:ea:e8:1c:3a:e5: cc:8c:fa:72:51:a1:b9:36:28:51:03:73:d9:69:b8:95:02:32: b9:29:40:67:9d:95:93:87:33:78:28:b1:69:f4:eb:70:c6:34: 14:50:fc:95:a7:08:3e:cb:2f:f6:fc:c9:4a:e3:50:f4:f5:f2: 2f:8c:21:8b:9e:53:8a:be:ad:8a:4e:4b:47:23:60:39:e0:b1: 12:76:3b:e7:17:a1:40:c4:fd:e2:5d:de:b0:e8:0d:23:c9:fc: c6:e4:9e:f1:ab:ce:04:7a:cc:94:90:1c:ad:10:53:fb:b4:77: d4:de:49:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUESfHfC3wFiq5loV7acTAHQHPSLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTA3MjIwNTU3MjRaFw0yNjA3MjEwNjAyMjRaMDMxMTAvBgNV BAMTKDBDMDQ4Mzg5RUJCQjM1Qjk1QUU5N0MyMzFCMjFEMkI5MjY2RjVEQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8LCmXhsI3X29LIQXGNgBEjoDK g+xyID+rLZJuzG8n1cIh6gdpKQarHrLtrF8X+geFNXQIukIvcD/3n7topHAHab75 /mKFXi1n5u/rkaEiOwuqeGODxk8jWrs9fFsT0LRYgQrGJMQQZvN026J9APdqeQRz G3p+ndj53CgGsnh1eySkQM50Le/FrwkjjlSu/3ProL0AAcyQt7PNyD0Qe/hPwx8z Fop5gb8TpdGRRAso/PGoYKgOdyoVPQ+mFEfOhrcr6nCHYe2wtKfBlX52qLfL7F77 dL1fxE5BJGPPLKa5pYoxvcE8e8whFFi3IvYikTVNK8CqRcR4CoVfVMeFopOTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDASDieu7Nbla6XwjGyHSuSZvXckwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzUzNTJlMzMzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc3JDANBgkqhkiG 9w0BAQsFAAOCAQEAQLDJKTBSZGFFqxQ4K9VLhbuROojjbLQWwnT49hkel9WKqcXG 7Wxcnyg1zj64YrVYp4IKeRZDJ+nbryTRA2ioMc3J1TMe04RNUsZO8ButhrIqCJsn VjjI05bJ17N6rQdpoUXhqHjns4ktF7x37KU0n5pUfaxQOrCCIo4G6BCIABS2onbU GiTNdmrULeroHDrlzIz6clGhuTYoUQNz2Wm4lQIyuSlAZ52Vk4czeCixafTrcMY0 FFD8lacIPssv9vzJSuNQ9PXyL4whi55Tir6tik5LRyNgOeCxEnY75xehQMT94l3e sOgNI8n8xuSe8avOBHrMlJAcrRBT+7R31N5JlA== -----END CERTIFICATE-----Generated at Wed Jul 23 12:03:12 2025 by rpki-client