$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: s4bQxfKSzhThJnV2s35QtgCBE4otyhr6xeMzoqnFm8Y= Subject key identifier: A0:F2:5E:55:DC:4A:58:B2:7E:9B:6B:1B:69:F8:3C:C0:1B:87:00:7D Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 037D6C68DA358E11C0C652F5105B6603B0364359 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa Signing time: Tue 15 Jul 2025 10:00:53 +0000 ROA not before: Tue 15 Jul 2025 09:55:53 +0000 ROA not after: Tue 14 Jul 2026 10:00:53 +0000 asID: 38750 IP address blocks: 103.213.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 05:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:7d:6c:68:da:35:8e:11:c0:c6:52:f5:10:5b:66:03:b0:36:43:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Jul 15 09:55:53 2025 GMT Not After : Jul 14 10:00:53 2026 GMT Subject: CN=A0F25E55DC4A58B27E9B6B1B69F83CC01B87007D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:fb:ed:1c:94:da:9d:1a:c1:a3:9d:2b:37: f0:0d:8d:3a:7a:c3:54:0b:dd:5f:7f:f6:61:ed:0c: ca:c4:18:5c:2a:3a:c7:01:43:6f:ab:77:8e:8c:6a: 45:25:95:25:30:61:82:0b:40:b4:d2:70:3b:cf:ee: 79:6a:89:6c:06:e8:3e:54:1c:72:f9:64:54:4f:44: 4a:5f:24:e4:dc:4a:5d:01:41:f3:58:84:a9:ed:bb: 52:bd:1a:4f:cf:75:0a:7f:0c:d5:40:bc:69:a8:a8: 9f:01:ae:9c:23:61:6b:3c:f8:49:bd:af:68:98:4d: b1:57:11:72:96:8a:46:44:3c:b9:d5:1c:1d:e4:4e: 87:ad:bf:ee:06:a2:f4:90:b6:fd:d0:23:ed:fe:b3: 8b:73:a9:cb:80:77:7d:f8:0e:7e:f1:1e:78:d4:1a: 20:cc:66:92:ac:97:70:4d:de:54:21:51:a7:13:72: 8c:df:07:2c:00:bc:52:c7:6e:a4:f1:06:9b:61:a4: 07:7c:9f:fd:6a:63:71:79:9c:fa:a8:63:75:73:7f: 98:97:e4:b7:c3:f2:4e:57:2a:4a:cc:bb:3e:9b:bd: a6:c0:c7:91:f6:b5:a8:44:c3:d9:9a:4f:6c:cd:e6: 55:2e:0e:b2:ce:83:e0:9f:cf:41:87:82:b1:15:79: 21:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F2:5E:55:DC:4A:58:B2:7E:9B:6B:1B:69:F8:3C:C0:1B:87:00:7D X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.119.0/24 Signature Algorithm: sha256WithRSAEncryption 11:ab:9d:b7:3c:46:e4:a4:fc:55:01:c8:93:10:45:32:97:35: 56:2c:6c:4f:9b:44:a8:59:85:2c:69:16:45:3b:a6:5c:3b:6a: ee:7a:1f:b8:4d:df:d3:80:03:c0:2d:7a:3f:9a:67:4f:b0:23: dc:fe:b4:df:8a:19:34:9b:ca:3d:64:1a:83:32:66:3e:69:2c: 36:b1:24:c6:e0:fd:ef:fa:eb:dd:31:5a:d8:07:b4:4b:07:47: 2c:4c:ba:bc:e1:79:fc:3a:47:14:82:b7:4b:57:23:97:ab:99: 4c:8e:38:fd:43:03:3b:2e:1a:8c:de:1a:03:7e:6d:6b:2a:a8: 3c:bc:c9:90:95:15:0a:9f:ae:0e:00:e0:0d:57:e5:b7:2a:20: 14:a0:cf:e7:63:39:43:a4:83:24:21:f3:3f:dc:78:25:e6:99: 4a:0f:05:90:5b:ed:58:10:87:fa:c2:a4:99:bb:fe:2f:39:b4: 87:c0:9a:16:c9:31:fc:48:c2:b4:bd:7a:1b:2e:78:7c:fa:b6: 42:19:88:f3:7b:ea:44:52:e7:a7:d0:8b:b4:13:43:e9:f6:7d: d7:bc:1b:bb:58:c5:03:f8:7c:3b:31:df:f4:d6:b4:ac:ef:72: 33:28:60:dc:7a:f7:ad:8e:17:98:3a:15:d5:7e:87:68:5c:d8: 44:48:89:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA31saNo1jhHAxlL1EFtmA7A2Q1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTA3MTUwOTU1NTNaFw0yNjA3MTQxMDAwNTNaMDMxMTAvBgNV BAMTKEEwRjI1RTU1REM0QTU4QjI3RTlCNkIxQjY5RjgzQ0MwMUI4NzAwN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6WfvtHJTanRrBo50rN/ANjTp6 w1QL3V9/9mHtDMrEGFwqOscBQ2+rd46MakUllSUwYYILQLTScDvP7nlqiWwG6D5U HHL5ZFRPREpfJOTcSl0BQfNYhKntu1K9Gk/PdQp/DNVAvGmoqJ8BrpwjYWs8+Em9 r2iYTbFXEXKWikZEPLnVHB3kToetv+4GovSQtv3QI+3+s4tzqcuAd334Dn7xHnjU GiDMZpKsl3BN3lQhUacTcozfBywAvFLHbqTxBpthpAd8n/1qY3F5nPqoY3Vzf5iX 5LfD8k5XKkrMuz6bvabAx5H2tahEw9maT2zN5lUuDrLOg+Cfz0GHgrEVeSHPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoPJeVdxKWLJ+m2sbafg8wBuHAH0wHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V3MA0GCSqG SIb3DQEBCwUAA4IBAQARq523PEbkpPxVAciTEEUylzVWLGxPm0SoWYUsaRZFO6Zc O2rueh+4Td/TgAPALXo/mmdPsCPc/rTfihk0m8o9ZBqDMmY+aSw2sSTG4P3v+uvd MVrYB7RLB0csTLq84Xn8OkcUgrdLVyOXq5lMjjj9QwM7LhqM3hoDfm1rKqg8vMmQ lRUKn64OAOANV+W3KiAUoM/nYzlDpIMkIfM/3Hgl5plKDwWQW+1YEIf6wqSZu/4v ObSHwJoWyTH8SMK0vXobLnh8+rZCGYjze+pEUuen0Iu0E0Pp9n3XvBu7WMUD+Hw7 Md/01rSs73IzKGDcevetjheYOhXVfodoXNhESIlU -----END CERTIFICATE-----Generated at Wed Jul 23 23:21:25 2025 by rpki-client