$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: /PJu6AuSDnXhTeWg26VNks6i/shKNwV6BfRsxAn96JQ= Subject key identifier: C1:1D:1B:91:A5:C0:D2:1D:61:24:F4:97:72:AD:A1:1E:0D:D3:41:FB Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 21B1C3ED9D6ABC4E8BB0FC4C347C09EF41E6BFA3 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa Signing time: Wed 23 Jul 2025 06:00:00 +0000 ROA not before: Wed 23 Jul 2025 05:55:00 +0000 ROA not after: Wed 22 Jul 2026 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b1:c3:ed:9d:6a:bc:4e:8b:b0:fc:4c:34:7c:09:ef:41:e6:bf:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jul 23 05:55:00 2025 GMT Not After : Jul 22 06:00:00 2026 GMT Subject: CN=C11D1B91A5C0D21D6124F49772ADA11E0DD341FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d5:e4:04:90:b2:4a:0f:78:d0:24:ff:63:83: 1b:df:85:2b:80:15:31:45:13:d9:54:53:7f:31:6d: 86:bc:8a:04:fc:d7:68:54:bf:07:51:ba:b4:b4:eb: fb:7c:f1:08:1c:05:91:56:6d:d0:17:5e:73:fa:b7: ad:9f:19:a3:70:08:c3:59:be:90:d9:33:24:64:d7: 69:a7:36:fb:b8:b8:69:85:34:99:ac:9b:91:23:35: cf:e3:31:5c:d6:d4:1b:40:1f:1e:f2:a2:1c:63:97: 60:d7:c6:4f:06:ac:1a:37:82:42:dc:1e:20:55:1d: 7a:c6:46:7c:b3:1a:cc:94:ee:b3:30:80:85:15:c4: a5:b8:53:98:00:ff:d5:36:57:9b:67:5a:3f:e7:6e: ea:53:13:c7:4b:e1:33:a7:ea:c7:79:e5:59:08:6f: 92:a8:09:45:31:d1:32:05:62:f6:32:05:94:32:5f: a7:c0:f3:a5:cb:a8:c4:26:b3:7b:56:44:f4:46:f7: df:96:61:94:7f:fb:51:e3:41:50:bf:37:af:e9:08: 24:54:77:f8:a2:52:46:66:10:54:f6:40:a4:f5:b0: e4:fa:db:78:fe:d7:6d:43:90:95:c3:8c:c9:2a:fc: 5b:76:29:81:dc:0a:46:08:8c:ce:34:af:fe:5c:43: fa:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:1D:1B:91:A5:C0:D2:1D:61:24:F4:97:72:AD:A1:1E:0D:D3:41:FB X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/23 Signature Algorithm: sha256WithRSAEncryption 90:2d:cf:47:05:b2:e4:c7:bc:b0:16:b3:11:f3:23:85:72:5b: 68:c2:df:08:92:28:64:4f:87:2c:6d:7b:d6:70:ee:5b:05:70: 26:7b:21:4f:36:19:26:f2:08:88:67:76:67:9c:27:66:e0:a7: c6:06:c5:a7:f2:a3:43:90:c8:8a:a5:eb:88:16:96:58:e4:ea: 7e:e2:f8:56:8a:9e:0a:75:b4:1b:0d:a1:12:53:21:a1:67:ed: e1:36:9c:e0:65:24:b0:41:46:06:b5:15:a5:1b:df:da:32:95: f4:e6:1e:b7:4a:bc:b7:1e:76:5b:1a:ed:4d:1e:67:df:1b:40: 60:16:50:bb:c2:5d:26:ea:dd:0f:94:8d:c6:82:2c:a6:e0:cf: 9b:c0:de:95:be:7d:1b:72:0d:a3:76:f6:20:5f:a8:dc:5e:4d: 6b:4f:62:f0:7c:2a:a7:0d:ef:db:3f:7e:72:af:0b:b1:94:20: 21:c8:f8:35:62:8d:f6:1c:c6:0f:08:79:aa:09:e5:b0:5c:df: 1c:23:5e:63:da:81:84:39:ed:3f:cc:66:22:6e:23:9e:cb:a4: a3:3a:3f:a9:f1:73:1b:ee:c7:5b:28:11:64:c6:91:6e:8c:58: 83:02:e0:2f:3c:2b:eb:1b:b9:ca:21:03:4b:28:05:08:ba:66: 34:52:8f:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIbHD7Z1qvE6LsPxMNHwJ70Hmv6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNTA3MjMwNTU1MDBaFw0yNjA3MjIwNjAwMDBaMDMxMTAvBgNV BAMTKEMxMUQxQjkxQTVDMEQyMUQ2MTI0RjQ5NzcyQURBMTFFMEREMzQxRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx1eQEkLJKD3jQJP9jgxvfhSuA FTFFE9lUU38xbYa8igT812hUvwdRurS06/t88QgcBZFWbdAXXnP6t62fGaNwCMNZ vpDZMyRk12mnNvu4uGmFNJmsm5EjNc/jMVzW1BtAHx7yohxjl2DXxk8GrBo3gkLc HiBVHXrGRnyzGsyU7rMwgIUVxKW4U5gA/9U2V5tnWj/nbupTE8dL4TOn6sd55VkI b5KoCUUx0TIFYvYyBZQyX6fA86XLqMQms3tWRPRG99+WYZR/+1HjQVC/N6/pCCRU d/iiUkZmEFT2QKT1sOT623j+121DkJXDjMkq/Ft2KYHcCkYIjM40r/5cQ/pHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwR0bkaXA0h1hJPSXcq2hHg3TQfswHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnepgwDQYJ KoZIhvcNAQELBQADggEBAJAtz0cFsuTHvLAWsxHzI4VyW2jC3wiSKGRPhyxte9Zw 7lsFcCZ7IU82GSbyCIhndmecJ2bgp8YGxafyo0OQyIql64gWlljk6n7i+FaKngp1 tBsNoRJTIaFn7eE2nOBlJLBBRga1FaUb39oylfTmHrdKvLcedlsa7U0eZ98bQGAW ULvCXSbq3Q+UjcaCLKbgz5vA3pW+fRtyDaN29iBfqNxeTWtPYvB8KqcN79s/fnKv C7GUICHI+DVijfYcxg8IeaoJ5bBc3xwjXmPagYQ57T/MZiJuI57LpKM6P6nxcxvu x1soEWTGkW6MWIMC4C88K+sbucohA0soBQi6ZjRSjzA= -----END CERTIFICATE-----Generated at Wed Jul 23 12:26:12 2025 by rpki-client