$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa File: 3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: YVfqjrZZKlyKKNROGIdcGYIh7CG+YxaGHiuctjc25lk= Subject key identifier: 90:FB:CE:68:E4:74:A0:A9:95:96:83:31:8F:00:2C:A8:6F:AF:DB:57 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 5658C9369F3E17EB0EC064F9B2FFA9B84F4DEBE1 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa Signing time: Fri 04 Jul 2025 09:02:32 +0000 ROA not before: Fri 04 Jul 2025 08:57:32 +0000 ROA not after: Fri 03 Jul 2026 09:02:32 +0000 asID: 23679 IP address blocks: 103.103.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:58:c9:36:9f:3e:17:eb:0e:c0:64:f9:b2:ff:a9:b8:4f:4d:eb:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Jul 4 08:57:32 2025 GMT Not After : Jul 3 09:02:32 2026 GMT Subject: CN=90FBCE68E474A0A9959683318F002CA86FAFDB57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fb:36:ca:29:72:b4:36:72:50:73:b2:9e:94: a0:7f:6e:c7:fc:1e:f0:ed:05:51:9c:cd:0c:09:14: b7:d7:e3:a9:ab:43:66:32:15:d5:04:fd:ed:8f:36: 27:f6:1b:05:da:98:65:61:4d:41:a2:c9:20:2e:d6: 0f:dd:ff:22:91:6d:16:c5:4c:b7:58:f0:16:56:e5: 97:30:48:67:f3:70:98:bb:06:8d:93:6c:4f:35:0e: eb:e2:62:f0:e8:e3:2a:f8:25:de:00:c2:93:a9:5d: 11:2c:27:ea:79:8b:b1:27:19:97:06:f6:d1:3a:d2: b2:31:d3:50:8e:38:12:4b:65:5f:5f:a6:b9:04:8c: 53:f1:34:e4:02:22:b8:9f:b6:f5:33:e9:8e:80:27: ca:98:24:2e:86:da:9a:aa:7b:6b:d9:3d:26:d4:48: fc:73:05:e6:bb:76:26:47:73:70:a3:1b:10:7c:8f: 2d:b3:23:1a:80:19:82:9c:b7:96:99:48:bf:b8:c8: 46:57:29:cc:6f:fd:0a:47:dd:fd:e4:d0:d8:19:75: 69:34:61:80:6e:0a:53:bb:b4:08:df:c1:b3:cf:19: cd:90:04:92:6d:07:3c:29:ad:16:47:77:e6:29:cb: 78:c2:62:11:e4:d2:a8:b8:ab:82:80:46:22:27:26: bc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FB:CE:68:E4:74:A0:A9:95:96:83:31:8F:00:2C:A8:6F:AF:DB:57 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.139.0/24 Signature Algorithm: sha256WithRSAEncryption 60:44:c7:55:32:e2:4c:1a:fd:ff:31:b2:1a:fa:b8:0c:62:e7: 44:59:81:48:82:fd:a9:7e:d6:5a:38:7e:3e:42:bc:27:08:c8: 81:69:fe:8b:b5:85:19:9e:23:0f:57:33:fb:69:ac:8a:8f:94: 7a:09:f6:4a:1d:3a:7a:35:5a:9b:bc:c0:f9:59:85:92:cb:61: 44:ba:d4:24:eb:ed:4d:ae:e3:f1:82:55:96:e3:83:17:6c:32: 0e:59:6c:fb:3c:d7:ec:ed:ef:cf:8f:ba:81:d8:3a:c5:51:0f: d8:f8:9b:88:4a:df:eb:6c:2a:c9:fa:f2:71:70:30:03:41:55: 1a:91:32:81:9d:c9:f9:86:35:19:d0:fc:c1:2c:e2:d8:5b:9a: e4:a5:41:2a:b2:21:78:d0:9e:89:e6:9a:c6:ed:f3:48:27:8e: d1:b4:dc:0b:36:d4:7c:65:f7:8d:8e:07:7b:4b:bd:89:1c:d1: e7:0c:12:36:ee:a8:6d:32:bb:83:3c:cd:df:66:21:70:41:e5: 72:ee:b1:90:c9:f9:54:43:37:b2:5d:f5:9d:06:4d:d5:d2:a9: 66:c1:91:d9:01:a1:b0:d4:cf:d2:f4:61:63:50:5b:3a:35:59: 39:ab:4a:ab:a5:60:7d:4c:c7:4f:63:fe:24:02:ba:55:f6:3e: f3:de:37:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVljJNp8+F+sOwGT5sv+puE9N6+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNTA3MDQwODU3MzJaFw0yNjA3MDMwOTAyMzJaMDMxMTAvBgNV BAMTKDkwRkJDRTY4RTQ3NEEwQTk5NTk2ODMzMThGMDAyQ0E4NkZBRkRCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6+zbKKXK0NnJQc7KelKB/bsf8 HvDtBVGczQwJFLfX46mrQ2YyFdUE/e2PNif2GwXamGVhTUGiySAu1g/d/yKRbRbF TLdY8BZW5ZcwSGfzcJi7Bo2TbE81DuviYvDo4yr4Jd4AwpOpXREsJ+p5i7EnGZcG 9tE60rIx01COOBJLZV9fprkEjFPxNOQCIriftvUz6Y6AJ8qYJC6G2pqqe2vZPSbU SPxzBea7diZHc3CjGxB8jy2zIxqAGYKct5aZSL+4yEZXKcxv/QpH3f3k0NgZdWk0 YYBuClO7tAjfwbPPGc2QBJJtBzwprRZHd+Ypy3jCYhHk0qi4q4KARiInJrwrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkPvOaOR0oKmVloMxjwAsqG+v21cwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzEzMDMzMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2eLMA0GCSqG SIb3DQEBCwUAA4IBAQBgRMdVMuJMGv3/MbIa+rgMYudEWYFIgv2pftZaOH4+Qrwn CMiBaf6LtYUZniMPVzP7aayKj5R6CfZKHTp6NVqbvMD5WYWSy2FEutQk6+1NruPx glWW44MXbDIOWWz7PNfs7e/Pj7qB2DrFUQ/Y+JuISt/rbCrJ+vJxcDADQVUakTKB ncn5hjUZ0PzBLOLYW5rkpUEqsiF40J6J5prG7fNIJ47RtNwLNtR8ZfeNjgd7S72J HNHnDBI27qhtMruDPM3fZiFwQeVy7rGQyflUQzeyXfWdBk3V0qlmwZHZAaGw1M/S 9GFjUFs6NVk5q0qrpWB9TMdPY/4kArpV9j7z3jcu -----END CERTIFICATE-----Generated at Tue Jul 22 12:26:28 2025 by rpki-client