$ rpki-client -vvf repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/3130332e3137372e35362e302f32332d3234203d3e20313437313532.roa File: 3130332e3137372e35362e302f32332d3234203d3e20313437313532.roa (raw, json) Hash identifier: 3wY6YhGHW2FNk89iUabtEb3voGoMeSvrsN+5cal1TNI= Subject key identifier: FF:88:E5:66:B7:F2:BE:50:04:1B:1C:C0:EC:F1:1C:A2:23:64:4B:D7 Certificate issuer: /CN=E64D2B2A02A172B64A71F75C753571C841216A21 Certificate serial: 31F71A7E5200E4246E935A51BA2982337CF1E3C5 Authority key identifier: E6:4D:2B:2A:02:A1:72:B6:4A:71:F7:5C:75:35:71:C8:41:21:6A:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E64D2B2A02A172B64A71F75C753571C841216A21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/3130332e3137372e35362e302f32332d3234203d3e20313437313532.roa Signing time: Fri 18 Jul 2025 09:00:02 +0000 ROA not before: Fri 18 Jul 2025 08:55:02 +0000 ROA not after: Fri 17 Jul 2026 09:00:02 +0000 asID: 147152 IP address blocks: 103.177.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/E64D2B2A02A172B64A71F75C753571C841216A21.crl rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/E64D2B2A02A172B64A71F75C753571C841216A21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E64D2B2A02A172B64A71F75C753571C841216A21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f7:1a:7e:52:00:e4:24:6e:93:5a:51:ba:29:82:33:7c:f1:e3:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E64D2B2A02A172B64A71F75C753571C841216A21 Validity Not Before: Jul 18 08:55:02 2025 GMT Not After : Jul 17 09:00:02 2026 GMT Subject: CN=FF88E566B7F2BE50041B1CC0ECF11CA223644BD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:24:15:cd:83:a9:c4:55:32:77:61:e3:6f: 8e:9c:ec:88:3f:e9:2b:0d:6d:7f:56:eb:fe:38:bc: e1:c7:6e:77:51:66:76:d3:c0:7a:35:e8:7a:08:7d: a4:21:5e:50:ea:11:8f:ba:47:78:2e:c5:0f:a2:8b: f0:b7:1b:32:97:3d:62:4c:44:ac:49:c3:24:34:e5: 46:b8:12:1d:c4:2d:7c:6c:89:19:05:23:0a:df:61: dc:d5:b4:41:9a:38:57:42:bf:9c:b5:a1:5e:d1:54: 11:84:54:48:61:0a:3b:64:d2:6a:40:a9:e8:71:7b: b9:18:0c:3f:80:a4:5c:2a:32:0f:85:66:60:a5:fc: bc:1d:7c:2a:6d:bb:b8:97:f4:dc:40:d9:8b:f9:fa: 18:8c:7f:2f:23:79:55:12:52:4b:a3:8f:7f:6c:48: 9f:c4:68:94:20:8b:a7:02:6d:03:23:73:23:83:31: 2b:9a:c0:30:c9:73:88:a1:11:7f:49:38:e1:83:5c: 65:a1:33:e0:57:78:b1:ad:5d:cc:76:f8:1a:f3:7e: d9:c4:bb:af:e4:a5:ed:9f:59:17:1c:ec:63:b0:9e: 6d:b6:9a:37:35:eb:07:18:03:0d:95:ea:51:9f:da: ca:3b:a0:65:1c:82:7c:6a:04:e9:0f:7a:2e:d1:10: 7f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:88:E5:66:B7:F2:BE:50:04:1B:1C:C0:EC:F1:1C:A2:23:64:4B:D7 X509v3 Authority Key Identifier: keyid:E6:4D:2B:2A:02:A1:72:B6:4A:71:F7:5C:75:35:71:C8:41:21:6A:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/E64D2B2A02A172B64A71F75C753571C841216A21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E64D2B2A02A172B64A71F75C753571C841216A21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/3130332e3137372e35362e302f32332d3234203d3e20313437313532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.56.0/23 Signature Algorithm: sha256WithRSAEncryption bc:af:22:da:62:7e:59:97:45:00:5d:f4:e1:f6:0e:29:67:6c: e7:a2:dc:45:ad:2d:c4:fd:70:d2:f1:5b:b2:23:e4:c0:af:66: d0:f4:f6:dd:6f:a6:99:4b:3d:5c:21:ff:2c:46:66:10:76:69: 3e:63:02:f4:31:da:2a:70:1c:a7:b6:91:3c:05:77:37:2b:ff: 5d:75:aa:96:2c:5f:d0:ce:3a:f7:0b:a3:60:e7:a8:f3:7a:04: f6:14:5b:eb:26:98:71:0e:53:05:43:ab:d1:d0:53:6f:68:9d: 6c:cd:f0:b0:e6:92:10:98:67:8b:b2:32:cb:a2:d9:7e:64:16: b9:dd:5e:03:09:84:2d:7e:6f:c5:cd:b2:01:48:b2:3f:8b:de: 0d:fa:cf:dc:5d:30:c2:01:3d:0e:5b:51:d4:f0:d2:ba:6f:64: c1:3f:57:df:21:28:27:d8:ab:64:44:e6:dd:d8:c5:7b:dc:99: fb:79:a0:e1:01:60:f9:87:35:1f:d5:69:65:76:2a:79:b4:89: 6e:7b:46:a5:c1:ed:9e:22:25:5e:92:52:4b:52:43:fe:43:f3: 78:b2:e2:95:8d:9c:95:ef:bf:0b:fe:9a:13:a2:08:13:13:63: 63:9a:15:f2:38:18:f7:4a:90:8f:83:a1:b5:05:dd:a1:0a:b1: 57:aa:bb:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMfcaflIA5CRuk1pRuimCM3zx48UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTY0RDJCMkEwMkExNzJCNjRBNzFGNzVDNzUzNTcxQzg0 MTIxNkEyMTAeFw0yNTA3MTgwODU1MDJaFw0yNjA3MTcwOTAwMDJaMDMxMTAvBgNV BAMTKEZGODhFNTY2QjdGMkJFNTAwNDFCMUNDMEVDRjExQ0EyMjM2NDRCRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSiQVzYOpxFUyd2Hjb46c7Ig/ 6SsNbX9W6/44vOHHbndRZnbTwHo16HoIfaQhXlDqEY+6R3guxQ+ii/C3GzKXPWJM RKxJwyQ05Ua4Eh3ELXxsiRkFIwrfYdzVtEGaOFdCv5y1oV7RVBGEVEhhCjtk0mpA qehxe7kYDD+ApFwqMg+FZmCl/LwdfCptu7iX9NxA2Yv5+hiMfy8jeVUSUkujj39s SJ/EaJQgi6cCbQMjcyODMSuawDDJc4ihEX9JOOGDXGWhM+BXeLGtXcx2+BrzftnE u6/kpe2fWRcc7GOwnm22mjc16wcYAw2V6lGf2so7oGUcgnxqBOkPei7REH9rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/4jlZrfyvlAEGxzA7PEcoiNkS9cwHwYDVR0j BBgwFoAU5k0rKgKhcrZKcfdcdTVxyEEhaiEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Njc1MGJmOS05ZjU4LTQyOGEtODk1Mi04YjU1NTVlZjdjYTcvMC9FNjREMkIyQTAy QTE3MkI2NEE3MUY3NUM3NTM1NzFDODQxMjE2QTIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTY0RDJCMkEwMkExNzJCNjRBNzFGNzVDNzUzNTcxQzg0MTIx NkEyMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2NzUwYmY5LTlmNTgtNDI4YS04 OTUyLThiNTU1NWVmN2NhNy8wLzMxMzAzMzJlMzEzNzM3MmUzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7E4MA0GCSqG SIb3DQEBCwUAA4IBAQC8ryLaYn5Zl0UAXfTh9g4pZ2znotxFrS3E/XDS8VuyI+TA r2bQ9Pbdb6aZSz1cIf8sRmYQdmk+YwL0MdoqcByntpE8BXc3K/9ddaqWLF/Qzjr3 C6Ng56jzegT2FFvrJphxDlMFQ6vR0FNvaJ1szfCw5pIQmGeLsjLLotl+ZBa53V4D CYQtfm/FzbIBSLI/i94N+s/cXTDCAT0OW1HU8NK6b2TBP1ffISgn2KtkRObd2MV7 3Jn7eaDhAWD5hzUf1Wlldip5tIlue0alwe2eIiVeklJLUkP+Q/N4suKVjZyV778L /poToggTE2NjmhXyOBj3SpCPg6G1Bd2hCrFXqrsN -----END CERTIFICATE-----Generated at Mon Jul 21 23:52:05 2025 by rpki-client