$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa File: 3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa (raw, json) Hash identifier: 0oC6hCIX4duxQdOJVzVwn+akSK/l98G+66CJXryC3ns= Subject key identifier: 09:52:29:B9:3D:F3:A4:D4:5F:B0:B0:53:3B:5F:51:A4:8B:77:61:2E Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 29BADA1D267A4DFBB16F4261B124EB36F8ED39BF Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa Signing time: Fri 11 Jul 2025 05:02:24 +0000 ROA not before: Fri 11 Jul 2025 04:57:24 +0000 ROA not after: Fri 10 Jul 2026 05:02:24 +0000 asID: 138884 IP address blocks: 103.138.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 04:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ba:da:1d:26:7a:4d:fb:b1:6f:42:61:b1:24:eb:36:f8:ed:39:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Jul 11 04:57:24 2025 GMT Not After : Jul 10 05:02:24 2026 GMT Subject: CN=095229B93DF3A4D45FB0B0533B5F51A48B77612E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:8d:7d:e8:81:ee:a6:61:50:0c:53:7d:06: 78:69:07:27:14:0b:23:d0:7a:43:0d:69:bf:14:14: ec:a9:bf:07:ff:ab:38:fd:45:10:f4:11:30:26:ff: 82:56:5a:eb:0f:84:ea:ae:66:17:69:28:44:a0:03: f6:b1:0e:74:ff:64:53:74:ac:75:51:91:a0:28:3a: 30:a0:d2:39:83:d0:62:33:00:af:de:4e:07:2a:9f: 70:49:91:f2:4c:7a:a1:3d:a8:23:1b:e1:e3:88:dc: 83:e5:ac:46:50:ab:41:11:ec:2b:4d:ab:6c:9d:a1: da:c0:18:7b:1f:05:62:29:dc:48:cf:88:10:c5:b8: 95:2f:bc:ae:df:75:61:ca:d2:c6:4a:f9:55:63:90: 28:dc:88:ef:22:be:3c:cb:91:00:c0:7b:c6:b7:cf: 8e:3a:02:69:3e:58:03:e6:8c:8c:0e:47:ee:ef:d5: 64:d9:0a:d0:c0:de:d6:2f:3f:13:f7:2a:b9:67:45: 2a:e5:d4:bc:3a:71:96:fa:7a:17:ad:01:52:c1:e2: e5:ed:f6:10:b8:38:26:a1:f8:c7:a2:de:97:ae:1d: 44:1b:c6:02:40:9c:d6:93:26:25:c0:28:13:be:b5: a7:3e:3f:76:0c:f8:bc:e1:60:b5:db:14:ed:ce:27: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:52:29:B9:3D:F3:A4:D4:5F:B0:B0:53:3B:5F:51:A4:8B:77:61:2E X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.70.0/23 Signature Algorithm: sha256WithRSAEncryption bb:b2:23:32:00:fa:92:cc:40:26:bb:3a:83:36:20:33:b6:3e: 8d:df:31:13:67:9e:fa:c0:bc:3d:f4:ac:74:94:7a:1d:5e:12: 69:cf:de:3e:66:67:bf:eb:ac:f4:cf:9b:6c:b4:03:f2:f7:0b: 02:7e:8f:06:e5:0a:fb:17:9e:8c:67:29:03:dc:59:2f:7c:a2: 36:08:e1:d2:10:1a:61:0d:48:95:5f:ac:25:59:9c:29:6c:4c: 37:6f:cf:e6:f0:26:c4:e6:85:45:66:72:c6:30:2b:33:8f:38: fa:90:58:94:69:47:89:2d:14:88:1f:d7:3e:f5:1f:c7:38:a6: 7d:50:e9:20:af:70:e5:5a:b5:ac:37:cc:3f:9d:94:cc:90:0d: 09:49:be:db:f1:79:6a:d1:eb:f7:cb:c8:81:7e:22:2f:d2:d0: a9:b1:58:78:ed:ef:6d:cb:bf:df:70:10:3a:b3:d7:ef:9c:ae: f2:f3:ee:37:2d:35:ad:4a:45:dd:e1:91:0e:6f:7c:7c:3c:93: ef:73:55:e9:a3:c1:e1:55:15:7e:a9:83:5a:3a:e1:41:51:cc: ad:d0:08:bf:5d:1d:f2:f0:f6:5c:83:1a:d3:f8:26:4c:df:e5: ef:74:18:47:1f:d2:84:49:ec:bf:6e:04:5e:b1:c7:04:1f:65: 12:70:1d:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKbraHSZ6Tfuxb0JhsSTrNvjtOb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA3MTEwNDU3MjRaFw0yNjA3MTAwNTAyMjRaMDMxMTAvBgNV BAMTKDA5NTIyOUI5M0RGM0E0RDQ1RkIwQjA1MzNCNUY1MUE0OEI3NzYxMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwUo196IHupmFQDFN9BnhpBycU CyPQekMNab8UFOypvwf/qzj9RRD0ETAm/4JWWusPhOquZhdpKESgA/axDnT/ZFN0 rHVRkaAoOjCg0jmD0GIzAK/eTgcqn3BJkfJMeqE9qCMb4eOI3IPlrEZQq0ER7CtN q2ydodrAGHsfBWIp3EjPiBDFuJUvvK7fdWHK0sZK+VVjkCjciO8ivjzLkQDAe8a3 z446Amk+WAPmjIwOR+7v1WTZCtDA3tYvPxP3KrlnRSrl1Lw6cZb6ehetAVLB4uXt 9hC4OCah+Mei3peuHUQbxgJAnNaTJiXAKBO+tac+P3YM+LzhYLXbFO3OJ+yPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCVIpuT3zpNRfsLBTO19RpIt3YS4wHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMxMzAzMzJlMzEzMzM4MmUzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzgzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4pGMA0GCSqG SIb3DQEBCwUAA4IBAQC7siMyAPqSzEAmuzqDNiAztj6N3zETZ576wLw99Kx0lHod XhJpz94+Zme/66z0z5tstAPy9wsCfo8G5Qr7F56MZykD3FkvfKI2COHSEBphDUiV X6wlWZwpbEw3b8/m8CbE5oVFZnLGMCszjzj6kFiUaUeJLRSIH9c+9R/HOKZ9UOkg r3DlWrWsN8w/nZTMkA0JSb7b8Xlq0ev3y8iBfiIv0tCpsVh47e9ty7/fcBA6s9fv nK7y8+43LTWtSkXd4ZEOb3x8PJPvc1Xpo8HhVRV+qYNaOuFBUcyt0Ai/XR3y8PZc gxrT+CZM3+XvdBhHH9KESey/bgResccEH2UScB2D -----END CERTIFICATE-----Generated at Wed Jul 23 14:44:31 2025 by rpki-client