$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa File: 3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa (raw, json) Hash identifier: k0M2XXKfU9k9Nif7dWEUq5fC7OBAzB0Ygp6xrywPUqs= Subject key identifier: 65:D9:E6:4A:9B:D4:45:FA:03:9A:5C:FD:3C:37:D2:FA:C6:41:09:05 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 3CEEB62E2E8C3BA3C8FC27FC81B41DFA3FAB5437 Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa Signing time: Fri 11 Jul 2025 05:02:24 +0000 ROA not before: Fri 11 Jul 2025 04:57:24 +0000 ROA not after: Fri 10 Jul 2026 05:02:24 +0000 asID: 138884 IP address blocks: 103.138.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 04:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ee:b6:2e:2e:8c:3b:a3:c8:fc:27:fc:81:b4:1d:fa:3f:ab:54:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Jul 11 04:57:24 2025 GMT Not After : Jul 10 05:02:24 2026 GMT Subject: CN=65D9E64A9BD445FA039A5CFD3C37D2FAC6410905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:30:2e:c5:8d:78:f5:e5:e8:c2:d0:2b:76:64: a3:1c:d0:91:94:f0:dd:1f:9d:8d:8b:b5:82:62:0a: b4:e9:cf:b8:f5:4c:f3:6e:ec:87:f8:92:34:e6:62: 51:76:92:15:34:5d:46:0e:e5:92:a1:a7:d7:2e:1b: 27:5c:fb:ae:08:9a:49:ca:13:d9:c3:df:39:24:03: 88:56:0f:8b:17:59:20:35:0a:c7:4a:5a:a2:87:02: d4:43:d8:e9:56:11:fc:dc:45:de:97:3a:a2:21:ca: ad:bb:40:67:74:1f:a2:41:2b:b7:9b:ba:4f:49:04: 65:ca:8b:2e:fc:61:00:32:16:d0:9c:a1:37:27:f8: 9a:ed:03:db:0a:06:62:d1:3d:46:41:b6:bd:06:95: 50:a4:0a:12:44:d6:45:5f:9e:3a:74:a8:ca:e4:1e: 05:73:d9:89:b9:cb:2d:76:92:34:3f:56:8d:24:98: 76:b2:92:77:5e:47:7b:17:c5:5d:7b:45:4d:2e:6b: 06:53:53:3f:28:09:6b:e5:62:6b:62:04:80:5d:18: a3:6f:8d:c1:9d:b3:c3:49:ee:41:b5:0f:20:f9:b2: 32:8d:4a:49:0b:0a:70:a9:8a:09:44:ee:ed:89:99: cd:47:84:81:4c:05:5e:e9:ae:bd:40:5b:66:5f:5e: a6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D9:E6:4A:9B:D4:45:FA:03:9A:5C:FD:3C:37:D2:FA:C6:41:09:05 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.70.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:c5:a9:0c:c8:96:a7:22:d4:b6:95:1a:a0:d9:1c:a5:b9:f5: e1:db:8f:fb:97:67:ff:c3:c9:3e:11:09:ef:0a:3b:a1:3f:b5: c6:1c:ac:2f:40:0f:ef:3f:ec:ae:33:31:f3:3a:70:8d:a6:21: 08:07:b7:1d:2f:93:f4:bd:92:5d:d9:a8:e3:c4:d5:46:f7:a7: fd:fc:8a:d8:b4:fb:76:0d:2f:b5:85:73:37:a4:19:a2:cb:0c: 68:b0:95:b0:2c:99:2a:13:b4:63:4c:d2:30:0c:bd:d1:c3:a3: 93:0a:a6:86:57:89:a3:b3:1c:56:42:5b:b9:b5:89:dc:3b:f8: 32:d4:32:9f:1c:db:df:14:b0:aa:6a:9e:56:2e:81:36:8e:e1: 0e:dd:e7:cb:8d:21:89:bc:c7:c2:6d:d9:df:1c:56:6a:72:ca: 25:81:33:76:6c:3d:95:4f:7e:81:d3:ef:cb:e1:5d:d1:25:33: af:96:1c:61:d1:38:9d:67:f1:51:ad:3d:1c:fe:e2:30:11:bd: 61:b8:c7:05:aa:41:3b:84:28:71:2b:97:09:b4:0f:84:9f:e6: 9f:2a:04:08:57:10:7d:e6:85:98:28:d0:c5:bd:df:33:6e:58: 11:df:7d:bb:d7:db:fc:ad:39:89:9d:07:2c:d6:a6:b6:5d:50: 43:27:58:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPO62Li6MO6PI/Cf8gbQd+j+rVDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA3MTEwNDU3MjRaFw0yNjA3MTAwNTAyMjRaMDMxMTAvBgNV BAMTKDY1RDlFNjRBOUJENDQ1RkEwMzlBNUNGRDNDMzdEMkZBQzY0MTA5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqMC7FjXj15ejC0Ct2ZKMc0JGU 8N0fnY2LtYJiCrTpz7j1TPNu7If4kjTmYlF2khU0XUYO5ZKhp9cuGydc+64ImknK E9nD3zkkA4hWD4sXWSA1CsdKWqKHAtRD2OlWEfzcRd6XOqIhyq27QGd0H6JBK7eb uk9JBGXKiy78YQAyFtCcoTcn+JrtA9sKBmLRPUZBtr0GlVCkChJE1kVfnjp0qMrk HgVz2Ym5yy12kjQ/Vo0kmHaykndeR3sXxV17RU0uawZTUz8oCWvlYmtiBIBdGKNv jcGds8NJ7kG1DyD5sjKNSkkLCnCpiglE7u2Jmc1HhIFMBV7prr1AW2ZfXqbHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZdnmSpvURfoDmlz9PDfS+sZBCQUwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMxMzAzMzJlMzEzMzM4MmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4pGMA0GCSqG SIb3DQEBCwUAA4IBAQB/xakMyJanItS2lRqg2RylufXh24/7l2f/w8k+EQnvCjuh P7XGHKwvQA/vP+yuMzHzOnCNpiEIB7cdL5P0vZJd2ajjxNVG96f9/IrYtPt2DS+1 hXM3pBmiywxosJWwLJkqE7RjTNIwDL3Rw6OTCqaGV4mjsxxWQlu5tYncO/gy1DKf HNvfFLCqap5WLoE2juEO3efLjSGJvMfCbdnfHFZqcsolgTN2bD2VT36B0+/L4V3R JTOvlhxh0TidZ/FRrT0c/uIwEb1huMcFqkE7hChxK5cJtA+En+afKgQIVxB95oWY KNDFvd8zblgR332719v8rTmJnQcs1qa2XVBDJ1jw -----END CERTIFICATE-----Generated at Wed Jul 23 14:49:14 2025 by rpki-client