$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa File: 3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa (raw, json) Hash identifier: nDnbOuaynmDOf79AlnD7cR3kAc1DCFukO1UkfayfyKg= Subject key identifier: 80:2E:69:91:AB:DF:20:3A:CE:63:54:99:09:F1:DF:B6:09:18:69:8B Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 3460045E8921E92D02BDB736C6B9B4AB9F48BD0C Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa Signing time: Mon 21 Jul 2025 05:02:25 +0000 ROA not before: Mon 21 Jul 2025 04:57:25 +0000 ROA not after: Mon 20 Jul 2026 05:02:25 +0000 asID: 131706 IP address blocks: 103.102.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:60:04:5e:89:21:e9:2d:02:bd:b7:36:c6:b9:b4:ab:9f:48:bd:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Jul 21 04:57:25 2025 GMT Not After : Jul 20 05:02:25 2026 GMT Subject: CN=802E6991ABDF203ACE63549909F1DFB60918698B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:49:f0:ce:84:a9:fb:32:b0:1a:26:6b:6a:07: 78:82:47:b8:5f:83:6c:a4:47:08:9c:e3:cb:a5:05: ab:70:c1:07:67:f5:65:6a:c0:52:2e:00:1e:74:f6: dc:4e:f1:21:93:03:9d:67:8c:7a:20:1c:7e:73:34: 3a:24:df:9a:42:fc:e4:9a:09:06:05:39:87:55:7e: b8:83:b1:6d:d3:7a:7c:f2:4f:d8:9d:f7:fe:ad:88: 3f:98:b9:0b:62:dc:65:94:2f:86:8b:3e:61:44:92: 8c:e1:8e:03:80:85:e2:f2:e3:d2:02:2e:ce:8b:e5: 38:8e:12:21:9d:49:0f:0d:e2:89:bd:36:39:ed:f7: e7:8c:d3:a7:55:d6:5c:e5:74:9b:7e:d6:8f:fe:8b: 8f:47:26:24:29:19:cf:f9:cd:31:7a:eb:5e:82:19: 6b:4f:77:4e:2d:21:b4:a7:41:95:ec:99:f2:5c:df: 1b:be:35:17:fe:37:d4:b8:c7:e1:13:72:14:8b:50: ba:ab:9c:0f:cd:5c:bd:c1:9f:6e:cc:97:64:c2:33: 81:f5:17:2b:b3:96:05:f0:e5:42:57:ea:0f:c5:6c: 6e:0e:94:ab:a2:11:ec:d9:8f:df:b2:21:b5:2d:0b: 37:37:11:98:72:07:8c:4a:70:4e:93:83:1f:65:f8: db:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2E:69:91:AB:DF:20:3A:CE:63:54:99:09:F1:DF:B6:09:18:69:8B X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.150.0/23 Signature Algorithm: sha256WithRSAEncryption b0:89:b4:45:b8:4a:95:75:87:6c:19:5d:6b:51:81:8a:49:92: fd:e0:81:35:e6:dd:87:b0:5d:0b:52:d2:27:90:f5:a3:de:d5: c2:d8:48:62:74:67:87:9c:ce:b4:e0:f1:f8:53:20:d3:a8:45: 47:1d:8e:df:36:1c:cf:a4:84:4b:b9:9e:24:2a:4b:a8:78:4a: 7d:41:b5:49:a4:c9:e8:3c:48:ad:d6:b8:f9:5b:80:1c:0e:29: ca:73:68:59:e9:13:23:2f:7b:02:83:b7:43:08:75:79:a3:1f: 0b:40:5b:59:41:b7:08:22:6b:36:47:37:54:17:d5:ed:cd:85: 4f:62:71:b0:39:cf:37:61:ff:fe:d9:9e:a3:77:9e:bf:4d:15: 02:15:77:54:f6:a3:e2:46:41:e3:5a:73:23:a3:63:99:1e:74: 5d:b3:cd:1a:4c:3d:dd:0e:e2:72:0f:ff:e2:86:7a:59:43:81: 7b:ff:1d:d5:b2:7b:85:80:20:61:be:ac:ea:3f:ea:40:85:57: 7e:15:c1:44:89:09:b8:83:9d:a5:31:7c:8c:d9:9a:e0:3a:bc: 5a:17:b4:f8:81:28:13:fd:73:f1:5c:52:51:44:fb:18:76:14: 7a:24:02:d4:a7:e8:e4:91:92:69:7e:5e:73:5a:2c:77:ba:2f: c1:00:9f:69 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNGAEXokh6S0Cvbc2xrm0q59IvQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yNTA3MjEwNDU3MjVaFw0yNjA3MjAwNTAyMjVaMDMxMTAvBgNV BAMTKDgwMkU2OTkxQUJERjIwM0FDRTYzNTQ5OTA5RjFERkI2MDkxODY5OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1SfDOhKn7MrAaJmtqB3iCR7hf g2ykRwic48ulBatwwQdn9WVqwFIuAB509txO8SGTA51njHogHH5zNDok35pC/OSa CQYFOYdVfriDsW3TenzyT9id9/6tiD+YuQti3GWUL4aLPmFEkozhjgOAheLy49IC Ls6L5TiOEiGdSQ8N4om9Njnt9+eM06dV1lzldJt+1o/+i49HJiQpGc/5zTF6616C GWtPd04tIbSnQZXsmfJc3xu+NRf+N9S4x+ETchSLULqrnA/NXL3Bn27Ml2TCM4H1 FyuzlgXw5UJX6g/FbG4OlKuiEezZj9+yIbUtCzc3EZhyB4xKcE6Tgx9l+NtDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgC5pkavfIDrOY1SZCfHftgkYaYswHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnZpYwDQYJ KoZIhvcNAQELBQADggEBALCJtEW4SpV1h2wZXWtRgYpJkv3ggTXm3YewXQtS0ieQ 9aPe1cLYSGJ0Z4eczrTg8fhTINOoRUcdjt82HM+khEu5niQqS6h4Sn1BtUmkyeg8 SK3WuPlbgBwOKcpzaFnpEyMvewKDt0MIdXmjHwtAW1lBtwgiazZHN1QX1e3NhU9i cbA5zzdh//7ZnqN3nr9NFQIVd1T2o+JGQeNacyOjY5kedF2zzRpMPd0O4nIP/+KG ellDgXv/HdWye4WAIGG+rOo/6kCFV34VwUSJCbiDnaUxfIzZmuA6vFoXtPiBKBP9 c/FcUlFE+xh2FHokAtSn6OSRkml+XnNaLHe6L8EAn2k= -----END CERTIFICATE-----Generated at Wed Jul 23 12:02:36 2025 by rpki-client