$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa File: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (raw, json) Hash identifier: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk= Subject key identifier: D5:90:52:33:6A:A6:8C:F7:81:75:22:5B:52:B1:88:96:98:DE:6C:79 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 5B4D113B9B7453569D19E8A70CB004E87D3B0FFE Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa Signing time: Sun 20 Jul 2025 07:00:01 +0000 ROA not before: Sun 20 Jul 2025 06:55:01 +0000 ROA not after: Sun 19 Jul 2026 07:00:01 +0000 asID: 136119 IP address blocks: 103.94.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 11:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:4d:11:3b:9b:74:53:56:9d:19:e8:a7:0c:b0:04:e8:7d:3b:0f:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Jul 20 06:55:01 2025 GMT Not After : Jul 19 07:00:01 2026 GMT Subject: CN=D59052336AA68CF78175225B52B1889698DE6C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:14:64:6a:93:18:6a:7d:86:08:47:5c:05:50: 72:e6:b5:21:03:00:a6:11:eb:bc:3f:7b:39:7c:35: 42:4f:ee:63:82:72:3a:fd:33:88:74:2b:0f:ca:8c: 5e:3d:af:e5:c2:aa:65:c4:aa:86:37:bb:67:a4:2a: 4e:81:98:a3:66:26:7c:f9:b5:7f:4d:10:d8:df:7d: 2b:ef:dc:a1:26:17:5d:c5:1a:ce:ea:15:e8:b3:eb: 06:ea:06:1a:e5:5c:cd:73:30:5f:e6:7c:dc:05:0c: ab:0a:f0:48:07:91:6a:38:7e:67:4b:4d:2c:c2:73: 60:c5:00:60:05:95:8e:e0:e0:a3:8f:c0:c9:23:7e: 19:a2:79:b2:30:83:2a:fd:39:c0:3a:fd:e8:6a:e7: 37:36:91:2b:6a:98:7c:7d:91:45:0f:40:ed:73:3d: d1:d7:0d:a0:7d:22:b4:f5:36:e5:ad:7f:2b:bd:b3: 7e:4c:7a:f7:54:3f:38:72:4b:49:a1:ee:73:7e:39: 44:73:cb:f2:dc:5c:72:ac:59:d3:bc:27:06:3b:ec: d4:04:84:42:7b:b1:fa:07:3c:fc:a9:01:7f:fd:10: 81:a9:80:85:e3:94:73:6c:2b:de:af:58:d6:52:a0: f5:b8:5b:03:f4:f9:2c:ab:90:64:fa:f8:6a:9b:15: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:90:52:33:6A:A6:8C:F7:81:75:22:5B:52:B1:88:96:98:DE:6C:79 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.168.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:86:ee:f6:04:6e:f8:a5:7b:dd:26:cd:da:fb:62:ab:c6:79: 5a:7b:80:07:f1:b9:79:e8:50:fe:ae:21:d9:4b:45:14:c4:f7: 1c:74:f9:1a:24:f1:4e:62:0f:d9:fe:6e:c7:68:a6:ce:6e:e2: 0d:14:a0:50:5b:03:e2:93:23:1f:fa:65:be:fa:a2:12:96:7b: ca:4a:35:40:2f:93:25:32:47:d4:44:3f:05:ca:72:9f:50:a6: 4f:49:e6:c6:4c:0b:f7:ca:58:b9:9c:51:64:6b:0f:50:be:0c: 8a:b3:cd:8e:93:71:2c:b3:dc:ad:05:2a:ed:b4:ba:a7:9f:73: 73:29:7f:e6:69:75:df:56:25:38:62:c1:a8:9e:31:34:fb:67: b7:fc:7c:d8:36:51:bc:26:d1:91:55:23:8c:c5:4d:aa:53:9d: 6b:2b:dc:b3:68:9c:6a:37:41:40:f5:f4:16:df:c8:40:00:17: 5b:cc:7c:87:94:e4:97:75:fa:ea:8e:c8:d9:e9:bf:63:57:84: d0:e3:87:c6:59:c9:62:5f:ea:4f:80:9b:5e:c7:c2:41:84:57: 2d:8a:8e:13:cf:55:1b:84:89:7c:4e:d6:8f:43:7e:87:d5:75: 58:0c:6e:30:66:35:da:e4:5b:a5:79:1d:28:d5:be:ea:9b:82: fa:84:6e:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW00RO5t0U1adGeinDLAE6H07D/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA3MjAwNjU1MDFaFw0yNjA3MTkwNzAwMDFaMDMxMTAvBgNV BAMTKEQ1OTA1MjMzNkFBNjhDRjc4MTc1MjI1QjUyQjE4ODk2OThERTZDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjFGRqkxhqfYYIR1wFUHLmtSED AKYR67w/ezl8NUJP7mOCcjr9M4h0Kw/KjF49r+XCqmXEqoY3u2ekKk6BmKNmJnz5 tX9NENjffSvv3KEmF13FGs7qFeiz6wbqBhrlXM1zMF/mfNwFDKsK8EgHkWo4fmdL TSzCc2DFAGAFlY7g4KOPwMkjfhmiebIwgyr9OcA6/ehq5zc2kStqmHx9kUUPQO1z PdHXDaB9IrT1NuWtfyu9s35MevdUPzhyS0mh7nN+OURzy/LcXHKsWdO8JwY77NQE hEJ7sfoHPPypAX/9EIGpgIXjlHNsK96vWNZSoPW4WwP0+SyrkGT6+GqbFaCFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1ZBSM2qmjPeBdSJbUrGIlpjebHkwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMxMzAzMzJlMzkzNDJlMzEzNjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ16oMA0GCSqG SIb3DQEBCwUAA4IBAQBehu72BG74pXvdJs3a+2Krxnlae4AH8bl56FD+riHZS0UU xPccdPkaJPFOYg/Z/m7HaKbObuINFKBQWwPikyMf+mW++qISlnvKSjVAL5MlMkfU RD8FynKfUKZPSebGTAv3yli5nFFkaw9QvgyKs82Ok3Ess9ytBSrttLqnn3NzKX/m aXXfViU4YsGonjE0+2e3/HzYNlG8JtGRVSOMxU2qU51rK9yzaJxqN0FA9fQW38hA ABdbzHyHlOSXdfrqjsjZ6b9jV4TQ44fGWcliX+pPgJtex8JBhFctio4Tz1UbhIl8 TtaPQ36H1XVYDG4wZjXa5FuleR0o1b7qm4L6hG61 -----END CERTIFICATE-----Generated at Sun Oct 26 09:21:41 2025 by rpki-client