$ rpki-client -vvf repo-rpki.idnic.net/repo/d1b3fe45-b588-4bb7-ae90-91f57f593cb5/0/3130332e3136322e3132322e302f32332d3234203d3e203137393935.roa File: 3130332e3136322e3132322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: 5kmhgTgeSHUwhas6AKT+9HvbtryMe4lzQT0rPZxLy0k= Subject key identifier: 20:45:F2:03:88:3A:F9:45:93:D4:21:FA:A5:55:21:EC:B2:A0:B9:BC Certificate issuer: /CN=0F1659BDC311758463AD3CEA23A7EB5ED377FCC2 Certificate serial: 43588A879104338F271E940A0EC6C0D23B0AA6DE Authority key identifier: 0F:16:59:BD:C3:11:75:84:63:AD:3C:EA:23:A7:EB:5E:D3:77:FC:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F1659BDC311758463AD3CEA23A7EB5ED377FCC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1b3fe45-b588-4bb7-ae90-91f57f593cb5/0/3130332e3136322e3132322e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 09:03:18 +0000 ROA not before: Fri 04 Jul 2025 08:58:18 +0000 ROA not after: Fri 03 Jul 2026 09:03:18 +0000 asID: 17995 IP address blocks: 103.162.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1b3fe45-b588-4bb7-ae90-91f57f593cb5/0/0F1659BDC311758463AD3CEA23A7EB5ED377FCC2.crl rsync://repo-rpki.idnic.net/repo/d1b3fe45-b588-4bb7-ae90-91f57f593cb5/0/0F1659BDC311758463AD3CEA23A7EB5ED377FCC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F1659BDC311758463AD3CEA23A7EB5ED377FCC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 06:51:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:58:8a:87:91:04:33:8f:27:1e:94:0a:0e:c6:c0:d2:3b:0a:a6:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F1659BDC311758463AD3CEA23A7EB5ED377FCC2 Validity Not Before: Jul 4 08:58:18 2025 GMT Not After : Jul 3 09:03:18 2026 GMT Subject: CN=2045F203883AF94593D421FAA55521ECB2A0B9BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:58:ee:71:5b:70:b9:09:ca:2f:66:82:cf:54: ac:41:a8:ef:e3:b8:bf:37:38:40:1c:74:de:ae:76: 19:c6:65:21:fe:c3:36:a4:20:21:7c:9d:75:83:b9: 80:d4:b7:1f:ca:ec:4c:d0:c3:8e:c4:52:02:58:5c: 8e:c1:86:7f:f4:7b:94:e5:25:b0:45:79:d8:e1:85: 88:cd:90:b3:95:ab:3f:47:bf:01:5a:d9:cd:38:88: 46:a7:9b:24:bb:af:ab:e9:b8:18:96:b7:0e:f3:4b: 70:53:24:82:1b:89:28:1a:ab:30:b5:70:4d:e1:45: 2d:21:f4:c7:46:6f:ee:7d:15:83:41:67:dc:4c:7c: 6c:b5:85:b3:14:d1:64:92:44:30:66:87:55:7c:3c: 16:d6:f2:24:4b:6c:97:aa:14:b0:35:70:a2:96:c2: d9:17:12:8a:54:2c:d0:a0:7a:4c:07:bc:bf:86:07: 66:6d:88:bc:52:bf:31:33:ee:95:ff:4d:04:21:1b: 72:2c:cb:58:dd:5e:80:60:a8:0d:24:9a:a4:a4:76: 93:4f:69:49:e4:8d:7a:1c:06:d3:78:0d:23:02:b6: ef:c4:26:d6:e1:67:f2:57:0c:fa:bd:3c:56:a4:88: 6e:15:9c:f2:40:09:da:0b:06:ec:cd:a7:a8:b1:42: 56:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:45:F2:03:88:3A:F9:45:93:D4:21:FA:A5:55:21:EC:B2:A0:B9:BC X509v3 Authority Key Identifier: keyid:0F:16:59:BD:C3:11:75:84:63:AD:3C:EA:23:A7:EB:5E:D3:77:FC:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1b3fe45-b588-4bb7-ae90-91f57f593cb5/0/0F1659BDC311758463AD3CEA23A7EB5ED377FCC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F1659BDC311758463AD3CEA23A7EB5ED377FCC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1b3fe45-b588-4bb7-ae90-91f57f593cb5/0/3130332e3136322e3132322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.122.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:bc:07:70:34:34:4e:b8:a8:7d:4c:24:cf:ae:07:bc:a5:c4: cb:4e:13:c1:6a:56:10:0f:e4:fc:d0:ff:cb:34:73:0b:b3:23: 70:11:61:38:3a:f7:2f:2a:d8:d1:03:fb:ae:31:15:30:0c:6e: 3d:f2:50:74:b7:4c:95:3e:be:50:30:b4:72:07:00:5b:0e:a2: 6f:5a:5b:e7:27:9e:71:99:36:09:a2:82:92:a2:27:81:65:f5: 1a:9c:f6:8f:52:f6:40:df:5d:99:70:35:0e:9d:27:e4:5a:b4: 83:9c:c2:d2:05:1e:d6:5b:37:87:7c:d4:d6:87:9e:dd:db:61: b7:2a:bc:73:5c:cd:24:12:da:05:33:36:a6:76:b9:a8:24:65: fb:3e:ae:bb:96:df:d1:40:ca:48:9a:c3:f7:d2:d9:02:ba:86: 84:af:d4:8d:65:bc:86:01:33:2f:2f:8c:d0:f2:15:14:95:a4: 06:f9:4b:4b:d9:56:62:5a:f2:cb:93:ec:cf:68:58:8a:ad:f2: 19:0d:9a:f8:0e:04:6f:33:53:02:86:86:fa:55:fe:c8:0d:c2: ab:23:00:11:8c:eb:13:9f:fd:e7:39:1a:64:80:39:36:09:2e: 15:04:c3:de:d9:ca:bc:32:2c:3a:73:cf:4b:4f:4f:31:c1:91: ef:ef:9c:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ1iKh5EEM48nHpQKDsbA0jsKpt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEYxNjU5QkRDMzExNzU4NDYzQUQzQ0VBMjNBN0VCNUVE Mzc3RkNDMjAeFw0yNTA3MDQwODU4MThaFw0yNjA3MDMwOTAzMThaMDMxMTAvBgNV BAMTKDIwNDVGMjAzODgzQUY5NDU5M0Q0MjFGQUE1NTUyMUVDQjJBMEI5QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXWO5xW3C5CcovZoLPVKxBqO/j uL83OEAcdN6udhnGZSH+wzakICF8nXWDuYDUtx/K7EzQw47EUgJYXI7Bhn/0e5Tl JbBFedjhhYjNkLOVqz9HvwFa2c04iEanmyS7r6vpuBiWtw7zS3BTJIIbiSgaqzC1 cE3hRS0h9MdGb+59FYNBZ9xMfGy1hbMU0WSSRDBmh1V8PBbW8iRLbJeqFLA1cKKW wtkXEopULNCgekwHvL+GB2ZtiLxSvzEz7pX/TQQhG3Isy1jdXoBgqA0kmqSkdpNP aUnkjXocBtN4DSMCtu/EJtbhZ/JXDPq9PFakiG4VnPJACdoLBuzNp6ixQlaNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIEXyA4g6+UWT1CH6pVUh7LKgubwwHwYDVR0j BBgwFoAUDxZZvcMRdYRjrTzqI6frXtN3/MIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWIzZmU0NS1iNTg4LTRiYjctYWU5MC05MWY1N2Y1OTNjYjUvMC8wRjE2NTlCREMz MTE3NTg0NjNBRDNDRUEyM0E3RUI1RUQzNzdGQ0MyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEYxNjU5QkRDMzExNzU4NDYzQUQzQ0VBMjNBN0VCNUVEMzc3 RkNDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxYjNmZTQ1LWI1ODgtNGJiNy1h ZTkwLTkxZjU3ZjU5M2NiNS8wLzMxMzAzMzJlMzEzNjMyMmUzMTMyMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6J6MA0GCSqG SIb3DQEBCwUAA4IBAQAevAdwNDROuKh9TCTPrge8pcTLThPBalYQD+T80P/LNHML syNwEWE4OvcvKtjRA/uuMRUwDG498lB0t0yVPr5QMLRyBwBbDqJvWlvnJ55xmTYJ ooKSoieBZfUanPaPUvZA312ZcDUOnSfkWrSDnMLSBR7WWzeHfNTWh57d22G3Krxz XM0kEtoFMzamdrmoJGX7Pq67lt/RQMpImsP30tkCuoaEr9SNZbyGATMvL4zQ8hUU laQG+UtL2VZiWvLLk+zPaFiKrfIZDZr4DgRvM1MChob6Vf7IDcKrIwARjOsTn/3n ORpkgDk2CS4VBMPe2cq8Miw6c89LT08xwZHv75yR -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:28 2025 by rpki-client