$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa File: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (raw, json) Hash identifier: xt2DiIsS1Hm+P8ldmkaqq+Mf+LiIX+U17UKLw/Y34Uk= Subject key identifier: 6A:85:C9:BA:31:FC:05:71:BA:B7:33:CA:29:03:B0:A4:2B:DD:C3:BB Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 4496F4B6F9C1B23AAE48300653DE69BE05E4EF72 Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa Signing time: Thu 10 Jul 2025 08:02:50 +0000 ROA not before: Thu 10 Jul 2025 07:57:50 +0000 ROA not after: Thu 09 Jul 2026 08:02:50 +0000 asID: 132668 IP address blocks: 103.19.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 12:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:96:f4:b6:f9:c1:b2:3a:ae:48:30:06:53:de:69:be:05:e4:ef:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Jul 10 07:57:50 2025 GMT Not After : Jul 9 08:02:50 2026 GMT Subject: CN=6A85C9BA31FC0571BAB733CA2903B0A42BDDC3BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:05:43:69:80:09:0d:6f:1b:9a:9e:d1:8e:77: 47:e9:d9:e3:70:bc:db:70:08:3b:30:ac:bb:af:9c: 94:44:bd:41:75:fe:81:b2:02:20:5c:ef:99:65:24: fe:1f:d7:b1:3f:c2:b8:e8:1e:9b:a9:4f:9f:af:a6: 60:95:a2:1a:e7:e9:9f:31:a7:57:59:77:d7:0e:2e: 7f:04:7f:02:e1:cd:44:45:bf:ce:2d:26:b5:63:ba: 61:3e:c5:87:42:c1:79:c6:c4:4b:59:32:57:da:39: 9e:cb:32:1f:4e:69:bd:0e:46:c1:fc:eb:40:79:bb: 7b:07:ea:13:ea:8d:b8:12:57:91:57:db:1d:f1:25: 25:51:fe:3a:6e:94:5b:6c:69:68:29:ce:63:4c:a1: 9e:b1:0e:de:38:07:54:9e:58:75:a1:6c:71:50:bd: a8:6d:64:51:2b:53:ef:2f:91:3e:cc:c0:b5:97:c1: 3e:49:d7:02:52:73:27:f1:0b:ef:17:b4:e3:6c:46: 5b:5f:06:fb:e9:66:61:62:d1:88:8b:8d:48:d3:55: 92:2e:d7:61:f6:bf:0d:32:bb:67:37:50:93:9d:50: c8:1a:4a:4d:42:d4:4a:dd:6b:ce:f1:77:4e:84:f6: 43:c9:5f:65:bc:40:63:d1:17:be:6b:61:95:1c:78: 33:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:85:C9:BA:31:FC:05:71:BA:B7:33:CA:29:03:B0:A4:2B:DD:C3:BB X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.231.0/24 Signature Algorithm: sha256WithRSAEncryption d8:fa:fb:60:ae:93:a2:d9:60:e6:b9:9f:12:13:ea:f3:82:09: 47:80:be:b7:bf:6e:a7:4d:14:51:37:69:fb:d7:00:ca:8c:ca: 84:4e:39:70:c9:45:2a:99:a7:6a:c7:eb:76:e8:4d:08:b5:54: 58:b5:65:65:56:64:94:12:ef:68:1d:c9:63:3c:6d:3e:05:bc: bd:37:89:a1:e4:2f:a1:60:53:bd:25:6a:7f:aa:69:fd:41:a9: 3a:39:af:20:7a:00:78:ea:de:66:ae:43:73:04:c4:38:ad:a7: f9:a7:fb:d8:0c:c8:c4:74:38:07:66:c9:0c:2d:ad:f7:5d:de: 78:1e:76:32:7e:ca:d0:41:05:92:98:05:0e:0c:f4:06:40:77: ae:a6:7b:3f:5f:27:31:8f:1a:34:bb:46:ea:9c:a1:b2:ca:4d: 7e:ec:0f:64:c2:0c:70:07:20:0b:0d:ff:a5:5f:e0:58:83:e5: 42:d3:86:c3:c7:a5:e6:02:29:26:f3:7a:58:ec:90:de:02:2c: 91:1c:d4:a1:e5:fd:07:5b:9a:35:73:89:48:f9:7a:f5:ae:bd: 94:26:d3:a9:3f:8a:2f:9c:3c:74:1a:57:31:ad:65:ce:b8:43: 50:f7:63:f7:1b:fc:13:3d:ea:9b:a5:cb:89:55:34:96:8e:38: f2:a7:82:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURJb0tvnBsjquSDAGU95pvgXk73IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNTA3MTAwNzU3NTBaFw0yNjA3MDkwODAyNTBaMDMxMTAvBgNV BAMTKDZBODVDOUJBMzFGQzA1NzFCQUI3MzNDQTI5MDNCMEE0MkJEREMzQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXBUNpgAkNbxuantGOd0fp2eNw vNtwCDswrLuvnJREvUF1/oGyAiBc75llJP4f17E/wrjoHpupT5+vpmCVohrn6Z8x p1dZd9cOLn8EfwLhzURFv84tJrVjumE+xYdCwXnGxEtZMlfaOZ7LMh9Oab0ORsH8 60B5u3sH6hPqjbgSV5FX2x3xJSVR/jpulFtsaWgpzmNMoZ6xDt44B1SeWHWhbHFQ vahtZFErU+8vkT7MwLWXwT5J1wJScyfxC+8XtONsRltfBvvpZmFi0YiLjUjTVZIu 12H2vw0yu2c3UJOdUMgaSk1C1Erda87xd06E9kPJX2W8QGPRF75rYZUceDNHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaoXJujH8BXG6tzPKKQOwpCvdw7swHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyZjE0MTdhLTU3MTgtNDA3MS05 ZjM1LWMxMjI1NTVkYWM3YS8wLzMxMzAzMzJlMzEzOTJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxPnMA0GCSqG SIb3DQEBCwUAA4IBAQDY+vtgrpOi2WDmuZ8SE+rzgglHgL63v26nTRRRN2n71wDK jMqETjlwyUUqmadqx+t26E0ItVRYtWVlVmSUEu9oHcljPG0+Bby9N4mh5C+hYFO9 JWp/qmn9Qak6Oa8gegB46t5mrkNzBMQ4raf5p/vYDMjEdDgHZskMLa33Xd54HnYy fsrQQQWSmAUODPQGQHeupns/Xycxjxo0u0bqnKGyyk1+7A9kwgxwByALDf+lX+BY g+VC04bDx6XmAikm83pY7JDeAiyRHNSh5f0HW5o1c4lI+Xr1rr2UJtOpP4ovnDx0 GlcxrWXOuENQ92P3G/wTPeqbpcuJVTSWjjjyp4JH -----END CERTIFICATE-----Generated at Tue Jul 22 04:35:23 2025 by rpki-client