$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e3235312e34342e302f32332d3233203d3e20313331373735.roa File: 3130332e3235312e34342e302f32332d3233203d3e20313331373735.roa (raw, json) Hash identifier: 38apIlW13UqRkBJC0AvLF1JxLSXx4uzPA7tj9m0g40E= Subject key identifier: EE:A0:90:97:09:E5:BC:6B:E2:DC:AC:FD:14:2A:20:30:32:BC:DA:8C Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 041740C47969922978D72616D8917FF76A8DFF94 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e3235312e34342e302f32332d3233203d3e20313331373735.roa Signing time: Sat 12 Jul 2025 14:00:01 +0000 ROA not before: Sat 12 Jul 2025 13:55:01 +0000 ROA not after: Sat 11 Jul 2026 14:00:01 +0000 asID: 131775 IP address blocks: 103.251.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 19:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:17:40:c4:79:69:92:29:78:d7:26:16:d8:91:7f:f7:6a:8d:ff:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 12 13:55:01 2025 GMT Not After : Jul 11 14:00:01 2026 GMT Subject: CN=EEA0909709E5BC6BE2DCACFD142A203032BCDA8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:77:f0:4d:1b:48:d1:bf:51:8b:f6:62:da:bd: 65:ad:4e:06:aa:2d:6e:d6:64:07:56:4a:f3:64:bb: ee:22:0a:e3:71:f6:c1:55:48:6a:e1:ad:c1:88:22: 31:b0:bc:fa:e2:33:65:bc:de:52:2c:a7:8c:2d:55: 1a:d5:75:68:d1:2b:41:6e:d9:d4:1a:15:b9:87:0e: 25:48:43:71:cc:e6:3e:71:e4:cf:8e:ee:56:39:ad: 4b:0b:68:74:7b:0a:32:a4:40:9e:31:d6:1e:bf:10: 76:cf:f8:e3:82:01:a8:43:29:06:07:89:9f:1d:00: e4:26:84:22:75:07:19:cd:3e:92:e3:5d:f2:9d:72: 48:03:d2:0b:eb:29:49:72:85:62:af:ee:70:c4:1a: 19:c9:a3:12:8e:80:e9:5d:e6:37:32:46:5b:55:a6: cd:07:89:6f:62:79:f6:f2:95:ed:43:22:35:4c:c4: 8a:92:6a:00:44:f3:ed:8b:2b:f1:46:9a:24:04:4a: 83:69:68:96:99:c3:12:1e:e6:a0:31:a2:2c:99:77: e3:a7:7e:88:49:f0:cc:da:ce:a8:6f:b0:09:36:d8: 55:df:ad:7a:d3:b5:62:ae:05:ec:90:7f:90:6e:f9: 1b:97:85:6b:00:cc:39:78:48:c6:26:79:9d:ee:3a: 18:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A0:90:97:09:E5:BC:6B:E2:DC:AC:FD:14:2A:20:30:32:BC:DA:8C X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e3235312e34342e302f32332d3233203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.251.44.0/23 Signature Algorithm: sha256WithRSAEncryption b4:71:8a:e9:6e:61:f6:03:e5:36:17:80:24:0c:8a:cd:15:ea: 62:ad:2d:7d:67:1d:e8:6a:0d:e2:46:31:7a:b2:b3:68:d3:e5: ca:3a:12:95:07:93:5c:00:ba:8c:f9:ab:df:9a:04:0a:de:d9: 5d:c6:2d:ac:b8:cc:e3:02:f2:eb:b4:50:bb:da:fb:e2:b7:67: 63:b1:4b:47:5d:3a:9a:f8:0c:2c:67:4c:22:62:1b:41:80:bd: 2a:c3:73:cb:12:38:f5:fc:c0:aa:ee:a9:6a:5d:6f:a8:14:a1: 68:b5:5d:23:d1:bc:06:9e:71:fe:ea:57:dd:b2:cc:3b:84:5a: ef:59:b5:5d:87:9a:9a:26:e4:4a:4e:b0:bf:4b:1e:9c:2f:02: e8:da:6e:51:ed:37:75:6b:1e:f3:f0:83:95:2a:9a:8b:97:b4: b0:a9:47:47:68:8f:9b:ce:67:28:85:11:dd:20:68:e0:05:f8: da:8d:b5:9a:2a:05:14:2b:0b:bb:fd:cb:89:74:94:42:d5:24: 01:ec:4e:72:66:20:55:66:39:fe:37:69:d1:d3:2f:b1:34:fd: ef:eb:ab:33:f3:4e:cc:ac:ac:16:3f:f4:b4:07:ae:6a:01:21: 65:65:86:e4:f9:4f:8b:aa:cf:21:29:6e:4a:29:ca:8e:be:f4: 6f:19:1a:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBBdAxHlpkil41yYW2JF/92qN/5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA3MTIxMzU1MDFaFw0yNjA3MTExNDAwMDFaMDMxMTAvBgNV BAMTKEVFQTA5MDk3MDlFNUJDNkJFMkRDQUNGRDE0MkEyMDMwMzJCQ0RBOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8d/BNG0jRv1GL9mLavWWtTgaq LW7WZAdWSvNku+4iCuNx9sFVSGrhrcGIIjGwvPriM2W83lIsp4wtVRrVdWjRK0Fu 2dQaFbmHDiVIQ3HM5j5x5M+O7lY5rUsLaHR7CjKkQJ4x1h6/EHbP+OOCAahDKQYH iZ8dAOQmhCJ1BxnNPpLjXfKdckgD0gvrKUlyhWKv7nDEGhnJoxKOgOld5jcyRltV ps0HiW9iefbyle1DIjVMxIqSagBE8+2LK/FGmiQESoNpaJaZwxIe5qAxoiyZd+On fohJ8MzazqhvsAk22FXfrXrTtWKuBeyQf5Bu+RuXhWsAzDl4SMYmeZ3uOhj1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7qCQlwnlvGvi3Kz9FCogMDK82owwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzIzNTMxMmUzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/ssMA0GCSqG SIb3DQEBCwUAA4IBAQC0cYrpbmH2A+U2F4AkDIrNFepirS19Zx3oag3iRjF6srNo 0+XKOhKVB5NcALqM+avfmgQK3tldxi2suMzjAvLrtFC72vvit2djsUtHXTqa+Aws Z0wiYhtBgL0qw3PLEjj1/MCq7qlqXW+oFKFotV0j0bwGnnH+6lfdssw7hFrvWbVd h5qaJuRKTrC/Sx6cLwLo2m5R7Td1ax7z8IOVKpqLl7SwqUdHaI+bzmcohRHdIGjg BfjajbWaKgUUKwu7/cuJdJRC1SQB7E5yZiBVZjn+N2nR0y+xNP3v66sz807MrKwW P/S0B65qASFlZYbk+U+Lqs8hKW5KKcqOvvRvGRp8 -----END CERTIFICATE-----Generated at Wed Jul 23 18:39:46 2025 by rpki-client