$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e38392e302f32342d3234203d3e203538343034.roa File: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0= Subject key identifier: 8F:0F:6D:FF:A7:4C:40:44:A9:01:99:35:82:75:8D:01:0A:90:47:59 Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 6A417E837C45D5444E88013355636960593984CA Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e38392e302f32342d3234203d3e203538343034.roa Signing time: Tue 01 Jul 2025 09:45:19 +0000 ROA not before: Tue 01 Jul 2025 09:40:19 +0000 ROA not after: Tue 30 Jun 2026 09:45:19 +0000 asID: 58404 IP address blocks: 103.195.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 18:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:41:7e:83:7c:45:d5:44:4e:88:01:33:55:63:69:60:59:39:84:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jul 1 09:40:19 2025 GMT Not After : Jun 30 09:45:19 2026 GMT Subject: CN=8F0F6DFFA74C4044A901993582758D010A904759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a0:b7:38:7d:32:a2:08:8e:3c:86:7e:4b:24: 62:85:82:a3:52:c2:17:a0:3b:eb:e8:04:aa:5f:e6: 51:01:2e:18:de:31:51:32:0c:71:c3:e2:79:1a:73: 32:65:e6:02:12:dd:19:c4:1f:8c:aa:55:93:e9:b4: a7:2c:a1:fe:43:37:d4:59:fe:b8:69:3f:b0:df:6a: 17:49:f6:9c:84:77:34:71:61:33:5e:46:ae:3e:04: bc:da:9e:f3:6e:8d:dd:e7:9c:7a:3f:df:d7:c8:ac: 5a:2e:60:30:af:48:a6:e0:22:48:17:5f:4a:93:a5: a2:7c:6e:41:e3:f1:dc:b1:f3:8f:bf:55:da:66:6d: 9e:ad:34:4d:b5:bf:56:82:4f:5e:63:fe:8c:c7:c3: a0:c5:5f:81:92:bf:06:85:45:a3:c0:52:a9:b7:2f: b5:41:ec:44:6f:b0:7b:61:9f:e0:92:11:77:96:6c: bf:99:53:62:6b:0f:58:06:fc:1c:b7:be:d4:d7:94: 03:65:ee:f6:6a:f8:c0:01:fd:20:69:c4:ca:b5:75: bc:8c:b9:15:27:2c:86:78:bd:da:cb:aa:de:1b:69: 9d:fb:b4:5f:84:38:c9:40:cc:56:51:8f:fb:a0:f5: 2a:86:0d:bc:22:b5:5e:af:eb:76:ed:50:f3:18:8f: ab:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0F:6D:FF:A7:4C:40:44:A9:01:99:35:82:75:8D:01:0A:90:47:59 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e38392e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.89.0/24 Signature Algorithm: sha256WithRSAEncryption 24:da:9f:4c:07:03:d6:4f:83:d2:b2:55:fb:f0:9b:d4:37:73: 7e:c9:ce:87:9d:8a:10:7a:45:52:10:57:bc:c1:25:6c:e1:7a: 80:84:c4:95:a8:ca:d2:f3:97:7f:69:06:68:44:27:23:4b:2c: 6d:33:11:20:58:c0:4e:f9:75:04:ac:a3:f1:1f:8e:1e:c7:94: e7:47:c6:e5:16:66:a6:37:cd:4a:ae:07:a7:29:f0:de:b6:e5: 68:12:97:68:18:25:ee:75:1c:04:7f:3d:d8:07:ed:ae:fc:3d: 57:cf:4c:a1:49:74:ec:0a:72:b3:12:36:b1:b7:40:5a:51:c6: 12:ac:99:06:d6:6a:85:5e:c4:d6:8a:0b:e5:50:e0:3c:ed:a7: f1:dc:2c:8c:dc:b7:6c:ad:08:ff:59:23:2f:12:58:5d:5e:bd: 4f:a6:b2:09:6e:9c:51:f6:7f:65:02:b4:10:34:eb:b3:80:54: 5a:fe:2f:8d:97:1f:53:a7:bb:c1:28:6e:31:69:36:9b:17:9c: 08:dd:90:dc:bf:f9:c9:8f:8e:55:4e:45:ea:09:8d:8c:56:4d: f1:e1:57:ce:c9:68:72:99:8d:7a:1a:b3:15:19:f3:68:21:fb: ff:52:65:00:7f:31:c0:26:46:0d:6e:05:6e:e6:4e:90:b7:05: d0:17:c3:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUakF+g3xF1UROiAEzVWNpYFk5hMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA3MDEwOTQwMTlaFw0yNjA2MzAwOTQ1MTlaMDMxMTAvBgNV BAMTKDhGMEY2REZGQTc0QzQwNDRBOTAxOTkzNTgyNzU4RDAxMEE5MDQ3NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRoLc4fTKiCI48hn5LJGKFgqNS whegO+voBKpf5lEBLhjeMVEyDHHD4nkaczJl5gIS3RnEH4yqVZPptKcsof5DN9RZ /rhpP7DfahdJ9pyEdzRxYTNeRq4+BLzanvNujd3nnHo/39fIrFouYDCvSKbgIkgX X0qTpaJ8bkHj8dyx84+/VdpmbZ6tNE21v1aCT15j/ozHw6DFX4GSvwaFRaPAUqm3 L7VB7ERvsHthn+CSEXeWbL+ZU2JrD1gG/By3vtTXlANl7vZq+MAB/SBpxMq1dbyM uRUnLIZ4vdrLqt4baZ37tF+EOMlAzFZRj/ug9SqGDbwitV6v63btUPMYj6u3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjw9t/6dMQESpAZk1gnWNAQqQR1kwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMzLWU0ZTEtNDFhMS1h YWYwLWQ2MTNhY2E0OTMwYy8wLzMxMzAzMzJlMzEzOTM1MmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfDWTANBgkqhkiG 9w0BAQsFAAOCAQEAJNqfTAcD1k+D0rJV+/Cb1DdzfsnOh52KEHpFUhBXvMElbOF6 gITElajK0vOXf2kGaEQnI0ssbTMRIFjATvl1BKyj8R+OHseU50fG5RZmpjfNSq4H pynw3rblaBKXaBgl7nUcBH892Aftrvw9V89MoUl07ApysxI2sbdAWlHGEqyZBtZq hV7E1ooL5VDgPO2n8dwsjNy3bK0I/1kjLxJYXV69T6ayCW6cUfZ/ZQK0EDTrs4BU Wv4vjZcfU6e7wShuMWk2mxecCN2Q3L/5yY+OVU5F6gmNjFZN8eFXzslocpmNehqz FRnzaCH7/1JlAH8xwCZGDW4FbuZOkLcF0BfD9Q== -----END CERTIFICATE-----Generated at Fri Jul 4 10:23:41 2025 by rpki-client