$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa File: 3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa (raw, json) Hash identifier: 7sx7l6VJIw9JOLYLALmlodoEMTutKJjhP096rgyTvSM= Subject key identifier: 5E:87:1C:69:2B:90:9B:31:AB:35:32:09:01:F2:70:A6:FB:98:F8:B9 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 7DA59F683457F0BD62882F3AD33A3705E51DED6E Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:01 +0000 ROA not before: Fri 04 Jul 2025 12:55:01 +0000 ROA not after: Fri 03 Jul 2026 13:00:01 +0000 asID: 153087 IP address blocks: 103.136.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a5:9f:68:34:57:f0:bd:62:88:2f:3a:d3:3a:37:05:e5:1d:ed:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:01 2025 GMT Not After : Jul 3 13:00:01 2026 GMT Subject: CN=5E871C692B909B31AB35320901F270A6FB98F8B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bc:26:58:3c:fc:98:14:d6:d2:4b:a2:3c:31: 61:88:da:c5:23:61:fe:53:ce:63:44:0f:ef:50:e0: 1c:75:9d:b8:a4:e1:15:97:3a:bc:50:3c:b2:40:64: 6b:84:ee:74:be:b0:64:06:6f:5c:45:f6:33:b4:93: fd:21:96:eb:92:51:d2:78:1f:8b:6c:af:a6:cf:f5: f2:a6:a0:e9:6e:69:0e:4b:83:6c:2a:50:8d:ce:bf: 1d:5e:48:84:3a:94:da:4d:0f:5c:39:37:f3:9e:0e: dd:81:d5:f8:73:e6:05:2b:94:2c:41:fa:c6:2e:04: 0d:41:7f:b7:d0:74:af:7c:df:b8:9e:af:08:b3:11: 54:17:8c:82:7a:59:59:79:90:71:a4:e2:f1:d4:38: 18:b2:95:f0:4c:f8:e3:25:2e:b0:d0:cb:c7:8f:b3: 3b:64:d8:e8:b4:95:c1:02:20:81:8f:ca:bd:db:24: 16:0e:3b:16:ac:de:5b:e1:10:08:23:d4:ba:db:13: 10:81:e8:fc:04:89:85:29:19:52:89:cd:0b:db:94: ee:3e:38:84:e6:1e:0a:6a:00:49:01:ca:44:88:33: 36:6a:44:e4:eb:9c:68:5e:12:46:94:c8:c8:a1:f6: 0b:2e:cc:ba:21:b0:26:64:cd:20:f1:97:21:b1:f4: da:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:87:1C:69:2B:90:9B:31:AB:35:32:09:01:F2:70:A6:FB:98:F8:B9 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.162.0/24 Signature Algorithm: sha256WithRSAEncryption 32:32:db:1c:7b:ae:06:c0:1f:42:31:85:6d:55:96:d7:14:37: cf:9f:f9:81:1e:06:0f:17:2f:b3:a3:94:a8:61:b0:d6:11:34: 29:93:76:a4:9a:e8:a1:9a:2d:13:6b:d4:d9:5c:94:74:1d:2f: 1b:5f:ed:62:87:af:01:5a:7a:05:90:d6:85:ca:19:c9:3f:8f: 33:1b:a9:bb:9b:03:86:95:15:64:a7:f5:89:62:2a:01:70:98: 11:81:75:51:65:57:f3:6b:ba:34:bd:2c:d3:53:54:cf:aa:d5: a5:ba:8b:79:92:61:48:04:5f:38:22:ff:6d:3b:ac:dd:e3:c4: a9:5d:98:73:f9:60:46:bc:ff:69:d6:5c:27:d2:1a:42:72:c5: 82:e7:3f:81:7f:74:81:df:4e:07:6c:b5:f0:39:af:71:90:61: 4f:1b:c3:1f:98:0d:5f:41:94:79:a6:8e:dd:f5:6e:04:b9:84: 2b:8e:32:38:72:6f:ff:7b:a9:34:4a:2d:44:e5:a2:e0:e7:0a: e9:f2:02:9b:d2:c6:9f:7e:1f:d0:16:16:0d:3f:d2:c5:10:7d: 2e:a2:47:2f:a8:ed:1b:28:1a:84:c3:a7:dd:79:0f:56:c6:f9: 5f:bf:8f:5a:f4:09:d8:42:b5:af:e2:ad:97:91:93:a0:9e:a0: 5b:ca:46:18 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfaWfaDRX8L1iiC860zo3BeUd7W4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDFaFw0yNjA3MDMxMzAwMDFaMDMxMTAvBgNV BAMTKDVFODcxQzY5MkI5MDlCMzFBQjM1MzIwOTAxRjI3MEE2RkI5OEY4QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJvCZYPPyYFNbSS6I8MWGI2sUj Yf5TzmNED+9Q4Bx1nbik4RWXOrxQPLJAZGuE7nS+sGQGb1xF9jO0k/0hluuSUdJ4 H4tsr6bP9fKmoOluaQ5Lg2wqUI3Ovx1eSIQ6lNpND1w5N/OeDt2B1fhz5gUrlCxB +sYuBA1Bf7fQdK9837ierwizEVQXjIJ6WVl5kHGk4vHUOBiylfBM+OMlLrDQy8eP sztk2Oi0lcECIIGPyr3bJBYOOxas3lvhEAgj1LrbExCB6PwEiYUpGVKJzQvblO4+ OITmHgpqAEkBykSIMzZqROTrnGheEkaUyMih9gsuzLohsCZkzSDxlyGx9NojAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXoccaSuQmzGrNTIJAfJwpvuY+LkwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMxMzAzMzJlMzEzMzM2MmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniKIwDQYJ KoZIhvcNAQELBQADggEBADIy2xx7rgbAH0IxhW1VltcUN8+f+YEeBg8XL7OjlKhh sNYRNCmTdqSa6KGaLRNr1NlclHQdLxtf7WKHrwFaegWQ1oXKGck/jzMbqbubA4aV FWSn9YliKgFwmBGBdVFlV/NrujS9LNNTVM+q1aW6i3mSYUgEXzgi/207rN3jxKld mHP5YEa8/2nWXCfSGkJyxYLnP4F/dIHfTgdstfA5r3GQYU8bwx+YDV9BlHmmjt31 bgS5hCuOMjhyb/97qTRKLUTlouDnCunyApvSxp9+H9AWFg0/0sUQfS6iRy+o7Rso GoTDp915D1bG+V+/j1r0CdhCta/irZeRk6CeoFvKRhg= -----END CERTIFICATE-----Generated at Sun Jul 27 07:53:11 2025 by rpki-client