$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa File: 3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa (raw, json) Hash identifier: pHqgayQLjWF22csV0caPZ6zbekahaLO6LcYoKB4tSEE= Subject key identifier: 74:D0:E2:28:8E:57:3F:47:0C:F8:2D:22:DB:77:F9:B9:41:00:95:AD Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 55520B7EDEBC4F923FB36A81AD781B4FC703E29E Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 103.136.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:52:0b:7e:de:bc:4f:92:3f:b3:6a:81:ad:78:1b:4f:c7:03:e2:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=74D0E2288E573F470CF82D22DB77F9B9410095AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:30:f9:bf:21:7c:ab:e5:d3:5d:46:00:57:e3: 92:8a:93:8d:36:b4:40:7b:96:c5:09:e0:2d:f0:18: 4a:d6:05:68:c5:c6:e5:d3:4f:22:38:6f:e2:53:c5: db:6e:ee:22:82:44:65:69:b2:04:58:f6:9b:79:b4: 1e:35:53:a0:8f:1a:b8:36:cf:e9:94:b5:91:9d:cd: 78:e9:b3:13:42:90:5a:06:db:84:bb:ab:c3:5e:87: 8c:2a:d4:fd:a8:18:6f:3d:98:5c:57:47:87:6b:f3: ae:27:11:65:1f:61:01:03:37:b4:64:ce:b0:bc:29: 6c:a2:58:c6:03:fb:da:e1:99:ca:bb:bb:f8:70:84: 45:b1:b7:08:52:ee:36:b9:c5:c5:e1:30:74:b1:07: c2:b6:b5:28:5b:b7:0a:df:43:02:15:5e:6c:06:1c: 88:ff:6e:39:51:d6:9d:68:ab:22:7d:95:23:02:38: 7a:88:4d:cc:4d:70:51:ea:31:68:0d:4d:59:cf:4a: 7e:da:7d:81:7b:bd:95:e7:a8:fa:41:25:bf:08:2b: 10:51:79:94:7a:fe:65:64:c3:17:21:5e:e0:61:e5: d4:22:0a:6b:3d:f4:37:20:c4:8d:82:59:fc:9a:11: 36:19:67:ac:0a:d1:bb:2a:f0:c0:f3:5a:cb:55:f3: 2e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D0:E2:28:8E:57:3F:47:0C:F8:2D:22:DB:77:F9:B9:41:00:95:AD X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136332e302f32342d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.163.0/24 Signature Algorithm: sha256WithRSAEncryption 91:a4:fe:43:d1:84:ea:1b:ba:6f:6c:2f:bd:19:a0:06:dd:9d: 79:ae:04:d8:94:07:ae:fc:e4:a5:bf:a8:51:b6:76:cf:3b:d1: 9f:bd:24:7f:61:29:da:a0:e2:6a:16:28:ad:5d:5d:10:a4:8e: d5:29:6f:3b:81:62:5f:d9:37:6f:e3:df:41:a1:52:f0:98:e8: d6:4a:e8:a8:3d:96:b5:3a:22:7d:90:0f:7f:02:b8:1a:ba:ce: ef:68:66:2b:b5:d6:0c:12:fb:56:40:d8:3c:65:ec:d5:f4:55: 56:8d:c4:27:93:7a:0b:cb:4f:4a:eb:48:86:f7:d2:a6:be:a9: 61:43:3a:95:7d:c1:cd:1a:0e:7f:ec:d3:e6:92:7c:08:4c:ab: 98:db:eb:c5:d6:d8:1d:e9:81:9b:88:c7:21:1e:10:4a:7f:15: d7:f1:1a:53:2f:8a:eb:ab:2f:5e:70:da:d9:5f:b5:d5:a6:11: 04:33:75:43:df:6a:9c:94:09:0c:c8:0a:3e:52:ae:c6:8d:ea: 63:7f:39:41:4a:4c:5a:e6:76:eb:0c:65:5c:7f:30:0f:d1:79: f3:0d:16:28:0d:ee:12:f3:63:67:b1:96:4a:d0:84:94:3e:aa: f5:73:c9:a0:ed:af:f2:b2:ff:d0:37:66:aa:b3:d7:7a:68:98: 9e:23:08:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVVILft68T5I/s2qBrXgbT8cD4p4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKDc0RDBFMjI4OEU1NzNGNDcwQ0Y4MkQyMkRCNzdGOUI5NDEwMDk1QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuMPm/IXyr5dNdRgBX45KKk402 tEB7lsUJ4C3wGErWBWjFxuXTTyI4b+JTxdtu7iKCRGVpsgRY9pt5tB41U6CPGrg2 z+mUtZGdzXjpsxNCkFoG24S7q8Neh4wq1P2oGG89mFxXR4dr864nEWUfYQEDN7Rk zrC8KWyiWMYD+9rhmcq7u/hwhEWxtwhS7ja5xcXhMHSxB8K2tShbtwrfQwIVXmwG HIj/bjlR1p1oqyJ9lSMCOHqITcxNcFHqMWgNTVnPSn7afYF7vZXnqPpBJb8IKxBR eZR6/mVkwxchXuBh5dQiCms99DcgxI2CWfyaETYZZ6wK0bsq8MDzWstV8y4bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdNDiKI5XP0cM+C0i23f5uUEAla0wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMxMzAzMzJlMzEzMzM2MmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniKMwDQYJ KoZIhvcNAQELBQADggEBAJGk/kPRhOobum9sL70ZoAbdnXmuBNiUB6785KW/qFG2 ds870Z+9JH9hKdqg4moWKK1dXRCkjtUpbzuBYl/ZN2/j30GhUvCY6NZK6Kg9lrU6 In2QD38CuBq6zu9oZiu11gwS+1ZA2Dxl7NX0VVaNxCeTegvLT0rrSIb30qa+qWFD OpV9wc0aDn/s0+aSfAhMq5jb68XW2B3pgZuIxyEeEEp/FdfxGlMviuurL15w2tlf tdWmEQQzdUPfapyUCQzICj5SrsaN6mN/OUFKTFrmdusMZVx/MA/RefMNFigN7hLz Y2exlkrQhJQ+qvVzyaDtr/Ky/9A3Zqqz13pomJ4jCNw= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:00 2025 by rpki-client