$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: 82WkCsugh3Y0Do+wrRLPbBu7oY8u5dpqm/OQwR7YoKQ= Subject key identifier: D9:7A:3B:83:73:20:69:30:44:BB:5A:27:B6:7A:36:87:E5:96:75:8B Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 01DA45A32966C38D017676386264FD72FBA92FCC Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa Signing time: Mon 02 Jun 2025 02:04:38 +0000 ROA not before: Mon 02 Jun 2025 01:59:38 +0000 ROA not after: Mon 01 Jun 2026 02:04:38 +0000 asID: 136840 IP address blocks: 103.100.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:da:45:a3:29:66:c3:8d:01:76:76:38:62:64:fd:72:fb:a9:2f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jun 2 01:59:38 2025 GMT Not After : Jun 1 02:04:38 2026 GMT Subject: CN=D97A3B837320693044BB5A27B67A3687E596758B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:27:e8:f1:70:46:76:62:92:df:cb:fc:b3:7c: 35:19:15:1d:1d:97:ce:41:51:d3:cc:75:9c:6e:50: 41:e0:69:ac:87:89:a9:8a:d1:e2:8d:1c:84:00:c6: 3c:c0:b4:ce:54:da:85:c7:78:bb:19:cd:ef:26:79: 4b:89:92:3f:02:9f:0f:62:ca:41:5c:23:15:49:f8: 98:78:28:30:7e:74:b3:85:bc:31:a3:1e:31:9f:81: fb:49:6f:6a:06:5e:d4:3b:07:49:ed:c2:8f:1a:ff: 08:13:22:a4:b5:ae:fe:34:bf:38:d6:73:05:39:6d: 13:c8:19:3d:86:dd:7a:b8:99:bd:5a:8e:6b:34:c2: f3:07:b4:57:8f:bc:a8:dc:4e:c2:3c:c1:ee:ee:dd: 95:04:0b:c5:5b:ab:bf:34:03:d1:d8:d2:0d:3b:bc: 7d:c3:8f:e4:e0:9c:18:b0:2f:9c:f4:ff:50:ac:aa: 9a:7b:00:f3:d1:db:10:c4:5b:c2:17:4b:61:b2:1b: 43:d2:81:ca:55:9e:3b:bc:5e:7a:6d:76:69:61:01: ab:96:d7:0b:a5:c2:18:94:7d:2a:3e:0b:c4:ca:30: a4:99:f1:89:a2:c6:fe:5f:0a:de:69:68:45:66:26: de:db:93:56:99:63:e1:9d:ff:86:2a:53:d5:50:6c: af:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7A:3B:83:73:20:69:30:44:BB:5A:27:B6:7A:36:87:E5:96:75:8B X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.182.0/24 Signature Algorithm: sha256WithRSAEncryption 69:bf:1a:89:4c:0f:5a:e7:3f:de:7f:eb:1c:64:20:eb:43:79: 54:e1:ba:fc:c0:2c:62:76:29:37:59:6a:27:eb:33:59:81:a0: 1a:8a:26:aa:d1:e9:f8:56:db:10:01:f4:a8:3b:3e:34:83:ad: 00:70:81:4b:d3:e9:d3:cc:4a:ae:e9:c9:d2:cf:61:5e:c4:2a: 4f:c9:74:a3:59:00:28:0a:83:79:47:39:c2:fa:68:20:a1:7f: 7f:30:9f:17:f9:d7:ef:6d:77:1f:1d:ff:16:52:7c:c3:c5:b6: 91:80:8e:0f:5c:1e:08:df:71:1b:44:ee:91:26:c9:47:58:b3: 07:4d:d7:ef:20:6b:cb:b8:b7:6d:9b:3d:80:68:57:88:38:9a: 43:5d:56:35:b0:09:c3:be:7d:46:43:1a:1d:0c:75:96:78:1c: 49:29:a7:c9:17:34:ec:da:55:b3:22:9c:ee:37:14:79:ee:0c: 8b:23:b7:a4:d0:40:7c:1e:bb:b6:33:54:0c:3b:7d:29:5b:69: fa:a4:51:70:dc:35:99:3a:a3:84:12:c6:25:75:34:85:3f:6b: ee:81:03:8d:4f:27:c9:bc:30:a7:1f:87:e6:e2:a2:b5:ae:5d: 2c:44:25:97:88:b8:a4:82:74:1f:07:28:bc:42:43:a6:f2:1f: 18:a1:16:1c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAdpFoylmw40BdnY4YmT9cvupL8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNTA2MDIwMTU5MzhaFw0yNjA2MDEwMjA0MzhaMDMxMTAvBgNV BAMTKEQ5N0EzQjgzNzMyMDY5MzA0NEJCNUEyN0I2N0EzNjg3RTU5Njc1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJ+jxcEZ2YpLfy/yzfDUZFR0d l85BUdPMdZxuUEHgaayHiamK0eKNHIQAxjzAtM5U2oXHeLsZze8meUuJkj8Cnw9i ykFcIxVJ+Jh4KDB+dLOFvDGjHjGfgftJb2oGXtQ7B0ntwo8a/wgTIqS1rv40vzjW cwU5bRPIGT2G3Xq4mb1ajms0wvMHtFePvKjcTsI8we7u3ZUEC8Vbq780A9HY0g07 vH3Dj+TgnBiwL5z0/1Csqpp7APPR2xDEW8IXS2GyG0PSgcpVnju8XnptdmlhAauW 1wulwhiUfSo+C8TKMKSZ8Ymixv5fCt5paEVmJt7bk1aZY+Gd/4YqU9VQbK/XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2Xo7g3MgaTBEu1ontno2h+WWdYswHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLYwDQYJ KoZIhvcNAQELBQADggEBAGm/GolMD1rnP95/6xxkIOtDeVThuvzALGJ2KTdZaifr M1mBoBqKJqrR6fhW2xAB9Kg7PjSDrQBwgUvT6dPMSq7pydLPYV7EKk/JdKNZACgK g3lHOcL6aCChf38wnxf51+9tdx8d/xZSfMPFtpGAjg9cHgjfcRtE7pEmyUdYswdN 1+8ga8u4t22bPYBoV4g4mkNdVjWwCcO+fUZDGh0MdZZ4HEkpp8kXNOzaVbMinO43 FHnuDIsjt6TQQHweu7YzVAw7fSlbafqkUXDcNZk6o4QSxiV1NIU/a+6BA41PJ8m8 MKcfh+biorWuXSxEJZeIuKSCdB8HKLxCQ6byHxihFhw= -----END CERTIFICATE-----Generated at Tue Oct 28 06:23:10 2025 by rpki-client