$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32332d3233203d3e2039333431.roa File: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw= Subject key identifier: F5:83:55:77:A5:90:F6:D3:AF:10:F1:CD:74:40:6B:F6:AF:84:76:63 Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 3CF0A558D44EBBF83DC48066D99D5D45B513E008 Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32332d3233203d3e2039333431.roa Signing time: Tue 26 Aug 2025 18:02:28 +0000 ROA not before: Tue 26 Aug 2025 17:57:28 +0000 ROA not after: Tue 25 Aug 2026 18:02:28 +0000 asID: 9341 IP address blocks: 103.36.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 11:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f0:a5:58:d4:4e:bb:f8:3d:c4:80:66:d9:9d:5d:45:b5:13:e0:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Aug 26 17:57:28 2025 GMT Not After : Aug 25 18:02:28 2026 GMT Subject: CN=F5835577A590F6D3AF10F1CD74406BF6AF847663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:3f:94:51:9f:52:a7:df:9d:16:3b:6b:4c: 4e:c7:14:e4:40:e9:67:ac:51:3b:6e:c2:1b:97:93: 48:9a:3e:3e:c2:78:d0:e4:83:23:e9:51:8e:00:d9: 8b:1f:5e:8e:a7:df:cc:74:30:67:ee:c6:dc:bd:3d: 87:1d:32:65:87:f0:1b:5e:c1:04:b7:8a:cb:00:54: df:1c:50:69:f8:59:eb:90:2c:3e:e6:6a:e1:ca:15: 1d:48:3c:44:7e:4c:26:bf:1e:c8:eb:31:de:48:18: 37:df:0f:46:46:36:83:7b:02:05:34:54:13:1a:79: c1:b8:5b:04:88:52:37:7f:f0:1b:0c:af:dd:67:be: a6:93:6c:19:bf:90:ad:d0:87:83:4c:ef:e9:a1:3f: e6:86:e1:4e:f8:62:29:f9:2c:fe:90:da:90:ad:ee: a7:18:11:d9:b5:9f:81:c9:8c:73:14:be:9c:ef:93: 6d:24:09:d3:29:2a:93:f2:34:9c:b1:ee:07:42:e1: fd:92:8d:1b:ca:9e:f9:2e:35:43:64:ae:a2:be:64: 45:97:3a:1b:a3:f4:c1:2b:ce:8e:23:4d:3c:d3:49: 92:49:cc:bf:f5:fd:10:b3:aa:f7:3f:7d:5a:58:44: 52:4f:0b:fe:67:7d:2b:4a:54:ed:39:3c:e1:a0:03: 0b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:83:55:77:A5:90:F6:D3:AF:10:F1:CD:74:40:6B:F6:AF:84:76:63 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.52.0/23 Signature Algorithm: sha256WithRSAEncryption 36:d8:ef:4d:20:14:9d:5c:14:96:63:b6:4b:3e:10:21:a3:d2: 40:6f:b9:ab:56:fd:ad:04:97:f7:50:1e:79:a6:89:c9:34:93: e6:f0:e4:6b:6d:0c:3a:fa:bc:89:b6:77:22:a4:20:dd:46:c9: 69:bc:dd:6f:26:45:b4:73:6d:ed:45:8b:4a:21:13:d5:6c:d2: f6:a3:2e:11:b9:7f:09:bd:ba:14:a1:83:ca:cb:57:66:db:96: 8c:97:6e:fa:9b:50:93:a3:71:3f:96:49:6b:8d:b5:56:0d:3d: 04:15:6f:a6:d7:a0:d9:9b:cf:4b:44:91:d5:58:0b:6b:ab:e3: 82:f3:a2:9d:2e:93:ac:e2:40:04:4a:73:23:30:0f:a2:b7:e8: d9:93:36:24:f7:5b:45:f1:bc:80:e9:b6:82:6c:6e:ec:8e:ed: 47:db:c4:4e:c7:c6:3b:82:97:0f:3d:13:15:29:54:90:90:b2: e5:2e:bf:b7:56:83:05:64:4d:6f:f3:66:5b:88:d3:72:65:55: 75:e8:aa:cc:8d:a8:27:a9:ea:fe:58:99:c9:61:7b:ea:50:25: 66:4f:41:4a:26:08:5c:97:51:60:a2:d9:51:57:bc:7c:75:5f: cc:98:bd:af:25:58:e5:54:c0:96:16:02:06:09:c6:69:a3:14: 37:eb:7d:32 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPPClWNROu/g9xIBm2Z1dRbUT4AgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTA4MjYxNzU3MjhaFw0yNjA4MjUxODAyMjhaMDMxMTAvBgNV BAMTKEY1ODM1NTc3QTU5MEY2RDNBRjEwRjFDRDc0NDA2QkY2QUY4NDc2NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVmj+UUZ9Sp9+dFjtrTE7HFORA 6WesUTtuwhuXk0iaPj7CeNDkgyPpUY4A2YsfXo6n38x0MGfuxty9PYcdMmWH8Bte wQS3issAVN8cUGn4WeuQLD7mauHKFR1IPER+TCa/HsjrMd5IGDffD0ZGNoN7AgU0 VBMaecG4WwSIUjd/8BsMr91nvqaTbBm/kK3Qh4NM7+mhP+aG4U74Yin5LP6Q2pCt 7qcYEdm1n4HJjHMUvpzvk20kCdMpKpPyNJyx7gdC4f2SjRvKnvkuNUNkrqK+ZEWX Ohuj9MErzo4jTTzTSZJJzL/1/RCzqvc/fVpYRFJPC/5nfStKVO05POGgAwvxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU9YNVd6WQ9tOvEPHNdEBr9q+EdmMwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvMzEzMDMzMmUzMzM2MmUzNTMyMmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnJDQwDQYJKoZIhvcNAQEL BQADggEBADbY700gFJ1cFJZjtks+ECGj0kBvuatW/a0El/dQHnmmick0k+bw5Gtt DDr6vIm2dyKkIN1GyWm83W8mRbRzbe1Fi0ohE9Vs0vajLhG5fwm9uhShg8rLV2bb loyXbvqbUJOjcT+WSWuNtVYNPQQVb6bXoNmbz0tEkdVYC2ur44Lzop0uk6ziQARK cyMwD6K36NmTNiT3W0XxvIDptoJsbuyO7UfbxE7HxjuClw89ExUpVJCQsuUuv7dW gwVkTW/zZluI03JlVXXoqsyNqCep6v5Ymclhe+pQJWZPQUomCFyXUWCi2VFXvHx1 X8yYva8lWOVUwJYWAgYJxmmjFDfrfTI= -----END CERTIFICATE-----Generated at Fri Sep 5 12:47:00 2025 by rpki-client