$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32342d3234203d3e2039333431.roa File: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU= Subject key identifier: 36:8E:06:FE:BE:30:10:76:29:FE:88:C2:EE:55:53:FD:25:5C:15:E9 Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 2A572D99330E587854E0BD1D0EF533B93074327B Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32342d3234203d3e2039333431.roa Signing time: Tue 26 Aug 2025 17:00:01 +0000 ROA not before: Tue 26 Aug 2025 16:55:01 +0000 ROA not after: Tue 25 Aug 2026 17:00:01 +0000 asID: 9341 IP address blocks: 103.36.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 11:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:57:2d:99:33:0e:58:78:54:e0:bd:1d:0e:f5:33:b9:30:74:32:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Aug 26 16:55:01 2025 GMT Not After : Aug 25 17:00:01 2026 GMT Subject: CN=368E06FEBE30107629FE88C2EE5553FD255C15E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ee:80:5b:c3:78:cd:b1:a5:92:15:fc:57:90: 71:75:41:c8:08:72:b2:14:f4:12:3b:43:64:ff:56: 9d:ac:0d:22:88:19:f7:c2:4a:fb:85:67:6f:77:35: 7b:87:6f:84:b2:eb:53:79:3a:c6:5f:f6:38:25:30: 8b:93:d4:41:ae:50:ce:d6:d9:7e:64:ee:c0:ce:b0: 3c:6b:8d:88:cd:6d:46:5b:fe:62:b1:e0:4b:e2:0b: 51:51:db:af:1e:a9:e6:3f:fa:94:7d:ee:13:99:94: 7d:f8:d5:bf:d4:df:71:18:7f:4a:7e:6b:62:28:07: 80:90:9a:56:35:6b:c4:cc:b3:77:50:00:e6:66:99: 67:4e:a4:72:d0:c2:5a:aa:fa:80:56:77:3b:83:20: 11:ac:42:a6:49:6c:00:3e:ec:a5:f4:69:3e:8c:ff: 8d:0b:d7:09:9f:99:df:05:f1:13:2f:83:1f:b9:6f: e4:3a:c8:8d:e3:83:1d:bd:7e:d2:79:ab:e6:af:f1: 85:33:12:93:fa:e0:c6:be:73:b3:9d:27:e6:09:46: 60:07:50:35:87:7c:e9:cf:3d:b6:f1:5b:17:d9:3e: 3b:45:63:52:ff:14:9b:37:96:cb:bb:74:cd:d9:e5: c2:56:f5:94:fb:b7:6b:d8:eb:66:99:1d:95:d5:f8: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8E:06:FE:BE:30:10:76:29:FE:88:C2:EE:55:53:FD:25:5C:15:E9 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35322e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.52.0/24 Signature Algorithm: sha256WithRSAEncryption 95:95:b8:e6:55:a8:c2:4b:cf:f8:9d:21:1d:8a:52:e4:ae:da: 00:a0:54:f4:9a:cc:1a:a4:d5:14:50:2c:2b:52:31:2f:cb:8a: bd:b2:7e:16:73:79:ee:23:9e:b5:17:f6:d0:b3:c6:7a:53:a6: fa:d9:7a:af:4e:30:01:01:f0:1c:06:52:53:68:bd:88:b3:fa: 4a:88:6b:12:9c:92:fe:1c:b4:c1:1a:90:f2:68:a7:38:88:e3: 38:58:e0:d0:a9:55:6f:e3:37:bb:c4:77:d8:6a:c0:96:77:97: 9a:8c:83:c8:54:06:11:d7:c9:53:fd:89:d9:9d:6a:ef:cc:7c: 0f:7a:3e:02:63:3d:e2:a9:ef:a3:76:5c:30:5d:a5:f5:80:28: d4:9f:dc:f2:d7:dd:9d:61:23:36:d5:98:49:5e:0f:8c:0e:a7: a8:90:5d:d0:4a:0f:d8:57:a5:ad:fa:1f:db:55:2d:1e:f8:4c: aa:c8:44:9b:22:1e:c3:1c:fa:78:a6:a4:96:77:64:c8:49:c9: 5e:04:1c:a7:e7:5c:71:19:a8:b8:a7:1a:65:25:e2:ee:43:8b: 1d:3c:14:b8:e6:aa:ac:3a:eb:bc:26:9d:29:ee:c6:94:ef:64: 5d:31:b9:a4:cb:33:9a:b9:d5:0f:80:d2:83:bd:12:a5:33:fc: 6a:12:aa:6c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKlctmTMOWHhU4L0dDvUzuTB0MnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTA4MjYxNjU1MDFaFw0yNjA4MjUxNzAwMDFaMDMxMTAvBgNV BAMTKDM2OEUwNkZFQkUzMDEwNzYyOUZFODhDMkVFNTU1M0ZEMjU1QzE1RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD7oBbw3jNsaWSFfxXkHF1QcgI crIU9BI7Q2T/Vp2sDSKIGffCSvuFZ293NXuHb4Sy61N5OsZf9jglMIuT1EGuUM7W 2X5k7sDOsDxrjYjNbUZb/mKx4EviC1FR268eqeY/+pR97hOZlH341b/U33EYf0p+ a2IoB4CQmlY1a8TMs3dQAOZmmWdOpHLQwlqq+oBWdzuDIBGsQqZJbAA+7KX0aT6M /40L1wmfmd8F8RMvgx+5b+Q6yI3jgx29ftJ5q+av8YUzEpP64Ma+c7OdJ+YJRmAH UDWHfOnPPbbxWxfZPjtFY1L/FJs3lsu7dM3Z5cJW9ZT7t2vY62aZHZXV+JlfAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUNo4G/r4wEHYp/ojC7lVT/SVcFekwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvMzEzMDMzMmUzMzM2MmUzNTMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnJDQwDQYJKoZIhvcNAQEL BQADggEBAJWVuOZVqMJLz/idIR2KUuSu2gCgVPSazBqk1RRQLCtSMS/Lir2yfhZz ee4jnrUX9tCzxnpTpvrZeq9OMAEB8BwGUlNovYiz+kqIaxKckv4ctMEakPJopziI 4zhY4NCpVW/jN7vEd9hqwJZ3l5qMg8hUBhHXyVP9idmdau/MfA96PgJjPeKp76N2 XDBdpfWAKNSf3PLX3Z1hIzbVmEleD4wOp6iQXdBKD9hXpa36H9tVLR74TKrIRJsi HsMc+nimpJZ3ZMhJyV4EHKfnXHEZqLinGmUl4u5Dix08FLjmqqw667wmnSnuxpTv ZF0xuaTLM5q51Q+A0oO9EqUz/GoSqmw= -----END CERTIFICATE-----Generated at Fri Sep 5 12:46:51 2025 by rpki-client