$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa File: 3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: soTFrYPYqOT0wkrn6Py3xPs0fFiW/5/f4549L3r+Igg= Subject key identifier: 62:6D:3A:A8:61:31:1C:F2:B7:47:17:71:11:81:8D:BE:54:92:45:E0 Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Certificate serial: 3C0FE513698189B221208FDAEAF2A14E828A05AC Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa Signing time: Thu 28 Aug 2025 16:00:00 +0000 ROA not before: Thu 28 Aug 2025 15:55:00 +0000 ROA not after: Thu 27 Aug 2026 16:00:00 +0000 asID: 140456 IP address blocks: 103.96.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 09:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:0f:e5:13:69:81:89:b2:21:20:8f:da:ea:f2:a1:4e:82:8a:05:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Validity Not Before: Aug 28 15:55:00 2025 GMT Not After : Aug 27 16:00:00 2026 GMT Subject: CN=626D3AA861311CF2B747177111818DBE549245E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ff:21:1d:46:15:dd:4e:25:0a:6b:c6:11:24: 1e:04:90:84:3f:96:29:c4:17:a6:ba:17:f6:38:4b: d2:a7:98:2b:1a:d7:a5:34:45:0e:5c:53:5c:15:20: 39:3d:cf:b4:25:28:93:71:3f:cf:30:5c:3e:d4:74: cf:9c:8f:d1:7e:b6:02:19:69:28:8c:71:e9:40:c2: df:f9:7d:85:84:04:09:59:73:06:a7:3f:9a:9b:1b: d3:fd:09:c0:9d:69:6b:fd:80:99:8e:cd:08:38:51: 03:b9:cd:64:aa:71:d3:e1:55:31:0e:f1:4e:90:39: 7b:8f:d8:a9:07:40:c0:ec:01:92:e7:7f:59:5d:41: 25:02:28:6e:90:74:06:40:46:63:44:25:84:3a:13: 53:3e:d4:59:3a:f5:bb:dd:3d:2e:5f:0d:d9:0e:a0: e2:4d:f5:6e:17:fd:8b:4f:d6:58:b6:56:65:9d:fb: 46:85:d9:6f:fe:90:a6:9d:1d:8e:17:25:7d:5a:df: 46:5e:41:30:2f:bc:5e:c4:b7:a5:bf:42:74:24:07: 65:9c:f1:83:17:30:1a:6a:7d:4b:72:8a:a7:4b:46: 3e:19:ff:3a:b9:e6:69:9c:52:24:e6:94:3f:64:38: 31:30:fc:9b:b5:fe:ad:2c:b2:5f:e8:6e:1a:32:c0: 83:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:6D:3A:A8:61:31:1C:F2:B7:47:17:71:11:81:8D:BE:54:92:45:E0 X509v3 Authority Key Identifier: keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.146.0/23 Signature Algorithm: sha256WithRSAEncryption a3:b5:61:5a:c0:58:74:ce:f1:58:b1:65:eb:b7:51:af:12:b3: 9a:40:b0:ba:de:5e:d0:e3:ce:98:9a:5b:96:c4:41:27:01:cd: 1c:9b:bc:cd:63:30:04:36:37:3c:27:82:16:83:5a:b1:3e:34: 3a:84:28:6f:b1:c7:2d:81:c3:7b:cd:59:96:f5:d0:e1:b2:ec: 47:7b:91:0a:95:1f:73:40:62:7e:4e:76:15:ca:9d:30:e6:e6: 26:85:d6:93:32:9b:4e:bc:a6:f3:e1:9a:99:c3:72:cd:24:af: 3f:72:99:23:f3:2d:ab:ac:91:07:8e:39:bd:33:23:23:79:1f: 49:3a:80:9e:c3:b9:3f:09:4e:2a:76:ff:61:a0:65:fb:95:c2: a1:9b:77:d4:af:b1:8c:d9:49:30:73:fd:01:ac:cf:1b:1d:e4: 7f:a6:26:dc:f9:6a:60:57:dc:6a:5e:6c:22:c5:0f:df:33:78: 52:46:86:20:bd:78:1c:b7:26:f9:8a:b6:80:e1:54:f4:d6:84: ac:a5:bd:a5:82:11:20:bc:ad:56:8d:b0:d6:79:25:22:eb:c8: da:e2:71:89:f0:75:c8:dd:6c:9f:8a:ef:8d:f7:0a:75:1b:44: 14:dc:67:c9:85:95:68:8b:72:4b:0b:50:35:b3:14:1d:89:67: 08:46:a0:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPA/lE2mBibIhII/a6vKhToKKBawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZG QTJEQ0QwQTAeFw0yNTA4MjgxNTU1MDBaFw0yNjA4MjcxNjAwMDBaMDMxMTAvBgNV BAMTKDYyNkQzQUE4NjEzMTFDRjJCNzQ3MTc3MTExODE4REJFNTQ5MjQ1RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl/yEdRhXdTiUKa8YRJB4EkIQ/ linEF6a6F/Y4S9KnmCsa16U0RQ5cU1wVIDk9z7QlKJNxP88wXD7UdM+cj9F+tgIZ aSiMcelAwt/5fYWEBAlZcwanP5qbG9P9CcCdaWv9gJmOzQg4UQO5zWSqcdPhVTEO 8U6QOXuP2KkHQMDsAZLnf1ldQSUCKG6QdAZARmNEJYQ6E1M+1Fk69bvdPS5fDdkO oOJN9W4X/YtP1li2VmWd+0aF2W/+kKadHY4XJX1a30ZeQTAvvF7Et6W/QnQkB2Wc 8YMXMBpqfUtyiqdLRj4Z/zq55mmcUiTmlD9kODEw/Ju1/q0ssl/obhoywIPzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYm06qGExHPK3RxdxEYGNvlSSReAwHwYDVR0j BBgwFoAUgcIDz0WOSKj/NF+0pd2ExvotzQowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTQ3NDZiNy01ZmYyLTQ1NTYtOGEzZS01YTg2Y2JjYzg1OTgvMC84MUMyMDNDRjQ1 OEU0OEE4RkYzNDVGQjRBNUREODRDNkZBMkRDRDBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZGQTJE Q0QwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhNDc0NmI3LTVmZjItNDU1Ni04 YTNlLTVhODZjYmNjODU5OC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2CSMA0GCSqG SIb3DQEBCwUAA4IBAQCjtWFawFh0zvFYsWXrt1GvErOaQLC63l7Q486YmluWxEEn Ac0cm7zNYzAENjc8J4IWg1qxPjQ6hChvscctgcN7zVmW9dDhsuxHe5EKlR9zQGJ+ TnYVyp0w5uYmhdaTMptOvKbz4ZqZw3LNJK8/cpkj8y2rrJEHjjm9MyMjeR9JOoCe w7k/CU4qdv9hoGX7lcKhm3fUr7GM2Ukwc/0BrM8bHeR/pibc+WpgV9xqXmwixQ/f M3hSRoYgvXgctyb5iraA4VT01oSspb2lghEgvK1WjbDWeSUi68ja4nGJ8HXI3Wyf iu+N9wp1G0QU3GfJhZVoi3JLC1A1sxQdiWcIRqBR -----END CERTIFICATE-----Generated at Mon Sep 8 10:47:59 2025 by rpki-client