$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa File: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (raw, json) Hash identifier: ZSgY5OMesKAVjFXk2K7xGan10euYjEFEbhi4eeTqUI4= Subject key identifier: D3:89:56:CA:52:4B:07:0C:79:0D:27:A5:D5:E7:62:0C:B3:08:A5:54 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 516F62A8467D529900EEF2B8FA45C5F6E2FBE577 Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa Signing time: Wed 03 Sep 2025 14:00:54 +0000 ROA not before: Wed 03 Sep 2025 13:55:54 +0000 ROA not after: Wed 02 Sep 2026 14:00:54 +0000 asID: 150257 IP address blocks: 103.30.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 05:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:6f:62:a8:46:7d:52:99:00:ee:f2:b8:fa:45:c5:f6:e2:fb:e5:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Sep 3 13:55:54 2025 GMT Not After : Sep 2 14:00:54 2026 GMT Subject: CN=D38956CA524B070C790D27A5D5E7620CB308A554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0f:95:8e:f9:7c:8f:a7:ec:64:ce:af:42:ea: ed:51:2f:51:50:f0:71:6d:4e:5f:6b:be:28:3d:4a: 3a:44:b1:98:00:5f:c4:05:c2:56:21:16:42:26:af: db:64:e0:48:f3:85:96:39:f7:34:89:71:f0:f8:95: 2a:ae:84:52:55:5d:55:de:94:95:5c:6d:87:4f:51: 29:99:4d:86:97:00:57:ee:0e:88:49:ec:39:ee:41: e7:fb:67:fc:6c:97:4a:3b:12:7a:aa:29:c8:5e:ac: 08:59:4b:8a:55:05:1a:1d:f2:b4:71:dd:be:f8:d4: 5c:48:c8:40:85:d8:8c:8b:4f:b4:71:f2:07:9d:46: 97:1c:d9:15:91:86:61:c3:da:26:5b:52:2e:1b:ad: 63:15:cc:b6:fd:4d:79:a7:29:45:6d:84:b8:68:57: 7e:06:bf:c8:80:95:3d:75:47:f7:f0:ab:fb:cf:c4: d6:e5:e8:e4:11:7d:8d:96:4b:cf:d0:61:9b:c2:79: c8:98:06:7b:0c:a7:c5:8d:58:37:d7:bd:99:9d:2b: 38:07:c0:17:8a:9a:29:29:09:7f:d5:bf:f8:25:7e: 5a:16:c2:8e:2d:74:52:74:7c:eb:c2:ea:c1:7e:42: 77:55:5e:a2:9b:e9:44:7f:aa:52:34:4e:3a:6e:2a: 02:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:89:56:CA:52:4B:07:0C:79:0D:27:A5:D5:E7:62:0C:B3:08:A5:54 X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.192.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:25:3c:40:5c:a0:34:2b:7b:07:fa:b6:7a:da:29:e4:28:fe: 35:9d:3f:3a:e3:c4:5d:5a:c5:20:82:d6:96:36:9a:15:7d:0d: 56:54:4d:29:79:07:85:f1:14:5b:f0:12:65:54:7f:3b:c7:a2: 90:46:8d:87:80:b1:44:5c:dc:39:29:eb:d9:8e:01:8d:53:58: 48:2b:2a:03:f8:da:ad:4d:4c:6f:21:7c:a8:fd:3e:b3:e4:88: be:85:7f:b6:31:3a:be:85:43:74:58:83:5a:51:80:e3:c3:9f: 12:63:c1:cb:8c:8e:67:8e:ce:7d:5c:43:a4:5e:d4:7c:92:49: 28:3a:2a:0d:5d:9d:7c:2b:0c:05:a4:ca:5c:93:7e:86:b4:40: 8b:a3:33:61:c5:36:b4:12:9b:1a:d0:1d:f9:8d:db:2e:21:90: e4:0f:72:de:2e:27:ac:82:e0:9b:7e:e8:fb:7a:35:b2:59:32: 74:29:46:c9:ec:9e:66:2d:2f:2f:f5:23:b2:a9:4a:66:bd:84: 52:1b:08:41:44:88:ce:db:09:86:1c:0b:21:9c:cd:15:a2:74: 19:09:2d:f8:af:1b:b5:6c:f2:b9:38:d2:11:17:23:57:5a:2d: 6f:e0:84:b5:34:ee:ca:63:f2:df:60:9b:4e:00:d7:3a:5a:08: 05:f6:09:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUW9iqEZ9UpkA7vK4+kXF9uL75XcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTA5MDMxMzU1NTRaFw0yNjA5MDIxNDAwNTRaMDMxMTAvBgNV BAMTKEQzODk1NkNBNTI0QjA3MEM3OTBEMjdBNUQ1RTc2MjBDQjMwOEE1NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoD5WO+XyPp+xkzq9C6u1RL1FQ 8HFtTl9rvig9SjpEsZgAX8QFwlYhFkImr9tk4EjzhZY59zSJcfD4lSquhFJVXVXe lJVcbYdPUSmZTYaXAFfuDohJ7DnuQef7Z/xsl0o7EnqqKcherAhZS4pVBRod8rRx 3b741FxIyECF2IyLT7Rx8gedRpcc2RWRhmHD2iZbUi4brWMVzLb9TXmnKUVthLho V34Gv8iAlT11R/fwq/vPxNbl6OQRfY2WS8/QYZvCeciYBnsMp8WNWDfXvZmdKzgH wBeKmikpCX/Vv/glfloWwo4tdFJ0fOvC6sF+QndVXqKb6UR/qlI0TjpuKgKbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU04lWylJLBwx5DSel1ediDLMIpVQwHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlNjFlNWFlLWU0NWYtNGVlMy04 ZjZiLTdjYjU5ZDYxNzgzYi8wLzMxMzAzMzJlMzMzMDJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx7AMA0GCSqG SIb3DQEBCwUAA4IBAQCKJTxAXKA0K3sH+rZ62inkKP41nT8648RdWsUggtaWNpoV fQ1WVE0peQeF8RRb8BJlVH87x6KQRo2HgLFEXNw5KevZjgGNU1hIKyoD+NqtTUxv IXyo/T6z5Ii+hX+2MTq+hUN0WINaUYDjw58SY8HLjI5njs59XEOkXtR8kkkoOioN XZ18KwwFpMpck36GtECLozNhxTa0Epsa0B35jdsuIZDkD3LeLiesguCbfuj7ejWy WTJ0KUbJ7J5mLS8v9SOyqUpmvYRSGwhBRIjO2wmGHAshnM0VonQZCS34rxu1bPK5 ONIRFyNXWi1v4IS1NO7KY/LfYJtOANc6WggF9gn9 -----END CERTIFICATE-----Generated at Mon Sep 8 09:35:51 2025 by rpki-client