$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa File: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (raw, json) Hash identifier: GQbGwj8/3pFXSYNr52t6SKb3/O8bij4qIjKoYgJR2e8= Subject key identifier: 9B:B9:54:BD:9A:26:74:5B:49:E9:C9:AF:5A:65:D0:A2:C8:84:AB:6E Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 2D9E839C5380F88DA05D4DBAFCE1676D0E5132BD Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa Signing time: Wed 03 Sep 2025 14:00:54 +0000 ROA not before: Wed 03 Sep 2025 13:55:54 +0000 ROA not after: Wed 02 Sep 2026 14:00:54 +0000 asID: 150257 IP address blocks: 103.30.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 05:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:9e:83:9c:53:80:f8:8d:a0:5d:4d:ba:fc:e1:67:6d:0e:51:32:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Sep 3 13:55:54 2025 GMT Not After : Sep 2 14:00:54 2026 GMT Subject: CN=9BB954BD9A26745B49E9C9AF5A65D0A2C884AB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:99:67:16:a5:5c:d8:76:73:38:ae:81:ab:5b: 43:97:93:d1:b0:04:c6:4c:57:e9:9a:32:42:8e:7a: 21:5d:e3:89:b5:ca:4a:ad:2f:f8:3d:8c:f5:75:10: 7d:1f:58:22:3d:ee:3f:4d:65:b2:37:b5:6f:67:67: 91:8c:60:d3:e4:8b:b2:e1:16:bf:be:d1:45:75:f6: da:34:1b:d4:c4:a7:dd:c1:66:74:91:30:8a:da:63: 51:a8:98:ae:e7:df:03:fa:29:d4:4c:67:54:be:26: c5:6e:c7:4c:6a:30:0d:40:08:b3:01:65:7a:d1:f8: cb:61:80:62:96:d2:7f:53:99:15:5c:7b:27:50:33: 54:b8:b8:e5:fe:21:af:c9:5d:e6:ac:dc:5c:72:7e: 32:a1:ad:30:ec:c1:ab:b9:24:4e:10:fe:ab:05:b7: a7:23:58:8b:1b:56:cf:1d:3d:52:d1:0a:a3:30:43: 92:02:71:45:e2:6a:7b:41:b4:01:c3:b7:98:fc:d8: e0:a1:5a:e8:db:ee:8f:27:c2:60:85:bf:95:f6:15: 42:93:33:9b:73:77:e4:3a:e9:8c:1a:6b:9f:02:f7: 79:fe:11:a7:54:ba:60:6a:4c:a3:6c:b9:7a:48:cf: 1a:cd:f1:ba:20:de:53:11:06:77:23:0a:0f:f8:84: 3d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B9:54:BD:9A:26:74:5B:49:E9:C9:AF:5A:65:D0:A2:C8:84:AB:6E X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.193.0/24 Signature Algorithm: sha256WithRSAEncryption 30:1a:75:a7:48:2e:f6:96:68:59:b7:fb:d4:b3:c8:ff:32:34: 6d:87:36:5c:1e:c3:ee:f4:cb:4e:b0:00:eb:af:a6:22:0e:85: 65:b7:6a:28:d3:78:14:63:72:1b:0c:c8:78:d4:73:e3:73:b1: d0:82:98:a9:7d:a2:ff:3f:ba:84:6a:cc:12:48:56:8e:6e:e0: e9:e8:c5:51:8f:f8:f5:e6:bb:e8:32:04:96:8e:f5:4c:3f:75: 84:ee:94:67:6a:9b:e6:35:51:b3:cf:3b:b3:78:ab:72:06:6f: 6c:43:0a:3c:41:e5:1f:14:2f:63:71:4e:4c:be:68:13:07:6b: 1a:eb:63:a0:ce:2e:74:51:6e:9e:2e:79:38:e3:f4:1e:e8:68: 9b:81:4d:26:39:ad:40:33:95:82:3d:ec:35:1b:d4:0b:d4:9d: 07:14:99:ba:2e:d8:a2:2d:55:f8:39:ce:4c:d4:4a:b6:44:08: ac:13:96:88:9b:a2:8d:07:1b:1f:45:97:d4:91:cf:96:1a:dd: fa:05:52:33:b1:10:61:aa:e3:83:e6:93:0a:bb:6e:ee:29:fc: f6:7b:4d:7d:96:94:2f:95:88:1a:26:2e:28:14:18:d8:d9:bb: e8:17:c6:9f:bb:a1:ec:27:d1:31:be:02:dc:76:c8:a2:af:f4: 82:c6:e9:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULZ6DnFOA+I2gXU26/OFnbQ5RMr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTA5MDMxMzU1NTRaFw0yNjA5MDIxNDAwNTRaMDMxMTAvBgNV BAMTKDlCQjk1NEJEOUEyNjc0NUI0OUU5QzlBRjVBNjVEMEEyQzg4NEFCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKmWcWpVzYdnM4roGrW0OXk9Gw BMZMV+maMkKOeiFd44m1ykqtL/g9jPV1EH0fWCI97j9NZbI3tW9nZ5GMYNPki7Lh Fr++0UV19to0G9TEp93BZnSRMIraY1GomK7n3wP6KdRMZ1S+JsVux0xqMA1ACLMB ZXrR+MthgGKW0n9TmRVceydQM1S4uOX+Ia/JXeas3FxyfjKhrTDswau5JE4Q/qsF t6cjWIsbVs8dPVLRCqMwQ5ICcUXiantBtAHDt5j82OChWujb7o8nwmCFv5X2FUKT M5tzd+Q66Ywaa58C93n+EadUumBqTKNsuXpIzxrN8bog3lMRBncjCg/4hD0fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm7lUvZomdFtJ6cmvWmXQosiEq24wHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlNjFlNWFlLWU0NWYtNGVlMy04 ZjZiLTdjYjU5ZDYxNzgzYi8wLzMxMzAzMzJlMzMzMDJlMzEzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx7BMA0GCSqG SIb3DQEBCwUAA4IBAQAwGnWnSC72lmhZt/vUs8j/MjRthzZcHsPu9MtOsADrr6Yi DoVlt2oo03gUY3IbDMh41HPjc7HQgpipfaL/P7qEaswSSFaObuDp6MVRj/j15rvo MgSWjvVMP3WE7pRnapvmNVGzzzuzeKtyBm9sQwo8QeUfFC9jcU5MvmgTB2sa62Og zi50UW6eLnk44/Qe6GibgU0mOa1AM5WCPew1G9QL1J0HFJm6LtiiLVX4Oc5M1Eq2 RAisE5aIm6KNBxsfRZfUkc+WGt36BVIzsRBhquOD5pMKu27uKfz2e019lpQvlYga Ji4oFBjY2bvoF8afu6HsJ9ExvgLcdsiir/SCxumN -----END CERTIFICATE-----Generated at Mon Sep 8 09:38:16 2025 by rpki-client