$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133362e302f32332d3233203d3e20313337333330.roa File: 3130332e3131322e3133362e302f32332d3233203d3e20313337333330.roa (raw, json) Hash identifier: JdFXANFgLvROw3ALiHcjcCNg37qYIzNVyiUs7U7urj0= Subject key identifier: 9F:58:C8:2F:E3:08:CA:E6:EF:74:27:D2:68:22:6E:19:ED:27:39:C7 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5271C3B50C9D6C172D83B05CF1974A16BFC45E34 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133362e302f32332d3233203d3e20313337333330.roa Signing time: Mon 30 Jun 2025 11:00:00 +0000 ROA not before: Mon 30 Jun 2025 10:55:00 +0000 ROA not after: Mon 29 Jun 2026 11:00:00 +0000 asID: 137330 IP address blocks: 103.112.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:71:c3:b5:0c:9d:6c:17:2d:83:b0:5c:f1:97:4a:16:bf:c4:5e:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 30 10:55:00 2025 GMT Not After : Jun 29 11:00:00 2026 GMT Subject: CN=9F58C82FE308CAE6EF7427D268226E19ED2739C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:11:12:e6:34:b6:d7:12:da:5b:53:e6:85:d4: 6f:cd:62:a4:09:a6:92:4d:1f:47:a0:77:eb:44:e1: 9e:0f:f8:2d:6e:f2:0f:87:23:bc:e2:0a:f2:14:8e: 04:88:a9:c9:6c:8c:3e:38:e4:56:84:01:e1:49:b1: 7a:89:cc:0a:41:63:cf:5a:1b:20:2f:39:e1:10:e4: 37:75:3e:e4:cf:0b:ff:ef:e8:f1:b4:11:30:87:ab: 26:f5:60:11:d7:e9:35:22:c1:9a:f9:94:ea:19:75: c0:0b:9e:99:b6:c4:46:cb:a3:3a:f2:62:a5:11:6a: e2:cc:0e:96:07:7b:32:b5:5b:d5:27:e5:d9:64:6c: 63:6b:73:49:91:ff:4d:14:7c:f5:3e:f5:d1:80:cc: dd:f6:85:0a:c4:22:9c:b4:24:03:19:3b:c3:7c:1a: 93:4c:ea:8e:5c:54:0e:c7:51:2c:a6:a3:c2:5d:f3: 9c:61:4c:f3:9b:c5:17:36:7d:66:11:6a:30:3e:f3: 4a:be:a1:2c:52:e5:87:9b:e9:d2:f2:84:01:66:83: 8e:b9:b1:75:cb:e3:13:b9:c7:40:e5:46:70:ff:8d: c7:c3:e8:49:c7:79:5b:ce:1f:6f:df:58:fb:9c:bb: 63:10:1b:6f:5c:ac:59:f0:fc:dd:7a:bb:d2:fd:6e: 90:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:58:C8:2F:E3:08:CA:E6:EF:74:27:D2:68:22:6E:19:ED:27:39:C7 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133362e302f32332d3233203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.136.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:f7:1e:85:91:7d:70:50:ef:ce:b1:39:25:36:02:f9:58:bf: 12:9d:2c:91:fe:e4:9f:ee:9f:45:a6:28:77:aa:1e:95:45:bc: db:a6:4c:2b:22:b9:5c:31:bf:a3:94:a2:13:79:92:20:66:5e: 88:f4:7d:6f:7f:a3:d0:95:00:1c:6e:7e:75:8e:4c:73:fb:05: 01:a8:73:05:37:49:5e:96:89:10:d4:a9:be:8d:09:58:74:8e: 59:3d:0f:30:5d:69:c7:38:c6:d4:b0:d1:7e:cd:ff:25:20:2f: 1d:30:13:9b:66:35:50:f7:5c:df:25:69:11:b6:1f:ff:c9:5d: ff:fa:9b:ed:ee:05:0a:c4:50:eb:1c:11:5e:5a:a1:db:5f:53: f8:73:27:69:cb:c2:7e:68:d5:dc:32:a2:05:bb:24:2e:fe:9b: 59:ca:9a:08:fd:93:bc:24:59:52:dc:c1:09:14:27:ba:5c:2c: 19:d3:26:21:b8:ad:cd:52:8d:ba:89:8e:7d:15:0e:53:34:99: f4:de:5c:9e:45:3a:9a:a9:d9:9d:c7:02:15:df:fa:d9:5c:36: fa:2b:bf:d5:33:36:cf:59:ac:eb:82:1a:85:95:d4:ff:00:9e: 7a:52:34:75:54:b6:69:d0:7c:b7:c4:86:16:0e:2a:df:6c:8f: e7:66:91:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUnHDtQydbBctg7Bc8ZdKFr/EXjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA2MzAxMDU1MDBaFw0yNjA2MjkxMTAwMDBaMDMxMTAvBgNV BAMTKDlGNThDODJGRTMwOENBRTZFRjc0MjdEMjY4MjI2RTE5RUQyNzM5QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyERLmNLbXEtpbU+aF1G/NYqQJ ppJNH0egd+tE4Z4P+C1u8g+HI7ziCvIUjgSIqclsjD445FaEAeFJsXqJzApBY89a GyAvOeEQ5Dd1PuTPC//v6PG0ETCHqyb1YBHX6TUiwZr5lOoZdcALnpm2xEbLozry YqURauLMDpYHezK1W9Un5dlkbGNrc0mR/00UfPU+9dGAzN32hQrEIpy0JAMZO8N8 GpNM6o5cVA7HUSymo8Jd85xhTPObxRc2fWYRajA+80q+oSxS5Yeb6dLyhAFmg465 sXXL4xO5x0DlRnD/jcfD6EnHeVvOH2/fWPucu2MQG29crFnw/N16u9L9bpAbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUn1jIL+MIyubvdCfSaCJuGe0nOccwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFncIgwDQYJ KoZIhvcNAQELBQADggEBAAv3HoWRfXBQ786xOSU2AvlYvxKdLJH+5J/un0WmKHeq HpVFvNumTCsiuVwxv6OUohN5kiBmXoj0fW9/o9CVABxufnWOTHP7BQGocwU3SV6W iRDUqb6NCVh0jlk9DzBdacc4xtSw0X7N/yUgLx0wE5tmNVD3XN8laRG2H//JXf/6 m+3uBQrEUOscEV5aodtfU/hzJ2nLwn5o1dwyogW7JC7+m1nKmgj9k7wkWVLcwQkU J7pcLBnTJiG4rc1SjbqJjn0VDlM0mfTeXJ5FOpqp2Z3HAhXf+tlcNvorv9UzNs9Z rOuCGoWV1P8AnnpSNHVUtmnQfLfEhhYOKt9sj+dmkXM= -----END CERTIFICATE-----Generated at Mon Jun 30 18:59:41 2025 by rpki-client