$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa File: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (raw, json) Hash identifier: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI= Subject key identifier: 04:D0:D2:FF:64:4A:EB:AC:42:D2:01:DD:4A:C8:5B:7A:5B:00:DF:6B Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 45486072069E9B00BAE702D149A046F016723D3B Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa Signing time: Thu 26 Jun 2025 09:02:22 +0000 ROA not before: Thu 26 Jun 2025 08:57:22 +0000 ROA not after: Thu 25 Jun 2026 09:02:22 +0000 asID: 141674 IP address blocks: 103.177.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 04:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:48:60:72:06:9e:9b:00:ba:e7:02:d1:49:a0:46:f0:16:72:3d:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jun 26 08:57:22 2025 GMT Not After : Jun 25 09:02:22 2026 GMT Subject: CN=04D0D2FF644AEBAC42D201DD4AC85B7A5B00DF6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:14:18:3a:bd:40:ad:9d:8a:6b:43:a2:d0: 56:02:2f:ab:04:11:c8:21:97:68:e6:43:62:f4:08: 0c:a5:77:36:3d:b2:b8:5a:6c:f2:a4:9d:c6:b9:44: 87:79:85:d7:90:e5:6a:b8:fb:dc:e8:4d:e2:40:1f: 55:58:ba:7e:72:8c:43:4d:eb:a8:f4:a1:f7:1d:22: 42:9a:8a:15:72:06:64:04:61:c4:05:7a:a0:c7:93: 5e:65:c8:68:dd:22:cf:a4:b6:b1:03:88:f6:1c:29: e8:22:72:de:4f:f2:88:5f:54:cc:d5:58:3e:61:ce: a5:1a:29:0f:d6:20:00:44:b1:42:66:d6:1e:9f:7e: 5f:2d:e5:27:21:c0:32:c6:d3:38:69:70:dc:48:51: 5c:70:b8:1f:13:b0:05:05:47:21:5e:8d:33:db:00: c3:ec:51:e5:c7:d7:f0:2f:76:61:37:4f:b8:aa:12: c7:d8:83:11:ab:1e:6a:1d:30:b6:27:c6:e3:1c:c9: c7:5c:4a:c9:87:43:28:25:7a:20:d6:7f:ef:76:97: 82:2e:50:c3:b8:92:9e:e9:d1:9f:16:3f:a8:fd:f8: 5a:84:1d:bc:ad:de:9e:17:78:36:9e:fb:6d:9d:a3: d8:78:b1:ce:c5:39:cf:fa:bd:ee:70:21:69:b4:69: 3e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D0:D2:FF:64:4A:EB:AC:42:D2:01:DD:4A:C8:5B:7A:5B:00:DF:6B X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.106.0/24 Signature Algorithm: sha256WithRSAEncryption 02:d3:d5:eb:d4:0e:0f:90:b0:01:72:34:ee:d8:23:6a:02:49: 21:be:1e:a4:21:88:eb:e5:28:8e:5b:4f:d6:36:38:b0:a7:0a: 93:79:89:ac:a0:4b:6b:68:8f:a4:33:09:ed:10:a0:f9:80:d9: a5:ce:72:d6:eb:4b:11:bd:0e:73:c5:f7:df:71:59:f9:7c:df: 0d:e2:37:4d:2e:d3:21:a6:8f:60:0f:ac:bd:53:28:9c:86:0f: 8c:49:ec:64:23:9b:a3:4b:b4:53:9c:61:67:fa:95:eb:25:61: de:57:62:0e:be:f8:3b:39:a9:41:0e:e6:9b:4d:4e:17:4a:06: 98:b4:c8:b9:7a:60:44:89:29:e8:e2:60:06:bf:a9:e9:1c:23: ff:aa:6b:0e:85:65:98:44:c5:be:64:9f:c0:75:62:29:10:74: 86:7e:2d:2f:c1:a3:86:e1:08:d3:d8:67:2f:49:10:50:71:32: ac:76:d0:b4:e8:38:75:2a:fe:b6:8c:ea:25:9a:d3:1b:cc:11: af:66:0c:64:6b:89:c0:cd:75:19:b6:25:72:ee:d9:56:ad:07: 3f:b7:99:5f:7e:4c:2c:1e:16:cb:fc:c1:5f:04:39:74:01:c9: a3:8e:af:80:28:87:d1:45:ea:21:9f:be:05:67:ce:ae:47:af: 33:5e:d7:d1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURUhgcgaemwC65wLRSaBG8BZyPTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA2MjYwODU3MjJaFw0yNjA2MjUwOTAyMjJaMDMxMTAvBgNV BAMTKDA0RDBEMkZGNjQ0QUVCQUM0MkQyMDFERDRBQzg1QjdBNUIwMERGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGYhQYOr1ArZ2Ka0Oi0FYCL6sE Ecghl2jmQ2L0CAyldzY9srhabPKknca5RId5hdeQ5Wq4+9zoTeJAH1VYun5yjENN 66j0ofcdIkKaihVyBmQEYcQFeqDHk15lyGjdIs+ktrEDiPYcKegict5P8ohfVMzV WD5hzqUaKQ/WIABEsUJm1h6ffl8t5SchwDLG0zhpcNxIUVxwuB8TsAUFRyFejTPb AMPsUeXH1/AvdmE3T7iqEsfYgxGrHmodMLYnxuMcycdcSsmHQygleiDWf+92l4Iu UMO4kp7p0Z8WP6j9+FqEHbyt3p4XeDae+22do9h4sc7FOc/6ve5wIWm0aT4DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBNDS/2RK66xC0gHdSshbelsA32swHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0Y2M2OWU5LWVmNzQtNGI4MS05 MWY0LTdiZmRmOTNmN2JhYS8wLzMxMzAzMzJlMzEzNzM3MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsWowDQYJ KoZIhvcNAQELBQADggEBAALT1evUDg+QsAFyNO7YI2oCSSG+HqQhiOvlKI5bT9Y2 OLCnCpN5iaygS2toj6QzCe0QoPmA2aXOctbrSxG9DnPF999xWfl83w3iN00u0yGm j2APrL1TKJyGD4xJ7GQjm6NLtFOcYWf6leslYd5XYg6++Ds5qUEO5ptNThdKBpi0 yLl6YESJKejiYAa/qekcI/+qaw6FZZhExb5kn8B1YikQdIZ+LS/Bo4bhCNPYZy9J EFBxMqx20LToOHUq/raM6iWa0xvMEa9mDGRricDNdRm2JXLu2VatBz+3mV9+TCwe Fsv8wV8EOXQByaOOr4Aoh9FF6iGfvgVnzq5HrzNe19E= -----END CERTIFICATE-----Generated at Wed Jul 2 00:45:20 2025 by rpki-client