$ rpki-client -vvf repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa File: 3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa (raw, json) Hash identifier: /z6uwsbM6qW8nVOnWF5tbv45b3fyByXJR19t2rKAAvM= Subject key identifier: C7:C0:59:C7:5E:C7:17:F3:EF:6A:D6:F8:FB:85:BE:3F:B8:63:88:39 Certificate issuer: /CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Certificate serial: 62618527A48EA92DDC3613E9452D85B47F5089F7 Authority key identifier: CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa Signing time: Thu 26 Jun 2025 06:01:08 +0000 ROA not before: Thu 26 Jun 2025 05:56:08 +0000 ROA not after: Thu 25 Jun 2026 06:01:08 +0000 asID: 149972 IP address blocks: 103.147.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 23:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:61:85:27:a4:8e:a9:2d:dc:36:13:e9:45:2d:85:b4:7f:50:89:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Validity Not Before: Jun 26 05:56:08 2025 GMT Not After : Jun 25 06:01:08 2026 GMT Subject: CN=C7C059C75EC717F3EF6AD6F8FB85BE3FB8638839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d9:02:7d:7a:cb:99:f8:68:4e:b1:ef:25:06: b4:13:95:e1:8f:34:c5:c8:34:c2:e1:59:c5:9a:be: 03:38:38:ae:0e:6a:db:ad:43:a2:0e:28:fa:02:a8: 7e:f8:ff:ee:08:99:81:85:4f:d8:a1:c2:40:2b:f9: aa:8d:aa:09:a3:06:29:fa:36:9e:be:c7:71:b0:8a: 4c:f2:42:cb:37:d3:7a:f5:29:dd:20:f8:5e:07:9d: 2b:d2:01:a3:20:74:a4:42:47:fa:f4:38:bb:d6:60: 0e:42:4e:9f:99:5f:e7:77:79:2c:3c:ea:be:f4:d9: 3a:ea:8c:f2:87:f3:42:b4:3c:fd:f3:99:ff:fa:4f: fe:ae:39:30:b7:5a:19:fd:b0:e7:54:ab:4a:d6:0b: f1:bb:ba:79:89:50:10:df:30:b5:23:2a:30:9a:a1: d4:3f:1d:b9:b1:51:82:ab:e4:af:b8:a0:82:00:c2: 6d:a9:51:ef:35:63:61:20:d9:56:70:a9:d0:ce:3c: 31:be:40:8d:14:a0:66:60:c4:de:c7:a1:1c:15:a7: 09:aa:a3:33:14:da:11:98:b6:b7:cf:38:db:47:b7: 1c:9b:ae:f7:00:fc:b0:7a:e0:12:8d:d9:77:2c:c1: 3f:81:f3:c0:f8:49:28:2c:85:44:d4:17:83:54:45: 8b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C0:59:C7:5E:C7:17:F3:EF:6A:D6:F8:FB:85:BE:3F:B8:63:88:39 X509v3 Authority Key Identifier: keyid:CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.114.0/23 Signature Algorithm: sha256WithRSAEncryption be:a2:8c:f3:b1:f2:08:a3:79:08:07:c0:04:01:23:ae:57:d6: bd:e2:91:99:34:8b:9b:d3:0a:ae:6c:dd:89:ca:f1:47:64:ef: 65:4e:37:bb:33:48:e9:0f:18:7b:6f:ab:d1:27:d4:52:ce:41: a4:16:2f:f3:10:9d:bd:d5:ca:95:02:b6:26:63:60:06:41:11: 46:7f:48:ad:74:2b:b8:2e:c1:b6:b5:3c:96:6f:df:8f:b3:e7: a8:07:9e:b3:64:17:e5:c2:b0:fb:b4:6c:ed:7d:c3:91:5a:76: fa:38:94:9b:17:6a:97:8b:5c:b3:cf:67:e3:fb:0b:c9:4c:73: 3a:b6:7a:f8:bb:1f:6d:31:55:62:61:11:9a:a5:b0:5f:e7:53: 6b:59:59:8f:cd:01:d8:b3:ea:89:54:b5:b6:5d:cb:dc:13:bd: 1d:0a:fd:ea:d7:bb:87:d7:90:73:6b:60:2a:ca:d7:c0:ca:b0: c0:72:0d:0e:00:c7:1c:ea:6b:ba:bf:bd:19:81:6f:d5:da:23: e7:74:87:04:92:f4:72:14:a4:26:9a:2e:b9:67:63:e8:46:81: e7:49:f6:81:4d:ad:6a:47:89:52:22:25:89:f8:85:41:c9:3e: 90:4b:5f:37:52:af:4a:ec:e2:b4:3d:99:29:e8:0b:4d:3f:7b: 12:21:83:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYmGFJ6SOqS3cNhPpRS2FtH9QifcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFE NUIyM0E3NDAeFw0yNTA2MjYwNTU2MDhaFw0yNjA2MjUwNjAxMDhaMDMxMTAvBgNV BAMTKEM3QzA1OUM3NUVDNzE3RjNFRjZBRDZGOEZCODVCRTNGQjg2Mzg4MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP2QJ9esuZ+GhOse8lBrQTleGP NMXINMLhWcWavgM4OK4OatutQ6IOKPoCqH74/+4ImYGFT9ihwkAr+aqNqgmjBin6 Np6+x3GwikzyQss303r1Kd0g+F4HnSvSAaMgdKRCR/r0OLvWYA5CTp+ZX+d3eSw8 6r702TrqjPKH80K0PP3zmf/6T/6uOTC3Whn9sOdUq0rWC/G7unmJUBDfMLUjKjCa odQ/HbmxUYKr5K+4oIIAwm2pUe81Y2Eg2VZwqdDOPDG+QI0UoGZgxN7HoRwVpwmq ozMU2hGYtrfPONtHtxybrvcA/LB64BKN2XcswT+B88D4SSgshUTUF4NURYvFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUx8BZx17HF/Pvatb4+4W+P7hjiDkwHwYDVR0j BBgwFoAUzTKB/Idajdln5+g81A8QatWyOnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjhjYzA1OS01ZTZjLTQ1MDEtYjg5NC0xNGE4MmQxOGQyMWUvMC9DRDMyODFGQzg3 NUE4REQ5NjdFN0U4M0NENDBGMTA2QUQ1QjIzQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFENUIy M0E3NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2OGNjMDU5LTVlNmMtNDUwMS1i ODk0LTE0YTgyZDE4ZDIxZS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk3IwDQYJ KoZIhvcNAQELBQADggEBAL6ijPOx8gijeQgHwAQBI65X1r3ikZk0i5vTCq5s3YnK 8Udk72VON7szSOkPGHtvq9En1FLOQaQWL/MQnb3VypUCtiZjYAZBEUZ/SK10K7gu wba1PJZv34+z56gHnrNkF+XCsPu0bO19w5Fadvo4lJsXapeLXLPPZ+P7C8lMczq2 evi7H20xVWJhEZqlsF/nU2tZWY/NAdiz6olUtbZdy9wTvR0K/erXu4fXkHNrYCrK 18DKsMByDQ4Axxzqa7q/vRmBb9XaI+d0hwSS9HIUpCaaLrlnY+hGgedJ9oFNrWpH iVIiJYn4hUHJPpBLXzdSr0rs4rQ9mSnoC00/exIhgyA= -----END CERTIFICATE-----Generated at Tue Jul 1 12:54:42 2025 by rpki-client