$ rpki-client -vvf repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa File: 3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa (raw, json) Hash identifier: XpUtFFHKDImDXUc3xuhie6Np6VSuqCdJLLAEZLptbEU= Subject key identifier: 58:36:C7:7D:3C:44:49:7F:3D:91:C2:DB:EE:74:65:AB:4C:AE:91:B8 Certificate issuer: /CN=032056FFABA06741112BA404900B315C87E35361 Certificate serial: 369C2245B29C9FB432141113B2B23A98DDEC76A8 Authority key identifier: 03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa Signing time: Thu 21 Aug 2025 11:02:26 +0000 ROA not before: Thu 21 Aug 2025 10:57:26 +0000 ROA not after: Thu 20 Aug 2026 11:02:26 +0000 asID: 141592 IP address blocks: 103.160.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:9c:22:45:b2:9c:9f:b4:32:14:11:13:b2:b2:3a:98:dd:ec:76:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032056FFABA06741112BA404900B315C87E35361 Validity Not Before: Aug 21 10:57:26 2025 GMT Not After : Aug 20 11:02:26 2026 GMT Subject: CN=5836C77D3C44497F3D91C2DBEE7465AB4CAE91B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:91:0b:00:68:d8:6a:f6:97:a2:4a:2e:d9: ba:f8:ba:ed:da:e4:e6:75:b9:82:f9:07:9e:51:b1: a0:c6:f3:3e:a1:09:72:fd:e9:63:b7:82:48:e4:08: 49:13:91:e4:82:d0:91:3b:0c:94:be:26:77:6e:45: 85:3e:32:bc:1b:f0:ca:09:47:04:88:fe:c8:5b:ca: 48:8a:a5:5f:17:d0:d8:49:78:f6:b3:c3:36:f4:d2: 96:c9:ed:29:b9:5c:e7:b1:3d:cb:89:ba:90:36:2d: 6b:86:a6:d3:c5:8d:c8:a1:0b:7b:23:a6:38:1a:af: 9e:9d:5b:9b:e9:e8:57:02:92:cc:21:01:95:c0:f0: 6e:b8:e5:35:cd:30:e0:90:5f:43:5f:33:87:b7:76: a7:17:42:23:e6:a9:bb:47:72:34:d0:f5:b8:34:d8: 63:d4:36:a8:55:9d:40:4c:f1:0f:8c:1c:28:f5:30: f3:c6:3c:12:d7:5b:31:71:03:59:46:23:c8:ff:37: 28:1d:fd:16:8e:86:b1:14:b2:5d:b3:64:62:ed:33: 24:70:cc:7d:0c:48:04:bb:2d:e1:07:19:4d:d6:b4: de:b5:65:2a:61:23:76:e4:90:e2:b4:d3:31:28:b4: 8c:84:0f:af:7b:33:67:ee:a6:f6:9c:13:a7:ee:52: 39:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:36:C7:7D:3C:44:49:7F:3D:91:C2:DB:EE:74:65:AB:4C:AE:91:B8 X509v3 Authority Key Identifier: keyid:03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.179.0/24 Signature Algorithm: sha256WithRSAEncryption 72:62:b5:d2:99:8c:ae:d5:3b:db:35:fb:08:c0:a4:20:73:82: d1:fa:b9:44:13:81:c7:c0:0f:4e:03:d3:89:97:0a:51:65:7f: cf:7a:28:cb:6a:83:d7:bc:8f:f0:cc:c2:75:af:49:31:61:5b: 56:ea:fb:51:7b:1f:67:ab:98:2f:95:7c:10:85:09:75:c8:7b: 4a:8d:ac:be:f5:59:d7:d9:55:69:5d:1f:6c:0c:aa:02:d1:05: c2:4f:7f:f1:a2:ac:e2:00:02:25:2b:ca:94:20:15:dd:b5:7e: 20:e0:63:8d:04:2b:03:76:e4:07:41:da:f7:82:e0:6b:d7:98: ca:76:f6:07:01:d3:71:6b:9a:4e:1a:f4:27:a1:7f:08:fd:16: 3f:ce:93:a4:25:fc:22:f1:77:04:a7:93:ef:98:84:a6:fe:3e: bd:f0:83:79:43:68:83:7e:1d:0f:53:b5:d4:0e:f3:43:12:e5: ff:a4:ed:6f:54:55:c2:dd:1a:6f:76:8b:11:30:69:2c:4d:8f: 13:8c:d9:18:26:b4:92:ac:ac:0f:24:12:6b:b6:0d:c9:51:d9: 0d:25:bf:22:50:66:2f:38:db:9f:bd:75:ab:6b:a6:b9:ee:a5: 1f:9c:cf:a0:cb:cb:17:e1:e6:d1:93:58:f1:be:23:d4:67:01: f1:8c:d0:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNpwiRbKcn7QyFBETsrI6mN3sdqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4 N0UzNTM2MTAeFw0yNTA4MjExMDU3MjZaFw0yNjA4MjAxMTAyMjZaMDMxMTAvBgNV BAMTKDU4MzZDNzdEM0M0NDQ5N0YzRDkxQzJEQkVFNzQ2NUFCNENBRTkxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDWZELAGjYavaXokou2br4uu3a 5OZ1uYL5B55RsaDG8z6hCXL96WO3gkjkCEkTkeSC0JE7DJS+JnduRYU+Mrwb8MoJ RwSI/shbykiKpV8X0NhJePazwzb00pbJ7Sm5XOexPcuJupA2LWuGptPFjcihC3sj pjgar56dW5vp6FcCkswhAZXA8G645TXNMOCQX0NfM4e3dqcXQiPmqbtHcjTQ9bg0 2GPUNqhVnUBM8Q+MHCj1MPPGPBLXWzFxA1lGI8j/Nygd/RaOhrEUsl2zZGLtMyRw zH0MSAS7LeEHGU3WtN61ZSphI3bkkOK00zEotIyED697M2fupvacE6fuUjmtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWDbHfTxESX89kcLb7nRlq0yukbgwHwYDVR0j BBgwFoAUAyBW/6ugZ0ERK6QEkAsxXIfjU2EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE4MjBiNC04MmVmLTQ0MTItYmUyZS01ZDY5MTRiZDQ4NDQvMC8wMzIwNTZGRkFC QTA2NzQxMTEyQkE0MDQ5MDBCMzE1Qzg3RTM1MzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4N0Uz NTM2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTgyMGI0LTgyZWYtNDQxMi1i ZTJlLTVkNjkxNGJkNDg0NC8wLzMxMzAzMzJlMzEzNjMwMmUzMTM3MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoLMwDQYJ KoZIhvcNAQELBQADggEBAHJitdKZjK7VO9s1+wjApCBzgtH6uUQTgcfAD04D04mX ClFlf896KMtqg9e8j/DMwnWvSTFhW1bq+1F7H2ermC+VfBCFCXXIe0qNrL71WdfZ VWldH2wMqgLRBcJPf/GirOIAAiUrypQgFd21fiDgY40EKwN25AdB2veC4GvXmMp2 9gcB03Frmk4a9Cehfwj9Fj/Ok6Ql/CLxdwSnk++YhKb+Pr3wg3lDaIN+HQ9TtdQO 80MS5f+k7W9UVcLdGm92ixEwaSxNjxOM2RgmtJKsrA8kEmu2DclR2Q0lvyJQZi84 25+9datrprnupR+cz6DLyxfh5tGTWPG+I9RnAfGM0Ok= -----END CERTIFICATE-----Generated at Sat Aug 23 13:42:17 2025 by rpki-client