$ rpki-client -vvf repo-rpki.idnic.net/repo/33ad3757-93a0-4b33-9128-24aa61304eff/0/3130332e3231312e342e302f32332d3234203d3e2034383030.roa File: 3130332e3231312e342e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: 59yz865tKQpU8UqeDFR2Q6MBnW99RvQGBX6jv6dW3C0= Subject key identifier: C9:6C:84:04:7F:5C:5D:15:30:9E:E2:EF:B2:29:58:8A:04:9D:A4:84 Certificate issuer: /CN=D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7 Certificate serial: 280F2E5680166A863D9EB9E5D0B9A7493D4AB416 Authority key identifier: D0:43:C2:A2:B3:95:E6:A7:BC:8A:32:F1:AE:6C:19:34:B0:23:5F:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/33ad3757-93a0-4b33-9128-24aa61304eff/0/3130332e3231312e342e302f32332d3234203d3e2034383030.roa Signing time: Mon 30 Jun 2025 05:02:49 +0000 ROA not before: Mon 30 Jun 2025 04:57:49 +0000 ROA not after: Mon 29 Jun 2026 05:02:49 +0000 asID: 4800 IP address blocks: 103.211.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/33ad3757-93a0-4b33-9128-24aa61304eff/0/D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7.crl rsync://repo-rpki.idnic.net/repo/33ad3757-93a0-4b33-9128-24aa61304eff/0/D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0f:2e:56:80:16:6a:86:3d:9e:b9:e5:d0:b9:a7:49:3d:4a:b4:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7 Validity Not Before: Jun 30 04:57:49 2025 GMT Not After : Jun 29 05:02:49 2026 GMT Subject: CN=C96C84047F5C5D15309EE2EFB229588A049DA484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:29:fc:2b:6c:5c:33:fd:fc:7b:87:01:de:a3: da:f1:51:12:ec:a9:b1:68:a9:b5:d5:88:c9:1d:fe: 2d:d4:71:fd:48:38:d1:a9:fb:7b:bd:6c:d6:2a:bf: ec:0a:6f:87:19:3b:ab:e9:3e:aa:7b:51:aa:e6:ef: fd:b3:c4:c1:72:4f:c1:60:8f:b5:55:c5:43:7f:a3: 68:11:9c:a6:d8:22:49:2c:3d:3f:5f:67:27:dd:6c: 96:48:d8:25:3c:ab:2f:0b:9b:36:1c:94:4e:8b:6b: 6b:3e:e5:e3:12:c9:1c:c0:1a:68:bd:30:51:9b:09: 50:01:21:9c:ae:05:5d:75:6c:11:58:64:65:20:d9: 45:fb:a8:0f:32:4f:60:16:2c:ab:15:ee:3e:d8:2e: 06:f2:d1:86:2b:3c:19:a0:e8:9a:12:08:cb:41:9e: 63:77:74:d3:8e:92:0c:50:a1:0a:b3:cc:f6:c2:95: e4:13:a9:42:59:bf:5e:aa:d4:80:72:04:50:ef:11: 82:50:a8:a3:e8:9a:fa:71:20:c0:f1:41:4a:8d:76: ff:54:7f:ec:57:33:1b:a2:0f:bd:81:6f:da:95:59: c4:c8:7d:15:7a:3a:19:20:ea:57:03:dc:f2:73:00: 45:ff:73:e1:ce:16:60:bd:7d:9b:ce:89:9c:0d:b5: 08:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6C:84:04:7F:5C:5D:15:30:9E:E2:EF:B2:29:58:8A:04:9D:A4:84 X509v3 Authority Key Identifier: keyid:D0:43:C2:A2:B3:95:E6:A7:BC:8A:32:F1:AE:6C:19:34:B0:23:5F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/33ad3757-93a0-4b33-9128-24aa61304eff/0/D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D043C2A2B395E6A7BC8A32F1AE6C1934B0235FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33ad3757-93a0-4b33-9128-24aa61304eff/0/3130332e3231312e342e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.4.0/23 Signature Algorithm: sha256WithRSAEncryption ae:4c:02:32:6e:83:73:c2:c1:1a:13:d7:51:41:a6:e5:9f:66: e5:65:93:98:1a:68:7e:27:3a:11:8a:37:38:14:d9:f2:e9:75: cf:bb:36:36:60:f0:00:43:6f:40:b4:48:e5:04:5a:dc:b5:71: 9e:21:fa:22:da:ea:43:e7:34:43:15:4a:83:8f:f5:74:9e:c5: a9:a1:0f:7d:e1:b5:87:f7:d0:ea:f7:37:28:f0:ac:a6:e8:a7: 54:3a:fc:d5:dd:af:19:06:64:72:96:3c:ab:c5:13:26:24:00: 7d:d4:d2:9e:ef:ce:f6:bb:6e:7b:5f:72:90:57:29:1f:6e:f4: cb:f1:b4:26:f4:0f:b2:8b:4f:92:e7:28:f0:39:4f:59:c5:d9: a7:9f:30:11:3c:18:81:15:85:0d:6b:aa:5f:05:d1:b9:aa:fb: fd:dd:cb:4c:70:e3:05:5f:ad:81:46:74:fe:11:10:3c:ab:f2: ac:17:a4:5d:f9:00:b9:50:d7:ec:d0:a3:3d:5a:d3:2e:a2:92: 7b:d1:4d:01:3d:9d:f8:62:cd:5d:cf:2d:51:b2:ab:32:fd:40: a5:ab:e9:a4:d2:86:e8:c6:e9:77:ad:29:aa:5d:b1:26:0d:df: a3:fe:59:26:91:34:66:ad:50:e0:e9:e1:ff:3e:ae:38:05:00: 4d:6e:ec:a0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKA8uVoAWaoY9nrnl0LmnST1KtBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA0M0MyQTJCMzk1RTZBN0JDOEEzMkYxQUU2QzE5MzRC MDIzNUZBNzAeFw0yNTA2MzAwNDU3NDlaFw0yNjA2MjkwNTAyNDlaMDMxMTAvBgNV BAMTKEM5NkM4NDA0N0Y1QzVEMTUzMDlFRTJFRkIyMjk1ODhBMDQ5REE0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+KfwrbFwz/fx7hwHeo9rxURLs qbFoqbXViMkd/i3Ucf1IONGp+3u9bNYqv+wKb4cZO6vpPqp7Uarm7/2zxMFyT8Fg j7VVxUN/o2gRnKbYIkksPT9fZyfdbJZI2CU8qy8LmzYclE6La2s+5eMSyRzAGmi9 MFGbCVABIZyuBV11bBFYZGUg2UX7qA8yT2AWLKsV7j7YLgby0YYrPBmg6JoSCMtB nmN3dNOOkgxQoQqzzPbCleQTqUJZv16q1IByBFDvEYJQqKPomvpxIMDxQUqNdv9U f+xXMxuiD72Bb9qVWcTIfRV6Ohkg6lcD3PJzAEX/c+HOFmC9fZvOiZwNtQj3AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUyWyEBH9cXRUwnuLvsilYigSdpIQwHwYDVR0j BBgwFoAU0EPCorOV5qe8ijLxrmwZNLAjX6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z M2FkMzc1Ny05M2EwLTRiMzMtOTEyOC0yNGFhNjEzMDRlZmYvMC9EMDQzQzJBMkIz OTVFNkE3QkM4QTMyRjFBRTZDMTkzNEIwMjM1RkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDA0M0MyQTJCMzk1RTZBN0JDOEEzMkYxQUU2QzE5MzRCMDIz NUZBNy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzNhZDM3NTctOTNhMC00YjMzLTkx MjgtMjRhYTYxMzA0ZWZmLzAvMzEzMDMzMmUzMjMxMzEyZTM0MmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn0wQwDQYJKoZIhvcNAQEL BQADggEBAK5MAjJug3PCwRoT11FBpuWfZuVlk5gaaH4nOhGKNzgU2fLpdc+7NjZg 8ABDb0C0SOUEWty1cZ4h+iLa6kPnNEMVSoOP9XSexamhD33htYf30Or3NyjwrKbo p1Q6/NXdrxkGZHKWPKvFEyYkAH3U0p7vzva7bntfcpBXKR9u9MvxtCb0D7KLT5Ln KPA5T1nF2aefMBE8GIEVhQ1rql8F0bmq+/3dy0xw4wVfrYFGdP4REDyr8qwXpF35 ALlQ1+zQoz1a0y6iknvRTQE9nfhizV3PLVGyqzL9QKWr6aTShujG6XetKapdsSYN 36P+WSaRNGatUODp4f8+rjgFAE1u7KA= -----END CERTIFICATE-----Generated at Tue Jul 1 00:25:27 2025 by rpki-client