$ rpki-client -vvf repo-rpki.idnic.net/repo/33b2ee74-8c3c-4bc3-b6fb-f35b200a20eb/0/3130332e36362e33382e302f32342d3234203d3e20313530323431.roa File: 3130332e36362e33382e302f32342d3234203d3e20313530323431.roa (raw, json) Hash identifier: 2Vms/JsMQPaw+vYfPtEtlm+57xmqH/10AEwVvJR2JV8= Subject key identifier: C3:6E:FF:0A:73:56:9D:73:23:87:E6:F0:A1:63:44:32:1B:0E:0A:10 Certificate issuer: /CN=DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C Certificate serial: 1200E69BB2CC360448278031B92AB57D9643256D Authority key identifier: DB:1B:D7:85:1F:D1:A4:87:B0:12:83:F6:AE:4B:46:E0:E4:93:5A:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/33b2ee74-8c3c-4bc3-b6fb-f35b200a20eb/0/3130332e36362e33382e302f32342d3234203d3e20313530323431.roa Signing time: Fri 08 Aug 2025 08:01:35 +0000 ROA not before: Fri 08 Aug 2025 07:56:35 +0000 ROA not after: Fri 07 Aug 2026 08:01:35 +0000 asID: 150241 IP address blocks: 103.66.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/33b2ee74-8c3c-4bc3-b6fb-f35b200a20eb/0/DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C.crl rsync://repo-rpki.idnic.net/repo/33b2ee74-8c3c-4bc3-b6fb-f35b200a20eb/0/DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 01:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:00:e6:9b:b2:cc:36:04:48:27:80:31:b9:2a:b5:7d:96:43:25:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C Validity Not Before: Aug 8 07:56:35 2025 GMT Not After : Aug 7 08:01:35 2026 GMT Subject: CN=C36EFF0A73569D732387E6F0A16344321B0E0A10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8a:71:0c:5b:24:91:ed:01:a4:37:a3:7c:ad: 72:38:92:68:ed:f4:ac:90:a8:22:84:d0:39:97:0f: 44:82:a1:4c:b2:9b:65:06:96:5c:c3:55:d9:85:1d: 9a:da:f7:e6:e1:b5:b3:2b:d4:42:19:5c:67:76:fd: 75:b9:d8:90:1c:c4:61:d1:94:b0:49:9b:60:51:fb: fd:16:d3:37:26:65:7b:36:24:6f:9b:33:b8:3c:11: b5:19:c1:0e:05:cb:9f:28:b2:11:6d:3b:61:ad:8f: f4:27:cc:43:d6:f8:5f:c9:9c:18:5f:9c:9d:13:fa: 91:ea:32:b3:f4:a7:20:3c:5f:bb:f5:d8:82:ef:77: 2e:3d:c9:df:2a:de:9e:7a:4c:9c:ca:ec:7e:ab:2f: b7:00:64:04:99:78:4b:b0:69:db:4d:82:6d:a1:79: 35:ba:58:6f:1d:dc:f7:b2:68:fb:f2:45:20:d5:ea: e1:3f:e2:e3:25:e9:8c:73:b5:99:c1:0c:90:8a:9b: 8c:a3:fd:4c:ed:e6:44:50:b5:88:8a:3f:d2:60:8d: 1e:91:e8:59:a3:da:74:92:cd:8b:fa:93:b3:24:3d: 65:04:44:b0:77:be:de:19:2c:23:51:f8:8d:ab:79: 75:92:a0:ee:a6:bc:b3:2a:67:f0:b1:83:31:48:a1: 9d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6E:FF:0A:73:56:9D:73:23:87:E6:F0:A1:63:44:32:1B:0E:0A:10 X509v3 Authority Key Identifier: keyid:DB:1B:D7:85:1F:D1:A4:87:B0:12:83:F6:AE:4B:46:E0:E4:93:5A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/33b2ee74-8c3c-4bc3-b6fb-f35b200a20eb/0/DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1BD7851FD1A487B01283F6AE4B46E0E4935A3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33b2ee74-8c3c-4bc3-b6fb-f35b200a20eb/0/3130332e36362e33382e302f32342d3234203d3e20313530323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.38.0/24 Signature Algorithm: sha256WithRSAEncryption 18:55:3c:10:90:c8:88:6c:0d:f5:bc:85:b1:2b:5c:d5:7f:7c: f4:7d:b7:82:46:43:a5:db:eb:92:c7:07:e3:21:d6:af:0c:7a: 1f:eb:8a:07:86:50:b2:3b:f1:9e:e0:95:59:62:01:9a:03:5f: b1:b2:db:79:1c:17:a3:1d:f7:6c:43:48:df:2f:09:22:8e:c1: e9:55:be:8c:c1:ff:fb:90:fa:24:bc:4f:44:31:49:99:95:90: 27:24:ea:ff:ac:99:e5:d0:bd:46:e2:dc:91:63:a0:a0:f9:a0: 59:26:2c:22:3e:7f:9b:65:ee:29:7a:d5:c7:4a:2a:28:1d:09: cd:87:56:e5:f6:de:c3:57:8a:4a:43:51:d6:87:c1:37:59:7d: ce:16:0d:34:56:f9:3b:56:71:0f:9c:cf:84:71:7f:b7:5d:05: b4:97:1f:8a:4f:31:1d:42:09:f4:82:19:5c:d3:81:e8:2e:f1: 9f:3e:50:4f:a5:cb:c1:a8:83:52:ef:b7:07:59:36:43:06:04: 24:96:8c:7b:c3:87:4b:20:75:64:cd:98:f0:12:8e:46:69:df: 68:2c:00:e6:e2:eb:3c:73:2b:40:95:dd:66:8d:5a:30:6f:09: e4:f1:e7:11:5a:31:3f:7c:05:b8:ba:4f:39:6e:b6:bf:49:dc: ca:49:c4:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEgDmm7LMNgRIJ4AxuSq1fZZDJW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIxQkQ3ODUxRkQxQTQ4N0IwMTI4M0Y2QUU0QjQ2RTBF NDkzNUEzQzAeFw0yNTA4MDgwNzU2MzVaFw0yNjA4MDcwODAxMzVaMDMxMTAvBgNV BAMTKEMzNkVGRjBBNzM1NjlENzMyMzg3RTZGMEExNjM0NDMyMUIwRTBBMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxinEMWySR7QGkN6N8rXI4kmjt 9KyQqCKE0DmXD0SCoUyym2UGllzDVdmFHZra9+bhtbMr1EIZXGd2/XW52JAcxGHR lLBJm2BR+/0W0zcmZXs2JG+bM7g8EbUZwQ4Fy58oshFtO2Gtj/QnzEPW+F/JnBhf nJ0T+pHqMrP0pyA8X7v12ILvdy49yd8q3p56TJzK7H6rL7cAZASZeEuwadtNgm2h eTW6WG8d3PeyaPvyRSDV6uE/4uMl6YxztZnBDJCKm4yj/Uzt5kRQtYiKP9JgjR6R 6Fmj2nSSzYv6k7MkPWUERLB3vt4ZLCNR+I2reXWSoO6mvLMqZ/CxgzFIoZ3LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUw27/CnNWnXMjh+bwoWNEMhsOChAwHwYDVR0j BBgwFoAU2xvXhR/RpIewEoP2rktG4OSTWjwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z M2IyZWU3NC04YzNjLTRiYzMtYjZmYi1mMzViMjAwYTIwZWIvMC9EQjFCRDc4NTFG RDFBNDg3QjAxMjgzRjZBRTRCNDZFMEU0OTM1QTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREIxQkQ3ODUxRkQxQTQ4N0IwMTI4M0Y2QUU0QjQ2RTBFNDkz NUEzQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzYjJlZTc0LThjM2MtNGJjMy1i NmZiLWYzNWIyMDBhMjBlYi8wLzMxMzAzMzJlMzYzNjJlMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCJjANBgkqhkiG 9w0BAQsFAAOCAQEAGFU8EJDIiGwN9byFsStc1X989H23gkZDpdvrkscH4yHWrwx6 H+uKB4ZQsjvxnuCVWWIBmgNfsbLbeRwXox33bENI3y8JIo7B6VW+jMH/+5D6JLxP RDFJmZWQJyTq/6yZ5dC9RuLckWOgoPmgWSYsIj5/m2XuKXrVx0oqKB0JzYdW5fbe w1eKSkNR1ofBN1l9zhYNNFb5O1ZxD5zPhHF/t10FtJcfik8xHUIJ9IIZXNOB6C7x nz5QT6XLwaiDUu+3B1k2QwYEJJaMe8OHSyB1ZM2Y8BKORmnfaCwA5uLrPHMrQJXd Zo1aMG8J5PHnEVoxP3wFuLpPOW62v0ncyknESw== -----END CERTIFICATE-----Generated at Sat Aug 23 15:20:57 2025 by rpki-client