$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa File: 3130332e382e39362e302f32322d3234203d3e203137343530.roa (raw, json) Hash identifier: 3PeI4c1+04C9ghzq6F40f5013YnnignJ8PNDhSKl9BY= Subject key identifier: 86:F3:40:2E:F6:41:4C:3C:E3:69:EB:C5:40:2A:C6:02:69:BE:7A:A7 Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 31B5C4CAD257571D9B3072C0B4516FCEC41A2FA6 Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa Signing time: Wed 13 Aug 2025 09:00:01 +0000 ROA not before: Wed 13 Aug 2025 08:55:01 +0000 ROA not after: Wed 12 Aug 2026 09:00:01 +0000 asID: 17450 IP address blocks: 103.8.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 17:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b5:c4:ca:d2:57:57:1d:9b:30:72:c0:b4:51:6f:ce:c4:1a:2f:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: Aug 13 08:55:01 2025 GMT Not After : Aug 12 09:00:01 2026 GMT Subject: CN=86F3402EF6414C3CE369EBC5402AC60269BE7AA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7a:57:ce:c7:0b:e9:05:13:68:ed:1e:3a:29: f0:04:79:2b:0c:db:7a:2a:d2:17:cc:3c:99:2a:d3: 1e:53:e7:10:54:18:ea:15:b6:63:3e:d5:f7:cd:70: 20:53:98:45:09:89:d5:72:3b:69:06:1c:ee:1e:8a: 9d:81:1a:b2:18:30:99:a6:73:2e:6d:cf:ed:94:67: 7b:c3:3f:f2:b7:2e:95:e6:e2:bf:aa:7f:4e:5b:fd: 63:8f:bc:02:b8:f7:cf:25:dd:98:1a:5d:3c:c5:3b: b4:7f:ad:3f:76:51:58:db:af:54:27:f0:f2:8c:f0: e6:ad:a9:00:24:d6:15:b2:17:f9:49:65:60:78:7e: a1:83:fe:27:18:3f:cf:b4:34:8d:b5:88:97:25:97: 64:4b:9e:94:f7:92:dd:7d:d6:71:34:86:fc:f6:52: f4:64:68:19:30:3a:96:af:ee:41:29:81:d3:09:d2: 46:46:93:69:5c:39:02:ef:98:57:f4:24:14:33:8c: 15:17:cd:53:3d:0f:e3:8b:87:02:95:d0:e6:18:03: 0d:4d:e0:fa:86:16:a0:34:f5:e4:d0:c9:9b:c0:ca: 06:31:76:05:1f:d8:90:42:87:f8:92:a7:86:aa:51: 2f:a5:1b:25:4c:e6:51:93:dd:77:86:f4:a0:46:e0: 3e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F3:40:2E:F6:41:4C:3C:E3:69:EB:C5:40:2A:C6:02:69:BE:7A:A7 X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39362e302f32322d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.96.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:e8:57:88:f6:eb:7a:c2:f9:de:96:62:66:05:fb:12:54:86: af:c0:57:45:f3:e9:c5:5c:18:70:0b:08:0a:b6:45:52:34:d5: 1f:a4:8c:e7:a4:9b:5d:a8:7d:da:ab:ba:6c:c5:2c:65:b9:d2: b3:a3:94:e3:a6:06:b1:d2:4a:8b:b0:49:ab:18:52:c3:ad:e4: c5:cb:bb:cc:d2:b8:44:9d:4d:70:11:ef:42:d4:1e:99:97:6c: 27:4f:a4:da:30:b5:d9:8f:15:ba:e3:c2:d8:25:f0:83:21:b0: 00:d5:9e:cf:3e:20:0b:80:74:e8:3e:c2:ec:4c:8d:19:96:21: 99:24:92:7a:eb:5d:b9:a6:d4:db:b2:e7:7c:f5:3d:95:d2:0b: 95:00:23:36:e3:ba:e4:f1:e6:0c:a5:a5:69:df:e3:b3:40:67: 23:3b:ae:64:36:dc:2e:98:bf:31:ae:80:7c:7a:63:fd:aa:f0: 38:2b:09:a7:80:bd:55:bd:1d:38:ff:46:24:7d:ad:2d:e7:22: 10:15:99:9a:78:6f:96:68:e9:74:48:43:84:4c:4f:21:45:47: 8f:22:f6:69:6c:e6:62:4a:b3:77:ce:e1:5c:7a:5e:ba:75:50: 58:df:35:cc:ce:18:cc:e4:f6:4f:43:48:c9:6d:46:80:5f:b5: e1:a0:e5:90 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUMbXEytJXVx2bMHLAtFFvzsQaL6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yNTA4MTMwODU1MDFaFw0yNjA4MTIwOTAwMDFaMDMxMTAvBgNV BAMTKDg2RjM0MDJFRjY0MTRDM0NFMzY5RUJDNTQwMkFDNjAyNjlCRTdBQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQelfOxwvpBRNo7R46KfAEeSsM 23oq0hfMPJkq0x5T5xBUGOoVtmM+1ffNcCBTmEUJidVyO2kGHO4eip2BGrIYMJmm cy5tz+2UZ3vDP/K3LpXm4r+qf05b/WOPvAK4988l3ZgaXTzFO7R/rT92UVjbr1Qn 8PKM8OatqQAk1hWyF/lJZWB4fqGD/icYP8+0NI21iJcll2RLnpT3kt191nE0hvz2 UvRkaBkwOpav7kEpgdMJ0kZGk2lcOQLvmFf0JBQzjBUXzVM9D+OLhwKV0OYYAw1N 4PqGFqA09eTQyZvAygYxdgUf2JBCh/iSp4aqUS+lGyVM5lGT3XeG9KBG4D5BAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUhvNALvZBTDzjaevFQCrGAmm+eqcwHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDM4MDYxZjEtZmEzMC00YmQ2LTgx YTAtMmVjNjcwODM2YzQyLzAvMzEzMDMzMmUzODJlMzkzNjJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCGAwDQYJKoZIhvcNAQEL BQADggEBAC/oV4j263rC+d6WYmYF+xJUhq/AV0Xz6cVcGHALCAq2RVI01R+kjOek m12ofdqrumzFLGW50rOjlOOmBrHSSouwSasYUsOt5MXLu8zSuESdTXAR70LUHpmX bCdPpNowtdmPFbrjwtgl8IMhsADVns8+IAuAdOg+wuxMjRmWIZkkknrrXbmm1Nuy 53z1PZXSC5UAIzbjuuTx5gylpWnf47NAZyM7rmQ23C6YvzGugHx6Y/2q8DgrCaeA vVW9HTj/RiR9rS3nIhAVmZp4b5Zo6XRIQ4RMTyFFR48i9mls5mJKs3fO4Vx6Xrp1 UFjfNczOGMzk9k9DSMltRoBfteGg5ZA= -----END CERTIFICATE-----Generated at Sat Aug 23 19:55:35 2025 by rpki-client