$ rpki-client -vvf repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/3130332e3232342e36342e302f32342d3234203d3e203539313538.roa File: 3130332e3232342e36342e302f32342d3234203d3e203539313538.roa (raw, json) Hash identifier: DZ++EX33vrVv29PriPGZOi+tkuRnHbRvl+nMO8/2+oI= Subject key identifier: C7:A9:13:69:4D:69:15:5B:FA:9C:F1:D6:51:EC:1A:D6:75:0D:17:0B Certificate issuer: /CN=B6F29F770F5B30B5F7B738F4524506F1A235DABC Certificate serial: 64113E675D476733D64AE7AFB1AA04718CB9D416 Authority key identifier: B6:F2:9F:77:0F:5B:30:B5:F7:B7:38:F4:52:45:06:F1:A2:35:DA:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F29F770F5B30B5F7B738F4524506F1A235DABC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/3130332e3232342e36342e302f32342d3234203d3e203539313538.roa Signing time: Tue 12 Aug 2025 18:01:07 +0000 ROA not before: Tue 12 Aug 2025 17:56:07 +0000 ROA not after: Tue 11 Aug 2026 18:01:07 +0000 asID: 59158 IP address blocks: 103.224.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/B6F29F770F5B30B5F7B738F4524506F1A235DABC.crl rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/B6F29F770F5B30B5F7B738F4524506F1A235DABC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F29F770F5B30B5F7B738F4524506F1A235DABC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 22:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:11:3e:67:5d:47:67:33:d6:4a:e7:af:b1:aa:04:71:8c:b9:d4:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F29F770F5B30B5F7B738F4524506F1A235DABC Validity Not Before: Aug 12 17:56:07 2025 GMT Not After : Aug 11 18:01:07 2026 GMT Subject: CN=C7A913694D69155BFA9CF1D651EC1AD6750D170B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:81:cf:bd:72:fe:99:0c:d3:7f:9e:46:13:c8: e2:8b:c3:6e:06:e4:94:ee:60:5f:ca:fb:ea:57:59: e8:ef:df:48:5d:17:e3:9f:bc:9f:10:5b:9e:f4:c5: 4c:04:f5:49:9f:c1:de:da:ef:eb:a3:af:26:e0:31: 3c:ca:d1:cb:68:ea:cc:66:86:24:a0:4c:fa:a3:0a: 2a:e8:21:0f:57:20:1e:77:2c:ad:ab:99:99:59:fa: 0a:61:b4:e7:1c:04:92:32:99:a5:48:bf:83:67:81: 24:ed:71:5c:9b:30:f1:a2:4f:ce:6e:e1:39:a7:e3: 64:e4:26:e4:cd:d6:ad:17:48:5a:d3:96:73:95:85: d4:06:b3:3b:4b:6f:7d:1f:45:d5:99:f6:35:a9:b7: 9e:b8:f7:dc:6e:26:9b:2c:32:7e:26:33:68:62:be: bf:70:ca:85:02:8e:29:46:ad:8c:e9:bc:4b:56:c0: db:9c:75:d2:9b:b5:db:13:d0:0a:e0:91:73:4a:37: f9:7e:66:40:ec:87:f5:b2:fa:a9:7d:79:92:b8:61: dd:53:18:1e:fe:a0:cf:2b:94:dd:76:18:96:4b:53: 25:06:bb:a8:ab:2b:24:84:2e:ce:26:8c:83:7a:0a: eb:fa:98:0c:8c:aa:ff:70:8f:e5:82:de:89:e9:66: 58:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A9:13:69:4D:69:15:5B:FA:9C:F1:D6:51:EC:1A:D6:75:0D:17:0B X509v3 Authority Key Identifier: keyid:B6:F2:9F:77:0F:5B:30:B5:F7:B7:38:F4:52:45:06:F1:A2:35:DA:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/B6F29F770F5B30B5F7B738F4524506F1A235DABC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F29F770F5B30B5F7B738F4524506F1A235DABC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a8d54ae-870d-4348-ab58-30090a760a36/0/3130332e3232342e36342e302f32342d3234203d3e203539313538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.64.0/24 Signature Algorithm: sha256WithRSAEncryption 06:66:7d:55:d8:1a:bc:5e:e5:0c:1e:35:4d:02:05:e0:62:bf: c5:16:96:1c:18:bb:35:46:5d:98:9f:07:b6:28:d9:b9:59:d8: d9:dc:bd:3f:bb:63:16:7d:c0:b5:fb:f2:12:26:fe:62:f0:7c: 9f:e4:17:41:ca:92:72:a1:e4:12:35:eb:10:4d:a6:7c:d6:bf: 1f:9a:71:b5:c4:d6:24:b0:61:27:60:51:17:09:05:82:98:e5: ab:c6:f2:9a:77:b4:42:e6:53:87:b7:23:73:fb:f6:ba:f9:f6: bf:79:0b:df:f5:9b:a7:bc:fb:eb:7c:62:4c:56:c0:c4:1b:a4: d3:3b:27:76:58:0e:34:33:97:5c:ba:cc:d3:b1:5d:79:0d:c7: ed:8c:c8:b1:e5:19:ce:91:60:f0:1b:65:5e:0c:af:25:28:24: db:2d:09:d7:5f:0a:a5:63:e0:c5:30:df:de:6c:c2:86:05:02: 2a:32:ae:a8:5c:9e:64:5c:4f:39:7b:f8:47:13:56:82:1e:dd: 4b:99:ab:00:4d:80:6c:d4:94:91:9e:7f:75:3a:57:c0:9a:9e: 9a:bf:34:01:fe:08:d8:3d:b7:5d:d5:52:d9:04:cf:ee:5f:35: 09:0c:62:15:8b:aa:54:6f:b6:f1:6e:04:00:5e:40:9f:1e:16: 9f:88:75:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZBE+Z11HZzPWSuevsaoEcYy51BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMjlGNzcwRjVCMzBCNUY3QjczOEY0NTI0NTA2RjFB MjM1REFCQzAeFw0yNTA4MTIxNzU2MDdaFw0yNjA4MTExODAxMDdaMDMxMTAvBgNV BAMTKEM3QTkxMzY5NEQ2OTE1NUJGQTlDRjFENjUxRUMxQUQ2NzUwRDE3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCugc+9cv6ZDNN/nkYTyOKLw24G 5JTuYF/K++pXWejv30hdF+OfvJ8QW570xUwE9Umfwd7a7+ujrybgMTzK0cto6sxm hiSgTPqjCiroIQ9XIB53LK2rmZlZ+gphtOccBJIymaVIv4NngSTtcVybMPGiT85u 4Tmn42TkJuTN1q0XSFrTlnOVhdQGsztLb30fRdWZ9jWpt56499xuJpssMn4mM2hi vr9wyoUCjilGrYzpvEtWwNucddKbtdsT0ArgkXNKN/l+ZkDsh/Wy+ql9eZK4Yd1T GB7+oM8rlN12GJZLUyUGu6irKySELs4mjIN6Cuv6mAyMqv9wj+WC3onpZlitAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUx6kTaU1pFVv6nPHWUewa1nUNFwswHwYDVR0j BBgwFoAUtvKfdw9bMLX3tzj0UkUG8aI12rwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YThkNTRhZS04NzBkLTQzNDgtYWI1OC0zMDA5MGE3NjBhMzYvMC9CNkYyOUY3NzBG NUIzMEI1RjdCNzM4RjQ1MjQ1MDZGMUEyMzVEQUJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMjlGNzcwRjVCMzBCNUY3QjczOEY0NTI0NTA2RjFBMjM1 REFCQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhOGQ1NGFlLTg3MGQtNDM0OC1h YjU4LTMwMDkwYTc2MGEzNi8wLzMxMzAzMzJlMzIzMjM0MmUzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzOTMxMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfgQDANBgkqhkiG 9w0BAQsFAAOCAQEABmZ9VdgavF7lDB41TQIF4GK/xRaWHBi7NUZdmJ8HtijZuVnY 2dy9P7tjFn3AtfvyEib+YvB8n+QXQcqScqHkEjXrEE2mfNa/H5pxtcTWJLBhJ2BR FwkFgpjlq8bymne0QuZTh7cjc/v2uvn2v3kL3/Wbp7z763xiTFbAxBuk0zsndlgO NDOXXLrM07FdeQ3H7YzIseUZzpFg8BtlXgyvJSgk2y0J118KpWPgxTDf3mzChgUC KjKuqFyeZFxPOXv4RxNWgh7dS5mrAE2AbNSUkZ5/dTpXwJqemr80Af4I2D23XdVS 2QTP7l81CQxiFYuqVG+28W4EAF5Anx4Wn4h1EA== -----END CERTIFICATE-----Generated at Sun Aug 24 00:11:20 2025 by rpki-client