$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: +2SP7VdADvevew0k00TuxJ1WZ3WZFkGqu4JZIMGxgpw= Subject key identifier: BE:1A:9C:9D:BD:F1:84:40:29:15:2B:8D:26:8F:58:2B:1C:EC:DC:24 Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 1943AF73102AF6AF28323A152E5D683FA0B3BC88 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa Signing time: Wed 18 Jun 2025 08:00:01 +0000 ROA not before: Wed 18 Jun 2025 07:55:01 +0000 ROA not after: Wed 17 Jun 2026 08:00:01 +0000 asID: 133800 IP address blocks: 103.89.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 09:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:43:af:73:10:2a:f6:af:28:32:3a:15:2e:5d:68:3f:a0:b3:bc:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Jun 18 07:55:01 2025 GMT Not After : Jun 17 08:00:01 2026 GMT Subject: CN=BE1A9C9DBDF1844029152B8D268F582B1CECDC24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:36:63:ee:92:54:36:e0:18:68:22:bd:f1: 3e:10:e4:e9:bd:2f:6f:ec:79:b2:98:2d:81:0b:6b: 79:89:a6:e2:7c:68:11:8d:4b:ae:51:16:91:0f:8a: b1:3c:a4:f3:81:a9:70:5b:c6:5c:0c:bd:ba:af:5e: 42:77:86:e1:ba:41:23:37:12:eb:22:17:bf:7b:01: 8c:7b:76:57:6c:ab:a7:62:88:2f:69:f0:b0:2c:a7: e9:64:1f:aa:09:81:0f:4f:7e:94:9b:c4:92:c2:2f: f7:ae:94:f6:20:29:08:50:ed:16:ac:f6:0b:d8:53: 10:60:54:88:c0:d1:bb:1d:c5:e5:8f:5d:ba:54:1a: df:ab:91:af:7d:6b:b9:99:e8:94:3c:5a:ea:45:5c: e6:5e:43:48:f2:6c:65:87:ae:62:6c:34:83:a3:38: a3:24:24:07:f0:30:28:ea:b3:05:73:3c:a7:6a:88: 31:9c:cc:46:73:f7:49:bf:10:9d:0e:45:5a:37:ca: b7:d8:38:42:ca:17:45:78:ba:73:36:66:b6:21:82: 47:5c:2b:6d:99:c0:6a:6f:b0:72:e8:0b:e1:e1:75: de:cf:14:89:cd:61:b8:f4:08:8e:30:8c:92:ab:03: 60:8e:a5:5e:ae:15:2c:b4:3a:64:e8:4a:47:df:e1: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1A:9C:9D:BD:F1:84:40:29:15:2B:8D:26:8F:58:2B:1C:EC:DC:24 X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.164.0/24 Signature Algorithm: sha256WithRSAEncryption 01:69:a4:38:d2:ac:77:3c:12:33:8c:b1:c0:42:46:33:e2:b3: ee:21:16:f1:2a:31:58:e6:b7:4a:75:a7:d3:7c:f5:32:c7:a2: 48:bc:ff:58:f3:d1:01:66:47:fb:f1:92:8e:ea:31:d3:31:a1: 9b:18:5a:5e:90:fc:5b:92:71:98:ae:12:db:17:b7:6e:28:dd: cc:04:67:bb:4d:cb:0d:c0:e2:62:50:60:44:a2:0e:14:7c:d7: a7:a9:5f:57:e7:f3:77:01:20:3e:fa:2e:7a:9a:b8:03:e7:25: 79:13:af:58:fa:e8:7a:69:60:2e:f0:eb:01:bd:26:3e:de:ee: 13:09:66:62:b6:bf:aa:ed:80:ad:4f:ea:dc:4e:98:b2:c3:bf: f2:87:51:d0:56:30:1b:6b:a2:60:bb:5b:8a:41:86:9b:56:dc: 45:37:b6:32:b0:69:4e:19:89:60:c6:de:fb:e9:99:e9:c0:f5: 58:87:a5:db:f3:b0:07:6d:9f:dd:b0:18:48:c6:93:54:b2:a7: 4d:10:23:4a:0e:36:5b:98:63:41:52:74:d9:d9:32:d0:7a:a6: c1:94:12:27:44:c0:5d:e5:a6:78:1a:23:fe:cf:74:4f:95:f0: 6d:23:45:85:c8:f8:a8:ea:00:64:7f:e7:15:85:46:3d:8b:63: e4:68:97:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGUOvcxAq9q8oMjoVLl1oP6CzvIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yNTA2MTgwNzU1MDFaFw0yNjA2MTcwODAwMDFaMDMxMTAvBgNV BAMTKEJFMUE5QzlEQkRGMTg0NDAyOTE1MkI4RDI2OEY1ODJCMUNFQ0RDMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB5zZj7pJUNuAYaCK98T4Q5Om9 L2/sebKYLYELa3mJpuJ8aBGNS65RFpEPirE8pPOBqXBbxlwMvbqvXkJ3huG6QSM3 EusiF797AYx7dldsq6diiC9p8LAsp+lkH6oJgQ9PfpSbxJLCL/eulPYgKQhQ7Ras 9gvYUxBgVIjA0bsdxeWPXbpUGt+rka99a7mZ6JQ8WupFXOZeQ0jybGWHrmJsNIOj OKMkJAfwMCjqswVzPKdqiDGczEZz90m/EJ0ORVo3yrfYOELKF0V4unM2ZrYhgkdc K22ZwGpvsHLoC+Hhdd7PFInNYbj0CI4wjJKrA2COpV6uFSy0OmToSkff4WbVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvhqcnb3xhEApFSuNJo9YKxzs3CQwHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1mkMA0GCSqG SIb3DQEBCwUAA4IBAQABaaQ40qx3PBIzjLHAQkYz4rPuIRbxKjFY5rdKdafTfPUy x6JIvP9Y89EBZkf78ZKO6jHTMaGbGFpekPxbknGYrhLbF7duKN3MBGe7TcsNwOJi UGBEog4UfNenqV9X5/N3ASA++i56mrgD5yV5E69Y+uh6aWAu8OsBvSY+3u4TCWZi tr+q7YCtT+rcTpiyw7/yh1HQVjAba6Jgu1uKQYabVtxFN7YysGlOGYlgxt776Znp wPVYh6Xb87AHbZ/dsBhIxpNUsqdNECNKDjZbmGNBUnTZ2TLQeqbBlBInRMBd5aZ4 GiP+z3RPlfBtI0WFyPio6gBkf+cVhUY9i2PkaJd7 -----END CERTIFICATE-----Generated at Mon Jun 30 06:42:38 2025 by rpki-client