$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32332d3233203d3e203538353033.roa File: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (raw, json) Hash identifier: jlDnq/pTWKcqQPtJ6VRZIg3zm8PHprvuxU+BKt4Gk08= Subject key identifier: 05:1D:32:36:A7:C9:EE:F5:E2:95:12:FC:17:F1:AF:4F:91:C9:6C:15 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 4701F7BF342BFF83A78CDB8F45B6F1E44EDE2450 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32332d3233203d3e203538353033.roa Signing time: Thu 21 Aug 2025 11:00:02 +0000 ROA not before: Thu 21 Aug 2025 10:55:02 +0000 ROA not after: Thu 20 Aug 2026 11:00:02 +0000 asID: 58503 IP address blocks: 103.6.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:01:f7:bf:34:2b:ff:83:a7:8c:db:8f:45:b6:f1:e4:4e:de:24:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Aug 21 10:55:02 2025 GMT Not After : Aug 20 11:00:02 2026 GMT Subject: CN=051D3236A7C9EEF5E29512FC17F1AF4F91C96C15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:27:ab:5e:87:cd:f8:4e:21:c1:05:43:26:88: 8d:bb:6a:4b:68:5b:82:ea:03:14:2e:5d:70:2b:84: a6:92:4f:ef:07:f4:39:17:e7:e2:5b:e3:e9:52:6e: a0:46:8c:c9:3f:2f:01:5c:da:63:84:a5:43:d0:11: 90:db:4b:15:31:c6:9c:16:07:2a:6b:d2:0a:c6:73: e9:44:23:ca:64:21:fc:54:df:a2:70:2d:e9:c5:c6: 16:7e:3b:a8:52:63:06:38:60:23:43:8b:55:91:6c: 9e:dc:29:0d:fe:87:18:f7:ca:be:28:db:f2:9d:d9: f6:3b:43:9f:12:83:73:fc:40:f6:3e:07:24:5f:09: dc:d2:eb:5f:89:16:e0:d4:0d:09:d4:a6:1b:f1:75: 42:4a:99:18:08:07:b3:42:c1:9c:71:29:38:bb:bf: a8:76:4f:a9:e1:a5:b1:b0:f5:00:05:b0:26:5f:4b: 2b:9f:2c:71:62:fd:72:2d:77:1d:96:d3:e2:3b:0e: 9e:e9:a5:df:cc:9b:fb:5e:d2:68:3c:41:72:2d:16: 34:6c:f0:80:32:6d:93:38:fe:2b:c2:65:00:7f:1c: d4:0c:50:f3:c7:10:42:24:06:70:ce:10:30:fb:c7: 7b:2f:4d:9a:be:ec:41:98:77:fa:63:36:eb:0b:9a: 55:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1D:32:36:A7:C9:EE:F5:E2:95:12:FC:17:F1:AF:4F:91:C9:6C:15 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32332d3233203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/23 Signature Algorithm: sha256WithRSAEncryption aa:61:2a:f1:e2:26:ae:1a:63:e6:9c:dc:bb:74:af:72:56:50: 2e:be:f3:25:79:ce:0e:12:a1:5b:85:14:97:7b:ed:a7:db:94: 1f:bf:34:8b:48:8b:71:eb:ef:62:35:bb:6b:92:3a:c1:01:d0: 6b:bd:8a:16:d2:ef:db:c1:b1:01:fe:21:2d:72:db:63:42:b6: 6c:20:cd:39:65:1e:5d:0d:e3:86:08:5c:90:8a:da:03:5c:01: 0f:f6:78:55:14:52:59:d2:ed:c2:1c:a8:bf:2e:be:55:88:f0: 6c:a0:96:29:cc:8a:0f:9f:d9:60:f2:69:8d:27:01:86:0a:d3: 45:6e:8e:dd:1e:f3:8b:19:ed:9f:32:24:c0:21:3e:3e:e5:7a: 1e:6b:0d:b3:00:0e:c3:fb:9b:c3:a6:30:c8:65:07:b8:07:40: ae:0f:78:7f:54:f8:b9:dd:a0:7a:fd:3b:18:4f:81:82:30:60: 0a:7e:87:af:33:47:db:d6:ef:fe:61:7a:87:f0:98:5b:4f:1f: ff:ec:bc:c6:57:20:af:bb:92:02:e6:d6:38:3a:06:34:ff:db: 22:03:64:c8:e8:8d:b7:d6:5f:f8:bf:45:fc:a2:e1:0a:2e:1f: de:da:1a:87:8d:af:ad:d4:60:73:33:50:ea:25:ce:cb:43:76: 73:f9:b1:af -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURwH3vzQr/4OnjNuPRbbx5E7eJFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA4MjExMDU1MDJaFw0yNjA4MjAxMTAwMDJaMDMxMTAvBgNV BAMTKDA1MUQzMjM2QTdDOUVFRjVFMjk1MTJGQzE3RjFBRjRGOTFDOTZDMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJ6teh834TiHBBUMmiI27akto W4LqAxQuXXArhKaST+8H9DkX5+Jb4+lSbqBGjMk/LwFc2mOEpUPQEZDbSxUxxpwW Bypr0grGc+lEI8pkIfxU36JwLenFxhZ+O6hSYwY4YCNDi1WRbJ7cKQ3+hxj3yr4o 2/Kd2fY7Q58Sg3P8QPY+ByRfCdzS61+JFuDUDQnUphvxdUJKmRgIB7NCwZxxKTi7 v6h2T6nhpbGw9QAFsCZfSyufLHFi/XItdx2W0+I7Dp7ppd/Mm/te0mg8QXItFjRs 8IAybZM4/ivCZQB/HNQMUPPHEEIkBnDOEDD7x3svTZq+7EGYd/pjNusLmlUBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBR0yNqfJ7vXilRL8F/GvT5HJbBUwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnBswwDQYJKoZIhvcN AQELBQADggEBAKphKvHiJq4aY+ac3Lt0r3JWUC6+8yV5zg4SoVuFFJd77afblB+/ NItIi3Hr72I1u2uSOsEB0Gu9ihbS79vBsQH+IS1y22NCtmwgzTllHl0N44YIXJCK 2gNcAQ/2eFUUUlnS7cIcqL8uvlWI8GyglinMig+f2WDyaY0nAYYK00Vujt0e84sZ 7Z8yJMAhPj7leh5rDbMADsP7m8OmMMhlB7gHQK4PeH9U+LndoHr9OxhPgYIwYAp+ h68zR9vW7/5heofwmFtPH//svMZXIK+7kgLm1jg6BjT/2yIDZMjojbfWX/i/Rfyi 4QouH97aGoeNr63UYHMzUOolzstDdnP5sa8= -----END CERTIFICATE-----Generated at Sat Aug 23 15:37:39 2025 by rpki-client