$ rpki-client -vvf repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/3130332e3134382e3139322e302f32332d3233203d3e20313339393935.roa File: 3130332e3134382e3139322e302f32332d3233203d3e20313339393935.roa (raw, json) Hash identifier: 6G5VVeMd9f0T1RPqM5MK5BUBT+YheiE43z/FzXMuOVc= Subject key identifier: B5:02:B4:07:69:DB:6D:F6:8E:25:28:B5:4B:07:07:32:E6:1E:4C:9C Certificate issuer: /CN=7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254 Certificate serial: 3611ABCBEB8867DA7EB8B2C00B6129A482192511 Authority key identifier: 7C:7A:73:B6:7F:FC:66:64:BC:CD:30:B2:01:3C:54:FC:CE:0B:62:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/3130332e3134382e3139322e302f32332d3233203d3e20313339393935.roa Signing time: Tue 12 Aug 2025 07:02:57 +0000 ROA not before: Tue 12 Aug 2025 06:57:57 +0000 ROA not after: Tue 11 Aug 2026 07:02:57 +0000 asID: 139995 IP address blocks: 103.148.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.crl rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 16:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:11:ab:cb:eb:88:67:da:7e:b8:b2:c0:0b:61:29:a4:82:19:25:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254 Validity Not Before: Aug 12 06:57:57 2025 GMT Not After : Aug 11 07:02:57 2026 GMT Subject: CN=B502B40769DB6DF68E2528B54B070732E61E4C9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5f:b3:c4:18:e0:54:00:84:51:ca:a3:5e:24: 8e:ee:d4:a4:94:31:64:79:fc:7c:f1:4c:49:e5:bd: 6e:c4:a8:ee:fe:1c:a2:b8:bc:b2:19:49:00:b1:96: 5b:55:65:df:31:57:c0:76:e5:25:c9:88:7d:95:ae: 10:40:78:17:c2:05:bb:a5:67:99:d8:6b:fd:43:2e: 8f:50:e4:13:10:ff:34:9b:d0:5a:3d:67:89:b0:8a: 09:ca:03:9b:49:49:90:7e:1c:3b:a6:17:97:52:c1: 53:e5:49:8a:b6:e8:7d:50:1a:6d:dc:3a:cf:99:b2: 83:a1:65:9c:1a:a3:6f:8c:47:44:c3:28:2a:51:0f: ad:e8:2b:75:fa:51:50:44:40:7f:f4:56:ca:1a:6e: 85:32:3c:87:a3:78:33:ce:a9:8e:99:f3:eb:07:fd: ad:7c:bb:a0:8b:c4:9d:2b:38:00:7d:4b:20:e7:c5: 7e:d0:46:04:8f:34:2b:88:84:f3:ba:43:3d:a9:7f: fc:24:bb:4f:fe:b5:0d:c2:ea:0b:67:45:ba:f8:46: 37:6c:30:af:f6:7b:cc:15:e6:34:aa:a1:0c:75:24: 8a:7a:a8:51:35:b2:23:5f:2c:60:e2:fa:3c:80:25: 43:b1:f6:73:c8:fc:dc:72:a2:7b:24:aa:6c:1a:08: 2f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:02:B4:07:69:DB:6D:F6:8E:25:28:B5:4B:07:07:32:E6:1E:4C:9C X509v3 Authority Key Identifier: keyid:7C:7A:73:B6:7F:FC:66:64:BC:CD:30:B2:01:3C:54:FC:CE:0B:62:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7C7A73B67FFC6664BCCD30B2013C54FCCE0B6254.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60b590e8-4f89-4785-ae79-2bfffa2c52c9/0/3130332e3134382e3139322e302f32332d3233203d3e20313339393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.192.0/23 Signature Algorithm: sha256WithRSAEncryption 20:19:1f:b2:ad:aa:a4:a3:1c:aa:f7:2f:5d:c0:09:6a:5e:3b: 17:dc:89:71:92:43:9d:56:01:e8:90:e2:a4:a6:19:bb:38:7d: 91:eb:29:49:65:0f:c5:5a:e1:58:1c:73:d6:46:c3:0c:06:b8: 1a:0c:2a:36:e0:eb:6b:47:57:63:a5:21:dd:1e:a1:57:18:80: 90:48:7c:1c:71:3f:dc:f8:05:7e:01:3d:8f:1e:55:73:96:00: 15:7b:b5:40:f3:2a:30:0e:99:cd:ce:c3:ec:87:6a:82:3e:77: 40:c1:a0:9c:5a:e8:84:bf:3c:0b:4a:9c:8e:5c:ce:83:6d:50: ba:12:09:37:a2:68:37:c6:a7:b9:5e:80:7e:2b:2a:7d:a9:b2: bf:55:68:8d:8d:df:43:9f:75:f9:2a:33:ed:a6:d6:06:bf:aa: 29:d0:ae:dc:0f:d0:93:7c:57:d7:ae:70:5c:9b:47:09:6b:11: 09:0b:2b:ab:92:3c:9f:f3:9d:fc:3f:d1:57:88:c0:d2:be:34: 1f:66:66:22:cd:15:16:11:52:63:54:36:3f:9d:5c:f7:fa:67: a5:dd:e1:be:c2:b0:06:5d:ed:6f:dd:fd:b4:3c:3a:7b:df:0b: 8a:cb:6a:cc:3f:49:d8:0d:e0:57:fb:48:51:82:16:81:e4:60: 1c:84:42:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNhGry+uIZ9p+uLLAC2EppIIZJREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0M3QTczQjY3RkZDNjY2NEJDQ0QzMEIyMDEzQzU0RkND RTBCNjI1NDAeFw0yNTA4MTIwNjU3NTdaFw0yNjA4MTEwNzAyNTdaMDMxMTAvBgNV BAMTKEI1MDJCNDA3NjlEQjZERjY4RTI1MjhCNTRCMDcwNzMyRTYxRTRDOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+X7PEGOBUAIRRyqNeJI7u1KSU MWR5/HzxTEnlvW7EqO7+HKK4vLIZSQCxlltVZd8xV8B25SXJiH2VrhBAeBfCBbul Z5nYa/1DLo9Q5BMQ/zSb0Fo9Z4mwignKA5tJSZB+HDumF5dSwVPlSYq26H1QGm3c Os+ZsoOhZZwao2+MR0TDKCpRD63oK3X6UVBEQH/0VsoaboUyPIejeDPOqY6Z8+sH /a18u6CLxJ0rOAB9SyDnxX7QRgSPNCuIhPO6Qz2pf/wku0/+tQ3C6gtnRbr4Rjds MK/2e8wV5jSqoQx1JIp6qFE1siNfLGDi+jyAJUOx9nPI/NxyonskqmwaCC8jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtQK0B2nbbfaOJSi1SwcHMuYeTJwwHwYDVR0j BBgwFoAUfHpztn/8ZmS8zTCyATxU/M4LYlQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGI1OTBlOC00Zjg5LTQ3ODUtYWU3OS0yYmZmZmEyYzUyYzkvMC83QzdBNzNCNjdG RkM2NjY0QkNDRDMwQjIwMTNDNTRGQ0NFMEI2MjU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0M3QTczQjY3RkZDNjY2NEJDQ0QzMEIyMDEzQzU0RkNDRTBC NjI1NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwYjU5MGU4LTRmODktNDc4NS1h ZTc5LTJiZmZmYTJjNTJjOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlMAwDQYJ KoZIhvcNAQELBQADggEBACAZH7KtqqSjHKr3L13ACWpeOxfciXGSQ51WAeiQ4qSm Gbs4fZHrKUllD8Va4Vgcc9ZGwwwGuBoMKjbg62tHV2OlId0eoVcYgJBIfBxxP9z4 BX4BPY8eVXOWABV7tUDzKjAOmc3Ow+yHaoI+d0DBoJxa6IS/PAtKnI5czoNtULoS CTeiaDfGp7legH4rKn2psr9VaI2N30OfdfkqM+2m1ga/qinQrtwP0JN8V9eucFyb RwlrEQkLK6uSPJ/znfw/0VeIwNK+NB9mZiLNFRYRUmNUNj+dXPf6Z6Xd4b7CsAZd 7W/d/bQ8OnvfC4rLasw/SdgN4Ff7SFGCFoHkYByEQic= -----END CERTIFICATE-----Generated at Sat Aug 23 16:23:04 2025 by rpki-client