$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa File: 3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: RAlnEnom5DxgyjJGz4HMb0m9LakHmzQTvYvsB15UJ40= Subject key identifier: E9:B5:D0:FF:68:2A:1B:D1:04:4E:91:CE:F8:CA:A5:63:F9:9C:C7:71 Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4 Certificate serial: 053BAE68A883A72C14A8731EF8FD9002A3A4AD30 Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa Signing time: Thu 14 Aug 2025 04:00:01 +0000 ROA not before: Thu 14 Aug 2025 03:55:01 +0000 ROA not after: Thu 13 Aug 2026 04:00:01 +0000 asID: 138131 IP address blocks: 103.133.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 23:15:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3b:ae:68:a8:83:a7:2c:14:a8:73:1e:f8:fd:90:02:a3:a4:ad:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4 Validity Not Before: Aug 14 03:55:01 2025 GMT Not After : Aug 13 04:00:01 2026 GMT Subject: CN=E9B5D0FF682A1BD1044E91CEF8CAA563F99CC771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:31:6e:a5:7e:42:44:3d:a4:35:cf:6f:45:b9: ea:31:34:9a:68:a5:8b:dd:dd:c8:c5:a5:32:aa:7e: 7d:e4:ab:fd:60:02:af:0b:5c:ae:66:14:a3:7f:3d: 0b:e4:ed:31:32:7e:fd:35:37:8f:43:2e:88:08:5a: b5:f3:8b:11:7d:db:10:fc:9e:c5:ae:98:9d:17:66: 37:ed:b5:a1:84:36:c8:3f:e3:e6:a0:0c:8d:d6:87: d6:fc:21:ba:b2:e7:9a:ee:08:6d:1c:5d:8b:98:9e: 07:63:30:b2:ed:df:98:18:19:16:28:b7:1f:ce:48: e9:4b:89:9b:80:7f:b4:e6:11:08:51:c5:1b:36:44: 16:bd:75:33:5f:4c:13:6d:04:df:6c:d3:05:c0:29: 81:19:86:ce:59:b2:8f:19:e5:2c:a3:46:fc:3c:0d: fa:e9:b1:88:13:67:dd:19:e5:5d:15:23:e5:57:6f: cc:35:78:61:8b:c5:a7:1f:96:1a:2a:70:8e:d9:78: c4:7a:1f:fb:cb:ec:a4:1e:7b:8f:f8:9a:1f:dd:c5: f4:2d:fc:d2:3d:3c:87:d4:3b:4c:e7:35:ae:4d:4a: 13:7b:1d:5a:ea:f0:5c:2c:e0:5a:13:8e:39:f2:ab: 3d:3c:6b:7c:af:16:bb:a3:49:ca:c0:65:c0:dd:ff: 3c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B5:D0:FF:68:2A:1B:D1:04:4E:91:CE:F8:CA:A5:63:F9:9C:C7:71 X509v3 Authority Key Identifier: keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.56.0/24 Signature Algorithm: sha256WithRSAEncryption ba:21:af:ba:63:14:4e:9d:7e:ce:3f:67:4e:2a:aa:ae:f4:95: b8:a5:b2:40:1d:99:79:5c:12:71:cc:f1:1b:ca:7b:ed:a6:ad: 7b:d1:fc:af:cc:e4:8e:c8:52:50:4f:f6:5d:e7:32:1f:95:f7: 30:3c:90:c1:bd:ac:51:f4:20:72:4f:c8:93:f2:b6:01:d6:7e: a2:c5:9d:63:07:b2:d5:bc:8f:7c:b6:11:a0:92:ed:e1:60:86: 0f:81:44:d3:48:f0:3a:5e:d8:28:29:20:22:a2:af:fd:e1:0c: 03:70:f0:67:77:29:66:8c:f5:c0:87:b0:b5:32:df:9b:9e:7c: 90:56:ed:1e:17:e9:63:02:18:39:5e:92:ec:1b:33:7e:8c:6e: fc:75:6d:bd:96:69:f7:ee:e3:fb:73:e6:de:8a:bb:eb:1a:28: af:2a:f0:9e:a4:97:94:f9:9d:9a:e2:b9:1f:8b:ec:70:3e:f7: 51:9e:d0:76:f0:81:1e:a4:b1:39:0f:3f:99:2f:f6:30:57:c4: 66:77:25:87:7b:35:b8:35:ec:c2:8b:69:92:00:1c:f8:e5:0e: 6c:c8:93:11:65:9e:ed:6f:23:44:5d:0d:15:d5:4d:d3:a4:32: 01:5c:e7:52:1d:c2:49:0c:f3:69:5a:46:43:2d:97:9f:80:33: ec:6e:4c:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBTuuaKiDpywUqHMe+P2QAqOkrTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMy NzdFNzFFNDAeFw0yNTA4MTQwMzU1MDFaFw0yNjA4MTMwNDAwMDFaMDMxMTAvBgNV BAMTKEU5QjVEMEZGNjgyQTFCRDEwNDRFOTFDRUY4Q0FBNTYzRjk5Q0M3NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLMW6lfkJEPaQ1z29FueoxNJpo pYvd3cjFpTKqfn3kq/1gAq8LXK5mFKN/PQvk7TEyfv01N49DLogIWrXzixF92xD8 nsWumJ0XZjfttaGENsg/4+agDI3Wh9b8Ibqy55ruCG0cXYuYngdjMLLt35gYGRYo tx/OSOlLiZuAf7TmEQhRxRs2RBa9dTNfTBNtBN9s0wXAKYEZhs5Zso8Z5SyjRvw8 DfrpsYgTZ90Z5V0VI+VXb8w1eGGLxacflhoqcI7ZeMR6H/vL7KQee4/4mh/dxfQt /NI9PIfUO0znNa5NShN7HVrq8Fws4FoTjjnyqz08a3yvFrujScrAZcDd/zzPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6bXQ/2gqG9EETpHO+MqlY/mcx3EwHwYDVR0j BBgwFoAUKGEnclQ+QzNbCAwygIt/3Cd+ceQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjEzMGI3NS00NTkzLTQxNDEtYTA2Zi01N2EyMmEwMjNkZDAvMC8yODYxMjc3MjU0 M0U0MzMzNUIwODBDMzI4MDhCN0ZEQzI3N0U3MUU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMyNzdF NzFFNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiMTMwYjc1LTQ1OTMtNDE0MS1h MDZmLTU3YTIyYTAyM2RkMC8wLzMxMzAzMzJlMzEzMzMzMmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U4MA0GCSqG SIb3DQEBCwUAA4IBAQC6Ia+6YxROnX7OP2dOKqqu9JW4pbJAHZl5XBJxzPEbynvt pq170fyvzOSOyFJQT/Zd5zIflfcwPJDBvaxR9CByT8iT8rYB1n6ixZ1jB7LVvI98 thGgku3hYIYPgUTTSPA6XtgoKSAioq/94QwDcPBndylmjPXAh7C1Mt+bnnyQVu0e F+ljAhg5XpLsGzN+jG78dW29lmn37uP7c+beirvrGiivKvCepJeU+Z2a4rkfi+xw PvdRntB28IEepLE5Dz+ZL/YwV8RmdyWHezW4NezCi2mSABz45Q5syJMRZZ7tbyNE XQ0V1U3TpDIBXOdSHcJJDPNpWkZDLZefgDPsbkxo -----END CERTIFICATE-----Generated at Sat Aug 23 20:13:40 2025 by rpki-client