$ rpki-client -vvf repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/3130332e35352e33302e302f32332d3233203d3e20313530343834.roa File: 3130332e35352e33302e302f32332d3233203d3e20313530343834.roa (raw, json) Hash identifier: ZuMnDiHxEL/U8SL8BhAZDvs5aB1dq2I0QG/IhKrpVW8= Subject key identifier: 3E:95:2F:C6:06:DC:D3:F4:2E:94:8E:F6:5F:CF:E4:2D:BD:AC:9D:85 Certificate issuer: /CN=C33BE6D76C1444B4695CC56D706802967A2A404E Certificate serial: 65437AFEA2C1A4C1D77B93479632F1DB64E15021 Authority key identifier: C3:3B:E6:D7:6C:14:44:B4:69:5C:C5:6D:70:68:02:96:7A:2A:40:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C33BE6D76C1444B4695CC56D706802967A2A404E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/3130332e35352e33302e302f32332d3233203d3e20313530343834.roa Signing time: Thu 14 Aug 2025 16:00:45 +0000 ROA not before: Thu 14 Aug 2025 15:55:45 +0000 ROA not after: Thu 13 Aug 2026 16:00:45 +0000 asID: 150484 IP address blocks: 103.55.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/C33BE6D76C1444B4695CC56D706802967A2A404E.crl rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/C33BE6D76C1444B4695CC56D706802967A2A404E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C33BE6D76C1444B4695CC56D706802967A2A404E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:43:7a:fe:a2:c1:a4:c1:d7:7b:93:47:96:32:f1:db:64:e1:50:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C33BE6D76C1444B4695CC56D706802967A2A404E Validity Not Before: Aug 14 15:55:45 2025 GMT Not After : Aug 13 16:00:45 2026 GMT Subject: CN=3E952FC606DCD3F42E948EF65FCFE42DBDAC9D85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:80:42:60:ca:0b:8c:b4:91:fe:cf:23:f4: 5d:7c:77:45:71:49:49:b9:a2:a2:64:d3:31:d9:f6: eb:6b:e9:f0:77:85:06:f7:f7:c5:39:48:82:84:52: ec:c8:c1:36:8c:c1:66:20:64:e7:9d:10:93:3e:1d: e9:b1:92:88:65:72:af:87:8d:60:77:2c:71:06:73: c4:7d:8e:3e:db:79:3e:7a:08:4b:e8:9f:01:ce:a6: 61:38:f2:cd:e5:b4:8e:92:c7:ab:a6:df:15:93:ed: a0:93:90:71:0d:95:02:42:a2:0b:ed:e3:ff:c2:80: 31:34:f1:c0:20:35:ca:6f:52:6b:fa:6f:69:7e:af: 7d:c8:f3:28:f4:9c:b6:a9:64:5e:be:74:e5:2b:28: bf:dd:73:25:ec:b6:57:45:1b:ed:d0:fd:8e:e9:ee: 77:b5:61:34:13:09:96:16:f0:8f:72:57:b7:33:65: 8b:56:69:97:cb:65:25:3f:5f:02:18:b1:8c:73:9d: 88:d6:5a:f6:42:84:62:ca:f5:9e:34:34:a7:74:ae: 35:f7:fe:29:94:c0:be:31:da:5e:51:b9:45:93:a8: 3c:cf:30:7e:ce:2b:df:bd:7b:b8:49:ce:09:83:00: ca:1e:85:81:fc:6a:71:b7:ef:88:a4:bf:9b:03:fd: c5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:95:2F:C6:06:DC:D3:F4:2E:94:8E:F6:5F:CF:E4:2D:BD:AC:9D:85 X509v3 Authority Key Identifier: keyid:C3:3B:E6:D7:6C:14:44:B4:69:5C:C5:6D:70:68:02:96:7A:2A:40:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/C33BE6D76C1444B4695CC56D706802967A2A404E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C33BE6D76C1444B4695CC56D706802967A2A404E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/3130332e35352e33302e302f32332d3233203d3e20313530343834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.30.0/23 Signature Algorithm: sha256WithRSAEncryption d0:b7:92:52:ef:21:a0:7a:e3:fb:a3:5d:15:34:af:5d:6d:0a: a2:62:34:54:f6:f8:33:23:0d:cd:9f:9c:1d:80:c9:64:c4:9e: 6f:12:0e:db:dc:23:4c:7c:fc:98:95:4d:c0:f4:d2:c3:64:43: 01:8d:e4:71:f1:7a:12:f9:42:b2:cc:d3:2f:bd:38:9d:a2:2f: d7:c5:b2:00:1c:77:3b:31:51:05:d6:f2:7a:ab:5f:37:88:0f: e3:11:ff:59:14:0a:a4:bb:f7:45:b8:21:5e:c6:6f:52:2d:ec: ca:3e:b0:2a:46:1c:c3:66:29:42:7b:e5:db:07:0e:8e:8b:99: 8c:0a:fe:04:58:c6:97:1b:2a:68:da:2e:73:73:d5:65:07:3c: 81:f2:9e:5f:2b:76:f8:75:79:55:4b:25:00:07:8c:cf:6b:0d: 58:df:dc:07:27:7e:99:9f:e3:1c:1b:5d:7b:ec:01:65:f6:19: a3:1e:50:a7:fa:ea:a0:82:6a:c3:90:37:e6:bc:cf:98:cd:6c: c5:55:61:c4:23:b7:41:a1:77:f5:8c:68:76:2f:9d:71:b9:fe: 63:0f:42:07:79:63:b6:1a:03:73:ce:2b:32:32:cc:37:f1:ac: 9e:d4:ef:59:55:b4:38:bc:18:e5:da:5d:0e:b5:bd:d4:ba:be: f2:df:2e:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZUN6/qLBpMHXe5NHljLx22ThUCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMzQkU2RDc2QzE0NDRCNDY5NUNDNTZENzA2ODAyOTY3 QTJBNDA0RTAeFw0yNTA4MTQxNTU1NDVaFw0yNjA4MTMxNjAwNDVaMDMxMTAvBgNV BAMTKDNFOTUyRkM2MDZEQ0QzRjQyRTk0OEVGNjVGQ0ZFNDJEQkRBQzlEODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpTYBCYMoLjLSR/s8j9F18d0Vx SUm5oqJk0zHZ9utr6fB3hQb398U5SIKEUuzIwTaMwWYgZOedEJM+Hemxkohlcq+H jWB3LHEGc8R9jj7beT56CEvonwHOpmE48s3ltI6Sx6um3xWT7aCTkHENlQJCogvt 4//CgDE08cAgNcpvUmv6b2l+r33I8yj0nLapZF6+dOUrKL/dcyXstldFG+3Q/Y7p 7ne1YTQTCZYW8I9yV7czZYtWaZfLZSU/XwIYsYxznYjWWvZChGLK9Z40NKd0rjX3 /imUwL4x2l5RuUWTqDzPMH7OK9+9e7hJzgmDAMoehYH8anG374ikv5sD/cUPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPpUvxgbc0/QulI72X8/kLb2snYUwHwYDVR0j BBgwFoAUwzvm12wURLRpXMVtcGgClnoqQE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDcwM2I4MC0yZTc4LTRkMTEtYWI3NC0wODAxN2U0MjJkNmUvMC9DMzNCRTZENzZD MTQ0NEI0Njk1Q0M1NkQ3MDY4MDI5NjdBMkE0MDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzMzQkU2RDc2QzE0NDRCNDY5NUNDNTZENzA2ODAyOTY3QTJB NDA0RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNzAzYjgwLTJlNzgtNGQxMS1h Yjc0LTA4MDE3ZTQyMmQ2ZS8wLzMxMzAzMzJlMzUzNTJlMzMzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDM0MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc3HjANBgkqhkiG 9w0BAQsFAAOCAQEA0LeSUu8hoHrj+6NdFTSvXW0KomI0VPb4MyMNzZ+cHYDJZMSe bxIO29wjTHz8mJVNwPTSw2RDAY3kcfF6EvlCsszTL704naIv18WyABx3OzFRBdby eqtfN4gP4xH/WRQKpLv3RbghXsZvUi3syj6wKkYcw2YpQnvl2wcOjouZjAr+BFjG lxsqaNouc3PVZQc8gfKeXyt2+HV5VUslAAeMz2sNWN/cByd+mZ/jHBtde+wBZfYZ ox5Qp/rqoIJqw5A35rzPmM1sxVVhxCO3QaF39Yxodi+dcbn+Yw9CB3ljthoDc84r MjLMN/GsntTvWVW0OLwY5dpdDrW91Lq+8t8uAw== -----END CERTIFICATE-----Generated at Sat Aug 23 16:11:10 2025 by rpki-client