$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37362e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: b5FyLXJvwHGEGWwekDTqeQDenx7rZLagZD5M467u+1w= Subject key identifier: F9:44:1F:FE:38:47:1B:B1:E5:64:3B:06:2C:E6:8A:69:FC:1B:68:19 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 1141CF77333D1D275CB470AC5B7C42F7E5EFB2B5 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa Signing time: Thu 21 Aug 2025 09:00:01 +0000 ROA not before: Thu 21 Aug 2025 08:55:01 +0000 ROA not after: Thu 20 Aug 2026 09:00:01 +0000 asID: 136131 IP address blocks: 103.97.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 07:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:41:cf:77:33:3d:1d:27:5c:b4:70:ac:5b:7c:42:f7:e5:ef:b2:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Aug 21 08:55:01 2025 GMT Not After : Aug 20 09:00:01 2026 GMT Subject: CN=F9441FFE38471BB1E5643B062CE68A69FC1B6819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cb:e6:b1:d1:d4:ee:25:d2:5a:f7:a4:b5:78: 5b:56:9c:af:6d:6a:f4:41:38:01:ab:9a:24:0e:77: 11:07:f9:4d:33:a8:26:3f:b6:f0:80:00:17:91:60: 1f:fe:9f:6a:41:53:10:88:db:e3:99:9b:36:c9:2f: e8:8d:ea:3f:8f:e1:08:4b:30:60:33:95:77:ef:68: 1d:04:20:9b:31:eb:d8:ed:75:bc:e5:b6:c8:ac:8d: d3:57:82:40:5d:be:6b:01:a0:63:94:3a:38:2c:90: b8:00:d8:93:b0:de:f9:08:8e:88:5c:45:af:af:43: 77:ec:5c:ff:5d:24:8a:8f:08:26:d9:ee:71:f6:72: 46:a5:e9:eb:44:9b:f6:63:ea:e1:4a:99:28:08:cd: 98:89:89:4f:48:a2:d2:89:82:87:6b:d3:ce:2a:d3: 4f:85:20:b7:ba:00:83:ec:ce:c5:b8:db:99:d9:47: 99:84:10:be:ae:1f:be:bb:40:da:c6:e7:7a:b6:54: 1e:ec:5f:d3:5d:82:94:09:b2:f5:e2:94:ea:d9:19: d3:55:ce:35:f0:88:74:15:6d:ca:0e:0b:88:7c:9d: a2:a7:59:c7:6e:1b:24:84:0f:9a:fe:59:3f:15:58: 37:05:ba:9b:2a:d7:45:75:58:6e:46:54:e0:9b:b2: 71:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:44:1F:FE:38:47:1B:B1:E5:64:3B:06:2C:E6:8A:69:FC:1B:68:19 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.76.0/24 Signature Algorithm: sha256WithRSAEncryption 61:54:47:5f:41:ac:98:f2:c2:bc:57:c2:d5:ef:d2:a1:0b:21: 30:30:02:b2:fb:99:c4:b5:07:8e:5a:4a:be:b6:b2:2f:88:9c: 95:5b:1c:d2:b6:42:25:f8:46:60:ee:b2:a5:de:69:06:57:62: 74:a1:69:06:ce:e5:83:e5:8a:14:e3:15:67:59:24:51:72:17: f6:b9:58:ca:7b:b0:d8:53:59:c6:2a:b9:4d:95:3a:e4:99:db: cd:f9:15:b6:f9:ab:40:38:f3:c5:3a:c2:87:7e:81:a0:4b:1e: 0b:5d:8d:d9:dd:7b:9d:6b:c1:20:1d:57:68:f5:28:9b:0f:59: 42:c8:36:87:01:50:0a:62:7d:8f:27:8a:4d:59:ae:67:9c:ec: 7e:42:12:85:2a:3e:08:57:4b:57:f4:65:e3:b5:33:2f:4f:65: 99:87:f9:de:ba:04:c5:16:2c:c6:09:bc:de:ef:4b:87:3e:f5: 17:68:88:ff:5b:1d:bd:4c:86:7c:f1:84:1f:8f:ef:61:bc:f8: 08:bd:e5:1c:b5:af:71:62:6a:c8:de:ed:35:06:f8:8d:dc:fe: 1e:2d:20:11:5c:7d:fa:de:70:b2:f0:e2:b3:f0:e9:c5:44:79: eb:c2:5f:96:38:8f:0b:f6:6d:64:11:b8:c1:61:be:52:02:3e: a0:9d:03:bc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEUHPdzM9HSdctHCsW3xC9+XvsrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA4MjEwODU1MDFaFw0yNjA4MjAwOTAwMDFaMDMxMTAvBgNV BAMTKEY5NDQxRkZFMzg0NzFCQjFFNTY0M0IwNjJDRTY4QTY5RkMxQjY4MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8y+ax0dTuJdJa96S1eFtWnK9t avRBOAGrmiQOdxEH+U0zqCY/tvCAABeRYB/+n2pBUxCI2+OZmzbJL+iN6j+P4QhL MGAzlXfvaB0EIJsx69jtdbzltsisjdNXgkBdvmsBoGOUOjgskLgA2JOw3vkIjohc Ra+vQ3fsXP9dJIqPCCbZ7nH2ckal6etEm/Zj6uFKmSgIzZiJiU9IotKJgodr084q 00+FILe6AIPszsW425nZR5mEEL6uH767QNrG53q2VB7sX9NdgpQJsvXilOrZGdNV zjXwiHQVbcoOC4h8naKnWcduGySED5r+WT8VWDcFupsq10V1WG5GVOCbsnEhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+UQf/jhHG7HlZDsGLOaKafwbaBkwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTDANBgkqhkiG 9w0BAQsFAAOCAQEAYVRHX0GsmPLCvFfC1e/SoQshMDACsvuZxLUHjlpKvrayL4ic lVsc0rZCJfhGYO6ypd5pBldidKFpBs7lg+WKFOMVZ1kkUXIX9rlYynuw2FNZxiq5 TZU65JnbzfkVtvmrQDjzxTrCh36BoEseC12N2d17nWvBIB1XaPUomw9ZQsg2hwFQ CmJ9jyeKTVmuZ5zsfkIShSo+CFdLV/Rl47UzL09lmYf53roExRYsxgm83u9Lhz71 F2iI/1sdvUyGfPGEH4/vYbz4CL3lHLWvcWJqyN7tNQb4jdz+Hi0gEVx9+t5wsvDi s/DpxUR568JfljiPC/ZtZBG4wWG+UgI+oJ0DvA== -----END CERTIFICATE-----Generated at Sat Aug 23 23:46:32 2025 by rpki-client