$ rpki-client -vvf repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32362e302f32332d3233203d3e20313439333333.roa File: 3130332e3137392e32362e302f32332d3233203d3e20313439333333.roa (raw, json) Hash identifier: MEONMuL54EAbEAUoaiSgV585kNAslwniyqpv61OptMo= Subject key identifier: AA:65:5A:B7:82:71:78:69:44:60:E0:EB:A7:75:AA:D7:DE:73:BB:F9 Certificate issuer: /CN=34D90463B7D23555C6F77AA2464E508E3F913994 Certificate serial: 3DDEF8BC590238B9592455F64C525B11B881DF1B Authority key identifier: 34:D9:04:63:B7:D2:35:55:C6:F7:7A:A2:46:4E:50:8E:3F:91:39:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer Subject info access: rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32362e302f32332d3233203d3e20313439333333.roa Signing time: Fri 03 Oct 2025 08:01:49 +0000 ROA not before: Fri 03 Oct 2025 07:56:49 +0000 ROA not after: Fri 02 Oct 2026 08:01:49 +0000 asID: 149333 IP address blocks: 103.179.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.crl rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 03:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:de:f8:bc:59:02:38:b9:59:24:55:f6:4c:52:5b:11:b8:81:df:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D90463B7D23555C6F77AA2464E508E3F913994 Validity Not Before: Oct 3 07:56:49 2025 GMT Not After : Oct 2 08:01:49 2026 GMT Subject: CN=AA655AB7827178694460E0EBA775AAD7DE73BBF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:02:f3:01:40:ab:1d:28:06:55:2e:72:fb:26: 18:45:cf:b0:85:f1:f0:cd:47:ab:75:b4:d9:17:b5: 3b:47:2f:5b:ca:a3:7e:6c:e3:ec:a0:8a:fa:cf:f3: 84:e8:02:a7:ab:4e:d3:7b:f6:a6:95:b7:ec:55:95: c0:16:c9:08:24:30:16:10:8e:8b:57:cf:4a:50:c8: 0e:43:2c:30:b5:32:4f:bb:a1:ac:c4:07:5a:3e:e0: 9e:c0:22:72:9a:25:7b:02:db:c2:0f:39:53:1c:81: 88:d4:24:0c:c4:4e:f8:bc:4d:f4:0e:b8:1e:7b:f2: 7b:36:68:2c:11:0c:81:bd:70:67:af:8c:14:0f:43: 37:e2:09:45:b4:63:70:03:c8:6b:8a:b3:f3:44:90: fd:74:19:cc:fd:b3:2e:98:69:04:6c:f1:b2:09:2c: a9:61:a0:09:02:b5:2a:e6:17:ab:fe:42:2f:3f:2e: 05:d8:dc:2f:8b:b4:14:3c:02:c1:5d:7e:d5:cd:38: 02:3a:45:dc:92:1b:ab:76:ed:b6:40:8a:c1:b9:06: a0:ac:0b:76:a3:4c:45:99:7d:53:31:f9:d0:7a:75: 78:09:b5:86:0e:1c:74:76:06:b8:8d:31:86:68:48: 41:7f:7e:f7:03:3a:c1:c2:58:ed:db:1c:99:a1:94: dd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:65:5A:B7:82:71:78:69:44:60:E0:EB:A7:75:AA:D7:DE:73:BB:F9 X509v3 Authority Key Identifier: keyid:34:D9:04:63:B7:D2:35:55:C6:F7:7A:A2:46:4E:50:8E:3F:91:39:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32362e302f32332d3233203d3e20313439333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.26.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:ec:e8:ce:e8:2e:3f:06:d2:a4:d9:cd:34:e3:3b:fb:2b:ee: 10:cf:fa:59:19:75:1e:9a:fd:9f:6e:cf:96:36:43:eb:8c:34: 23:a3:12:87:db:93:5e:60:2c:56:cc:9d:39:1d:5b:75:2e:fc: 96:6c:87:e2:ae:e5:c6:76:15:b2:47:ba:59:f2:b7:c8:64:3e: 85:93:6b:d0:74:d0:7a:1e:cb:5b:df:22:c9:71:ab:c9:0d:4f: 7d:f8:f5:24:6b:dc:9c:18:68:20:00:af:4e:a6:c5:81:2d:a7: d2:5e:51:54:4e:cd:72:61:66:95:d3:9a:54:d4:8e:9c:5b:90: ef:d0:78:b0:d9:9a:50:e2:de:5a:f6:c1:bb:68:61:65:6c:4a: be:5b:15:96:17:99:7b:6c:81:2d:de:02:af:f3:84:58:35:8e: a9:95:74:5c:28:f4:51:d9:b2:02:f8:f4:d4:d3:e4:90:06:ce: ea:98:35:8f:26:dc:51:36:a0:ac:4e:59:51:56:b5:f4:7b:fd: 18:f8:66:ac:a4:78:54:78:8d:c3:ea:f9:3d:ca:b3:4a:f1:29: db:ef:eb:7f:9c:40:d5:83:46:b9:ef:0b:5c:b6:93:bc:aa:68: 82:92:f6:70:1d:10:40:76:07:92:5b:63:82:5b:96:c1:8b:39: c3:f2:df:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPd74vFkCOLlZJFX2TFJbEbiB3xswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzREOTA0NjNCN0QyMzU1NUM2Rjc3QUEyNDY0RTUwOEUz RjkxMzk5NDAeFw0yNTEwMDMwNzU2NDlaFw0yNjEwMDIwODAxNDlaMDMxMTAvBgNV BAMTKEFBNjU1QUI3ODI3MTc4Njk0NDYwRTBFQkE3NzVBQUQ3REU3M0JCRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQAvMBQKsdKAZVLnL7JhhFz7CF 8fDNR6t1tNkXtTtHL1vKo35s4+ygivrP84ToAqerTtN79qaVt+xVlcAWyQgkMBYQ jotXz0pQyA5DLDC1Mk+7oazEB1o+4J7AInKaJXsC28IPOVMcgYjUJAzETvi8TfQO uB578ns2aCwRDIG9cGevjBQPQzfiCUW0Y3ADyGuKs/NEkP10Gcz9sy6YaQRs8bIJ LKlhoAkCtSrmF6v+Qi8/LgXY3C+LtBQ8AsFdftXNOAI6RdySG6t27bZAisG5BqCs C3ajTEWZfVMx+dB6dXgJtYYOHHR2BriNMYZoSEF/fvcDOsHCWO3bHJmhlN2lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqmVat4JxeGlEYODrp3Wq195zu/kwHwYDVR0j BBgwFoAUNNkEY7fSNVXG93qiRk5Qjj+ROZQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OThiMzU0OS1lMjUzLTRmZDktYTcwNC0yOTY5NDRlNWEwNjMvMC8zNEQ5MDQ2M0I3 RDIzNTU1QzZGNzdBQTI0NjRFNTA4RTNGOTEzOTk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzREOTA0NjNCN0QyMzU1NUM2Rjc3QUEyNDY0RTUwOEUzRjkx Mzk5NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5OGIzNTQ5LWUyNTMtNGZkOS1h NzA0LTI5Njk0NGU1YTA2My8wLzMxMzAzMzJlMzEzNzM5MmUzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzMzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7MaMA0GCSqG SIb3DQEBCwUAA4IBAQAL7OjO6C4/BtKk2c004zv7K+4Qz/pZGXUemv2fbs+WNkPr jDQjoxKH25NeYCxWzJ05HVt1LvyWbIfiruXGdhWyR7pZ8rfIZD6Fk2vQdNB6Hstb 3yLJcavJDU99+PUka9ycGGggAK9OpsWBLafSXlFUTs1yYWaV05pU1I6cW5Dv0Hiw 2ZpQ4t5a9sG7aGFlbEq+WxWWF5l7bIEt3gKv84RYNY6plXRcKPRR2bIC+PTU0+SQ Bs7qmDWPJtxRNqCsTllRVrX0e/0Y+GaspHhUeI3D6vk9yrNK8Snb7+t/nEDVg0a5 7wtctpO8qmiCkvZwHRBAdgeSW2OCW5bBiznD8t/R -----END CERTIFICATE-----Generated at Tue Oct 21 03:56:44 2025 by rpki-client