$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa File: 3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: WH82srfa1fHbTvQkryRY+/IYgX3wHeBdFBK97LFsmt8= Subject key identifier: 4B:92:4E:BA:A4:30:B5:58:82:D3:9F:60:59:19:1D:35:A6:A1:59:16 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: E833136FB301E5C5F4ADD001464FE8EE38DD41 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa Signing time: Fri 19 Sep 2025 05:00:01 +0000 ROA not before: Fri 19 Sep 2025 04:55:01 +0000 ROA not after: Fri 18 Sep 2026 05:00:01 +0000 asID: 135477 IP address blocks: 103.76.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 22:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e8:33:13:6f:b3:01:e5:c5:f4:ad:d0:01:46:4f:e8:ee:38:dd:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Sep 19 04:55:01 2025 GMT Not After : Sep 18 05:00:01 2026 GMT Subject: CN=4B924EBAA430B55882D39F6059191D35A6A15916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b3:4d:51:44:d9:70:61:78:56:77:e0:67:2e: 15:41:cb:d4:b5:f8:df:da:05:49:c9:3f:28:f1:e5: c2:02:2f:19:21:87:0d:b3:b4:4b:12:49:2c:f9:c5: 53:85:ae:9e:84:01:9a:55:2d:05:70:b9:70:95:5f: 01:83:88:08:75:0b:ff:e4:0b:cf:b4:97:7e:eb:e1: 1e:41:90:cc:d7:e8:6f:9a:28:f4:26:02:bf:7f:50: 00:70:7b:e3:7d:48:f1:9a:75:6a:a1:45:0e:53:b8: 4b:9b:f1:99:a6:8b:08:b2:c9:5e:f7:a0:5e:42:b6: e2:9a:17:d3:ca:f4:93:4e:bc:30:9e:fa:ef:bd:fe: 81:2e:3a:9a:c3:0d:28:35:28:e1:b8:3a:62:81:18: 3e:23:88:32:ac:32:be:b6:17:4c:52:7d:40:00:87: 8d:e0:0f:89:b2:49:f5:62:f7:11:7b:35:3e:3a:c5: 65:20:97:6a:70:1b:c5:a5:d8:07:56:59:8e:c3:94: cd:a4:46:8a:5d:81:5e:f5:1a:15:d2:31:60:43:1c: 0c:4b:c2:f3:d1:41:84:49:8f:43:eb:f6:0a:ed:4f: 11:78:84:23:f8:d1:70:e3:7d:51:fd:a6:fe:47:36: ce:46:49:77:8b:99:5e:9e:83:f1:57:3e:f3:ae:3c: c8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:92:4E:BA:A4:30:B5:58:82:D3:9F:60:59:19:1D:35:A6:A1:59:16 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.150.0/24 Signature Algorithm: sha256WithRSAEncryption 87:7c:57:d2:d1:18:b9:89:36:46:58:fb:7a:51:02:4e:21:47: fb:58:41:41:ee:58:85:de:eb:d9:5b:ac:e0:ae:54:4e:80:70: 45:d3:b3:eb:67:e1:ca:98:73:ae:74:eb:5b:58:6a:8e:41:ae: 4c:25:38:9a:ff:9e:ef:3b:36:bd:9b:c3:2e:ec:d4:5c:4e:21: 9b:c6:22:22:09:84:43:6e:2e:4f:dd:c9:37:4e:b9:19:9e:02: da:3c:7f:94:95:c0:53:62:62:eb:af:a9:71:91:9a:d6:45:5e: 6d:e0:b2:67:ea:68:2d:5e:c2:1a:83:38:b3:a5:87:90:2d:35: e4:ca:42:41:ca:9c:f4:e9:22:2b:59:5d:12:a4:bc:11:99:de: 2c:88:e0:4e:0b:d6:1d:fe:25:57:e1:49:41:a5:61:fb:1e:bc: 1a:8f:95:52:90:be:fe:3a:d7:a9:c4:74:de:db:98:af:77:2c: 4e:31:96:65:0a:68:fc:33:3a:fc:f9:14:22:0f:40:ef:02:98: bd:33:02:4d:a0:8e:e2:31:3b:0a:2d:66:40:f5:39:eb:dd:f1: 4c:a0:a4:11:b3:32:d0:e7:39:39:51:37:08:be:87:75:16:35: 7a:8e:38:84:b7:b2:eb:ec:90:ef:51:bf:2a:7f:3e:53:a0:ba: e3:26:73:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAOgzE2+zAeXF9K3QAUZP6O443UEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNTA5MTkwNDU1MDFaFw0yNjA5MTgwNTAwMDFaMDMxMTAvBgNV BAMTKDRCOTI0RUJBQTQzMEI1NTg4MkQzOUY2MDU5MTkxRDM1QTZBMTU5MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjs01RRNlwYXhWd+BnLhVBy9S1 +N/aBUnJPyjx5cICLxkhhw2ztEsSSSz5xVOFrp6EAZpVLQVwuXCVXwGDiAh1C//k C8+0l37r4R5BkMzX6G+aKPQmAr9/UABwe+N9SPGadWqhRQ5TuEub8ZmmiwiyyV73 oF5CtuKaF9PK9JNOvDCe+u+9/oEuOprDDSg1KOG4OmKBGD4jiDKsMr62F0xSfUAA h43gD4mySfVi9xF7NT46xWUgl2pwG8Wl2AdWWY7DlM2kRopdgV71GhXSMWBDHAxL wvPRQYRJj0Pr9grtTxF4hCP40XDjfVH9pv5HNs5GSXeLmV6eg/FXPvOuPMiLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUS5JOuqQwtViC059gWRkdNaahWRYwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzczNjJlMzEzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yWMA0GCSqG SIb3DQEBCwUAA4IBAQCHfFfS0Ri5iTZGWPt6UQJOIUf7WEFB7liF3uvZW6zgrlRO gHBF07PrZ+HKmHOudOtbWGqOQa5MJTia/57vOza9m8Mu7NRcTiGbxiIiCYRDbi5P 3ck3TrkZngLaPH+UlcBTYmLrr6lxkZrWRV5t4LJn6mgtXsIagzizpYeQLTXkykJB ypz06SIrWV0SpLwRmd4siOBOC9Yd/iVX4UlBpWH7Hrwaj5VSkL7+OtepxHTe25iv dyxOMZZlCmj8Mzr8+RQiD0DvApi9MwJNoI7iMTsKLWZA9Tnr3fFMoKQRszLQ5zk5 UTcIvod1FjV6jjiEt7Lr7JDvUb8qfz5ToLrjJnOh -----END CERTIFICATE-----Generated at Mon Oct 20 20:36:44 2025 by rpki-client