$ rpki-client -vvf repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32332d3233203d3e20313339343237.roa File: 3130332e3134342e3133342e302f32332d3233203d3e20313339343237.roa (raw, json) Hash identifier: CwI8o18dMmmdKMsJY38paR/SR1tzAkJd4x6YF0hfFxY= Subject key identifier: 7B:3C:0C:B2:75:0D:15:74:F2:44:41:EE:95:F8:7C:FC:C1:FB:94:D6 Certificate issuer: /CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Certificate serial: 54A0B0130BF0AAEF1647BF41E6BE200ACEF5E46C Authority key identifier: 8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32332d3233203d3e20313339343237.roa Signing time: Tue 17 Jun 2025 10:00:00 +0000 ROA not before: Tue 17 Jun 2025 09:55:00 +0000 ROA not after: Tue 16 Jun 2026 10:00:00 +0000 asID: 139427 IP address blocks: 103.144.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 14:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:a0:b0:13:0b:f0:aa:ef:16:47:bf:41:e6:be:20:0a:ce:f5:e4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Validity Not Before: Jun 17 09:55:00 2025 GMT Not After : Jun 16 10:00:00 2026 GMT Subject: CN=7B3C0CB2750D1574F24441EE95F87CFCC1FB94D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5b:9a:1f:ba:ea:5d:2d:86:63:5a:9d:83:bf: 3b:90:4e:31:e7:06:3a:8e:6c:c5:2c:b5:7e:24:e3: 84:0c:70:be:84:20:1b:3e:44:27:6a:ea:10:a7:68: b8:8f:ea:64:f8:b4:de:68:0d:2b:53:58:6e:1a:db: 57:d6:9e:ed:f0:da:73:83:02:37:5e:bd:64:55:f8: 37:26:04:c7:5c:97:04:e9:64:76:54:5b:55:fd:9a: 8a:c3:c6:54:f7:c7:a1:60:36:14:4d:3b:86:58:ab: ff:25:e1:d4:bf:66:75:11:0a:47:0a:3e:1d:25:c4: 80:1c:22:8d:36:ec:4e:82:ee:07:6a:b3:0f:cc:99: 0b:64:87:5c:f1:2c:71:2f:e2:fb:19:a3:ad:76:e6: 71:02:4b:15:c2:2a:32:59:be:89:93:63:c1:16:ee: 2a:3a:0e:f3:a8:de:03:f8:d4:52:6d:e7:a3:a1:c0: da:69:25:a6:48:36:e4:48:1c:65:ed:58:ff:11:18: 7c:6a:fc:79:97:22:c4:cf:f1:b3:17:c7:b3:bd:eb: d7:2a:08:6e:7e:64:c6:ac:ed:e0:23:60:ef:c9:87: ed:09:4a:c1:3b:c6:e5:6b:61:56:c2:98:c8:fd:cf: 22:4a:72:aa:3a:f7:90:75:1c:a1:f3:82:7d:7d:4f: 48:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3C:0C:B2:75:0D:15:74:F2:44:41:EE:95:F8:7C:FC:C1:FB:94:D6 X509v3 Authority Key Identifier: keyid:8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32332d3233203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.134.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:55:53:f2:96:b9:0b:57:69:be:00:e6:09:4c:b0:f1:d6:08: 4c:26:3f:79:e4:7d:22:00:81:9d:1b:aa:41:c9:73:08:0c:99: 4c:83:71:2d:ca:a5:59:87:ce:77:fe:d4:bd:38:1e:4f:e1:d0: cf:cb:6d:01:58:81:4b:ed:82:42:8e:68:96:02:ab:6e:c6:35: 77:50:2e:f0:e9:eb:e5:b1:9c:b5:bf:db:f1:1f:b7:27:a4:ea: 3d:68:b8:62:0f:7d:d6:4b:b8:3a:b1:6e:5c:b7:9c:66:15:ca: 8e:20:79:7d:e4:ed:23:d1:14:d8:7e:59:08:b9:ba:82:6e:97: c7:24:3d:34:53:0b:93:13:ec:30:17:f8:21:1a:7c:ca:f7:94: 13:25:6b:9f:9a:bb:78:ad:bf:ed:e8:ba:41:65:88:3c:c4:04: b4:08:7e:21:43:0e:96:3e:37:f4:48:1b:ff:78:bc:f2:9c:38: c3:4a:24:27:58:44:79:90:21:bb:77:2e:7e:02:34:ec:18:ea: 48:f8:b6:51:90:0f:2f:df:f9:04:38:5f:cd:26:dc:f7:d3:fd: 4e:91:bb:97:4b:ec:83:eb:5b:81:f0:5d:2b:f1:2e:35:07:70: c1:a5:68:9a:7b:fe:2f:60:d9:65:97:c0:ec:4b:02:f5:b3:ad: aa:1d:bb:76 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVKCwEwvwqu8WR79B5r4gCs715GwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3 MTIwMkQyRDAeFw0yNTA2MTcwOTU1MDBaFw0yNjA2MTYxMDAwMDBaMDMxMTAvBgNV BAMTKDdCM0MwQ0IyNzUwRDE1NzRGMjQ0NDFFRTk1Rjg3Q0ZDQzFGQjk0RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7W5ofuupdLYZjWp2DvzuQTjHn BjqObMUstX4k44QMcL6EIBs+RCdq6hCnaLiP6mT4tN5oDStTWG4a21fWnu3w2nOD AjdevWRV+DcmBMdclwTpZHZUW1X9morDxlT3x6FgNhRNO4ZYq/8l4dS/ZnURCkcK Ph0lxIAcIo027E6C7gdqsw/MmQtkh1zxLHEv4vsZo6125nECSxXCKjJZvomTY8EW 7io6DvOo3gP41FJt56OhwNppJaZINuRIHGXtWP8RGHxq/HmXIsTP8bMXx7O969cq CG5+ZMas7eAjYO/Jh+0JSsE7xuVrYVbCmMj9zyJKcqo695B1HKHzgn19T0hzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUezwMsnUNFXTyREHulfh8/MH7lNYwHwYDVR0j BBgwFoAUjj90QUA7nN8v1gPMuvE9FnEgLS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTkxNGFkYS1hOWFhLTRkN2YtOWU0Ny01OTRiY2I3YTcwYWIvMC84RTNGNzQ0MTQw M0I5Q0RGMkZENjAzQ0NCQUYxM0QxNjcxMjAyRDJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3MTIw MkQyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkIYwDQYJ KoZIhvcNAQELBQADggEBAHxVU/KWuQtXab4A5glMsPHWCEwmP3nkfSIAgZ0bqkHJ cwgMmUyDcS3KpVmHznf+1L04Hk/h0M/LbQFYgUvtgkKOaJYCq27GNXdQLvDp6+Wx nLW/2/Eftyek6j1ouGIPfdZLuDqxbly3nGYVyo4geX3k7SPRFNh+WQi5uoJul8ck PTRTC5MT7DAX+CEafMr3lBMla5+au3itv+3oukFliDzEBLQIfiFDDpY+N/RIG/94 vPKcOMNKJCdYRHmQIbt3Ln4CNOwY6kj4tlGQDy/f+QQ4X80m3PfT/U6Ru5dL7IPr W4HwXSvxLjUHcMGlaJp7/i9g2WWXwOxLAvWzraodu3Y= -----END CERTIFICATE-----Generated at Mon Jun 30 13:28:10 2025 by rpki-client