$ rpki-client -vvf repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa File: 3130332e32302e38362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: +RIRdxOQj98KpyUFzbwvH1+p1ELhEQk4ECMOCZ1qPKs= Subject key identifier: BE:A3:42:A9:7A:FB:41:E3:C0:07:8C:EE:9E:4E:7B:0E:A5:FB:79:76 Certificate issuer: /CN=EE2C52F7BE52A0EB695A549A42E701EEE7E45D68 Certificate serial: 748C5C66AB00E9C4CD3FF73E2BA8812D78F6255A Authority key identifier: EE:2C:52:F7:BE:52:A0:EB:69:5A:54:9A:42:E7:01:EE:E7:E4:5D:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa Signing time: Fri 08 Aug 2025 11:00:01 +0000 ROA not before: Fri 08 Aug 2025 10:55:01 +0000 ROA not after: Fri 07 Aug 2026 11:00:01 +0000 asID: 9341 IP address blocks: 103.20.86.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.crl rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8c:5c:66:ab:00:e9:c4:cd:3f:f7:3e:2b:a8:81:2d:78:f6:25:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE2C52F7BE52A0EB695A549A42E701EEE7E45D68 Validity Not Before: Aug 8 10:55:01 2025 GMT Not After : Aug 7 11:00:01 2026 GMT Subject: CN=BEA342A97AFB41E3C0078CEE9E4E7B0EA5FB7976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c5:61:47:6a:bb:ec:87:d6:9b:cb:eb:98:5e: 94:70:2f:1a:85:06:44:40:56:e0:a0:d1:1e:ce:74: 3e:42:63:70:47:ce:fb:9d:ca:d3:b1:62:2e:02:0b: f2:52:9b:17:76:9d:f3:76:ff:2d:86:72:3c:8c:a4: 6b:d5:b2:34:fc:93:00:c1:e6:67:98:6e:34:c2:dc: d6:48:5c:9c:53:34:d0:e6:0f:a1:f6:d3:03:be:d2: 06:73:7b:a4:5f:dd:99:9e:19:d0:df:7a:1d:69:50: 81:92:88:78:a1:cc:8e:29:79:6e:2a:88:10:09:1d: de:0a:0b:61:58:6a:aa:69:99:03:f6:6d:58:09:7f: 81:1e:d9:9b:ad:6b:2f:5c:7a:e0:84:81:af:fd:d8: 35:fb:15:33:e3:b1:72:da:f6:e6:99:79:68:c1:82: ff:fa:2a:c2:51:8b:48:d4:5a:9c:e3:5e:7d:5c:18: fa:4f:00:ed:29:63:08:f6:cf:46:c3:d8:59:8f:9d: 42:77:ae:c9:d7:af:da:0b:eb:7d:e1:ca:55:ea:e0: a0:9a:52:a7:b3:8f:eb:d9:55:c4:86:a2:b2:19:2a: 64:8a:93:50:65:3a:4a:d1:97:0a:59:9f:96:3e:a2: 4e:fb:66:9a:25:c9:f4:e9:9c:cc:01:20:a2:80:9b: 23:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A3:42:A9:7A:FB:41:E3:C0:07:8C:EE:9E:4E:7B:0E:A5:FB:79:76 X509v3 Authority Key Identifier: keyid:EE:2C:52:F7:BE:52:A0:EB:69:5A:54:9A:42:E7:01:EE:E7:E4:5D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.86.0/23 Signature Algorithm: sha256WithRSAEncryption 94:90:77:47:bc:e6:29:53:9b:dc:61:57:43:4d:2e:a2:ba:e6: 3a:eb:2f:bc:48:0c:c5:47:67:72:bd:1d:f3:af:47:8f:4f:14: a3:82:33:3a:98:c7:83:d8:70:f4:46:15:e1:6b:96:46:4f:c5: df:7a:6f:8f:e5:24:c5:d2:91:81:79:a9:98:40:b4:1b:09:fb: 37:3c:22:dc:57:a3:f6:b9:d1:76:ca:5d:d0:05:bf:b8:71:54: ef:a9:42:f5:ef:0f:b4:78:be:d5:d7:d5:76:14:83:a1:8d:1e: 46:64:7f:b3:be:b4:29:01:86:b5:b4:e6:d5:1f:7f:fc:4f:80: cb:71:57:58:df:31:ce:52:ea:f5:e2:75:d4:1b:1d:03:3b:ce: 7c:50:ce:fa:40:10:59:c8:c5:61:4e:5e:39:c0:cf:95:68:bf: 0a:35:1b:eb:97:92:27:57:20:11:72:47:ce:35:bb:58:8f:2c: 01:58:55:90:92:82:d5:c7:89:b8:95:52:9c:57:be:7a:e5:fc: 3e:d0:a8:08:82:be:a0:28:8b:70:a1:a0:b5:b7:e1:5d:f5:1c: fc:01:dc:c5:ec:b2:6e:b5:59:37:50:b1:b0:0c:d8:b5:b9:74: a2:f2:5a:3b:0c:94:84:f6:78:a6:dd:fc:5a:98:8b:ad:0f:0e: 48:32:75:e8 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdIxcZqsA6cTNP/c+K6iBLXj2JVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUyQzUyRjdCRTUyQTBFQjY5NUE1NDlBNDJFNzAxRUVF N0U0NUQ2ODAeFw0yNTA4MDgxMDU1MDFaFw0yNjA4MDcxMTAwMDFaMDMxMTAvBgNV BAMTKEJFQTM0MkE5N0FGQjQxRTNDMDA3OENFRTlFNEU3QjBFQTVGQjc5NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWxWFHarvsh9aby+uYXpRwLxqF BkRAVuCg0R7OdD5CY3BHzvudytOxYi4CC/JSmxd2nfN2/y2GcjyMpGvVsjT8kwDB 5meYbjTC3NZIXJxTNNDmD6H20wO+0gZze6Rf3ZmeGdDfeh1pUIGSiHihzI4peW4q iBAJHd4KC2FYaqppmQP2bVgJf4Ee2Zutay9ceuCEga/92DX7FTPjsXLa9uaZeWjB gv/6KsJRi0jUWpzjXn1cGPpPAO0pYwj2z0bD2FmPnUJ3rsnXr9oL633hylXq4KCa Uqezj+vZVcSGorIZKmSKk1BlOkrRlwpZn5Y+ok77ZpolyfTpnMwBIKKAmyOPAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUvqNCqXr7QePAB4zunk57DqX7eXYwHwYDVR0j BBgwFoAU7ixS975SoOtpWlSaQucB7ufkXWgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWE0ODlhNi01NDg1LTQ4N2YtYjVkZC04ZjRlZGViNDZiY2IvMC9FRTJDNTJGN0JF NTJBMEVCNjk1QTU0OUE0MkU3MDFFRUU3RTQ1RDY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUyQzUyRjdCRTUyQTBFQjY5NUE1NDlBNDJFNzAxRUVFN0U0 NUQ2OC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFhNDg5YTYtNTQ4NS00ODdmLWI1 ZGQtOGY0ZWRlYjQ2YmNiLzAvMzEzMDMzMmUzMjMwMmUzODM2MmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnFFYwDQYJKoZIhvcNAQEL BQADggEBAJSQd0e85ilTm9xhV0NNLqK65jrrL7xIDMVHZ3K9HfOvR49PFKOCMzqY x4PYcPRGFeFrlkZPxd96b4/lJMXSkYF5qZhAtBsJ+zc8ItxXo/a50XbKXdAFv7hx VO+pQvXvD7R4vtXX1XYUg6GNHkZkf7O+tCkBhrW05tUff/xPgMtxV1jfMc5S6vXi ddQbHQM7znxQzvpAEFnIxWFOXjnAz5Vovwo1G+uXkidXIBFyR841u1iPLAFYVZCS gtXHibiVUpxXvnrl/D7QqAiCvqAoi3ChoLW34V31HPwB3MXssm61WTdQsbAM2LW5 dKLyWjsMlIT2eKbd/FqYi60PDkgydeg= -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:27 2025 by rpki-client