$ rpki-client -vvf repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38372e302f32342d3234203d3e2039333431.roa File: 3130332e32302e38372e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: AHcDCGLpSbw6Wx72m+rIylEXaACluMi2gVr+3VqfEGw= Subject key identifier: 4E:E8:FD:2A:AE:48:B4:B2:77:E0:1A:5D:BF:19:98:35:A9:81:70:E9 Certificate issuer: /CN=EE2C52F7BE52A0EB695A549A42E701EEE7E45D68 Certificate serial: 03FADDDB3051471E072B8A7C333B286621596BC1 Authority key identifier: EE:2C:52:F7:BE:52:A0:EB:69:5A:54:9A:42:E7:01:EE:E7:E4:5D:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38372e302f32342d3234203d3e2039333431.roa Signing time: Fri 08 Aug 2025 10:00:01 +0000 ROA not before: Fri 08 Aug 2025 09:55:01 +0000 ROA not after: Fri 07 Aug 2026 10:00:01 +0000 asID: 9341 IP address blocks: 103.20.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.crl rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:fa:dd:db:30:51:47:1e:07:2b:8a:7c:33:3b:28:66:21:59:6b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE2C52F7BE52A0EB695A549A42E701EEE7E45D68 Validity Not Before: Aug 8 09:55:01 2025 GMT Not After : Aug 7 10:00:01 2026 GMT Subject: CN=4EE8FD2AAE48B4B277E01A5DBF199835A98170E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:90:02:55:25:5a:65:9d:a6:44:6a:4f:2c:22: c5:d3:cc:cf:f2:3c:12:16:48:bf:0a:21:75:91:f7: 7a:ae:7d:1a:fa:d8:12:e0:b5:4c:ef:13:43:35:9b: 7f:46:ed:b0:04:85:de:54:83:28:7f:a4:4e:9c:0e: dc:4f:e7:f1:e9:c6:fd:47:ee:b2:a8:c9:53:42:dd: b0:96:35:ab:bc:d9:08:8f:ed:21:c3:e4:33:a8:b9: 81:5e:6e:2c:a7:bb:7f:7a:b7:25:b5:15:11:2d:12: 7a:31:cc:1a:b2:28:27:dd:ae:76:6e:87:19:84:15: 78:e9:46:cd:69:22:de:7e:97:60:03:5e:ab:45:b6: 7d:10:c9:c4:45:fe:cc:95:16:c1:14:ed:68:2a:c6: fc:9c:22:20:92:7b:f4:3e:bc:0e:28:f1:ed:16:aa: 01:93:c3:29:d5:97:63:3d:28:bd:fe:f1:bb:8b:5c: e7:ac:fe:79:f6:12:3a:9e:db:da:2b:69:47:77:85: 8b:2e:a3:48:89:d3:27:41:20:5c:4a:65:85:25:c4: 7a:ba:05:09:c1:9f:54:96:35:fb:a6:df:3a:39:22: 28:91:73:ac:fd:a5:31:25:f6:7a:77:27:f6:82:8d: aa:77:7f:4f:e0:5c:6d:2f:cb:5e:eb:54:89:56:f2: f5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E8:FD:2A:AE:48:B4:B2:77:E0:1A:5D:BF:19:98:35:A9:81:70:E9 X509v3 Authority Key Identifier: keyid:EE:2C:52:F7:BE:52:A0:EB:69:5A:54:9A:42:E7:01:EE:E7:E4:5D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38372e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.87.0/24 Signature Algorithm: sha256WithRSAEncryption 16:e4:77:5e:f5:03:87:48:81:33:58:30:ce:fe:99:2c:2c:2c: 72:a9:9d:db:a2:8a:d3:20:02:40:c0:9b:73:42:60:c8:ba:72: 6d:ab:22:41:ad:bb:d6:cc:18:67:e6:8c:bf:ff:87:6a:fa:92: ed:f6:ed:78:1a:b7:42:7f:7a:15:70:fd:0d:98:ce:6c:db:cd: 78:f4:2b:15:0a:a7:7f:43:be:c0:a6:d8:7f:04:2d:53:f6:89: aa:58:ca:28:67:98:7a:46:80:78:fa:6f:92:ad:03:28:87:ec: 71:f0:1f:ab:75:69:86:4f:02:96:ec:ed:0a:ea:79:b2:60:90: 65:05:21:66:b8:ad:d1:d7:75:fe:24:85:26:c7:a7:19:ba:b2: 04:58:5f:49:5a:68:41:9e:3e:e8:85:59:b4:f8:40:c9:85:48: 2a:14:14:48:7c:b5:b9:3f:98:17:6d:bb:35:ed:65:e1:e1:43: c4:4c:97:8b:27:5f:d7:40:af:12:9b:38:f1:16:03:94:53:92: 50:ac:69:20:87:80:87:1f:51:3d:7d:5a:f1:ff:d8:f4:61:75: 36:2a:45:15:45:6f:4c:fc:30:4b:5c:94:6e:51:23:c9:30:f7: 49:ad:4d:38:a8:ca:3a:34:66:da:04:69:de:89:9d:b5:40:01: 5e:5b:d0:19 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUA/rd2zBRRx4HK4p8MzsoZiFZa8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUyQzUyRjdCRTUyQTBFQjY5NUE1NDlBNDJFNzAxRUVF N0U0NUQ2ODAeFw0yNTA4MDgwOTU1MDFaFw0yNjA4MDcxMDAwMDFaMDMxMTAvBgNV BAMTKDRFRThGRDJBQUU0OEI0QjI3N0UwMUE1REJGMTk5ODM1QTk4MTcwRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnkAJVJVplnaZEak8sIsXTzM/y PBIWSL8KIXWR93qufRr62BLgtUzvE0M1m39G7bAEhd5Ugyh/pE6cDtxP5/Hpxv1H 7rKoyVNC3bCWNau82QiP7SHD5DOouYFebiynu396tyW1FREtEnoxzBqyKCfdrnZu hxmEFXjpRs1pIt5+l2ADXqtFtn0QycRF/syVFsEU7WgqxvycIiCSe/Q+vA4o8e0W qgGTwynVl2M9KL3+8buLXOes/nn2Ejqe29oraUd3hYsuo0iJ0ydBIFxKZYUlxHq6 BQnBn1SWNfum3zo5IiiRc6z9pTEl9np3J/aCjap3f0/gXG0vy17rVIlW8vXzAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUTuj9Kq5ItLJ34BpdvxmYNamBcOkwHwYDVR0j BBgwFoAU7ixS975SoOtpWlSaQucB7ufkXWgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWE0ODlhNi01NDg1LTQ4N2YtYjVkZC04ZjRlZGViNDZiY2IvMC9FRTJDNTJGN0JF NTJBMEVCNjk1QTU0OUE0MkU3MDFFRUU3RTQ1RDY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUyQzUyRjdCRTUyQTBFQjY5NUE1NDlBNDJFNzAxRUVFN0U0 NUQ2OC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFhNDg5YTYtNTQ4NS00ODdmLWI1 ZGQtOGY0ZWRlYjQ2YmNiLzAvMzEzMDMzMmUzMjMwMmUzODM3MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnFFcwDQYJKoZIhvcNAQEL BQADggEBABbkd171A4dIgTNYMM7+mSwsLHKpnduiitMgAkDAm3NCYMi6cm2rIkGt u9bMGGfmjL//h2r6ku327Xgat0J/ehVw/Q2YzmzbzXj0KxUKp39DvsCm2H8ELVP2 iapYyihnmHpGgHj6b5KtAyiH7HHwH6t1aYZPApbs7QrqebJgkGUFIWa4rdHXdf4k hSbHpxm6sgRYX0laaEGePuiFWbT4QMmFSCoUFEh8tbk/mBdtuzXtZeHhQ8RMl4sn X9dArxKbOPEWA5RTklCsaSCHgIcfUT19WvH/2PRhdTYqRRVFb0z8MEtclG5RI8kw 90mtTTioyjo0ZtoEad6JnbVAAV5b0Bk= -----END CERTIFICATE-----Generated at Sat Aug 23 15:39:28 2025 by rpki-client