$ rpki-client -vvf repo-rpki.idnic.net/repo/c0ea5056-0fbc-4032-8680-3fa5441e4d55/0/3130332e3234342e32332e302f32342d3234203d3e20313531353336.roa File: 3130332e3234342e32332e302f32342d3234203d3e20313531353336.roa (raw, json) Hash identifier: mtMEnNnCc/n2ygwxa9g+6Mh/rQhVC5sEMiRt5rS7CMM= Subject key identifier: 44:C5:51:7D:C4:C0:E3:FC:55:E1:5B:0D:E6:A0:07:FF:92:C6:6B:53 Certificate issuer: /CN=A794160F8781ADF0A63CEECE52275B19F08F18D8 Certificate serial: 727C2825D2C0B21D1ADF6D3E5607FC2516DDC538 Authority key identifier: A7:94:16:0F:87:81:AD:F0:A6:3C:EE:CE:52:27:5B:19:F0:8F:18:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A794160F8781ADF0A63CEECE52275B19F08F18D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c0ea5056-0fbc-4032-8680-3fa5441e4d55/0/3130332e3234342e32332e302f32342d3234203d3e20313531353336.roa Signing time: Thu 14 Aug 2025 11:00:00 +0000 ROA not before: Thu 14 Aug 2025 10:55:00 +0000 ROA not after: Thu 13 Aug 2026 11:00:00 +0000 asID: 151536 IP address blocks: 103.244.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c0ea5056-0fbc-4032-8680-3fa5441e4d55/0/A794160F8781ADF0A63CEECE52275B19F08F18D8.crl rsync://repo-rpki.idnic.net/repo/c0ea5056-0fbc-4032-8680-3fa5441e4d55/0/A794160F8781ADF0A63CEECE52275B19F08F18D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A794160F8781ADF0A63CEECE52275B19F08F18D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:7c:28:25:d2:c0:b2:1d:1a:df:6d:3e:56:07:fc:25:16:dd:c5:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A794160F8781ADF0A63CEECE52275B19F08F18D8 Validity Not Before: Aug 14 10:55:00 2025 GMT Not After : Aug 13 11:00:00 2026 GMT Subject: CN=44C5517DC4C0E3FC55E15B0DE6A007FF92C66B53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2c:c5:e3:95:aa:93:eb:d4:75:aa:1c:4b:af: 35:18:a9:d8:b6:fb:12:00:62:b3:4d:46:91:fb:82: b5:f5:29:95:a3:0f:4f:ac:ef:c3:c3:d6:23:7f:96: ab:e9:ef:25:42:0f:47:ab:95:05:4a:c8:ce:68:02: 2c:e9:49:e1:49:92:ed:93:8d:c6:90:0f:bd:05:9b: 3d:8f:85:11:97:b3:68:79:50:59:c8:3b:58:5d:98: d6:df:5f:22:89:cd:5c:cd:9a:24:a2:8e:66:cc:e8: 33:16:32:52:7b:04:e8:33:44:15:d1:e0:47:08:c4: 3c:1c:85:f6:72:bd:ab:7f:89:ee:39:db:2e:92:91: fd:9e:73:02:38:52:fa:d3:4e:e7:e6:86:d1:30:d8: 40:91:9d:bb:e1:67:d8:a9:3c:c4:65:d6:2d:65:df: 60:1f:44:dd:84:cf:df:c0:45:aa:b3:b9:23:03:be: 67:c3:99:0e:08:0b:f6:00:b1:2b:85:35:4f:bf:6b: 96:e2:3e:d7:04:12:ab:79:23:48:a1:ac:3b:8c:b4: e1:9c:89:e7:69:48:c3:cb:51:04:24:d6:18:21:48: b6:49:0d:3d:dd:9a:32:5f:35:02:3d:91:f5:45:ca: 3c:f6:1f:e3:9f:14:2e:0c:d1:af:10:24:68:ad:b8: fc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C5:51:7D:C4:C0:E3:FC:55:E1:5B:0D:E6:A0:07:FF:92:C6:6B:53 X509v3 Authority Key Identifier: keyid:A7:94:16:0F:87:81:AD:F0:A6:3C:EE:CE:52:27:5B:19:F0:8F:18:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c0ea5056-0fbc-4032-8680-3fa5441e4d55/0/A794160F8781ADF0A63CEECE52275B19F08F18D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A794160F8781ADF0A63CEECE52275B19F08F18D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c0ea5056-0fbc-4032-8680-3fa5441e4d55/0/3130332e3234342e32332e302f32342d3234203d3e20313531353336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.23.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:e5:15:d0:b2:71:ac:1f:ef:89:05:9f:dc:bb:31:75:07:43: a8:89:52:2c:63:f2:d4:18:d3:2f:03:81:89:f9:3c:64:fc:63: 16:bb:7b:28:05:20:1d:c1:1a:7c:5b:09:a9:da:01:94:ae:50: fc:81:83:86:2f:a8:ed:22:8c:a2:ba:22:b3:49:33:cb:ca:70: 3e:10:87:bb:ca:ba:6d:1f:13:99:78:ce:bb:78:68:1c:61:73: 12:01:e5:17:ec:f1:ec:38:ff:63:f2:9b:68:c1:fe:ef:33:59: 28:60:54:29:6c:b5:b0:fc:d9:3f:62:16:ce:4b:89:d3:83:bd: f6:41:5e:e0:18:9d:6a:c3:eb:8d:27:41:f3:7b:68:ba:7a:67: 1f:af:80:41:f2:0e:bc:30:91:67:8f:1c:5b:0a:b3:0b:45:5d: 9b:0c:6f:1e:72:90:48:15:c2:7c:2c:50:9c:20:53:54:66:7d: d4:67:45:50:0c:56:84:7f:d9:2f:b8:a0:77:8d:e4:54:19:fc: f9:85:4f:18:91:d0:02:68:9f:22:69:7b:54:21:5d:4a:cf:99: 33:64:5f:12:ff:27:1d:c9:98:d0:26:bc:ad:5c:a4:5b:c4:34: a1:ad:09:9b:d7:b3:10:3e:4b:e8:e0:b1:a4:e5:6d:aa:b5:83: 84:3e:43:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcnwoJdLAsh0a320+Vgf8JRbdxTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc5NDE2MEY4NzgxQURGMEE2M0NFRUNFNTIyNzVCMTlG MDhGMThEODAeFw0yNTA4MTQxMDU1MDBaFw0yNjA4MTMxMTAwMDBaMDMxMTAvBgNV BAMTKDQ0QzU1MTdEQzRDMEUzRkM1NUUxNUIwREU2QTAwN0ZGOTJDNjZCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiLMXjlaqT69R1qhxLrzUYqdi2 +xIAYrNNRpH7grX1KZWjD0+s78PD1iN/lqvp7yVCD0erlQVKyM5oAizpSeFJku2T jcaQD70Fmz2PhRGXs2h5UFnIO1hdmNbfXyKJzVzNmiSijmbM6DMWMlJ7BOgzRBXR 4EcIxDwchfZyvat/ie452y6Skf2ecwI4UvrTTufmhtEw2ECRnbvhZ9ipPMRl1i1l 32AfRN2Ez9/ARaqzuSMDvmfDmQ4IC/YAsSuFNU+/a5biPtcEEqt5I0ihrDuMtOGc iedpSMPLUQQk1hghSLZJDT3dmjJfNQI9kfVFyjz2H+OfFC4M0a8QJGituPyvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURMVRfcTA4/xV4VsN5qAH/5LGa1MwHwYDVR0j BBgwFoAUp5QWD4eBrfCmPO7OUidbGfCPGNgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MGVhNTA1Ni0wZmJjLTQwMzItODY4MC0zZmE1NDQxZTRkNTUvMC9BNzk0MTYwRjg3 ODFBREYwQTYzQ0VFQ0U1MjI3NUIxOUYwOEYxOEQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc5NDE2MEY4NzgxQURGMEE2M0NFRUNFNTIyNzVCMTlGMDhG MThEOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwZWE1MDU2LTBmYmMtNDAzMi04 NjgwLTNmYTU0NDFlNGQ1NS8wLzMxMzAzMzJlMzIzNDM0MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/QXMA0GCSqG SIb3DQEBCwUAA4IBAQB95RXQsnGsH++JBZ/cuzF1B0OoiVIsY/LUGNMvA4GJ+Txk /GMWu3soBSAdwRp8Wwmp2gGUrlD8gYOGL6jtIoyiuiKzSTPLynA+EIe7yrptHxOZ eM67eGgcYXMSAeUX7PHsOP9j8ptowf7vM1koYFQpbLWw/Nk/YhbOS4nTg732QV7g GJ1qw+uNJ0Hze2i6emcfr4BB8g68MJFnjxxbCrMLRV2bDG8ecpBIFcJ8LFCcIFNU Zn3UZ0VQDFaEf9kvuKB3jeRUGfz5hU8YkdACaJ8iaXtUIV1Kz5kzZF8S/ycdyZjQ JrytXKRbxDShrQmb17MQPkvo4LGk5W2qtYOEPkNo -----END CERTIFICATE-----Generated at Sat Aug 23 19:56:04 2025 by rpki-client