$ rpki-client -vvf repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/3130332e3133302e342e302f32342d3234203d3e20313338303933.roa File: 3130332e3133302e342e302f32342d3234203d3e20313338303933.roa (raw, json) Hash identifier: cp5DLnNWi9w3KmvCMrojjqhOWr4wL8E6xAvIA2F2SV4= Subject key identifier: 22:52:06:61:F0:97:71:DD:BE:2B:05:FC:EA:DF:43:16:6E:02:BF:FE Certificate issuer: /CN=55C7A5D56CEC1316CFE660C79C02C16FCE38102A Certificate serial: 7331F001CC048B049C5CB5DFCB14FF97A495EF0B Authority key identifier: 55:C7:A5:D5:6C:EC:13:16:CF:E6:60:C7:9C:02:C1:6F:CE:38:10:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/3130332e3133302e342e302f32342d3234203d3e20313338303933.roa Signing time: Fri 20 Jun 2025 14:00:02 +0000 ROA not before: Fri 20 Jun 2025 13:55:02 +0000 ROA not after: Fri 19 Jun 2026 14:00:02 +0000 asID: 138093 IP address blocks: 103.130.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.crl rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 07:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:31:f0:01:cc:04:8b:04:9c:5c:b5:df:cb:14:ff:97:a4:95:ef:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55C7A5D56CEC1316CFE660C79C02C16FCE38102A Validity Not Before: Jun 20 13:55:02 2025 GMT Not After : Jun 19 14:00:02 2026 GMT Subject: CN=22520661F09771DDBE2B05FCEADF43166E02BFFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:5e:62:f7:66:ef:a4:a7:fe:5e:c4:75:36: 92:e2:a0:0e:59:5e:33:7b:01:d7:c3:47:c2:36:44: b0:e2:47:08:33:0c:4d:36:c7:1c:48:45:04:4f:39: bb:78:89:97:cc:10:f9:6a:8a:81:f4:48:f4:56:de: 30:dc:17:93:fe:a4:43:61:3b:e1:e7:04:29:18:b0: 37:37:d7:d2:73:eb:3b:28:d2:eb:99:7b:88:df:80: 5b:b9:77:b5:00:85:5b:cb:3e:14:ed:01:cf:f1:cc: e7:46:10:2a:b3:93:0d:f4:69:64:54:43:f9:2d:43: a1:ad:99:05:c9:c4:23:1c:a9:33:c2:d4:7e:19:50: 59:e5:8e:dc:57:da:a5:3f:61:2c:94:28:42:67:55: ba:de:a0:75:8a:6f:c3:dc:61:d2:da:3a:ba:8d:7c: 89:d2:69:66:cd:a2:f0:02:b7:d1:90:5c:7e:63:28: a1:d8:d2:5a:ff:7d:68:55:e1:dc:a7:b8:96:76:a2: 0d:f6:8d:70:53:6f:b1:44:6f:33:9f:c1:d0:31:19: 2e:8c:84:85:0a:9d:79:61:06:c9:c0:07:1b:98:70: 37:a8:7f:6c:7d:25:b1:93:41:3d:f9:c8:51:80:c5: cc:d6:bc:b3:24:a5:d1:fd:f7:fa:9f:00:ab:6b:c2: 25:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:52:06:61:F0:97:71:DD:BE:2B:05:FC:EA:DF:43:16:6E:02:BF:FE X509v3 Authority Key Identifier: keyid:55:C7:A5:D5:6C:EC:13:16:CF:E6:60:C7:9C:02:C1:6F:CE:38:10:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/55C7A5D56CEC1316CFE660C79C02C16FCE38102A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c29e0636-1fe2-4d3b-8c38-2dbb9914e913/0/3130332e3133302e342e302f32342d3234203d3e20313338303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.4.0/24 Signature Algorithm: sha256WithRSAEncryption bf:93:24:a2:cb:95:b5:3e:0d:3b:47:2e:21:d1:dd:9b:fc:7f: 69:fa:b4:a5:ca:0f:2f:37:dc:49:1b:aa:da:eb:4a:e5:7d:31: b7:96:6b:4a:97:19:a2:42:02:6f:f6:85:1f:f1:af:dc:7c:f3: 60:54:91:32:fd:3f:79:99:7c:2a:75:ae:1f:cd:de:75:72:3f: e6:3f:26:9d:6a:7c:af:bf:ed:00:ad:e7:bc:39:32:eb:95:9c: 1a:b0:6c:a3:18:d4:d5:cf:bb:e4:74:48:fe:31:01:be:0d:5a: ae:b7:c8:64:3d:fe:89:e1:c2:01:f3:2f:74:c7:ed:f3:3b:21: 1b:ef:44:d1:fd:09:c3:91:ca:a1:09:bb:26:39:c2:29:8f:5f: 68:bb:7a:55:1d:42:da:ac:15:a9:0c:93:a8:b0:78:1e:3a:5f: 7d:9f:49:21:89:0d:51:d3:6d:e3:c2:c3:b2:5d:d6:0a:04:8d: ac:ac:94:84:7c:56:82:e5:7b:1c:d8:6d:4d:6a:8b:d1:aa:1c: 73:af:d1:1b:15:73:7f:be:36:87:9e:49:14:be:8a:e4:38:8d: 62:82:bb:91:85:b6:01:61:73:e2:0f:7e:a0:9b:50:50:f1:57: aa:d8:f9:1d:f0:9c:91:d0:fd:16:b3:c0:9c:d6:50:8d:f9:85: 23:52:9c:89 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUczHwAcwEiwScXLXfyxT/l6SV7wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVDN0E1RDU2Q0VDMTMxNkNGRTY2MEM3OUMwMkMxNkZD RTM4MTAyQTAeFw0yNTA2MjAxMzU1MDJaFw0yNjA2MTkxNDAwMDJaMDMxMTAvBgNV BAMTKDIyNTIwNjYxRjA5NzcxRERCRTJCMDVGQ0VBREY0MzE2NkUwMkJGRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNI15i92bvpKf+XsR1NpLioA5Z XjN7AdfDR8I2RLDiRwgzDE02xxxIRQRPObt4iZfMEPlqioH0SPRW3jDcF5P+pENh O+HnBCkYsDc319Jz6zso0uuZe4jfgFu5d7UAhVvLPhTtAc/xzOdGECqzkw30aWRU Q/ktQ6GtmQXJxCMcqTPC1H4ZUFnljtxX2qU/YSyUKEJnVbreoHWKb8PcYdLaOrqN fInSaWbNovACt9GQXH5jKKHY0lr/fWhV4dynuJZ2og32jXBTb7FEbzOfwdAxGS6M hIUKnXlhBsnABxuYcDeof2x9JbGTQT35yFGAxczWvLMkpdH99/qfAKtrwiUlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIlIGYfCXcd2+KwX86t9DFm4Cv/4wHwYDVR0j BBgwFoAUVcel1WzsExbP5mDHnALBb844ECowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjllMDYzNi0xZmUyLTRkM2ItOGMzOC0yZGJiOTkxNGU5MTMvMC81NUM3QTVENTZD RUMxMzE2Q0ZFNjYwQzc5QzAyQzE2RkNFMzgxMDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTVDN0E1RDU2Q0VDMTMxNkNGRTY2MEM3OUMwMkMxNkZDRTM4 MTAyQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyOWUwNjM2LTFmZTItNGQzYi04 YzM4LTJkYmI5OTE0ZTkxMy8wLzMxMzAzMzJlMzEzMzMwMmUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMwMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeCBDANBgkqhkiG 9w0BAQsFAAOCAQEAv5MkosuVtT4NO0cuIdHdm/x/afq0pcoPLzfcSRuq2utK5X0x t5ZrSpcZokICb/aFH/Gv3HzzYFSRMv0/eZl8KnWuH83edXI/5j8mnWp8r7/tAK3n vDky65WcGrBsoxjU1c+75HRI/jEBvg1arrfIZD3+ieHCAfMvdMft8zshG+9E0f0J w5HKoQm7JjnCKY9faLt6VR1C2qwVqQyTqLB4HjpffZ9JIYkNUdNt48LDsl3WCgSN rKyUhHxWguV7HNhtTWqL0aocc6/RGxVzf742h55JFL6K5DiNYoK7kYW2AWFz4g9+ oJtQUPFXqtj5HfCckdD9FrPAnNZQjfmFI1KciQ== -----END CERTIFICATE-----Generated at Mon Jun 30 07:21:55 2025 by rpki-client