$ rpki-client -vvf repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa File: 3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa (raw, json) Hash identifier: lba1v4z7nYWbnoK/4kTVSAyDKKCR7EsAIZ4ZYjgIw60= Subject key identifier: 83:8C:59:F5:CD:8E:F4:31:5D:2C:98:CC:D4:8A:CE:D8:AD:C5:43:18 Certificate issuer: /CN=037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665 Certificate serial: 67E9B52A53DF64C08DDC7916660C6FDE65647943 Authority key identifier: 03:7A:1E:47:FB:1C:CE:3B:6E:6A:93:69:ED:DD:87:0D:AE:80:D6:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa Signing time: Mon 18 Aug 2025 02:00:01 +0000 ROA not before: Mon 18 Aug 2025 01:55:01 +0000 ROA not after: Mon 17 Aug 2026 02:00:01 +0000 asID: 151531 IP address blocks: 103.239.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.crl rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 01:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e9:b5:2a:53:df:64:c0:8d:dc:79:16:66:0c:6f:de:65:64:79:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665 Validity Not Before: Aug 18 01:55:01 2025 GMT Not After : Aug 17 02:00:01 2026 GMT Subject: CN=838C59F5CD8EF4315D2C98CCD48ACED8ADC54318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9b:dc:cd:ce:37:b1:3a:2b:3c:23:da:0d:19: 28:8a:74:c5:4d:57:c3:f8:b8:52:ef:a9:94:52:88: fe:1f:d6:2f:43:b7:2d:c5:54:fd:73:ba:36:18:d8: 75:63:ee:f7:65:65:ce:8c:21:4d:ef:b0:9b:33:5d: 95:06:fa:16:93:f4:8e:f4:fe:b3:ee:d1:2f:b7:9e: 55:16:e1:96:e0:2b:bc:62:f3:4d:d4:b6:4c:98:71: 47:18:ac:8b:0d:34:c5:28:86:48:5d:d2:3b:90:d3: 75:94:29:27:db:f3:68:32:76:bf:98:6a:5b:45:db: 80:45:86:ba:df:3d:34:6b:32:f2:97:01:d5:73:dc: 0a:27:48:06:0d:fe:9c:71:fb:c8:55:37:f2:f4:5c: 64:3a:36:b5:26:cc:ea:04:98:b6:07:15:28:9c:af: aa:e3:a6:09:8a:fe:dd:a2:d5:93:a0:5d:99:b9:9b: bd:2f:a6:b3:b3:36:76:60:b3:e3:ea:d6:3d:0d:c3: 80:1e:2e:77:a4:37:dd:00:a6:27:4f:6a:f5:6d:71: 9b:51:f1:6c:22:c3:73:1e:53:f2:d8:55:0e:3c:7d: 19:a0:e1:fc:ab:62:f8:1f:c9:d1:c6:d4:40:d1:c1: 33:b8:f4:9f:f0:39:8e:f0:66:83:5c:ed:be:7e:de: 65:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:8C:59:F5:CD:8E:F4:31:5D:2C:98:CC:D4:8A:CE:D8:AD:C5:43:18 X509v3 Authority Key Identifier: keyid:03:7A:1E:47:FB:1C:CE:3B:6E:6A:93:69:ED:DD:87:0D:AE:80:D6:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.41.0/24 Signature Algorithm: sha256WithRSAEncryption 17:b1:2c:85:46:82:e4:d9:b9:ba:0e:c5:c9:fb:64:04:bb:d0: 08:e5:15:11:f1:9b:7a:35:57:d0:33:b8:a7:a2:0c:ba:8f:bb: cf:96:7c:25:e8:89:65:53:de:21:e2:df:c8:89:11:22:50:93: 43:68:f1:51:5f:0a:f5:b7:a8:dc:45:a6:3b:c1:b9:2a:55:91: 43:d5:50:c4:6f:e5:ab:2b:c6:9d:5d:33:b5:2a:cd:f0:bc:f0: 92:6f:a0:d9:c1:dc:44:af:3d:aa:88:24:2a:49:37:cf:4a:c4: 7a:fa:a5:33:37:2c:0e:f9:b6:f8:d7:b2:cd:82:fc:66:04:63: 33:26:bb:33:62:b6:d9:7b:2f:af:ca:c4:98:5e:60:93:52:8c: b7:70:d1:5a:39:8d:89:7d:68:06:2d:54:6f:a3:e3:11:5f:65: c9:f0:ed:44:c1:a6:62:24:4b:fb:91:98:a7:fc:60:10:7a:77: 36:84:12:48:4b:18:d9:12:4a:80:78:11:84:b6:7a:1c:97:cc: 2f:3b:e3:1b:65:d0:51:a4:62:46:4b:14:89:d0:60:7e:70:a2: 73:dd:06:9e:44:4f:59:4e:c0:10:bd:80:b2:27:c3:05:8e:40: 98:ff:6d:b1:aa:08:5f:2d:87:58:1d:ae:b4:4a:69:4d:f7:06: e5:2c:e3:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ+m1KlPfZMCN3HkWZgxv3mVkeUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM3QTFFNDdGQjFDQ0UzQjZFNkE5MzY5RURERDg3MERB RTgwRDY2NTAeFw0yNTA4MTgwMTU1MDFaFw0yNjA4MTcwMjAwMDFaMDMxMTAvBgNV BAMTKDgzOEM1OUY1Q0Q4RUY0MzE1RDJDOThDQ0Q0OEFDRUQ4QURDNTQzMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkm9zNzjexOis8I9oNGSiKdMVN V8P4uFLvqZRSiP4f1i9Dty3FVP1zujYY2HVj7vdlZc6MIU3vsJszXZUG+haT9I70 /rPu0S+3nlUW4ZbgK7xi803UtkyYcUcYrIsNNMUohkhd0juQ03WUKSfb82gydr+Y altF24BFhrrfPTRrMvKXAdVz3AonSAYN/pxx+8hVN/L0XGQ6NrUmzOoEmLYHFSic r6rjpgmK/t2i1ZOgXZm5m70vprOzNnZgs+Pq1j0Nw4AeLnekN90ApidPavVtcZtR 8Wwiw3MeU/LYVQ48fRmg4fyrYvgfydHG1EDRwTO49J/wOY7wZoNc7b5+3mW9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg4xZ9c2O9DFdLJjM1IrO2K3FQxgwHwYDVR0j BBgwFoAUA3oeR/sczjtuapNp7d2HDa6A1mUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGJmYzVjMy1jMzljLTQ1ZWQtYWU4Ny0zODRhNmRjYjc5MzgvMC8wMzdBMUU0N0ZC MUNDRTNCNkU2QTkzNjlFREREODcwREFFODBENjY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM3QTFFNDdGQjFDQ0UzQjZFNkE5MzY5RURERDg3MERBRTgw RDY2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0YmZjNWMzLWMzOWMtNDVlZC1h ZTg3LTM4NGE2ZGNiNzkzOC8wLzMxMzAzMzJlMzIzMzM5MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8pMA0GCSqG SIb3DQEBCwUAA4IBAQAXsSyFRoLk2bm6DsXJ+2QEu9AI5RUR8Zt6NVfQM7inogy6 j7vPlnwl6IllU94h4t/IiREiUJNDaPFRXwr1t6jcRaY7wbkqVZFD1VDEb+WrK8ad XTO1Ks3wvPCSb6DZwdxErz2qiCQqSTfPSsR6+qUzNywO+bb417LNgvxmBGMzJrsz YrbZey+vysSYXmCTUoy3cNFaOY2JfWgGLVRvo+MRX2XJ8O1EwaZiJEv7kZin/GAQ enc2hBJISxjZEkqAeBGEtnocl8wvO+MbZdBRpGJGSxSJ0GB+cKJz3QaeRE9ZTsAQ vYCyJ8MFjkCY/22xqghfLYdYHa60SmlN9wblLOPP -----END CERTIFICATE-----Generated at Sat Aug 23 13:41:40 2025 by rpki-client