$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa File: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (raw, json) Hash identifier: Sds95Ss3ilJlMKDO38Rkj40VQdzRD9GgP564MrRxXGU= Subject key identifier: 1F:0F:AC:34:10:94:25:A5:86:BD:F2:1E:E6:5A:20:3D:CB:AE:2E:EE Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 07C99A88B3995C2A393B838B27CF23565577CE1A Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa Signing time: Thu 14 Aug 2025 16:00:00 +0000 ROA not before: Thu 14 Aug 2025 15:55:00 +0000 ROA not after: Thu 13 Aug 2026 16:00:00 +0000 asID: 139408 IP address blocks: 103.143.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 21:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c9:9a:88:b3:99:5c:2a:39:3b:83:8b:27:cf:23:56:55:77:ce:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Aug 14 15:55:00 2025 GMT Not After : Aug 13 16:00:00 2026 GMT Subject: CN=1F0FAC34109425A586BDF21EE65A203DCBAE2EEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:37:bc:dd:b2:bd:f4:12:aa:39:16:81:1f:b9: 11:62:6c:f3:2a:6d:d2:9f:d3:64:bd:d8:ee:dc:85: 7c:2f:34:d7:7e:da:81:28:33:ca:90:fc:9d:b0:ef: 1b:6b:9b:37:bf:15:f3:fc:54:e9:e2:71:56:da:d5: 9e:45:e6:27:31:7a:3c:01:ab:9b:5d:6b:98:01:9c: 8b:f6:da:ee:2f:33:ac:67:19:ed:45:c7:47:af:b9: c1:91:0e:3c:f1:01:d9:66:2b:67:eb:bd:e2:f7:54: be:71:0c:85:a9:fa:58:6b:13:45:4c:14:2e:9c:fb: 4f:fd:c2:a8:8d:97:d6:8b:ec:0d:45:dc:29:73:38: 5b:88:8f:1f:9e:06:5d:2e:4f:73:40:9b:18:34:66: 72:ae:c1:9d:8c:6c:2f:8e:73:ed:6b:6f:13:87:35: 11:93:70:94:5c:29:d7:16:b0:df:3a:70:c2:5f:87: e5:4b:ab:90:c8:f3:6d:42:a7:e9:fc:99:a6:75:fd: 3a:d1:08:88:b8:57:b3:36:ec:90:04:31:80:55:90: cc:34:85:d4:6c:b9:cd:c3:ff:34:39:cc:9b:fd:15: 05:98:fb:20:db:a4:46:43:d0:f6:8b:13:22:ea:2b: 6d:cf:61:b9:4d:fc:31:19:43:cb:31:da:d9:a3:dd: 53:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0F:AC:34:10:94:25:A5:86:BD:F2:1E:E6:5A:20:3D:CB:AE:2E:EE X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.232.0/23 Signature Algorithm: sha256WithRSAEncryption 88:33:5b:87:ae:b0:57:0c:98:83:7c:9c:53:06:ad:22:42:1c: ca:f8:b6:27:e1:f0:27:a7:45:e2:43:3f:9d:76:77:83:81:b5: 54:fd:25:7a:75:ab:40:22:65:f6:f7:58:0f:8f:0d:14:af:cb: 3a:d9:4a:71:56:a5:b5:4f:8a:9b:f6:66:81:be:af:3a:6b:b8: 3e:c5:5c:e5:37:06:20:76:d8:2a:60:43:c4:1c:90:32:e3:d1: f8:99:0d:b0:4f:79:08:16:e1:ae:81:44:3a:79:70:ed:de:9a: 43:00:cb:a3:a4:c6:ed:6a:b1:ff:b5:bb:72:e9:a3:3c:7e:26: 19:a3:fa:3b:51:6f:b1:a7:75:fe:e4:5b:79:72:c1:8d:ff:06: 16:36:6c:ca:ea:c9:c9:06:d6:87:c5:b2:a3:6c:02:40:18:8b: 5e:9d:b1:59:b1:2a:67:f7:65:37:0f:07:08:b0:46:bc:3c:3e: cc:84:7a:3f:80:4b:e5:51:63:05:cd:a8:df:38:d6:40:2f:72: 44:60:ed:60:bb:bb:06:45:89:62:2b:4a:4a:8e:37:f7:64:aa: 24:28:24:74:05:5b:0a:d3:5e:75:b9:84:91:ca:46:67:d2:0b: d8:8c:83:b4:ab:92:a7:b8:55:5f:e7:b1:7b:06:76:10:a2:c9: 6e:8f:d7:d8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB8maiLOZXCo5O4OLJ88jVlV3zhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNTA4MTQxNTU1MDBaFw0yNjA4MTMxNjAwMDBaMDMxMTAvBgNV BAMTKDFGMEZBQzM0MTA5NDI1QTU4NkJERjIxRUU2NUEyMDNEQ0JBRTJFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvN7zdsr30Eqo5FoEfuRFibPMq bdKf02S92O7chXwvNNd+2oEoM8qQ/J2w7xtrmze/FfP8VOnicVba1Z5F5icxejwB q5tda5gBnIv22u4vM6xnGe1Fx0evucGRDjzxAdlmK2frveL3VL5xDIWp+lhrE0VM FC6c+0/9wqiNl9aL7A1F3ClzOFuIjx+eBl0uT3NAmxg0ZnKuwZ2MbC+Oc+1rbxOH NRGTcJRcKdcWsN86cMJfh+VLq5DI821Cp+n8maZ1/TrRCIi4V7M27JAEMYBVkMw0 hdRsuc3D/zQ5zJv9FQWY+yDbpEZD0PaLEyLqK23PYblN/DEZQ8sx2tmj3VPPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHw+sNBCUJaWGvfIe5logPcuuLu4wHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnj+gwDQYJ KoZIhvcNAQELBQADggEBAIgzW4eusFcMmIN8nFMGrSJCHMr4tifh8CenReJDP512 d4OBtVT9JXp1q0AiZfb3WA+PDRSvyzrZSnFWpbVPipv2ZoG+rzpruD7FXOU3BiB2 2CpgQ8QckDLj0fiZDbBPeQgW4a6BRDp5cO3emkMAy6Okxu1qsf+1u3Lpozx+Jhmj +jtRb7Gndf7kW3lywY3/BhY2bMrqyckG1ofFsqNsAkAYi16dsVmxKmf3ZTcPBwiw Rrw8PsyEej+AS+VRYwXNqN841kAvckRg7WC7uwZFiWIrSkqON/dkqiQoJHQFWwrT XnW5hJHKRmfSC9iMg7Srkqe4VV/nsXsGdhCiyW6P19g= -----END CERTIFICATE-----Generated at Sat Aug 23 18:51:03 2025 by rpki-client