$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa File: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (raw, json) Hash identifier: IGC+YzF7hbNTh+lU4Xp4ZN99v7lUHzjLqU8mpRmWZMw= Subject key identifier: 24:84:18:89:C8:5B:C2:2F:54:93:9D:5C:BD:87:67:C4:4D:09:F4:66 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 55B9FC3D287A0FD2673536EB42D16A1575FD028D Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa Signing time: Wed 13 Aug 2025 14:00:00 +0000 ROA not before: Wed 13 Aug 2025 13:55:00 +0000 ROA not after: Wed 12 Aug 2026 14:00:00 +0000 asID: 139408 IP address blocks: 103.143.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 21:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b9:fc:3d:28:7a:0f:d2:67:35:36:eb:42:d1:6a:15:75:fd:02:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Aug 13 13:55:00 2025 GMT Not After : Aug 12 14:00:00 2026 GMT Subject: CN=24841889C85BC22F54939D5CBD8767C44D09F466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:c1:75:88:bd:9f:fb:f0:4c:5c:ca:81:49: 20:b1:19:1b:6d:ea:f4:6f:fe:be:09:08:cc:0c:e2: 5f:8b:94:fb:e4:2d:fd:fa:5a:8b:ed:4c:6a:e0:3c: 46:fd:5c:a3:de:6b:d2:48:86:3c:99:d6:99:ee:ff: 1e:5a:3a:0d:08:1e:8e:6a:e1:72:fb:97:90:6d:5d: 22:58:5a:37:57:df:1b:cf:1f:e9:9d:8c:a1:aa:85: c1:76:a5:3d:79:ef:2e:83:b5:b0:45:07:5b:a9:d0: cd:c7:cf:6f:9d:a1:3c:b4:e2:55:63:a1:68:5d:7f: 74:2b:c7:05:62:a4:38:6b:84:e9:05:b5:b7:03:d2: c2:f3:3b:72:05:7f:ad:fb:9e:8a:26:2d:00:23:e3: 24:be:94:4b:f6:92:c9:e5:6b:41:47:9d:0c:df:ba: 3e:b4:56:2f:b8:72:be:d9:21:9a:30:a3:03:ed:e6: 94:58:67:3b:1b:c6:a2:9e:c3:d2:4d:58:60:cb:c5: c4:9f:1b:cf:93:40:81:01:58:dd:8c:a5:69:7a:1e: 83:a1:b7:11:c0:a6:b5:cd:2b:d2:13:a3:c8:40:a9: e0:0a:93:95:41:0a:84:5b:cb:c0:c2:bd:ee:11:85: 60:df:c6:22:7f:b8:f8:82:c2:08:5c:64:16:a5:ac: de:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:84:18:89:C8:5B:C2:2F:54:93:9D:5C:BD:87:67:C4:4D:09:F4:66 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.232.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:be:a7:63:22:12:5f:83:27:4e:83:26:fb:25:34:ec:25:8b: 43:a2:30:2b:83:08:2e:be:b2:d1:a3:31:98:f5:23:cc:9e:fd: 39:32:7e:4d:eb:d2:04:a8:e5:e8:0e:3d:68:8c:66:79:38:dc: 7f:97:73:c1:ff:ed:90:93:83:03:12:c6:b3:f5:2b:8a:e0:fa: ce:9f:e1:b1:df:83:f6:c6:94:00:2a:79:b7:7e:fb:89:2f:a2: 4e:2f:52:cc:59:fd:04:c4:fd:32:d0:10:7e:bc:e1:da:40:2d: 81:86:99:8d:b7:27:c7:5b:53:b2:33:1c:4a:e3:3b:27:5e:fd: 09:93:83:b2:55:e0:80:69:30:95:2b:75:ba:7d:38:b0:8d:87: f9:89:e7:18:e7:54:c8:c2:b0:a0:3b:be:69:da:f2:c1:2f:64: 1f:a3:b8:48:ab:92:a1:07:da:98:a2:58:f2:93:b6:16:a4:e2: 42:a5:ef:5f:8f:64:ac:01:01:73:e9:10:ec:96:0e:bf:70:2f: 79:2f:67:e6:95:8c:73:8f:73:f6:a7:ee:85:0d:7d:03:51:de: e2:36:93:d5:1d:6b:d1:d2:2c:17:0a:78:bb:f4:cc:a1:6a:d6: 1c:40:9e:7f:39:b5:af:5a:1a:6f:7d:9a:2a:27:2a:47:3f:c2: de:9c:07:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVbn8PSh6D9JnNTbrQtFqFXX9Ao0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNTA4MTMxMzU1MDBaFw0yNjA4MTIxNDAwMDBaMDMxMTAvBgNV BAMTKDI0ODQxODg5Qzg1QkMyMkY1NDkzOUQ1Q0JEODc2N0M0NEQwOUY0NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRX8F1iL2f+/BMXMqBSSCxGRtt 6vRv/r4JCMwM4l+LlPvkLf36WovtTGrgPEb9XKPea9JIhjyZ1pnu/x5aOg0IHo5q 4XL7l5BtXSJYWjdX3xvPH+mdjKGqhcF2pT157y6DtbBFB1up0M3Hz2+doTy04lVj oWhdf3QrxwVipDhrhOkFtbcD0sLzO3IFf637noomLQAj4yS+lEv2ksnla0FHnQzf uj60Vi+4cr7ZIZowowPt5pRYZzsbxqKew9JNWGDLxcSfG8+TQIEBWN2MpWl6HoOh txHAprXNK9ITo8hAqeAKk5VBCoRby8DCve4RhWDfxiJ/uPiCwghcZBalrN7bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJIQYichbwi9Uk51cvYdnxE0J9GYwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj+gwDQYJ KoZIhvcNAQELBQADggEBAIq+p2MiEl+DJ06DJvslNOwli0OiMCuDCC6+stGjMZj1 I8ye/Tkyfk3r0gSo5egOPWiMZnk43H+Xc8H/7ZCTgwMSxrP1K4rg+s6f4bHfg/bG lAAqebd++4kvok4vUsxZ/QTE/TLQEH684dpALYGGmY23J8dbU7IzHErjOyde/QmT g7JV4IBpMJUrdbp9OLCNh/mJ5xjnVMjCsKA7vmna8sEvZB+juEirkqEH2piiWPKT thak4kKl71+PZKwBAXPpEOyWDr9wL3kvZ+aVjHOPc/an7oUNfQNR3uI2k9Uda9HS LBcKeLv0zKFq1hxAnn85ta9aGm99mionKkc/wt6cB38= -----END CERTIFICATE-----Generated at Sat Aug 23 18:50:43 2025 by rpki-client