$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32342d3234203d3e20313430343634.roa File: 3130332e3135332e3133342e302f32342d3234203d3e20313430343634.roa (raw, json) Hash identifier: cn1hAJHYGCMSOghgviiiSzFiPXYh8mLQKkzicGhK/aE= Subject key identifier: DC:2F:1D:A5:30:63:DC:3D:83:29:CD:75:11:3B:7D:A4:A1:87:BB:CC Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 04CAAF118999ADD553E894779A20788E031617B4 Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32342d3234203d3e20313430343634.roa Signing time: Tue 19 Aug 2025 12:00:01 +0000 ROA not before: Tue 19 Aug 2025 11:55:01 +0000 ROA not after: Tue 18 Aug 2026 12:00:01 +0000 asID: 140464 IP address blocks: 103.153.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:ca:af:11:89:99:ad:d5:53:e8:94:77:9a:20:78:8e:03:16:17:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Aug 19 11:55:01 2025 GMT Not After : Aug 18 12:00:01 2026 GMT Subject: CN=DC2F1DA53063DC3D8329CD75113B7DA4A187BBCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:13:f3:0b:6e:c1:a3:5c:7a:0c:49:04:a1:9e: 69:1c:42:9d:69:09:fa:ac:07:0f:af:32:51:a8:9b: 7b:a5:90:d4:7d:71:25:58:ec:1c:de:f8:ba:df:55: 67:28:1d:71:2e:f7:e8:d2:0c:03:9b:3a:57:10:6d: d0:35:db:e2:bc:0b:fe:64:27:15:e6:28:f1:ff:35: a3:4f:50:58:b9:05:e0:21:e8:d3:3b:86:0c:de:db: c4:83:79:73:7f:22:91:72:b3:52:ba:c4:01:72:6d: 89:02:60:25:1c:ce:a7:84:9e:90:6c:40:15:59:c7: 89:ab:00:87:a8:98:7b:2f:8a:70:2f:28:51:90:92: bb:33:e9:8a:2b:a5:12:1d:64:d3:ad:16:cd:92:b5: e1:7e:9c:2c:73:93:ab:db:40:88:ca:d6:c6:93:d5: eb:c1:94:f2:7a:2d:86:53:79:1d:96:d5:cf:df:79: e6:12:f6:5c:ee:59:16:6a:53:62:6b:30:7e:cc:52: a3:29:9e:fc:c1:fc:d1:e6:35:57:5c:13:4b:0a:26: 81:9d:02:11:54:22:63:74:d3:46:55:24:3f:dc:af: 73:81:60:b3:84:70:9e:81:84:2d:c2:d0:4c:2d:ab: 7a:11:20:3a:6c:b1:8d:1e:29:dd:c1:33:7b:77:c7: 50:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2F:1D:A5:30:63:DC:3D:83:29:CD:75:11:3B:7D:A4:A1:87:BB:CC X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32342d3234203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.134.0/24 Signature Algorithm: sha256WithRSAEncryption 99:d0:60:9b:03:3e:cf:99:03:5c:e1:34:d0:dc:b1:4b:7b:99: 35:4c:42:de:da:78:95:8a:50:cd:6e:f7:50:43:72:b2:55:f7: 56:eb:e4:8b:15:19:8b:b4:c7:88:b8:f0:fe:f6:b7:51:3f:0c: 64:a8:6f:1d:c6:db:ca:fd:0d:53:04:d8:28:b8:c1:b5:93:b6: 07:5e:f7:2c:5a:99:20:40:98:bc:ba:12:85:22:a5:a1:08:2b: 56:e3:cc:3a:93:c8:f8:00:df:b3:0e:cc:93:4c:de:fe:a5:5b: c8:cc:2b:4a:fe:1c:fc:fd:e7:be:38:a2:d3:4f:eb:9a:cc:68: e0:59:cf:2a:2e:22:56:13:b9:f6:b8:89:3c:3f:c1:8e:fe:6c: 36:5a:23:bf:a2:ac:f1:d9:2a:9f:2f:c4:04:b1:41:de:53:8f: a6:ba:83:63:7e:6a:96:0d:3a:b8:74:e2:8c:5a:21:84:2e:a6: 71:28:c0:37:45:04:63:56:69:d0:aa:0c:f3:3e:0c:b7:9b:52: 49:08:70:68:e1:4e:5c:58:93:75:16:b6:a5:98:f0:ec:dd:88: 6e:20:75:9f:bb:35:41:5b:2c:1b:da:59:dc:25:5f:3a:40:2d: 81:00:ca:5c:f0:dc:18:7c:f5:0e:0b:32:10:0b:19:60:cf:06: fb:69:59:c4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBMqvEYmZrdVT6JR3miB4jgMWF7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yNTA4MTkxMTU1MDFaFw0yNjA4MTgxMjAwMDFaMDMxMTAvBgNV BAMTKERDMkYxREE1MzA2M0RDM0Q4MzI5Q0Q3NTExM0I3REE0QTE4N0JCQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyE/MLbsGjXHoMSQShnmkcQp1p CfqsBw+vMlGom3ulkNR9cSVY7Bze+LrfVWcoHXEu9+jSDAObOlcQbdA12+K8C/5k JxXmKPH/NaNPUFi5BeAh6NM7hgze28SDeXN/IpFys1K6xAFybYkCYCUczqeEnpBs QBVZx4mrAIeomHsvinAvKFGQkrsz6YorpRIdZNOtFs2SteF+nCxzk6vbQIjK1saT 1evBlPJ6LYZTeR2W1c/feeYS9lzuWRZqU2JrMH7MUqMpnvzB/NHmNVdcE0sKJoGd AhFUImN000ZVJD/cr3OBYLOEcJ6BhC3C0Ewtq3oRIDpssY0eKd3BM3t3x1DRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3C8dpTBj3D2DKc11ETt9pKGHu8wwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmYYwDQYJ KoZIhvcNAQELBQADggEBAJnQYJsDPs+ZA1zhNNDcsUt7mTVMQt7aeJWKUM1u91BD crJV91br5IsVGYu0x4i48P72t1E/DGSobx3G28r9DVME2Ci4wbWTtgde9yxamSBA mLy6EoUipaEIK1bjzDqTyPgA37MOzJNM3v6lW8jMK0r+HPz95744otNP65rMaOBZ zyouIlYTufa4iTw/wY7+bDZaI7+irPHZKp8vxASxQd5Tj6a6g2N+apYNOrh04oxa IYQupnEowDdFBGNWadCqDPM+DLebUkkIcGjhTlxYk3UWtqWY8OzdiG4gdZ+7NUFb LBvaWdwlXzpALYEAylzw3Bh89Q4LMhALGWDPBvtpWcQ= -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:25 2025 by rpki-client