$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa File: 3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa (raw, json) Hash identifier: oUlQyF3I0zLJjLl9EcH8NBVRAz863HrDlDUllspbny0= Subject key identifier: 24:31:1E:9C:1D:E5:05:06:EF:2C:C0:8E:93:9B:3F:0A:16:77:88:C8 Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 727D258BF5347100DC83B13B4DDB2FE41BD76F15 Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa Signing time: Tue 19 Aug 2025 12:00:01 +0000 ROA not before: Tue 19 Aug 2025 11:55:01 +0000 ROA not after: Tue 18 Aug 2026 12:00:01 +0000 asID: 140464 IP address blocks: 103.153.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:7d:25:8b:f5:34:71:00:dc:83:b1:3b:4d:db:2f:e4:1b:d7:6f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Aug 19 11:55:01 2025 GMT Not After : Aug 18 12:00:01 2026 GMT Subject: CN=24311E9C1DE50506EF2CC08E939B3F0A167788C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c4:32:70:37:04:ea:32:6c:18:e3:2f:bb:59: 40:43:44:c2:66:2d:c8:db:59:ea:bf:c8:7f:c4:ff: a4:33:a3:de:de:90:fc:b1:3c:36:a7:a4:33:3a:ff: 80:7a:5c:76:51:1e:d0:6f:8c:51:9e:4c:82:ea:73: 97:50:03:73:06:4c:bc:b6:9d:47:d7:13:e2:18:a0: 66:76:b9:41:b5:0e:13:69:86:9a:9f:94:3a:41:25: a2:5e:03:16:90:e6:81:8f:84:14:ec:1c:d2:77:51: 41:fd:e0:b0:a3:bc:ff:26:be:36:7f:02:32:59:3b: 5e:4c:2d:c2:e0:1e:af:a4:f2:3a:94:1d:17:03:4c: 47:2c:6f:e6:43:83:80:3d:52:03:71:7f:28:0a:14: 94:60:f1:29:f2:b4:bf:a8:61:51:93:81:b5:59:a8: 10:7d:61:eb:cb:1a:84:2e:fd:19:88:3a:92:86:d6: b6:d4:48:06:55:5e:9c:79:49:f6:32:08:55:1c:d0: be:26:25:52:be:a2:e6:7e:c6:3a:44:85:6f:00:27: 99:f8:bd:0d:1a:0d:a0:b6:b5:67:00:48:cb:43:7c: fb:ab:6c:23:63:52:67:cd:1d:60:a3:50:17:10:11: 07:6a:f2:b4:ae:d0:58:f6:bd:c4:82:8a:60:0e:94: 26:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:31:1E:9C:1D:E5:05:06:EF:2C:C0:8E:93:9B:3F:0A:16:77:88:C8 X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.135.0/24 Signature Algorithm: sha256WithRSAEncryption c9:3f:e8:1a:15:dd:a3:e2:46:42:1c:03:72:cb:85:06:c9:3f: 20:c8:41:87:08:f1:e1:02:38:cc:a2:f7:88:ea:46:df:d9:b1: 83:65:6c:f4:e9:ee:a9:33:75:28:8c:0d:99:90:00:19:d7:b8: 84:70:66:26:c3:c0:d6:46:3d:96:75:4a:cc:5d:59:70:f2:67: 88:07:e8:55:ed:da:94:84:1c:16:51:37:23:6d:82:f1:8f:20: 73:e1:4b:c1:31:fa:19:e2:ce:45:6d:b4:9f:0b:73:9c:79:19: 35:b7:1a:7a:cb:cd:45:f3:bf:9b:59:87:8e:b0:5e:81:1f:1c: b4:b1:83:5b:60:0f:5d:65:91:0b:54:2f:b4:55:b0:8d:7d:70: 33:a8:e1:71:09:e1:8e:7a:45:e6:b2:00:e2:88:53:13:62:78: 1a:13:5f:ac:f7:b7:56:2d:c9:d0:cb:3b:40:2a:b6:ad:6d:4a: 3e:6c:0c:06:3b:05:73:64:ed:db:1e:71:79:76:1f:66:7c:76: 92:5f:5c:e7:70:d3:ae:ac:33:6e:87:1d:2b:79:ea:e4:fe:1b: 4f:e4:0a:fe:b2:51:5e:19:f5:ec:e5:cf:ae:6b:c2:8e:76:be: 05:84:9b:7c:c1:ee:01:de:57:b1:ba:19:23:49:ec:db:61:73: 19:65:8d:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcn0li/U0cQDcg7E7Tdsv5BvXbxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yNTA4MTkxMTU1MDFaFw0yNjA4MTgxMjAwMDFaMDMxMTAvBgNV BAMTKDI0MzExRTlDMURFNTA1MDZFRjJDQzA4RTkzOUIzRjBBMTY3Nzg4QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgxDJwNwTqMmwY4y+7WUBDRMJm LcjbWeq/yH/E/6Qzo97ekPyxPDanpDM6/4B6XHZRHtBvjFGeTILqc5dQA3MGTLy2 nUfXE+IYoGZ2uUG1DhNphpqflDpBJaJeAxaQ5oGPhBTsHNJ3UUH94LCjvP8mvjZ/ AjJZO15MLcLgHq+k8jqUHRcDTEcsb+ZDg4A9UgNxfygKFJRg8SnytL+oYVGTgbVZ qBB9YevLGoQu/RmIOpKG1rbUSAZVXpx5SfYyCFUc0L4mJVK+ouZ+xjpEhW8AJ5n4 vQ0aDaC2tWcASMtDfPurbCNjUmfNHWCjUBcQEQdq8rSu0Fj2vcSCimAOlCaDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJDEenB3lBQbvLMCOk5s/ChZ3iMgwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmYcwDQYJ KoZIhvcNAQELBQADggEBAMk/6BoV3aPiRkIcA3LLhQbJPyDIQYcI8eECOMyi94jq Rt/ZsYNlbPTp7qkzdSiMDZmQABnXuIRwZibDwNZGPZZ1SsxdWXDyZ4gH6FXt2pSE HBZRNyNtgvGPIHPhS8Ex+hnizkVttJ8Lc5x5GTW3GnrLzUXzv5tZh46wXoEfHLSx g1tgD11lkQtUL7RVsI19cDOo4XEJ4Y56ReayAOKIUxNieBoTX6z3t1YtydDLO0Aq tq1tSj5sDAY7BXNk7dsecXl2H2Z8dpJfXOdw066sM26HHSt56uT+G0/kCv6yUV4Z 9ezlz65rwo52vgWEm3zB7gHeV7G6GSNJ7NthcxlljYU= -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:33 2025 by rpki-client