$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138352e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: 9C5Ex+7Y1aBAHl+9U/ASSlLW3EKgAd0vb9BPKVqnilg= Subject key identifier: 17:3D:E2:91:7A:88:CB:5A:D5:F6:E4:21:10:F8:7F:3E:51:59:3E:2E Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 64AAB7C45B067492120498DB91AF60E23CC58FE3 Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa Signing time: Mon 18 Aug 2025 16:00:01 +0000 ROA not before: Mon 18 Aug 2025 15:55:01 +0000 ROA not after: Mon 17 Aug 2026 16:00:01 +0000 asID: 58553 IP address blocks: 103.20.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:aa:b7:c4:5b:06:74:92:12:04:98:db:91:af:60:e2:3c:c5:8f:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Aug 18 15:55:01 2025 GMT Not After : Aug 17 16:00:01 2026 GMT Subject: CN=173DE2917A88CB5AD5F6E42110F87F3E51593E2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:ed:40:56:2c:90:c5:dc:b3:f5:57:23:0f: 97:f9:b8:33:5f:22:12:49:12:0b:2b:df:d1:d4:93: 98:f4:1f:6d:68:e4:75:9b:b4:32:f3:23:35:c6:e6: 12:31:24:6f:d3:79:d9:c5:e8:84:e1:9a:07:07:80: 45:c1:13:de:fd:ca:f8:25:4b:ff:98:1b:be:1f:cf: ae:a2:0e:73:3d:9c:a9:b4:61:20:33:e5:9f:24:93: f3:71:54:5e:cd:e2:ec:de:28:83:a9:96:b8:ba:60: 9b:68:1f:9d:56:8b:3e:f2:f3:06:33:ae:3f:f9:f1: d9:f9:af:08:7e:31:54:9a:35:70:e4:89:70:be:ba: 5e:69:72:a0:88:ac:22:6c:36:a6:80:80:91:01:a8: 79:9e:9e:0e:c0:dc:3c:d0:f1:30:93:5a:78:fd:a4: 4f:7c:16:59:e4:d8:eb:eb:f2:22:4d:aa:4a:61:5d: 5e:52:80:7d:4c:6e:13:fd:a9:49:a9:7a:fe:df:5a: 11:14:d1:3d:21:54:68:cc:a8:62:7b:44:d7:c1:84: e0:f7:5c:fa:d3:35:ad:a5:cf:45:0d:e3:8e:cf:e3: 7c:2b:fe:fc:aa:1c:a0:05:67:1a:1e:de:be:99:89: d5:4f:24:8b:60:aa:9b:63:d6:62:b3:59:a1:01:e7: 67:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3D:E2:91:7A:88:CB:5A:D5:F6:E4:21:10:F8:7F:3E:51:59:3E:2E X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.185.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f9:ae:6d:50:23:53:67:b7:e2:ad:3c:cc:19:cf:62:76:88: 31:76:e7:20:1f:d2:b3:f5:be:75:91:12:79:0b:d1:06:e4:a6: 74:5f:72:fe:48:a7:40:0b:2a:da:22:6d:90:52:de:96:58:b5: 02:9f:f8:1c:fa:9c:27:69:02:49:17:fe:f9:c8:f5:4d:0b:02: 68:c2:4e:17:0f:96:23:b2:45:6b:c2:05:20:49:0f:cd:2d:2a: d8:0f:e5:f4:ac:25:83:ee:d6:6c:86:7a:1c:0f:33:b3:59:77: 0d:3b:37:a2:d1:20:26:4e:9c:18:ab:01:b5:b8:01:f8:05:14: e9:12:ff:6a:6f:74:5c:7f:0c:e0:f3:20:ea:85:73:a1:67:eb: 05:13:48:88:90:98:fd:be:15:59:1c:ea:1e:a5:00:26:0b:29: b1:2b:d7:80:22:86:a1:82:97:85:a0:36:ba:4b:3d:27:f0:d0: 9f:14:a0:d1:02:8a:66:65:5e:b9:11:cc:2c:e0:75:d1:0c:8b: 42:62:c7:07:23:7b:a2:99:08:d8:58:b7:b6:23:25:ab:96:38: ee:f2:02:57:90:ab:5f:41:0a:3c:7b:eb:b3:62:3a:2b:81:82: 72:05:58:c1:a9:b3:85:8e:b1:e1:ec:1e:01:49:b7:6f:f5:d6: 56:95:e4:bc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZKq3xFsGdJISBJjbka9g4jzFj+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yNTA4MTgxNTU1MDFaFw0yNjA4MTcxNjAwMDFaMDMxMTAvBgNV BAMTKDE3M0RFMjkxN0E4OENCNUFENUY2RTQyMTEwRjg3RjNFNTE1OTNFMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC++u1AViyQxdyz9VcjD5f5uDNf IhJJEgsr39HUk5j0H21o5HWbtDLzIzXG5hIxJG/TednF6IThmgcHgEXBE979yvgl S/+YG74fz66iDnM9nKm0YSAz5Z8kk/NxVF7N4uzeKIOplri6YJtoH51Wiz7y8wYz rj/58dn5rwh+MVSaNXDkiXC+ul5pcqCIrCJsNqaAgJEBqHmeng7A3DzQ8TCTWnj9 pE98Flnk2Ovr8iJNqkphXV5SgH1MbhP9qUmpev7fWhEU0T0hVGjMqGJ7RNfBhOD3 XPrTNa2lz0UN447P43wr/vyqHKAFZxoe3r6ZidVPJItgqptj1mKzWaEB52dTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFz3ikXqIy1rV9uQhEPh/PlFZPi4wHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUuTANBgkqhkiG 9w0BAQsFAAOCAQEAJfmubVAjU2e34q08zBnPYnaIMXbnIB/Ss/W+dZESeQvRBuSm dF9y/kinQAsq2iJtkFLelli1Ap/4HPqcJ2kCSRf++cj1TQsCaMJOFw+WI7JFa8IF IEkPzS0q2A/l9Kwlg+7WbIZ6HA8zs1l3DTs3otEgJk6cGKsBtbgB+AUU6RL/am90 XH8M4PMg6oVzoWfrBRNIiJCY/b4VWRzqHqUAJgspsSvXgCKGoYKXhaA2uks9J/DQ nxSg0QKKZmVeuRHMLOB10QyLQmLHByN7opkI2Fi3tiMlq5Y47vICV5CrX0EKPHvr s2I6K4GCcgVYwamzhY6x4eweAUm3b/XWVpXkvA== -----END CERTIFICATE-----Generated at Sat Aug 23 20:17:03 2025 by rpki-client