$ rpki-client -vvf repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa File: 3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa (raw, json) Hash identifier: 698jR3jKZ8pHoaDchjQqCam2SnsQK52skK3UhMYukls= Subject key identifier: E4:0A:D3:40:78:35:F5:66:56:9C:25:2C:D4:C6:5D:23:F1:87:CB:5C Certificate issuer: /CN=542851974B72056B3D43792A5ED83E94DA8583CF Certificate serial: 361F00186396586D5EE3E3AFE904DB9D4DB0908C Authority key identifier: 54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa Signing time: Fri 15 Aug 2025 02:00:00 +0000 ROA not before: Fri 15 Aug 2025 01:55:00 +0000 ROA not after: Fri 14 Aug 2026 02:00:00 +0000 asID: 147142 IP address blocks: 103.177.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.crl rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:1f:00:18:63:96:58:6d:5e:e3:e3:af:e9:04:db:9d:4d:b0:90:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=542851974B72056B3D43792A5ED83E94DA8583CF Validity Not Before: Aug 15 01:55:00 2025 GMT Not After : Aug 14 02:00:00 2026 GMT Subject: CN=E40AD3407835F566569C252CD4C65D23F187CB5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:01:c7:cf:e5:43:d1:34:d2:cc:34:93:a0:8e: bb:c8:17:dc:ce:d1:cc:86:b2:72:3a:d1:64:9b:11: 80:a9:4b:2d:36:3d:4c:c5:52:4e:22:e7:71:c3:56: fd:54:a5:4e:fb:e3:58:6a:00:13:b6:9f:8b:09:19: 3d:26:65:ff:d3:5c:37:26:fd:90:19:aa:f5:99:a4: 4f:43:8c:aa:2f:ab:2d:06:9a:dc:66:1b:22:2c:e9: c3:53:ad:58:97:3e:88:e9:0f:37:36:1d:4b:8b:ed: e4:3e:d7:fe:1d:75:16:7e:02:3f:33:32:3a:21:1c: 63:11:f0:ce:b4:6a:13:cc:7a:bb:2f:89:57:aa:e0: 7e:59:e3:6d:e9:ca:5e:0c:a0:16:87:34:97:88:51: dd:a7:7b:82:ee:0e:38:15:8b:71:f4:b3:67:72:24: 96:67:4b:fe:55:0f:bc:aa:12:bf:06:0f:d1:9f:95: 02:37:b0:fc:39:ef:f4:b4:f3:a7:33:6c:dd:00:aa: 20:f2:cd:4b:33:f9:e2:f6:09:5d:64:46:88:e1:41: c3:ca:e7:b5:86:25:67:bd:c5:b0:0f:31:94:ed:0b: 93:cd:c4:57:8d:33:23:42:26:0f:63:b2:f8:4b:1e: 3f:98:b9:6f:49:d8:5e:4a:e2:02:94:41:5e:62:20: b2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0A:D3:40:78:35:F5:66:56:9C:25:2C:D4:C6:5D:23:F1:87:CB:5C X509v3 Authority Key Identifier: keyid:54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.60.0/24 Signature Algorithm: sha256WithRSAEncryption 84:9e:3d:ac:52:df:10:c0:29:45:22:f8:d9:57:73:3d:e5:27: 3a:be:a9:88:ad:bd:c6:c9:fa:99:7b:59:eb:fd:2d:c9:3a:1b: a7:cc:f2:21:66:bb:35:34:95:b4:5d:b0:40:9c:6c:38:06:48: d7:af:12:7f:35:f4:d5:08:70:e1:f4:c1:9b:09:00:e6:d4:10: b9:ee:fb:5f:a6:d7:e9:4c:ba:07:3e:18:34:37:e3:0d:d7:77: d9:f6:95:44:b9:06:0e:30:a9:0d:a1:c1:8a:76:f3:7b:ad:2c: f3:16:1c:0b:7a:4a:95:14:d2:14:e9:bf:42:6c:79:21:75:85: 42:3d:01:d4:fb:e1:4d:72:d1:2e:d0:19:88:b1:64:80:6b:3a: d1:8d:62:00:8c:4a:a6:23:f6:9f:28:fd:3f:1e:5e:e1:35:06: 6b:91:bf:82:b7:73:68:05:57:4a:dd:14:55:9c:e9:ed:2a:07: 86:30:34:8f:ba:72:a9:5f:1b:8f:55:60:ef:68:30:46:9f:00: eb:87:bf:68:5e:6d:7a:86:7f:99:42:fd:40:02:89:44:20:80: c5:be:9f:ae:d5:6e:80:c6:33:ed:79:38:db:fd:33:a4:ea:5c: 3f:f8:4f:f1:7e:6e:0d:b0:78:e1:18:6a:9c:f8:74:8d:d9:0e: f1:8c:17:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNh8AGGOWWG1e4+Ov6QTbnU2wkIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTQyODUxOTc0QjcyMDU2QjNENDM3OTJBNUVEODNFOTRE QTg1ODNDRjAeFw0yNTA4MTUwMTU1MDBaFw0yNjA4MTQwMjAwMDBaMDMxMTAvBgNV BAMTKEU0MEFEMzQwNzgzNUY1NjY1NjlDMjUyQ0Q0QzY1RDIzRjE4N0NCNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhAcfP5UPRNNLMNJOgjrvIF9zO 0cyGsnI60WSbEYCpSy02PUzFUk4i53HDVv1UpU7741hqABO2n4sJGT0mZf/TXDcm /ZAZqvWZpE9DjKovqy0GmtxmGyIs6cNTrViXPojpDzc2HUuL7eQ+1/4ddRZ+Aj8z MjohHGMR8M60ahPMersviVeq4H5Z423pyl4MoBaHNJeIUd2ne4LuDjgVi3H0s2dy JJZnS/5VD7yqEr8GD9GflQI3sPw57/S086czbN0AqiDyzUsz+eL2CV1kRojhQcPK 57WGJWe9xbAPMZTtC5PNxFeNMyNCJg9jsvhLHj+YuW9J2F5K4gKUQV5iILIPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5ArTQHg19WZWnCUs1MZdI/GHy1wwHwYDVR0j BBgwFoAUVChRl0tyBWs9Q3kqXtg+lNqFg88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzM1ZTE1Zi1kNDQ5LTQ2ZDgtYmUwZS04NWUzODliZWRjNWUvMC81NDI4NTE5NzRC NzIwNTZCM0Q0Mzc5MkE1RUQ4M0U5NERBODU4M0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTQyODUxOTc0QjcyMDU2QjNENDM3OTJBNUVEODNFOTREQTg1 ODNDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3MzVlMTVmLWQ0NDktNDZkOC1i ZTBlLTg1ZTM4OWJlZGM1ZS8wLzMxMzAzMzJlMzEzNzM3MmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7E8MA0GCSqG SIb3DQEBCwUAA4IBAQCEnj2sUt8QwClFIvjZV3M95Sc6vqmIrb3GyfqZe1nr/S3J OhunzPIhZrs1NJW0XbBAnGw4BkjXrxJ/NfTVCHDh9MGbCQDm1BC57vtfptfpTLoH Phg0N+MN13fZ9pVEuQYOMKkNocGKdvN7rSzzFhwLekqVFNIU6b9CbHkhdYVCPQHU ++FNctEu0BmIsWSAazrRjWIAjEqmI/afKP0/Hl7hNQZrkb+Ct3NoBVdK3RRVnOnt KgeGMDSPunKpXxuPVWDvaDBGnwDrh79oXm16hn+ZQv1AAolEIIDFvp+u1W6AxjPt eTjb/TOk6lw/+E/xfm4NsHjhGGqc+HSN2Q7xjBd5 -----END CERTIFICATE-----Generated at Sat Aug 23 18:33:23 2025 by rpki-client