$ rpki-client -vvf repo-rpki.idnic.net/repo/0a1f3971-3a47-455d-ab30-e7c23b61b9f2/0/3130332e3130312e3231372e302f32342d3234203d3e20313530393431.roa File: 3130332e3130312e3231372e302f32342d3234203d3e20313530393431.roa (raw, json) Hash identifier: aAMjUzaN1yMPp7oXLSGICiOHUfNylQXYPCCHO4WZk9E= Subject key identifier: 4D:57:33:50:3E:FE:B7:F8:61:B1:16:F6:EF:12:4B:3D:A3:6D:03:0D Certificate issuer: /CN=EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F Certificate serial: 3965A55EE1EFC6F62EC7C4BE1E09AA9848086D03 Authority key identifier: EB:78:21:4F:24:8E:FE:08:B4:E4:62:FD:AF:D4:E7:0B:C3:D0:5A:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a1f3971-3a47-455d-ab30-e7c23b61b9f2/0/3130332e3130312e3231372e302f32342d3234203d3e20313530393431.roa Signing time: Sat 26 Jul 2025 08:00:02 +0000 ROA not before: Sat 26 Jul 2025 07:55:02 +0000 ROA not after: Sat 25 Jul 2026 08:00:02 +0000 asID: 150941 IP address blocks: 103.101.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a1f3971-3a47-455d-ab30-e7c23b61b9f2/0/EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F.crl rsync://repo-rpki.idnic.net/repo/0a1f3971-3a47-455d-ab30-e7c23b61b9f2/0/EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 03:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:65:a5:5e:e1:ef:c6:f6:2e:c7:c4:be:1e:09:aa:98:48:08:6d:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F Validity Not Before: Jul 26 07:55:02 2025 GMT Not After : Jul 25 08:00:02 2026 GMT Subject: CN=4D5733503EFEB7F861B116F6EF124B3DA36D030D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:83:cf:37:55:41:6a:c7:9b:56:25:c0:38:e2: a2:18:56:e2:9d:ba:18:7d:30:47:e5:0a:72:5f:1f: 63:97:ad:47:b2:b7:63:c1:38:c2:99:10:0d:ea:bd: ea:18:ad:d0:54:c3:5c:21:b8:00:e9:89:6d:ea:e7: c3:8f:64:b5:39:6c:69:e9:6b:6e:97:2a:13:b5:3e: cd:2a:6d:99:d5:9b:0c:ad:da:27:51:c6:68:0e:10: 49:c4:bf:bd:b4:1a:9b:e5:75:ed:59:e9:38:6d:e4: 03:03:49:8b:7e:75:3f:f5:37:f5:0e:90:24:76:f3: e5:fd:0c:25:93:76:46:c4:b9:d0:6d:c8:3e:4d:78: 08:9c:8f:4d:45:a1:70:fe:ee:8e:71:88:ed:36:77: 91:ed:a7:49:7d:d0:8e:b2:85:11:1d:76:b3:c1:56: a3:c6:22:e8:c0:26:57:c0:9c:58:dc:64:25:95:ea: de:95:ff:30:60:2c:a2:78:ef:d3:0e:c4:58:c8:94: 7e:c9:68:75:19:48:e1:b0:f3:22:9a:e9:57:1f:c5: a0:42:ed:19:98:a7:a1:2c:84:57:da:6d:15:03:22: e9:cf:ff:26:dd:ad:48:36:c7:9c:cd:56:61:30:58: f5:09:50:50:fe:a6:77:44:66:18:61:b5:7b:ed:8f: 4a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:57:33:50:3E:FE:B7:F8:61:B1:16:F6:EF:12:4B:3D:A3:6D:03:0D X509v3 Authority Key Identifier: keyid:EB:78:21:4F:24:8E:FE:08:B4:E4:62:FD:AF:D4:E7:0B:C3:D0:5A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a1f3971-3a47-455d-ab30-e7c23b61b9f2/0/EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB78214F248EFE08B4E462FDAFD4E70BC3D05A2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a1f3971-3a47-455d-ab30-e7c23b61b9f2/0/3130332e3130312e3231372e302f32342d3234203d3e20313530393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.217.0/24 Signature Algorithm: sha256WithRSAEncryption a9:01:00:eb:5b:01:7d:32:81:aa:9d:48:0c:b2:63:e6:ac:8d: db:85:b8:14:10:2b:d4:e6:5e:3a:94:09:54:3a:1f:0f:6e:cc: d8:d1:aa:84:f5:0a:e6:ac:cc:56:c7:76:59:5b:5f:2e:a3:3b: 3c:9d:d3:71:ad:dc:d3:d5:60:f2:3c:54:34:ff:09:e1:3d:a2: f3:10:a2:d5:92:1a:5a:a7:65:64:46:a5:1b:30:eb:24:2c:64: 8a:0a:a8:7a:7a:2e:46:fe:2a:f4:97:c0:c3:c5:07:ff:db:20: d8:5e:4f:18:62:4e:0f:82:6e:f0:38:92:ab:01:ab:da:4b:58: 93:d9:18:75:60:98:6a:dd:93:01:e0:a6:0a:86:42:4c:cf:db: d8:21:7b:8f:56:3a:f8:3f:56:f7:21:ae:84:e6:53:e4:25:2c: 53:b8:50:25:20:1a:42:e2:b3:65:61:3c:1e:86:ef:96:f8:56: ca:47:30:a2:61:cc:69:d7:10:9c:28:41:55:09:15:8b:0d:42: db:6e:d1:16:de:8d:7a:73:b2:2b:a8:e5:bd:d5:ac:4a:fe:16: 26:f4:cc:a6:f6:6d:b7:17:d1:2b:5e:22:04:dd:af:9d:39:9c: 57:1c:a9:38:51:4d:6c:cb:a9:f9:95:ed:38:34:2b:f5:5c:74: 84:98:c9:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOWWlXuHvxvYux8S+HgmqmEgIbQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUI3ODIxNEYyNDhFRkUwOEI0RTQ2MkZEQUZENEU3MEJD M0QwNUEyRjAeFw0yNTA3MjYwNzU1MDJaFw0yNjA3MjUwODAwMDJaMDMxMTAvBgNV BAMTKDRENTczMzUwM0VGRUI3Rjg2MUIxMTZGNkVGMTI0QjNEQTM2RDAzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgg883VUFqx5tWJcA44qIYVuKd uhh9MEflCnJfH2OXrUeyt2PBOMKZEA3qveoYrdBUw1whuADpiW3q58OPZLU5bGnp a26XKhO1Ps0qbZnVmwyt2idRxmgOEEnEv720Gpvlde1Z6Tht5AMDSYt+dT/1N/UO kCR28+X9DCWTdkbEudBtyD5NeAicj01FoXD+7o5xiO02d5Htp0l90I6yhREddrPB VqPGIujAJlfAnFjcZCWV6t6V/zBgLKJ479MOxFjIlH7JaHUZSOGw8yKa6VcfxaBC 7RmYp6EshFfabRUDIunP/ybdrUg2x5zNVmEwWPUJUFD+pndEZhhhtXvtj0oZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTVczUD7+t/hhsRb27xJLPaNtAw0wHwYDVR0j BBgwFoAU63ghTySO/gi05GL9r9TnC8PQWi8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTFmMzk3MS0zYTQ3LTQ1NWQtYWIzMC1lN2MyM2I2MWI5ZjIvMC9FQjc4MjE0RjI0 OEVGRTA4QjRFNDYyRkRBRkQ0RTcwQkMzRDA1QTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUI3ODIxNEYyNDhFRkUwOEI0RTQ2MkZEQUZENEU3MEJDM0Qw NUEyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhMWYzOTcxLTNhNDctNDU1ZC1h YjMwLWU3YzIzYjYxYjlmMi8wLzMxMzAzMzJlMzEzMDMxMmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZdkwDQYJ KoZIhvcNAQELBQADggEBAKkBAOtbAX0ygaqdSAyyY+asjduFuBQQK9TmXjqUCVQ6 Hw9uzNjRqoT1CuaszFbHdllbXy6jOzyd03Gt3NPVYPI8VDT/CeE9ovMQotWSGlqn ZWRGpRsw6yQsZIoKqHp6Lkb+KvSXwMPFB//bINheTxhiTg+CbvA4kqsBq9pLWJPZ GHVgmGrdkwHgpgqGQkzP29ghe49WOvg/VvchroTmU+QlLFO4UCUgGkLis2VhPB6G 75b4VspHMKJhzGnXEJwoQVUJFYsNQttu0RbejXpzsiuo5b3VrEr+Fib0zKb2bbcX 0SteIgTdr505nFccqThRTWzLqfmV7Tg0K/VcdISYyVc= -----END CERTIFICATE-----Generated at Thu Aug 7 20:24:25 2025 by rpki-client