$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa File: 3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa (raw, json) Hash identifier: iGsP4VUogsadbwnWd/AM/1aXy+hpua+BCk1eWXzoRzA= Subject key identifier: CD:B9:31:17:5F:9F:88:AF:38:44:AE:55:57:22:BC:70:4A:B3:51:A6 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 37FFB6D6C37EEB80D46AD22B54337A3BF315755B Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa Signing time: Tue 22 Jul 2025 06:00:00 +0000 ROA not before: Tue 22 Jul 2025 05:55:00 +0000 ROA not after: Tue 21 Jul 2026 06:00:00 +0000 asID: 58500 IP address blocks: 103.101.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ff:b6:d6:c3:7e:eb:80:d4:6a:d2:2b:54:33:7a:3b:f3:15:75:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 05:55:00 2025 GMT Not After : Jul 21 06:00:00 2026 GMT Subject: CN=CDB931175F9F88AF3844AE555722BC704AB351A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3c:b7:52:e6:27:2a:ef:2d:ec:49:01:1b:fb: 9f:7f:a1:9c:8e:0a:48:29:f3:b9:05:a4:f7:68:8c: fc:0b:d5:16:bc:36:4d:60:0e:77:60:c7:b6:e0:45: 36:39:5f:a6:b2:85:14:db:8f:60:7d:2f:9f:e7:c1: be:cd:d6:52:5a:30:c5:ea:0e:a1:8a:65:1a:dc:48: 61:77:6d:13:b5:73:7e:4a:34:72:0f:62:99:b9:34: 37:a3:e2:45:28:09:c5:df:b4:c3:6f:98:ff:62:8d: 8a:62:24:56:75:b4:49:80:30:c4:67:48:ff:13:dc: ab:f4:85:85:ca:1e:78:92:5d:15:2c:db:02:a3:20: e0:61:73:1e:52:35:e5:e0:86:56:96:a9:bb:d9:35: cc:33:23:c1:34:2d:38:a7:dd:f7:13:f4:46:55:fa: 21:44:c3:93:a1:e2:af:ea:48:5d:7c:0e:51:53:5d: a5:8c:7f:f4:e8:a5:a1:31:d8:a9:37:58:e3:61:5f: fa:f9:24:ab:c2:51:12:91:59:49:be:36:ab:2d:f1: 11:91:30:bd:95:99:56:1f:f7:d9:e5:b1:5f:0a:b9: 74:14:c4:30:f0:c7:b2:a3:81:32:5a:6d:54:a6:20: bd:b8:51:b2:25:32:e1:07:7d:cb:ff:4c:8e:f2:9c: 50:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B9:31:17:5F:9F:88:AF:38:44:AE:55:57:22:BC:70:4A:B3:51:A6 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/23 Signature Algorithm: sha256WithRSAEncryption 14:a7:52:c8:45:92:7e:cf:d7:e2:f7:17:39:fd:f8:99:2d:04: bf:c7:88:7c:5e:bc:24:74:82:05:c7:2e:73:3a:ed:29:90:c4: f9:0e:da:7a:5b:8d:9d:bc:90:7d:e7:4f:7c:83:3c:de:be:b1: 23:be:b7:c1:ac:72:6e:a5:3d:d8:38:c0:d1:0b:de:a3:7e:43: 03:72:00:5b:50:83:9c:21:31:ea:0d:cc:21:e7:45:36:d6:13: 2f:2a:8a:86:64:c3:28:83:95:0e:59:30:45:76:55:9a:1f:d4: e0:82:71:c1:96:f2:c0:76:37:87:e5:27:66:59:ac:f5:eb:f2: e3:fa:3d:71:b8:96:46:27:b0:94:6c:b9:c1:64:a1:cc:18:e4: c6:4e:34:e3:b4:14:7f:a0:3b:c6:df:1d:e2:86:38:b4:41:1f: 7e:7f:d5:5d:42:c0:bf:3e:40:21:75:b2:0d:19:99:a3:7a:b2: f8:a9:e0:33:ad:06:5d:c4:36:76:93:22:af:42:92:32:42:3e: a6:91:90:de:97:89:55:5b:eb:2c:cc:10:f8:99:35:d1:c9:75: a8:7b:88:24:b6:fe:3f:b9:49:bd:bf:d3:37:91:8e:67:5a:4a: 7b:09:4e:99:be:9e:8b:79:0a:25:dd:97:ff:df:f9:76:ec:15: 83:54:1a:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN/+21sN+64DUatIrVDN6O/MVdVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwNTU1MDBaFw0yNjA3MjEwNjAwMDBaMDMxMTAvBgNV BAMTKENEQjkzMTE3NUY5Rjg4QUYzODQ0QUU1NTU3MjJCQzcwNEFCMzUxQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRPLdS5icq7y3sSQEb+59/oZyO Ckgp87kFpPdojPwL1Ra8Nk1gDndgx7bgRTY5X6ayhRTbj2B9L5/nwb7N1lJaMMXq DqGKZRrcSGF3bRO1c35KNHIPYpm5NDej4kUoCcXftMNvmP9ijYpiJFZ1tEmAMMRn SP8T3Kv0hYXKHniSXRUs2wKjIOBhcx5SNeXghlaWqbvZNcwzI8E0LTin3fcT9EZV +iFEw5Oh4q/qSF18DlFTXaWMf/TopaEx2Kk3WONhX/r5JKvCURKRWUm+Nqst8RGR ML2VmVYf99nlsV8KuXQUxDDwx7KjgTJabVSmIL24UbIlMuEHfcv/TI7ynFD3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzbkxF1+fiK84RK5VVyK8cEqzUaYwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQAUp1LIRZJ+z9fi9xc5/fiZLQS/x4h8XrwkdIIFxy5zOu0p kMT5Dtp6W42dvJB95098gzzevrEjvrfBrHJupT3YOMDRC96jfkMDcgBbUIOcITHq Dcwh50U21hMvKoqGZMMog5UOWTBFdlWaH9TggnHBlvLAdjeH5SdmWaz16/Lj+j1x uJZGJ7CUbLnBZKHMGOTGTjTjtBR/oDvG3x3ihji0QR9+f9VdQsC/PkAhdbINGZmj erL4qeAzrQZdxDZ2kyKvQpIyQj6mkZDel4lVW+sszBD4mTXRyXWoe4gktv4/uUm9 v9M3kY5nWkp7CU6Zvp6LeQol3Zf/3/l27BWDVBpR -----END CERTIFICATE-----Generated at Thu Aug 7 20:10:32 2025 by rpki-client