$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa File: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (raw, json) Hash identifier: bYo0zSG/Y+l/kRQWqzhvCy7R5Romzqih1iDCz89t3mk= Subject key identifier: 50:05:3B:F4:E8:88:6A:09:5A:E0:37:08:C2:DA:C7:D5:A9:0A:FC:9B Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 434F2632E2B0E0C4886BDC9F9801EF211F6E921D Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa Signing time: Thu 12 Jun 2025 03:00:01 +0000 ROA not before: Thu 12 Jun 2025 02:55:01 +0000 ROA not after: Thu 11 Jun 2026 03:00:01 +0000 asID: 151575 IP address blocks: 103.99.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 08:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:4f:26:32:e2:b0:e0:c4:88:6b:dc:9f:98:01:ef:21:1f:6e:92:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jun 12 02:55:01 2025 GMT Not After : Jun 11 03:00:01 2026 GMT Subject: CN=50053BF4E8886A095AE03708C2DAC7D5A90AFC9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cf:f2:b9:5c:dc:9a:c3:72:8c:98:19:92:61: 1d:d7:65:a6:d8:92:9b:ed:eb:2a:e0:5e:c7:ca:58: 9a:40:46:9f:eb:fd:77:89:37:1c:e1:e9:11:a0:3b: 71:e5:a4:fd:f6:45:65:1e:70:7f:57:27:03:67:c0: 23:3f:64:f4:04:47:55:62:67:40:2b:1b:60:cd:6a: 9c:b9:ad:b3:a3:9c:44:7f:03:b4:29:95:1c:d5:74: c5:7f:9f:71:37:04:ad:59:2b:ab:26:d3:30:ad:3b: c6:23:fe:f3:04:0c:9a:88:df:fe:0b:ca:17:a5:27: f4:48:b9:1d:ef:f2:6d:86:c4:d7:35:89:f2:1e:b2: d7:42:f1:a8:e5:32:42:01:a5:2a:9d:a7:16:77:86: d0:9b:49:f1:e1:81:22:d6:35:ee:41:74:c9:fb:1b: a6:a0:c4:e6:d3:4d:88:51:5b:88:b3:dd:8e:87:2a: b1:02:1a:25:6e:71:00:f9:56:6f:3c:a2:f8:ee:33: e2:1e:61:20:6a:74:1c:76:32:18:0c:1b:7d:f7:8f: a1:4b:83:dd:ec:ce:53:27:b0:da:70:80:1b:9b:0f: 23:1e:55:22:d0:8e:dc:78:0a:d8:40:e1:54:4e:df: 0d:78:39:ed:da:97:81:14:3e:ab:d2:a9:42:a0:1d: 72:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:05:3B:F4:E8:88:6A:09:5A:E0:37:08:C2:DA:C7:D5:A9:0A:FC:9B X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.136.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:fe:ad:69:50:28:98:27:9b:24:6b:9a:59:53:3e:ba:d0:6a: 6c:f0:d2:87:35:20:d7:dd:79:1b:c2:01:b4:85:00:82:d9:2e: 30:71:69:5b:d5:ea:9c:09:6e:a5:66:d7:68:00:2d:41:a5:ae: 78:99:6c:11:f9:42:60:79:65:59:32:f3:6e:af:0d:fa:c9:8f: 1c:f4:e9:42:24:c9:e6:86:e9:17:64:44:f3:65:88:09:cb:66: f1:f2:f8:30:7e:ed:2a:cb:b1:e0:aa:28:10:1c:71:25:88:bc: 88:bd:69:8e:59:61:18:23:31:36:ec:1c:c0:94:50:cb:ac:76: bd:ed:76:eb:8d:15:a1:c9:b5:da:a5:32:f6:15:93:10:31:e3: 58:61:92:69:b3:95:96:b0:ac:54:af:05:71:ef:8d:13:c5:11: c9:d3:16:d0:0f:c4:df:f0:d8:bb:d3:f1:8d:58:96:37:62:ec: 7b:bb:7f:00:6b:71:23:08:f9:dd:1e:51:fd:84:bf:e5:36:2d: 0e:30:6f:09:5b:75:00:1d:28:04:eb:96:e8:d2:e6:1d:16:08: 46:32:2a:7c:90:53:44:b6:5c:c0:3c:d3:b9:b8:d5:be:bc:1d: 07:58:46:c2:ee:9e:98:05:52:e4:ab:d3:45:6c:ba:ea:0a:a5: d1:1a:5c:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ08mMuKw4MSIa9yfmAHvIR9ukh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTA2MTIwMjU1MDFaFw0yNjA2MTEwMzAwMDFaMDMxMTAvBgNV BAMTKDUwMDUzQkY0RTg4ODZBMDk1QUUwMzcwOEMyREFDN0Q1QTkwQUZDOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+z/K5XNyaw3KMmBmSYR3XZabY kpvt6yrgXsfKWJpARp/r/XeJNxzh6RGgO3HlpP32RWUecH9XJwNnwCM/ZPQER1Vi Z0ArG2DNapy5rbOjnER/A7QplRzVdMV/n3E3BK1ZK6sm0zCtO8Yj/vMEDJqI3/4L yhelJ/RIuR3v8m2GxNc1ifIestdC8ajlMkIBpSqdpxZ3htCbSfHhgSLWNe5BdMn7 G6agxObTTYhRW4iz3Y6HKrECGiVucQD5Vm88ovjuM+IeYSBqdBx2MhgMG333j6FL g93szlMnsNpwgBubDyMeVSLQjtx4CthA4VRO3w14Oe3al4EUPqvSqUKgHXLRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUAU79OiIagla4DcIwtrH1akK/JswHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMxMzAzMzJlMzkzOTJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2OIMA0GCSqG SIb3DQEBCwUAA4IBAQAe/q1pUCiYJ5ska5pZUz660Gps8NKHNSDX3XkbwgG0hQCC 2S4wcWlb1eqcCW6lZtdoAC1Bpa54mWwR+UJgeWVZMvNurw36yY8c9OlCJMnmhukX ZETzZYgJy2bx8vgwfu0qy7HgqigQHHEliLyIvWmOWWEYIzE27BzAlFDLrHa97Xbr jRWhybXapTL2FZMQMeNYYZJps5WWsKxUrwVx740TxRHJ0xbQD8Tf8Ni70/GNWJY3 Yux7u38Aa3EjCPndHlH9hL/lNi0OMG8JW3UAHSgE65bo0uYdFghGMip8kFNEtlzA PNO5uNW+vB0HWEbC7p6YBVLkq9NFbLrqCqXRGlyH -----END CERTIFICATE-----Generated at Tue Nov 4 19:00:07 2025 by rpki-client