$ rpki-client -vvf repo-rpki.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/3130332e3136362e3235342e302f32342d3234203d3e20313431393636.roa File: 3130332e3136362e3235342e302f32342d3234203d3e20313431393636.roa (raw, json) Hash identifier: Udg26cCHQ+Qftm36Kch+i7dbSWtv7odm32FXa+73LYY= Subject key identifier: 5F:F2:49:DD:33:90:8C:98:B3:73:00:5F:36:45:4E:7B:9A:9F:FC:65 Certificate issuer: /CN=30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45 Certificate serial: 466BB20B63FD90804B6382EE68D92452E30DE571 Authority key identifier: 30:E2:B4:61:7B:8B:9C:FC:4F:C5:7B:1C:5A:4D:74:FC:7E:91:2D:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/3130332e3136362e3235342e302f32342d3234203d3e20313431393636.roa Signing time: Sat 26 Jul 2025 03:00:01 +0000 ROA not before: Sat 26 Jul 2025 02:55:01 +0000 ROA not after: Sat 25 Jul 2026 03:00:01 +0000 asID: 141966 IP address blocks: 103.166.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45.crl rsync://repo-rpki.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 10:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:6b:b2:0b:63:fd:90:80:4b:63:82:ee:68:d9:24:52:e3:0d:e5:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45 Validity Not Before: Jul 26 02:55:01 2025 GMT Not After : Jul 25 03:00:01 2026 GMT Subject: CN=5FF249DD33908C98B373005F36454E7B9A9FFC65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d0:1b:89:d9:df:8b:e3:82:b5:ef:c5:54:af: 26:59:3b:13:79:ff:cb:bd:c0:7b:9f:57:a8:0d:97: 7b:1a:63:a0:bf:8d:a1:5e:1e:ba:9c:34:4f:ab:e8: 19:64:c7:d2:5d:67:7b:2d:03:d5:c5:43:fa:5b:71: d3:a0:4b:92:01:b5:c7:d3:14:f9:72:01:b8:04:a5: 61:3b:de:31:23:e5:5c:1d:fe:db:e3:46:43:99:59: ef:87:1b:b3:35:92:37:79:f9:4d:68:7f:7c:6c:27: 4d:59:89:ac:31:1c:b5:46:9a:d7:d0:1e:c4:3e:92: ea:88:6e:3c:bd:53:d4:ac:44:67:2f:05:28:ac:c2: a8:aa:87:22:06:c0:32:6d:66:90:a0:3b:50:22:ae: 17:12:bb:6f:60:56:c0:a6:b4:22:7a:6d:99:53:91: 89:c3:a1:41:ba:15:56:fc:4d:2e:34:96:14:2d:81: a8:54:c0:ac:2d:20:68:4e:06:57:89:c2:16:72:47: ca:5f:30:40:dd:90:df:72:36:e0:b0:f2:b2:c2:b5: 13:a8:d6:e8:44:1f:74:26:9e:a7:bd:87:03:1d:5b: ce:c7:ee:4a:1c:82:e5:a7:a2:06:75:07:85:11:5c: 64:bb:dc:1d:17:8f:77:21:84:06:46:68:4b:40:59: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F2:49:DD:33:90:8C:98:B3:73:00:5F:36:45:4E:7B:9A:9F:FC:65 X509v3 Authority Key Identifier: keyid:30:E2:B4:61:7B:8B:9C:FC:4F:C5:7B:1C:5A:4D:74:FC:7E:91:2D:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30E2B4617B8B9CFC4FC57B1C5A4D74FC7E912D45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/429f8902-1a06-45a8-a998-72e46aaae8fc/0/3130332e3136362e3235342e302f32342d3234203d3e20313431393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.254.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:64:b2:f5:f9:98:fb:ad:01:04:a0:b5:03:7a:8e:38:77:04: 24:ee:55:8b:94:df:61:04:da:fa:7c:f1:e8:44:58:03:be:3a: 9d:7c:6d:73:f5:b9:10:97:ef:41:7f:4a:2d:ca:39:3a:87:d5: 92:18:3f:38:e0:47:b1:ba:71:00:e2:c8:9f:2b:9b:d1:5d:42: 66:0c:9d:06:c4:1d:63:19:82:82:25:a6:44:ff:4a:4c:45:c6: 19:73:52:d9:6d:8f:ca:be:49:c7:ab:52:94:fb:d1:41:e4:93: 93:c6:65:cc:dc:66:b7:dc:f0:31:bb:0a:7b:a8:86:28:e0:34: 27:62:de:0f:0e:c9:c9:73:23:bf:6f:3c:d8:25:7a:34:77:30: 24:55:37:b9:1e:5e:67:fc:6e:72:59:bd:d5:d9:5c:1a:62:ab: 62:88:2c:f8:1a:e8:52:f9:c4:fa:3b:fa:95:53:6c:6f:d7:04: 0f:eb:5b:ee:01:a3:4b:54:e0:6b:76:e2:b9:01:92:de:95:a7: d6:a7:a4:3c:54:c1:08:a5:b9:46:03:2a:70:7c:18:84:6b:15: 75:89:e6:b3:ed:41:d4:5c:9b:b2:b4:22:13:c8:7c:2b:85:a2: 0c:59:10:3d:b1:50:ad:c0:14:97:f6:6a:a1:4e:7d:0b:14:00: 2b:bf:3c:95 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURmuyC2P9kIBLY4LuaNkkUuMN5XEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFMkI0NjE3QjhCOUNGQzRGQzU3QjFDNUE0RDc0RkM3 RTkxMkQ0NTAeFw0yNTA3MjYwMjU1MDFaFw0yNjA3MjUwMzAwMDFaMDMxMTAvBgNV BAMTKDVGRjI0OUREMzM5MDhDOThCMzczMDA1RjM2NDU0RTdCOUE5RkZDNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC10BuJ2d+L44K178VUryZZOxN5 /8u9wHufV6gNl3saY6C/jaFeHrqcNE+r6Blkx9JdZ3stA9XFQ/pbcdOgS5IBtcfT FPlyAbgEpWE73jEj5Vwd/tvjRkOZWe+HG7M1kjd5+U1of3xsJ01ZiawxHLVGmtfQ HsQ+kuqIbjy9U9SsRGcvBSiswqiqhyIGwDJtZpCgO1AirhcSu29gVsCmtCJ6bZlT kYnDoUG6FVb8TS40lhQtgahUwKwtIGhOBleJwhZyR8pfMEDdkN9yNuCw8rLCtROo 1uhEH3Qmnqe9hwMdW87H7kocguWnogZ1B4URXGS73B0Xj3chhAZGaEtAWcqJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUX/JJ3TOQjJizcwBfNkVOe5qf/GUwHwYDVR0j BBgwFoAUMOK0YXuLnPxPxXscWk10/H6RLUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjlmODkwMi0xYTA2LTQ1YTgtYTk5OC03MmU0NmFhYWU4ZmMvMC8zMEUyQjQ2MTdC OEI5Q0ZDNEZDNTdCMUM1QTRENzRGQzdFOTEyRDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBFMkI0NjE3QjhCOUNGQzRGQzU3QjFDNUE0RDc0RkM3RTkx MkQ0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyOWY4OTAyLTFhMDYtNDVhOC1h OTk4LTcyZTQ2YWFhZThmYy8wLzMxMzAzMzJlMzEzNjM2MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpv4wDQYJ KoZIhvcNAQELBQADggEBAFxksvX5mPutAQSgtQN6jjh3BCTuVYuU32EE2vp88ehE WAO+Op18bXP1uRCX70F/Si3KOTqH1ZIYPzjgR7G6cQDiyJ8rm9FdQmYMnQbEHWMZ goIlpkT/SkxFxhlzUtltj8q+ScerUpT70UHkk5PGZczcZrfc8DG7CnuohijgNCdi 3g8OyclzI79vPNglejR3MCRVN7keXmf8bnJZvdXZXBpiq2KILPga6FL5xPo7+pVT bG/XBA/rW+4Bo0tU4Gt24rkBkt6Vp9anpDxUwQiluUYDKnB8GIRrFXWJ5rPtQdRc m7K0IhPIfCuFogxZED2xUK3AFJf2aqFOfQsUACu/PJU= -----END CERTIFICATE-----Generated at Thu Aug 7 23:58:10 2025 by rpki-client