$ rpki-client -vvf repo-rpki.idnic.net/repo/5da4ef71-f0e0-4252-8160-505321fa5089/0/3130332e3133352e3135322e302f32322d3234203d3e203338333230.roa File: 3130332e3133352e3135322e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: YAXBiP1Tn35BvKpuF6xhlnff/qb6fyDlzJRGhETAkV8= Subject key identifier: BD:07:79:76:47:A6:E8:4B:7F:C3:E1:5A:7B:FF:BF:43:BC:AE:B0:B5 Certificate issuer: /CN=BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B Certificate serial: 247A8693FCBBAE8804E1F379D99716160499F76C Authority key identifier: BB:8E:14:FC:AD:3A:F2:EF:30:A8:F5:69:63:39:D6:F7:DF:5D:73:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5da4ef71-f0e0-4252-8160-505321fa5089/0/3130332e3133352e3135322e302f32322d3234203d3e203338333230.roa Signing time: Thu 17 Apr 2025 03:02:19 +0000 ROA not before: Thu 17 Apr 2025 02:57:19 +0000 ROA not after: Thu 16 Apr 2026 03:02:19 +0000 asID: 38320 IP address blocks: 103.135.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5da4ef71-f0e0-4252-8160-505321fa5089/0/BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B.crl rsync://repo-rpki.idnic.net/repo/5da4ef71-f0e0-4252-8160-505321fa5089/0/BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 19:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:7a:86:93:fc:bb:ae:88:04:e1:f3:79:d9:97:16:16:04:99:f7:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B Validity Not Before: Apr 17 02:57:19 2025 GMT Not After : Apr 16 03:02:19 2026 GMT Subject: CN=BD07797647A6E84B7FC3E15A7BFFBF43BCAEB0B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ed:24:b9:56:47:18:40:93:a0:0d:27:70:60: ae:37:27:38:5d:01:d7:83:95:5e:30:f3:f1:69:8b: b6:42:bd:14:78:73:3a:f7:4d:b4:38:f2:05:a3:d5: 51:10:d9:d2:b6:1a:6f:53:30:1c:44:3e:df:a2:56: 86:34:31:3b:fb:9a:c9:2b:f4:e4:b3:2c:88:a0:f5: 27:9f:55:c8:38:b6:1a:f4:37:63:23:61:3e:9b:e3: a8:82:f8:1d:b1:51:39:00:ae:50:71:47:4c:cd:b2: 6e:70:f1:8b:d3:52:4c:16:58:e8:b6:b3:10:58:be: 0a:42:ee:70:29:cb:84:e8:1b:e7:37:96:3b:41:d0: e9:9e:47:72:7d:7d:cb:7e:36:20:8c:bd:f1:43:61: b2:11:28:42:f1:c3:97:0c:e1:c3:91:f1:03:19:54: a7:ff:c0:30:3b:53:61:31:07:3c:f0:8c:08:15:0e: df:15:c8:5e:d3:92:2a:d5:f0:a6:6b:55:2b:5e:ba: 12:2c:3f:36:91:9e:54:e9:9f:13:56:a8:15:a1:54: 1e:ca:15:19:af:4f:f8:ce:a7:d9:fc:37:70:63:2a: 62:4c:cf:64:aa:29:c3:78:c2:91:5f:26:ac:96:41: 72:a1:21:af:f4:54:c2:c0:ba:e1:82:c8:04:5f:6b: 91:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:07:79:76:47:A6:E8:4B:7F:C3:E1:5A:7B:FF:BF:43:BC:AE:B0:B5 X509v3 Authority Key Identifier: keyid:BB:8E:14:FC:AD:3A:F2:EF:30:A8:F5:69:63:39:D6:F7:DF:5D:73:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5da4ef71-f0e0-4252-8160-505321fa5089/0/BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB8E14FCAD3AF2EF30A8F5696339D6F7DF5D735B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5da4ef71-f0e0-4252-8160-505321fa5089/0/3130332e3133352e3135322e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.152.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:ca:fd:68:44:ea:c3:c2:37:3d:8f:06:6e:d2:da:15:5a:39: d3:9b:6a:ad:a8:84:25:0d:5d:c7:22:6d:0f:b4:e5:9c:b9:56: 52:97:ae:6a:bd:3d:b6:b0:a3:ec:a6:aa:a3:e7:c0:2c:da:33: 7f:99:5e:f2:f6:93:49:98:07:bb:cc:05:9b:93:f0:cb:af:2a: 81:fc:a4:4f:3f:e3:11:6c:2d:87:bc:59:46:21:ab:ec:eb:13: 01:49:9d:75:62:0a:d5:e1:4c:ee:ed:7a:ff:d5:b0:4e:d2:8f: 26:09:01:43:34:97:2f:35:6f:6d:01:0a:50:64:12:e5:bb:53: e1:89:4b:58:7e:0a:81:07:30:a2:42:6d:7b:c4:85:06:2c:6a: 3e:86:18:d7:48:6f:5d:aa:59:ac:92:db:5d:c7:1a:db:e5:37: cd:16:a5:c2:b5:65:67:ce:1f:9b:eb:96:f7:8f:1d:06:d1:4c: 1d:0c:1f:f1:06:c6:4e:39:14:1e:b9:01:40:23:c0:ef:11:d9: 4e:af:3a:b3:37:3f:0c:7d:a1:96:84:67:3b:ee:b4:84:9f:bb: 0d:ff:f8:50:24:8a:6f:3e:a5:c8:d0:16:47:e2:b1:82:c5:99: c8:51:61:1b:a2:6a:e2:4f:a3:72:ae:95:66:29:1b:89:ed:8f: 44:3f:4e:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJHqGk/y7rogE4fN52ZcWFgSZ92wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI4RTE0RkNBRDNBRjJFRjMwQThGNTY5NjMzOUQ2RjdE RjVENzM1QjAeFw0yNTA0MTcwMjU3MTlaFw0yNjA0MTYwMzAyMTlaMDMxMTAvBgNV BAMTKEJEMDc3OTc2NDdBNkU4NEI3RkMzRTE1QTdCRkZCRjQzQkNBRUIwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD27SS5VkcYQJOgDSdwYK43Jzhd AdeDlV4w8/Fpi7ZCvRR4czr3TbQ48gWj1VEQ2dK2Gm9TMBxEPt+iVoY0MTv7mskr 9OSzLIig9SefVcg4thr0N2MjYT6b46iC+B2xUTkArlBxR0zNsm5w8YvTUkwWWOi2 sxBYvgpC7nApy4ToG+c3ljtB0OmeR3J9fct+NiCMvfFDYbIRKELxw5cM4cOR8QMZ VKf/wDA7U2ExBzzwjAgVDt8VyF7TkirV8KZrVSteuhIsPzaRnlTpnxNWqBWhVB7K FRmvT/jOp9n8N3BjKmJMz2SqKcN4wpFfJqyWQXKhIa/0VMLAuuGCyARfa5HdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvQd5dkem6Et/w+Fae/+/Q7yusLUwHwYDVR0j BBgwFoAUu44U/K068u8wqPVpYznW999dc1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZGE0ZWY3MS1mMGUwLTQyNTItODE2MC01MDUzMjFmYTUwODkvMC9CQjhFMTRGQ0FE M0FGMkVGMzBBOEY1Njk2MzM5RDZGN0RGNUQ3MzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI4RTE0RkNBRDNBRjJFRjMwQThGNTY5NjMzOUQ2RjdERjVE NzM1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkYTRlZjcxLWYwZTAtNDI1Mi04 MTYwLTUwNTMyMWZhNTA4OS8wLzMxMzAzMzJlMzEzMzM1MmUzMTM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4eYMA0GCSqG SIb3DQEBCwUAA4IBAQAayv1oROrDwjc9jwZu0toVWjnTm2qtqIQlDV3HIm0PtOWc uVZSl65qvT22sKPspqqj58As2jN/mV7y9pNJmAe7zAWbk/DLryqB/KRPP+MRbC2H vFlGIavs6xMBSZ11YgrV4Uzu7Xr/1bBO0o8mCQFDNJcvNW9tAQpQZBLlu1PhiUtY fgqBBzCiQm17xIUGLGo+hhjXSG9dqlmskttdxxrb5TfNFqXCtWVnzh+b65b3jx0G 0UwdDB/xBsZOORQeuQFAI8DvEdlOrzqzNz8MfaGWhGc77rSEn7sN//hQJIpvPqXI 0BZH4rGCxZnIUWEbomriT6NyrpVmKRuJ7Y9EP05A -----END CERTIFICATE-----Generated at Tue Nov 4 17:02:03 2025 by rpki-client