$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e35382e3136302e302f32322d3234203d3e203539323738.roa File: 3130332e35382e3136302e302f32322d3234203d3e203539323738.roa (raw, json) Hash identifier: 3p6KpA6/uKsXu1iiVTHxP1H1aKBvRxURT7LJ3HzRuNw= Subject key identifier: 00:4C:1A:D0:9A:E7:CE:13:56:07:3D:EE:21:B0:41:48:15:9A:FD:01 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 457463F6868BD57674F80555F724358442DD8620 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e35382e3136302e302f32322d3234203d3e203539323738.roa Signing time: Wed 09 Jul 2025 05:02:22 +0000 ROA not before: Wed 09 Jul 2025 04:57:22 +0000 ROA not after: Wed 08 Jul 2026 05:02:22 +0000 asID: 59278 IP address blocks: 103.58.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 00:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:74:63:f6:86:8b:d5:76:74:f8:05:55:f7:24:35:84:42:dd:86:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Jul 9 04:57:22 2025 GMT Not After : Jul 8 05:02:22 2026 GMT Subject: CN=004C1AD09AE7CE1356073DEE21B04148159AFD01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0e:52:9f:90:45:c8:8b:0c:8a:18:fb:f0:14: 92:f9:6d:90:f5:14:d4:ca:56:32:1d:05:1d:cc:b7: 34:62:5e:9e:eb:aa:a2:e4:c0:c6:ad:72:24:a8:3e: 26:ce:4f:02:98:66:8a:67:26:a8:f4:a2:93:ba:a1: 21:60:65:77:f1:94:cb:05:d8:16:e0:a8:dc:44:f5: c2:02:5c:13:0a:cd:88:53:23:e1:7a:e7:04:7c:97: e1:4b:5e:2b:b8:ab:dd:8f:d2:45:5a:e3:8d:6c:23: 4e:1b:a8:9a:8c:aa:81:ad:7c:4b:52:72:f5:08:e8: 8b:73:e7:7c:8b:68:75:1e:74:57:9d:82:df:7b:db: b2:4a:82:75:13:81:ae:75:b2:74:6c:5c:7b:5d:82: 7d:ba:f8:22:b8:28:3d:46:f1:6b:0f:c2:b4:4d:16: 19:e0:09:68:af:42:14:7e:cc:1e:c4:3e:2f:55:e5: 6e:2c:5c:d9:24:4c:1e:ee:c7:18:50:d6:c8:56:31: 53:31:96:be:ad:1b:7a:7d:f0:14:14:e2:69:0d:a0: 98:4c:e4:06:81:c5:a3:97:0a:0e:12:cf:ab:8a:7c: eb:38:3c:00:46:7d:cc:c1:1d:61:9a:43:64:0b:ee: 02:1a:1c:fd:ea:7d:0c:08:34:af:59:3d:90:50:dd: 02:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4C:1A:D0:9A:E7:CE:13:56:07:3D:EE:21:B0:41:48:15:9A:FD:01 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e35382e3136302e302f32322d3234203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.160.0/22 Signature Algorithm: sha256WithRSAEncryption 58:b6:f2:31:a6:05:da:18:7c:09:e7:b3:e0:f1:e1:17:05:0c: b0:98:20:ad:47:93:49:f5:7e:2a:b5:93:82:3b:34:48:39:73: b6:6e:99:33:9a:2f:0b:9d:c2:0d:bb:f0:12:b9:c2:b2:f4:f5: 38:d0:b4:6a:50:65:33:5b:15:18:8e:c4:77:88:81:e3:24:34: 33:79:89:36:c6:d5:60:74:ee:96:49:9c:d8:1d:04:b1:78:18: ec:23:1b:b2:a5:c5:0f:4c:56:6d:7c:f2:90:32:89:de:d0:18: 91:b5:0a:4c:4f:00:1f:d3:e0:84:96:8e:8e:5f:bb:52:bc:b9: 6b:fd:47:89:4c:67:7e:f3:c8:f0:6b:d6:cd:23:a1:ca:0b:86: 80:c1:0b:05:13:84:3e:2a:93:48:bd:86:14:59:e9:b9:94:47: 02:66:1d:77:3f:5b:36:1b:04:ae:24:3d:9d:7e:50:92:95:da: 80:87:c0:fe:79:50:54:b2:5f:9a:6b:de:c1:dc:62:fa:33:10: 6c:94:2b:b3:ff:1e:2d:6f:f5:f0:21:f7:59:53:0f:a7:94:1d: 60:c0:06:1f:96:e3:2f:f8:5c:2c:8b:13:4c:dc:9f:9b:80:5f: c6:0e:32:9c:f9:f1:3b:6d:da:17:61:61:0a:9c:32:a3:f0:cf: ce:39:5e:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURXRj9oaL1XZ0+AVV9yQ1hELdhiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTA3MDkwNDU3MjJaFw0yNjA3MDgwNTAyMjJaMDMxMTAvBgNV BAMTKDAwNEMxQUQwOUFFN0NFMTM1NjA3M0RFRTIxQjA0MTQ4MTU5QUZEMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7DlKfkEXIiwyKGPvwFJL5bZD1 FNTKVjIdBR3MtzRiXp7rqqLkwMatciSoPibOTwKYZopnJqj0opO6oSFgZXfxlMsF 2BbgqNxE9cICXBMKzYhTI+F65wR8l+FLXiu4q92P0kVa441sI04bqJqMqoGtfEtS cvUI6Itz53yLaHUedFedgt9727JKgnUTga51snRsXHtdgn26+CK4KD1G8WsPwrRN FhngCWivQhR+zB7EPi9V5W4sXNkkTB7uxxhQ1shWMVMxlr6tG3p98BQU4mkNoJhM 5AaBxaOXCg4Sz6uKfOs4PABGfczBHWGaQ2QL7gIaHP3qfQwINK9ZPZBQ3QL9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAEwa0JrnzhNWBz3uIbBBSBWa/QEwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMxMzAzMzJlMzUzODJlMzEzNjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzOTMyMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc6oDANBgkqhkiG 9w0BAQsFAAOCAQEAWLbyMaYF2hh8Ceez4PHhFwUMsJggrUeTSfV+KrWTgjs0SDlz tm6ZM5ovC53CDbvwErnCsvT1ONC0alBlM1sVGI7Ed4iB4yQ0M3mJNsbVYHTulkmc 2B0EsXgY7CMbsqXFD0xWbXzykDKJ3tAYkbUKTE8AH9PghJaOjl+7Ury5a/1HiUxn fvPI8GvWzSOhyguGgMELBROEPiqTSL2GFFnpuZRHAmYddz9bNhsEriQ9nX5QkpXa gIfA/nlQVLJfmmvewdxi+jMQbJQrs/8eLW/18CH3WVMPp5QdYMAGH5bjL/hcLIsT TNyfm4Bfxg4ynPnxO23aF2FhCpwyo/DPzjlefA== -----END CERTIFICATE-----Generated at Thu Aug 7 20:11:03 2025 by rpki-client