$ rpki-client -vvf repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa File: 3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa (raw, json) Hash identifier: xAai3p26XX1xxTYFo4/mvtaGpTmWTezOa6RZ9bvp864= Subject key identifier: 38:5B:A3:84:5F:64:C6:A3:77:94:1B:9C:F6:13:16:DD:35:04:2C:44 Certificate issuer: /CN=68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF Certificate serial: 64EE9048984FA1BDD215D560B063BEE9684AD58C Authority key identifier: 68:B1:66:10:EA:F2:D4:B3:AB:FB:9A:C5:71:7E:DF:0A:60:01:EE:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa Signing time: Tue 22 Jul 2025 13:00:00 +0000 ROA not before: Tue 22 Jul 2025 12:55:00 +0000 ROA not after: Tue 21 Jul 2026 13:00:00 +0000 asID: 149924 IP address blocks: 103.191.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.crl rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 16:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ee:90:48:98:4f:a1:bd:d2:15:d5:60:b0:63:be:e9:68:4a:d5:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF Validity Not Before: Jul 22 12:55:00 2025 GMT Not After : Jul 21 13:00:00 2026 GMT Subject: CN=385BA3845F64C6A377941B9CF61316DD35042C44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:7d:dd:bc:59:f6:26:0a:44:e0:03:76:bc: 8b:68:47:05:bc:ff:b8:17:31:c1:88:e9:17:2c:18: 2d:f5:95:3c:d3:1c:c3:c2:55:38:2b:b7:4f:3f:fe: c9:ee:25:27:f3:fa:09:2e:a3:75:9c:f7:34:fb:ab: 9b:d1:74:d1:93:fe:7e:2b:38:ec:fc:d3:50:1e:16: 5e:d2:7f:b3:4a:0e:1a:6b:83:12:f7:12:73:52:f3: 9f:cc:d5:96:bc:49:8c:13:4d:15:31:bd:5f:54:a7: 4b:2a:b5:6f:d1:6c:62:02:b8:07:97:15:16:da:99: 5f:7d:9b:8b:9f:29:a3:30:da:7a:77:ad:f5:21:a1: 8e:06:26:73:b7:97:e5:6b:1d:ff:48:69:58:43:1a: 5d:ce:19:36:dd:20:c6:29:c3:1c:d7:59:93:d3:4c: be:90:bb:7c:d1:43:8c:6d:a3:d4:84:aa:b7:4b:62: 01:8e:e0:14:57:d5:73:3a:74:15:57:b2:0e:45:14: bb:90:e8:95:9d:23:7e:92:b1:0d:38:47:ae:2b:0b: c8:0f:3a:0e:e6:e5:cc:09:19:c6:55:0b:e2:64:f0: 68:5d:aa:b8:61:0d:04:2f:14:89:4c:d7:f0:24:3f: 21:ab:d7:92:b4:22:67:ca:4c:b2:36:9b:4d:a5:52: 5d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:5B:A3:84:5F:64:C6:A3:77:94:1B:9C:F6:13:16:DD:35:04:2C:44 X509v3 Authority Key Identifier: keyid:68:B1:66:10:EA:F2:D4:B3:AB:FB:9A:C5:71:7E:DF:0A:60:01:EE:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.168.0/24 Signature Algorithm: sha256WithRSAEncryption 58:57:f6:59:c7:cd:71:98:4b:1a:88:85:54:c3:2d:1f:b4:f8: 1a:7e:d2:08:4b:04:c6:ec:98:96:98:d7:a9:7b:1d:56:fd:8f: 6c:1a:31:c3:99:6d:14:e0:22:69:54:42:7b:e5:a4:40:2c:ca: f9:b0:b4:fe:c6:ec:d6:1b:eb:e5:e5:e8:fa:a9:36:92:48:52: f1:68:52:3a:0b:8e:e4:43:01:80:c2:81:b3:8e:86:5f:09:01: 0f:78:9d:a1:50:15:26:bc:94:4a:d5:97:9a:1b:8c:1f:99:94: 8d:2b:78:c9:b6:2b:71:49:1e:8e:4f:b1:d1:a3:c1:45:6e:70: 25:b5:e4:1c:dd:1c:f6:ff:62:05:da:26:33:32:7d:40:05:bb: 3d:74:91:e7:32:8c:56:0a:e8:e4:49:6e:19:86:cc:9d:d4:d0: 58:fa:a7:45:61:e7:18:5e:13:29:fa:9d:87:1b:29:c1:9d:38: 9c:68:83:de:25:a5:74:53:69:2e:67:c0:83:0d:f8:7d:e3:86: 31:60:78:24:05:70:00:bd:0e:10:ab:10:48:63:37:00:ba:e9: 86:8d:42:2c:95:5b:ce:8c:86:73:56:b7:2d:d8:b5:4b:39:67: 91:38:4b:f2:58:ed:05:71:b5:d1:f2:ff:a5:ff:a0:d3:fb:d6: 09:8a:56:c4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZO6QSJhPob3SFdVgsGO+6WhK1YwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhCMTY2MTBFQUYyRDRCM0FCRkI5QUM1NzE3RURGMEE2 MDAxRUVGRjAeFw0yNTA3MjIxMjU1MDBaFw0yNjA3MjExMzAwMDBaMDMxMTAvBgNV BAMTKDM4NUJBMzg0NUY2NEM2QTM3Nzk0MUI5Q0Y2MTMxNkREMzUwNDJDNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS6n3dvFn2JgpE4AN2vItoRwW8 /7gXMcGI6RcsGC31lTzTHMPCVTgrt08//snuJSfz+gkuo3Wc9zT7q5vRdNGT/n4r OOz801AeFl7Sf7NKDhprgxL3EnNS85/M1Za8SYwTTRUxvV9Up0sqtW/RbGICuAeX FRbamV99m4ufKaMw2np3rfUhoY4GJnO3l+VrHf9IaVhDGl3OGTbdIMYpwxzXWZPT TL6Qu3zRQ4xto9SEqrdLYgGO4BRX1XM6dBVXsg5FFLuQ6JWdI36SsQ04R64rC8gP Og7m5cwJGcZVC+Jk8GhdqrhhDQQvFIlM1/AkPyGr15K0ImfKTLI2m02lUl0fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOFujhF9kxqN3lBuc9hMW3TUELEQwHwYDVR0j BBgwFoAUaLFmEOry1LOr+5rFcX7fCmAB7v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MThjMDM4My02MjlmLTQ2ZTItYjExNC0xODhjYzkyMWE2YTUvMC82OEIxNjYxMEVB RjJENEIzQUJGQjlBQzU3MTdFREYwQTYwMDFFRUZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhCMTY2MTBFQUYyRDRCM0FCRkI5QUM1NzE3RURGMEE2MDAx RUVGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxOGMwMzgzLTYyOWYtNDZlMi1i MTE0LTE4OGNjOTIxYTZhNS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMyMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv6gwDQYJ KoZIhvcNAQELBQADggEBAFhX9lnHzXGYSxqIhVTDLR+0+Bp+0ghLBMbsmJaY16l7 HVb9j2waMcOZbRTgImlUQnvlpEAsyvmwtP7G7NYb6+Xl6PqpNpJIUvFoUjoLjuRD AYDCgbOOhl8JAQ94naFQFSa8lErVl5objB+ZlI0reMm2K3FJHo5PsdGjwUVucCW1 5BzdHPb/YgXaJjMyfUAFuz10kecyjFYK6ORJbhmGzJ3U0Fj6p0Vh5xheEyn6nYcb KcGdOJxog94lpXRTaS5nwIMN+H3jhjFgeCQFcAC9DhCrEEhjNwC66YaNQiyVW86M hnNWty3YtUs5Z5E4S/JY7QVxtdHy/6X/oNP71gmKVsQ= -----END CERTIFICATE-----Generated at Sat Aug 9 22:43:14 2025 by rpki-client