$ rpki-client -vvf repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/3130332e33382e3130362e302f32332d3234203d3e20313532303039.roa File: 3130332e33382e3130362e302f32332d3234203d3e20313532303039.roa (raw, json) Hash identifier: 5ddjKzEo7R2HXRPV5KVablgruigb2N4v7X9sDbCb8p8= Subject key identifier: 9B:85:D5:94:FA:7E:EA:C3:BD:0A:31:D8:49:BF:BD:EA:E3:CA:0B:3C Certificate issuer: /CN=B5A68ADE81322F194320BE4302C6897D29D13BDD Certificate serial: 7804F2DFC4B6BEE73C0B80929FA716D7B3B753ED Authority key identifier: B5:A6:8A:DE:81:32:2F:19:43:20:BE:43:02:C6:89:7D:29:D1:3B:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5A68ADE81322F194320BE4302C6897D29D13BDD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/3130332e33382e3130362e302f32332d3234203d3e20313532303039.roa Signing time: Tue 15 Jul 2025 04:02:50 +0000 ROA not before: Tue 15 Jul 2025 03:57:50 +0000 ROA not after: Tue 14 Jul 2026 04:02:50 +0000 asID: 152009 IP address blocks: 103.38.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/B5A68ADE81322F194320BE4302C6897D29D13BDD.crl rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/B5A68ADE81322F194320BE4302C6897D29D13BDD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5A68ADE81322F194320BE4302C6897D29D13BDD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 21:42:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:04:f2:df:c4:b6:be:e7:3c:0b:80:92:9f:a7:16:d7:b3:b7:53:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5A68ADE81322F194320BE4302C6897D29D13BDD Validity Not Before: Jul 15 03:57:50 2025 GMT Not After : Jul 14 04:02:50 2026 GMT Subject: CN=9B85D594FA7EEAC3BD0A31D849BFBDEAE3CA0B3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e9:45:9b:de:92:3c:b6:c1:a2:1f:aa:81:24: 7c:d3:9a:37:a7:73:cc:c2:11:d8:17:3e:3b:ac:ac: 3b:ca:27:06:25:45:37:13:ef:c4:cb:8a:78:87:c1: eb:2e:6c:cf:e7:15:4a:91:4a:ac:e9:17:63:66:b9: 28:dc:80:2b:f6:8b:e9:5a:fc:e9:36:89:fd:ba:76: dc:3e:ca:4b:f0:ac:79:5f:a9:9d:40:f4:99:62:ed: 4e:65:95:6a:2b:0d:32:80:25:b1:24:a2:d9:9c:2e: a5:8d:f1:cf:c2:4e:f4:be:16:83:c1:65:3f:0c:be: 17:fb:6e:d4:3c:e1:b7:45:b3:78:44:5f:81:ea:ce: 2c:a5:75:fd:46:8d:5f:5e:7b:2d:b0:71:1b:54:2d: 87:4b:c4:b2:73:9b:68:01:e0:da:21:a9:72:81:c2: 0d:2b:71:e8:b0:07:eb:9e:d9:d3:d6:da:ac:61:f0: e4:7b:18:eb:a9:f1:13:bd:2b:cd:0c:82:63:4c:be: ca:e7:7a:db:90:bc:a2:8d:2c:00:9c:1b:6e:fd:23: 54:fd:5c:fa:04:46:b9:b9:ac:7b:a1:ab:6d:9f:a9: b9:d8:e6:bc:26:5f:f3:c8:aa:c6:71:6f:0f:6f:9c: eb:03:ff:8a:28:00:ec:1c:9c:54:18:a1:1a:46:74: 09:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:85:D5:94:FA:7E:EA:C3:BD:0A:31:D8:49:BF:BD:EA:E3:CA:0B:3C X509v3 Authority Key Identifier: keyid:B5:A6:8A:DE:81:32:2F:19:43:20:BE:43:02:C6:89:7D:29:D1:3B:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/B5A68ADE81322F194320BE4302C6897D29D13BDD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5A68ADE81322F194320BE4302C6897D29D13BDD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/3130332e33382e3130362e302f32332d3234203d3e20313532303039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.106.0/23 Signature Algorithm: sha256WithRSAEncryption 14:ac:f6:d8:ee:27:4d:21:06:42:b8:f2:e4:ed:37:c9:71:a1: 35:13:8f:e6:e3:e7:c6:60:05:d9:b9:ec:b8:40:5a:64:88:7e: 2d:ed:e6:b7:42:42:65:a2:65:7f:3b:12:50:cf:c2:c2:a6:4d: 17:c5:b9:0a:b1:48:18:4e:9c:9b:81:ca:ec:e8:dc:b5:88:cd: e5:4b:38:62:21:d2:47:22:09:db:f8:b0:50:7d:f1:96:cb:ed: 95:d5:3e:22:35:ef:ce:1f:70:d3:94:a2:05:24:cc:00:6b:a3: d6:9e:d0:d7:9a:78:98:f3:d5:1c:27:8d:9c:6f:f1:19:e8:96: 1f:9a:15:e4:2c:3c:c7:9e:08:bf:53:45:c5:46:71:5e:49:25: 56:36:63:5d:e8:e2:80:43:44:0f:f8:44:a0:65:9c:21:d1:39: f7:2e:eb:f8:bd:b2:2f:4d:31:60:5f:a4:d6:12:3b:aa:79:37: b9:52:db:4d:74:d2:c9:bd:52:f5:3e:97:d3:dd:45:8b:5b:7d: 02:ca:75:06:e3:54:9e:c7:5c:c2:ba:d8:5d:be:6e:60:e4:a2: a6:d0:2b:f9:19:5f:b9:e5:ff:b3:b7:d9:d6:ae:ec:78:4d:9a: 3e:37:97:ac:70:36:e1:62:b2:f6:e4:08:cb:4e:e6:cf:92:35: 71:fe:ae:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeATy38S2vuc8C4CSn6cW17O3U+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBNjhBREU4MTMyMkYxOTQzMjBCRTQzMDJDNjg5N0Qy OUQxM0JERDAeFw0yNTA3MTUwMzU3NTBaFw0yNjA3MTQwNDAyNTBaMDMxMTAvBgNV BAMTKDlCODVENTk0RkE3RUVBQzNCRDBBMzFEODQ5QkZCREVBRTNDQTBCM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq6UWb3pI8tsGiH6qBJHzTmjen c8zCEdgXPjusrDvKJwYlRTcT78TLiniHwesubM/nFUqRSqzpF2NmuSjcgCv2i+la /Ok2if26dtw+ykvwrHlfqZ1A9Jli7U5llWorDTKAJbEkotmcLqWN8c/CTvS+FoPB ZT8Mvhf7btQ84bdFs3hEX4Hqziyldf1GjV9eey2wcRtULYdLxLJzm2gB4NohqXKB wg0rceiwB+ue2dPW2qxh8OR7GOup8RO9K80MgmNMvsrnetuQvKKNLACcG279I1T9 XPoERrm5rHuhq22fqbnY5rwmX/PIqsZxbw9vnOsD/4ooAOwcnFQYoRpGdAnBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm4XVlPp+6sO9CjHYSb+96uPKCzwwHwYDVR0j BBgwFoAUtaaK3oEyLxlDIL5DAsaJfSnRO90wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjAxNjA4NS0yZjk0LTQwZmYtODBjZS1jZTIzZDM5ZTY1YTEvMC9CNUE2OEFERTgx MzIyRjE5NDMyMEJFNDMwMkM2ODk3RDI5RDEzQkRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVBNjhBREU4MTMyMkYxOTQzMjBCRTQzMDJDNjg5N0QyOUQx M0JERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiMDE2MDg1LTJmOTQtNDBmZi04 MGNlLWNlMjNkMzllNjVhMS8wLzMxMzAzMzJlMzMzODJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZyZqMA0GCSqG SIb3DQEBCwUAA4IBAQAUrPbY7idNIQZCuPLk7TfJcaE1E4/m4+fGYAXZuey4QFpk iH4t7ea3QkJlomV/OxJQz8LCpk0XxbkKsUgYTpybgcrs6Ny1iM3lSzhiIdJHIgnb +LBQffGWy+2V1T4iNe/OH3DTlKIFJMwAa6PWntDXmniY89UcJ42cb/EZ6JYfmhXk LDzHngi/U0XFRnFeSSVWNmNd6OKAQ0QP+ESgZZwh0Tn3Luv4vbIvTTFgX6TWEjuq eTe5UttNdNLJvVL1PpfT3UWLW30CynUG41Sex1zCuthdvm5g5KKm0Cv5GV+55f+z t9nWrux4TZo+N5escDbhYrL25AjLTubPkjVx/q6Y -----END CERTIFICATE-----Generated at Fri Aug 8 00:19:38 2025 by rpki-client