$ rpki-client -vvf repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131362e302f32342d3234203d3e203634303234.roa File: 3130332e3231302e3131362e302f32342d3234203d3e203634303234.roa (raw, json) Hash identifier: yMj7uFI234xCcazZ5UUXhaecBl1WVAuun+atXN8IBlQ= Subject key identifier: AC:CB:43:DD:BA:72:E8:B7:A2:DE:1E:CC:6E:BA:C9:2A:65:AD:45:BB Certificate issuer: /CN=BFE0F552446CE5C263D85414C72E8DD74CBC5EE9 Certificate serial: 3537EA247DC1431364F10F0FDFA55529DE31E378 Authority key identifier: BF:E0:F5:52:44:6C:E5:C2:63:D8:54:14:C7:2E:8D:D7:4C:BC:5E:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131362e302f32342d3234203d3e203634303234.roa Signing time: Tue 01 Jul 2025 10:00:02 +0000 ROA not before: Tue 01 Jul 2025 09:55:02 +0000 ROA not after: Tue 30 Jun 2026 10:00:02 +0000 asID: 64024 IP address blocks: 103.210.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.crl rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:37:ea:24:7d:c1:43:13:64:f1:0f:0f:df:a5:55:29:de:31:e3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFE0F552446CE5C263D85414C72E8DD74CBC5EE9 Validity Not Before: Jul 1 09:55:02 2025 GMT Not After : Jun 30 10:00:02 2026 GMT Subject: CN=ACCB43DDBA72E8B7A2DE1ECC6EBAC92A65AD45BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:be:2f:91:79:0f:60:86:da:ca:bd:cf:a4:96: de:0d:7c:8e:07:d4:40:e0:d6:4a:f3:e4:01:c4:44: 11:7d:4c:92:2f:19:5d:76:49:d7:c8:a4:c1:d4:b7: 29:a1:42:88:6d:83:d8:e2:79:9c:ba:19:15:ce:80: ac:a0:85:42:9c:db:60:15:c7:a8:53:2e:59:4c:f1: 4b:da:f5:d5:89:a2:84:ad:8d:1e:a5:4d:64:89:1c: d6:19:70:85:ba:18:50:37:aa:52:b6:60:df:b2:84: c7:44:38:49:1f:89:47:fb:b6:52:97:28:6f:18:4e: 4a:fd:4f:ce:4f:ab:44:f5:49:ad:0f:ec:94:6b:4c: 0a:96:6e:e1:6e:ae:4b:91:b6:ce:57:f6:23:d6:11: a2:2a:f1:57:a8:f8:e5:c6:9d:04:a5:bf:08:4b:fe: f6:c7:fd:5a:e2:da:e2:9d:15:23:e0:19:89:a1:68: 18:9e:c4:7f:c2:4d:b2:a3:70:0e:f1:b8:2d:7e:75: 48:6d:61:31:9a:73:a5:f7:3b:c3:d1:8b:a8:75:7a: ab:7f:81:d0:39:07:84:18:cc:b2:ed:49:df:9d:a9: cd:ed:88:f6:ba:14:e1:00:0c:0c:ce:a7:8e:1a:08: 86:35:a3:9d:9f:c1:1e:c8:89:d9:12:12:01:ab:6d: 4e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CB:43:DD:BA:72:E8:B7:A2:DE:1E:CC:6E:BA:C9:2A:65:AD:45:BB X509v3 Authority Key Identifier: keyid:BF:E0:F5:52:44:6C:E5:C2:63:D8:54:14:C7:2E:8D:D7:4C:BC:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131362e302f32342d3234203d3e203634303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.116.0/24 Signature Algorithm: sha256WithRSAEncryption 11:e0:d8:8a:65:86:34:84:b4:78:ab:20:ca:45:d1:8a:10:2f: b9:45:ea:57:7b:ac:dc:e7:16:1c:3c:88:2b:40:eb:84:58:00: 6f:94:a2:91:6b:82:fa:e7:e6:eb:fd:9b:5f:5b:02:13:2a:2e: 60:21:b1:84:eb:88:3e:54:ea:f9:4c:99:fd:75:93:85:f1:8a: 9b:f3:c8:45:f8:bd:e8:43:2d:e5:7b:d5:dd:ee:69:db:e6:7f: e3:c6:d5:b7:69:d6:bb:28:4e:f3:5e:58:77:15:0a:b3:8d:62: 80:21:24:75:66:ae:75:a0:80:46:96:e4:1d:54:a0:b5:84:3f: 78:da:e5:a3:d6:a4:02:73:87:00:91:10:57:63:28:3e:18:a4: 95:5c:4b:27:4a:10:97:e1:05:73:9d:61:13:cd:d3:01:0e:da: 28:9c:a1:7a:c8:e6:0f:c7:46:81:46:a2:a0:7c:85:30:59:6d: 4f:0e:62:f1:aa:1a:2c:54:81:14:8f:5c:0a:25:de:85:7d:e1: 15:82:a1:82:48:82:7b:02:0f:9b:9a:03:24:ae:0d:7d:f4:44: b8:98:1b:6d:5c:da:ec:d9:68:87:df:0c:17:1c:c0:d9:a6:c4: fb:1e:48:1f:27:df:24:99:fc:64:10:bc:d7:80:51:86:64:bb: 1e:14:c8:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNTfqJH3BQxNk8Q8P36VVKd4x43gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZFMEY1NTI0NDZDRTVDMjYzRDg1NDE0QzcyRThERDc0 Q0JDNUVFOTAeFw0yNTA3MDEwOTU1MDJaFw0yNjA2MzAxMDAwMDJaMDMxMTAvBgNV BAMTKEFDQ0I0M0REQkE3MkU4QjdBMkRFMUVDQzZFQkFDOTJBNjVBRDQ1QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3vi+ReQ9ghtrKvc+klt4NfI4H 1EDg1krz5AHERBF9TJIvGV12SdfIpMHUtymhQohtg9jieZy6GRXOgKyghUKc22AV x6hTLllM8Uva9dWJooStjR6lTWSJHNYZcIW6GFA3qlK2YN+yhMdEOEkfiUf7tlKX KG8YTkr9T85Pq0T1Sa0P7JRrTAqWbuFurkuRts5X9iPWEaIq8Veo+OXGnQSlvwhL /vbH/Vri2uKdFSPgGYmhaBiexH/CTbKjcA7xuC1+dUhtYTGac6X3O8PRi6h1eqt/ gdA5B4QYzLLtSd+dqc3tiPa6FOEADAzOp44aCIY1o52fwR7IidkSEgGrbU4zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrMtD3bpy6Lei3h7MbrrJKmWtRbswHwYDVR0j BBgwFoAUv+D1UkRs5cJj2FQUxy6N10y8XukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWZkMzUxZS0yYmQ3LTQxOTEtOTEwNi01M2Y4NzUwMTZmMGUvMC9CRkUwRjU1MjQ0 NkNFNUMyNjNEODU0MTRDNzJFOERENzRDQkM1RUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkZFMEY1NTI0NDZDRTVDMjYzRDg1NDE0QzcyRThERDc0Q0JD NUVFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxZmQzNTFlLTJiZDctNDE5MS05 MTA2LTUzZjg3NTAxNmYwZS8wLzMxMzAzMzJlMzIzMTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9J0MA0GCSqG SIb3DQEBCwUAA4IBAQAR4NiKZYY0hLR4qyDKRdGKEC+5RepXe6zc5xYcPIgrQOuE WABvlKKRa4L65+br/ZtfWwITKi5gIbGE64g+VOr5TJn9dZOF8Yqb88hF+L3oQy3l e9Xd7mnb5n/jxtW3ada7KE7zXlh3FQqzjWKAISR1Zq51oIBGluQdVKC1hD942uWj 1qQCc4cAkRBXYyg+GKSVXEsnShCX4QVznWETzdMBDtoonKF6yOYPx0aBRqKgfIUw WW1PDmLxqhosVIEUj1wKJd6FfeEVgqGCSIJ7Ag+bmgMkrg199ES4mBttXNrs2WiH 3wwXHMDZpsT7HkgfJ98kmfxkELzXgFGGZLseFMjB -----END CERTIFICATE-----Generated at Sat Aug 9 20:40:28 2025 by rpki-client