$ rpki-client -vvf repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131382e302f32342d3234203d3e203634303234.roa File: 3130332e3231302e3131382e302f32342d3234203d3e203634303234.roa (raw, json) Hash identifier: tavtmJbAGyPVyKNkS1yIlicvomGLqf7gKFQGKl+8wbg= Subject key identifier: D6:4F:25:18:D1:59:2E:1C:8A:26:4A:29:9D:A4:32:54:0B:3F:66:BD Certificate issuer: /CN=BFE0F552446CE5C263D85414C72E8DD74CBC5EE9 Certificate serial: 63F5B3BA0D361FA7CE2E4040767B3A6AA58C4FA3 Authority key identifier: BF:E0:F5:52:44:6C:E5:C2:63:D8:54:14:C7:2E:8D:D7:4C:BC:5E:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131382e302f32342d3234203d3e203634303234.roa Signing time: Tue 01 Jul 2025 10:00:02 +0000 ROA not before: Tue 01 Jul 2025 09:55:02 +0000 ROA not after: Tue 30 Jun 2026 10:00:02 +0000 asID: 64024 IP address blocks: 103.210.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.crl rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f5:b3:ba:0d:36:1f:a7:ce:2e:40:40:76:7b:3a:6a:a5:8c:4f:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFE0F552446CE5C263D85414C72E8DD74CBC5EE9 Validity Not Before: Jul 1 09:55:02 2025 GMT Not After : Jun 30 10:00:02 2026 GMT Subject: CN=D64F2518D1592E1C8A264A299DA432540B3F66BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e1:59:6c:3c:36:47:2d:14:40:a4:ae:70:c3: d3:75:67:36:62:10:ed:67:97:e2:42:1f:c0:c1:b0: 67:5e:21:51:37:f5:ce:e4:17:b0:9a:04:bb:ec:1c: e4:19:94:ff:93:bd:9e:8d:37:8e:c5:1c:8c:4c:43: 8c:ca:ee:98:e0:a6:4b:0b:54:0e:95:7b:ce:0d:7e: 32:89:19:ce:41:f2:a2:88:9a:9b:04:e1:65:9a:8a: 67:98:c1:5b:c9:a9:58:12:21:f7:61:87:71:36:b2: 93:a7:e3:2b:0d:46:0d:3f:f4:7b:65:15:0f:3c:1d: 03:b9:0c:68:0f:9e:a2:27:2d:2c:35:36:52:ea:8c: 31:30:9b:ae:3b:88:de:e2:fb:cd:a5:3d:7d:aa:d3: ea:c3:8c:f5:42:08:ed:1b:34:5b:b7:ea:b3:eb:8a: 09:a0:91:2f:db:84:6a:5f:6b:09:61:1b:03:3d:bb: b6:51:cf:fe:47:24:c8:26:82:dd:43:1e:94:51:4e: 7e:57:d6:ad:05:a7:1a:11:ed:f3:27:ca:84:0f:22: 5c:32:9d:af:6d:21:16:23:a9:54:f3:ef:31:f3:78: ae:67:8b:e1:d2:08:27:72:75:92:14:95:ae:9a:0b: 2d:fb:1b:b4:5a:c9:5e:6f:81:b5:0b:43:fe:3a:d3: be:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4F:25:18:D1:59:2E:1C:8A:26:4A:29:9D:A4:32:54:0B:3F:66:BD X509v3 Authority Key Identifier: keyid:BF:E0:F5:52:44:6C:E5:C2:63:D8:54:14:C7:2E:8D:D7:4C:BC:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BFE0F552446CE5C263D85414C72E8DD74CBC5EE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1fd351e-2bd7-4191-9106-53f875016f0e/0/3130332e3231302e3131382e302f32342d3234203d3e203634303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.118.0/24 Signature Algorithm: sha256WithRSAEncryption 94:b4:49:8d:de:e2:b0:c5:85:fc:3b:41:7c:2b:2d:77:4b:8c: 97:85:19:68:30:18:20:1f:ba:65:bd:fd:35:17:49:4f:30:c8: c7:07:d3:b5:3d:0a:13:a8:70:6a:00:07:e9:55:df:61:17:27: 8a:d8:69:10:26:83:2e:85:c9:4c:36:71:74:73:6b:a3:89:47: 90:ec:3e:9c:b1:db:b6:25:b9:60:94:6a:7f:0a:00:ea:dd:2a: 32:70:d3:23:69:f7:b8:90:9d:f3:9d:cf:10:c1:3d:41:58:90: 59:1b:a0:ed:02:77:04:8e:28:a4:b9:d8:05:16:c2:f3:de:6c: 33:f8:59:12:9f:04:02:90:08:1b:05:40:3b:c0:26:41:66:7a: 1e:f8:35:11:07:f5:da:25:ab:8d:a4:a2:53:d7:0f:31:04:e0: 11:2a:1a:de:71:9b:69:68:fa:f7:22:c0:84:d3:36:38:90:f9: 28:ea:1d:19:8e:a3:3f:a5:4b:4b:73:d9:86:62:80:5e:26:53: 20:67:91:64:b8:a0:74:04:a1:21:b7:34:09:f7:a5:44:45:46: fd:5b:8a:9c:00:7e:a1:ca:22:67:8e:68:b9:22:a4:9f:cf:59: af:1e:f3:2b:e3:69:85:1d:81:5c:52:2a:90:5b:16:6d:38:68: c5:4a:40:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY/Wzug02H6fOLkBAdns6aqWMT6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZFMEY1NTI0NDZDRTVDMjYzRDg1NDE0QzcyRThERDc0 Q0JDNUVFOTAeFw0yNTA3MDEwOTU1MDJaFw0yNjA2MzAxMDAwMDJaMDMxMTAvBgNV BAMTKEQ2NEYyNTE4RDE1OTJFMUM4QTI2NEEyOTlEQTQzMjU0MEIzRjY2QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt4VlsPDZHLRRApK5ww9N1ZzZi EO1nl+JCH8DBsGdeIVE39c7kF7CaBLvsHOQZlP+TvZ6NN47FHIxMQ4zK7pjgpksL VA6Ve84NfjKJGc5B8qKImpsE4WWaimeYwVvJqVgSIfdhh3E2spOn4ysNRg0/9Htl FQ88HQO5DGgPnqInLSw1NlLqjDEwm647iN7i+82lPX2q0+rDjPVCCO0bNFu36rPr igmgkS/bhGpfawlhGwM9u7ZRz/5HJMgmgt1DHpRRTn5X1q0FpxoR7fMnyoQPIlwy na9tIRYjqVTz7zHzeK5ni+HSCCdydZIUla6aCy37G7RayV5vgbULQ/46077VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1k8lGNFZLhyKJkopnaQyVAs/Zr0wHwYDVR0j BBgwFoAUv+D1UkRs5cJj2FQUxy6N10y8XukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWZkMzUxZS0yYmQ3LTQxOTEtOTEwNi01M2Y4NzUwMTZmMGUvMC9CRkUwRjU1MjQ0 NkNFNUMyNjNEODU0MTRDNzJFOERENzRDQkM1RUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkZFMEY1NTI0NDZDRTVDMjYzRDg1NDE0QzcyRThERDc0Q0JD NUVFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxZmQzNTFlLTJiZDctNDE5MS05 MTA2LTUzZjg3NTAxNmYwZS8wLzMxMzAzMzJlMzIzMTMwMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9J2MA0GCSqG SIb3DQEBCwUAA4IBAQCUtEmN3uKwxYX8O0F8Ky13S4yXhRloMBggH7plvf01F0lP MMjHB9O1PQoTqHBqAAfpVd9hFyeK2GkQJoMuhclMNnF0c2ujiUeQ7D6csdu2Jblg lGp/CgDq3SoycNMjafe4kJ3znc8QwT1BWJBZG6DtAncEjiikudgFFsLz3mwz+FkS nwQCkAgbBUA7wCZBZnoe+DURB/XaJauNpKJT1w8xBOARKhrecZtpaPr3IsCE0zY4 kPko6h0ZjqM/pUtLc9mGYoBeJlMgZ5FkuKB0BKEhtzQJ96VERUb9W4qcAH6hyiJn jmi5IqSfz1mvHvMr42mFHYFcUiqQWxZtOGjFSkBd -----END CERTIFICATE-----Generated at Sat Aug 9 20:41:11 2025 by rpki-client