$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32332d3233203d3e20313338303837.roa File: 3130332e3132352e31382e302f32332d3233203d3e20313338303837.roa (raw, json) Hash identifier: WglNMON1uFXdqdZO+92FBvvihsTNbskJIYYFQnplXHc= Subject key identifier: 8D:41:86:0B:50:B6:B1:5A:3A:10:52:E1:CF:75:96:C6:9F:23:72:D5 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 125CA42B7A2C3D9321DCF4554C44C510478BDF71 Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32332d3233203d3e20313338303837.roa Signing time: Sat 02 Aug 2025 10:00:58 +0000 ROA not before: Sat 02 Aug 2025 09:55:58 +0000 ROA not after: Sat 01 Aug 2026 10:00:58 +0000 asID: 138087 IP address blocks: 103.125.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:5c:a4:2b:7a:2c:3d:93:21:dc:f4:55:4c:44:c5:10:47:8b:df:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Aug 2 09:55:58 2025 GMT Not After : Aug 1 10:00:58 2026 GMT Subject: CN=8D41860B50B6B15A3A1052E1CF7596C69F2372D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2b:57:cb:2f:53:a5:b5:6b:94:f3:fd:86:b3: 73:bd:f0:b5:07:aa:ee:04:2d:76:e3:ca:4c:ed:5b: d2:a4:b3:81:a7:56:a5:57:d5:b6:e8:78:0a:19:ed: e3:e1:3e:91:88:39:9c:34:bb:33:b9:92:cd:a8:8c: 95:ec:c6:22:f3:2d:b1:6f:b5:53:c3:ad:f6:10:c9: eb:f1:7d:e6:57:ac:3e:d4:3f:01:43:8b:c3:27:38: 52:2f:58:f3:e5:06:4c:20:f5:33:28:c3:7a:ef:cf: e4:26:dd:ec:0d:93:88:21:3b:0b:37:fe:b3:7f:5a: d7:70:79:be:ee:44:03:2b:6a:6b:de:8c:01:8c:ff: 4d:56:72:f4:92:31:1c:b8:96:77:d2:78:fd:dc:a9: f5:e0:88:8b:3c:d2:ef:44:57:16:c8:f3:78:ab:08: 5c:04:7a:69:36:f7:11:b2:69:72:25:3e:41:97:d5: d3:f3:33:36:c7:23:14:e5:b0:20:c9:b9:ed:18:c2: 02:d5:e0:12:2b:8d:d6:ab:ee:f5:bd:77:c4:7f:30: c6:01:b6:8d:ff:af:3e:1f:39:93:51:d6:4e:eb:de: 95:ad:ee:9a:c8:be:c4:73:42:fe:90:aa:8d:d6:30: d6:34:9a:fd:9b:a6:0f:50:89:cd:37:d6:91:48:be: f3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:41:86:0B:50:B6:B1:5A:3A:10:52:E1:CF:75:96:C6:9F:23:72:D5 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32332d3233203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.18.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:87:b1:7c:74:81:20:01:8d:9c:d6:de:9f:ef:98:ea:24:ef: 80:7b:5d:d9:4a:7a:53:77:11:b6:78:cf:20:b0:57:d0:d7:b6: a2:d6:09:2f:03:d4:97:92:b3:55:4f:3f:4e:88:fb:eb:20:bb: 55:18:27:ab:f3:d7:e3:75:85:72:0f:e3:4a:b3:98:2d:b9:a8: 73:96:fe:64:33:fd:d8:24:d7:6e:e1:a4:7f:be:f5:a8:16:9a: cb:1f:da:62:97:44:5c:6a:b5:27:af:8f:dc:df:c6:b0:ec:e3: 5b:99:a9:6e:e4:84:2d:ee:83:5c:80:43:b6:f6:0d:b7:30:9f: e2:27:a0:f6:f7:30:45:c2:82:a2:4e:de:e6:22:c2:42:a0:d6: 65:e9:3f:22:e5:05:d6:4f:d6:e7:e6:b6:32:6c:28:d2:58:22: b8:04:73:39:15:37:ae:5f:18:70:e7:18:25:3d:d2:07:8f:91: 48:40:28:1d:63:3f:33:93:4c:7c:d7:09:8a:ea:35:c5:6c:f1: c2:08:7a:71:2a:f9:78:79:3d:7c:e5:cb:de:7d:76:e5:5a:65: d2:99:b6:c1:a7:58:d0:76:7d:3e:8d:ea:d6:69:49:8a:7a:95: 4b:8c:70:0c:56:a1:7b:8f:6a:71:24:28:55:23:26:e9:15:bf: 37:a6:bf:d2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUElykK3osPZMh3PRVTETFEEeL33EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNTA4MDIwOTU1NThaFw0yNjA4MDExMDAwNThaMDMxMTAvBgNV BAMTKDhENDE4NjBCNTBCNkIxNUEzQTEwNTJFMUNGNzU5NkM2OUYyMzcyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6K1fLL1OltWuU8/2Gs3O98LUH qu4ELXbjykztW9Kks4GnVqVX1bboeAoZ7ePhPpGIOZw0uzO5ks2ojJXsxiLzLbFv tVPDrfYQyevxfeZXrD7UPwFDi8MnOFIvWPPlBkwg9TMow3rvz+Qm3ewNk4ghOws3 /rN/Wtdweb7uRAMramvejAGM/01WcvSSMRy4lnfSeP3cqfXgiIs80u9EVxbI83ir CFwEemk29xGyaXIlPkGX1dPzMzbHIxTlsCDJue0YwgLV4BIrjdar7vW9d8R/MMYB to3/rz4fOZNR1k7r3pWt7prIvsRzQv6Qqo3WMNY0mv2bpg9Qic031pFIvvMjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjUGGC1C2sVo6EFLhz3WWxp8jctUwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ30SMA0GCSqG SIb3DQEBCwUAA4IBAQB6h7F8dIEgAY2c1t6f75jqJO+Ae13ZSnpTdxG2eM8gsFfQ 17ai1gkvA9SXkrNVTz9OiPvrILtVGCer89fjdYVyD+NKs5gtuahzlv5kM/3YJNdu 4aR/vvWoFprLH9pil0RcarUnr4/c38aw7ONbmalu5IQt7oNcgEO29g23MJ/iJ6D2 9zBFwoKiTt7mIsJCoNZl6T8i5QXWT9bn5rYybCjSWCK4BHM5FTeuXxhw5xglPdIH j5FIQCgdYz8zk0x81wmK6jXFbPHCCHpxKvl4eT185cvefXblWmXSmbbBp1jQdn0+ jerWaUmKepVLjHAMVqF7j2pxJChVIybpFb83pr/S -----END CERTIFICATE-----Generated at Thu Aug 7 11:23:55 2025 by rpki-client