$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa File: 3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa (raw, json) Hash identifier: IhDRQtUCQIm4IOPr5vP9tEfWgB4QjIXQlUOAr7HBNq4= Subject key identifier: 89:5C:2F:D5:54:16:A9:A2:2F:B7:D6:70:0B:0B:07:3F:6A:C8:69:B3 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 6F8D423F78B075E2510EBD95FB08DE5F3D04094E Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa Signing time: Wed 10 Sep 2025 06:00:02 +0000 ROA not before: Wed 10 Sep 2025 05:55:02 +0000 ROA not after: Wed 09 Sep 2026 06:00:02 +0000 asID: 17727 IP address blocks: 103.105.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:8d:42:3f:78:b0:75:e2:51:0e:bd:95:fb:08:de:5f:3d:04:09:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Sep 10 05:55:02 2025 GMT Not After : Sep 9 06:00:02 2026 GMT Subject: CN=895C2FD55416A9A22FB7D6700B0B073F6AC869B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f6:9d:39:43:02:ff:34:28:21:e2:c4:48:93: c2:37:e4:a8:c6:2f:58:72:7f:87:b1:35:b9:bb:40: 26:c1:be:4a:d2:75:51:0a:84:87:4b:96:f1:3a:54: 64:ab:45:f5:b1:bd:25:b1:d7:46:61:34:3e:4a:03: 1c:1c:3c:03:cd:3e:c6:a5:fe:32:4f:9b:26:4e:d7: 32:19:ce:e8:a1:cd:3a:b7:15:36:08:77:7a:11:bf: 80:c1:48:0b:08:4e:b4:8f:26:94:4e:46:d8:4a:29: 26:c7:14:e8:cc:fa:65:ea:08:50:b3:66:9d:06:f7: 7d:0a:4d:d8:c9:16:c0:d0:a3:8f:f7:30:56:ad:55: eb:1a:cc:b9:a7:18:2b:a2:c0:59:c7:5c:2f:d2:1c: 09:c5:b6:96:2b:ca:38:e8:80:d5:b3:dd:8c:21:8c: 8f:80:b8:96:34:55:09:b0:70:19:42:1b:1a:20:e6: 78:a6:14:c3:8b:52:be:47:79:70:7b:5e:b9:90:89: 08:66:9f:16:8a:29:b0:a7:ce:19:fd:c0:e6:68:50: b0:86:7f:f6:b6:6c:b2:4b:a2:25:41:c1:42:e7:af: dc:cc:81:36:c0:f2:2a:d6:86:0f:34:e6:0f:e2:8b: 7d:4c:d9:96:e0:1a:1d:23:6e:b7:64:62:a1:5e:ba: b8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5C:2F:D5:54:16:A9:A2:2F:B7:D6:70:0B:0B:07:3F:6A:C8:69:B3 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32322d3232203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.128.0/22 Signature Algorithm: sha256WithRSAEncryption ea:ab:5d:c9:29:d5:ad:95:45:a1:20:9f:47:e7:d6:e2:d0:e0: 9b:3b:bd:19:a3:58:61:0d:b8:dd:42:b1:a4:10:83:5b:fc:a4: 1b:e0:bf:e1:61:cd:e4:35:ff:ea:19:0b:c7:fb:2f:25:e3:26: 2e:f4:76:1f:a1:a7:0b:3c:d4:9b:a5:6f:59:df:a9:a8:e7:be: 03:64:fd:7e:38:6a:cd:dc:84:ab:f4:85:63:ab:38:48:bc:26: 5e:fb:79:47:ec:b0:c7:a2:d2:b1:b0:1b:ae:7f:af:8b:39:4f: 98:11:10:e7:90:29:9e:3a:5f:35:fb:72:c7:80:47:4d:f7:10: db:70:75:62:e8:f4:0b:cc:f9:b3:46:b4:64:a2:53:ac:09:e3: ee:ce:a8:15:02:14:4d:10:6f:52:12:76:28:b7:c3:a8:07:d9: cf:a8:9a:39:c5:54:10:db:8e:74:67:8d:aa:6d:d9:81:7d:b4: 5d:19:ab:76:41:81:63:3d:07:27:0b:da:f3:68:a1:3d:73:04: 41:ad:8e:da:ce:37:5b:ea:e1:92:29:d9:b4:7c:93:ee:ca:01: eb:4b:ee:fa:7e:1a:28:f0:ea:5b:78:cd:e8:86:5d:fb:d4:6f: 84:f7:74:b0:89:cd:d7:9f:8e:e3:80:77:8e:db:b7:3a:f5:36: c0:d1:a7:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb41CP3iwdeJRDr2V+wjeXz0ECU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yNTA5MTAwNTU1MDJaFw0yNjA5MDkwNjAwMDJaMDMxMTAvBgNV BAMTKDg5NUMyRkQ1NTQxNkE5QTIyRkI3RDY3MDBCMEIwNzNGNkFDODY5QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY9p05QwL/NCgh4sRIk8I35KjG L1hyf4exNbm7QCbBvkrSdVEKhIdLlvE6VGSrRfWxvSWx10ZhND5KAxwcPAPNPsal /jJPmyZO1zIZzuihzTq3FTYId3oRv4DBSAsITrSPJpRORthKKSbHFOjM+mXqCFCz Zp0G930KTdjJFsDQo4/3MFatVesazLmnGCuiwFnHXC/SHAnFtpYryjjogNWz3Ywh jI+AuJY0VQmwcBlCGxog5nimFMOLUr5HeXB7XrmQiQhmnxaKKbCnzhn9wOZoULCG f/a2bLJLoiVBwULnr9zMgTbA8irWhg805g/ii31M2ZbgGh0jbrdkYqFeurgvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiVwv1VQWqaIvt9ZwCwsHP2rIabMwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2mAMA0GCSqG SIb3DQEBCwUAA4IBAQDqq13JKdWtlUWhIJ9H59bi0OCbO70Zo1hhDbjdQrGkEINb /KQb4L/hYc3kNf/qGQvH+y8l4yYu9HYfoacLPNSbpW9Z36mo574DZP1+OGrN3ISr 9IVjqzhIvCZe+3lH7LDHotKxsBuuf6+LOU+YERDnkCmeOl81+3LHgEdN9xDbcHVi 6PQLzPmzRrRkolOsCePuzqgVAhRNEG9SEnYot8OoB9nPqJo5xVQQ2450Z42qbdmB fbRdGat2QYFjPQcnC9rzaKE9cwRBrY7azjdb6uGSKdm0fJPuygHrS+76fhoo8Opb eM3ohl371G+E93Swic3Xn47jgHeO27c69TbA0adZ -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:04 2025 by rpki-client