$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: X2PEKknjtTcnLsrGiadMk08xxZNciTvdVjNrgOP4sHk= Subject key identifier: 10:65:4D:EE:22:75:94:BE:F3:A3:E3:13:3E:8B:87:2C:E7:38:07:79 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 653DB092C8E2A7F516BCB25B4C8FEBB4A8467574 Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa Signing time: Wed 10 Sep 2025 05:00:02 +0000 ROA not before: Wed 10 Sep 2025 04:55:02 +0000 ROA not after: Wed 09 Sep 2026 05:00:02 +0000 asID: 17727 IP address blocks: 103.105.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 14:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3d:b0:92:c8:e2:a7:f5:16:bc:b2:5b:4c:8f:eb:b4:a8:46:75:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Sep 10 04:55:02 2025 GMT Not After : Sep 9 05:00:02 2026 GMT Subject: CN=10654DEE227594BEF3A3E3133E8B872CE7380779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:8e:df:fc:5d:9b:7e:58:ba:36:f0:ad:59: bb:01:15:d7:6a:f6:41:05:c8:29:95:a6:23:25:52: a8:a4:30:50:b0:f0:c8:7c:ac:7d:5b:7f:52:14:62: 33:08:ea:c5:51:ba:4d:b6:e1:99:8a:ee:cf:b4:01: c4:01:69:87:6d:78:f4:72:f6:75:a0:6d:73:2b:79: 5d:e0:9d:4b:1f:96:5f:9c:26:6d:85:ab:ef:54:78: ad:f1:df:e5:f4:58:fb:91:b8:d5:6e:01:3f:6d:2d: 9f:6b:d5:39:08:da:31:3f:d2:7f:b4:26:53:9e:79: 21:4f:07:cc:34:97:ad:09:ac:6b:06:ab:25:2c:3e: 38:db:ec:ad:70:64:8b:98:a5:f6:1e:7c:3e:6e:2a: 84:c8:20:28:42:84:fb:8e:24:e6:6c:92:9b:8b:d9: 1c:a3:9f:53:72:8c:9c:bf:4b:ef:d3:c6:09:ea:af: 76:13:3c:11:9f:fa:48:27:56:74:b9:3b:03:aa:80: dc:9b:0e:17:1f:68:3c:68:5c:7d:6e:5c:8e:93:8f: 10:15:13:3d:00:36:73:37:f9:d2:23:79:97:46:5e: be:94:a7:1d:68:66:0c:24:fe:99:d9:9e:a4:d4:98: 61:e9:82:08:61:ed:90:d4:93:3e:6d:e0:ae:f9:36: e6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:65:4D:EE:22:75:94:BE:F3:A3:E3:13:3E:8B:87:2C:E7:38:07:79 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:63:3a:ef:46:43:be:b7:6c:21:c4:9e:08:95:b6:05:b9:33: c8:cf:ff:a4:c6:96:2e:40:f2:12:77:1f:b8:a7:3a:22:aa:ae: 33:fc:a2:00:2a:18:fe:b1:2c:d5:c7:80:1a:92:f7:0f:45:5f: b2:53:08:96:6f:d6:ce:03:35:70:5c:26:88:5b:11:26:cd:69: f8:97:ef:8b:7c:03:bf:3e:95:6c:e6:8c:e8:b2:60:63:00:66: df:ce:01:41:46:4b:9e:ca:f3:48:d9:40:9f:81:0b:57:62:b6: 54:53:71:50:67:0e:21:09:84:b6:59:4c:f0:6c:c0:57:a2:f0: a9:61:0d:64:8d:65:c2:5f:de:1c:7c:ab:25:40:dd:fb:43:a3: 42:74:40:f2:9b:6e:68:21:e9:65:b8:93:59:5a:db:1b:2f:e8: cf:40:a3:d6:f8:75:a4:de:2d:18:87:31:11:d1:9d:89:f2:0d: d1:0e:36:0b:90:fe:44:1e:fd:82:bb:ec:3c:e7:14:bb:c5:3a: e1:24:c4:df:a1:61:ca:90:d6:9c:99:88:88:82:38:b8:fd:a5: 1f:94:ef:96:fe:6b:d0:5f:02:ea:44:5f:0c:6d:41:7c:91:00: 42:71:05:44:c7:48:eb:15:8c:35:a7:5c:68:10:d7:f8:2e:11: 88:45:4b:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZT2wksjip/UWvLJbTI/rtKhGdXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yNTA5MTAwNDU1MDJaFw0yNjA5MDkwNTAwMDJaMDMxMTAvBgNV BAMTKDEwNjU0REVFMjI3NTk0QkVGM0EzRTMxMzNFOEI4NzJDRTczODA3NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsv47f/F2bfli6NvCtWbsBFddq 9kEFyCmVpiMlUqikMFCw8Mh8rH1bf1IUYjMI6sVRuk224ZmK7s+0AcQBaYdtePRy 9nWgbXMreV3gnUsfll+cJm2Fq+9UeK3x3+X0WPuRuNVuAT9tLZ9r1TkI2jE/0n+0 JlOeeSFPB8w0l60JrGsGqyUsPjjb7K1wZIuYpfYefD5uKoTIIChChPuOJOZskpuL 2Ryjn1NyjJy/S+/Txgnqr3YTPBGf+kgnVnS5OwOqgNybDhcfaDxoXH1uXI6TjxAV Ez0ANnM3+dIjeZdGXr6Upx1oZgwk/pnZnqTUmGHpgghh7ZDUkz5t4K75NubDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEGVN7iJ1lL7zo+MTPouHLOc4B3kwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mAMA0GCSqG SIb3DQEBCwUAA4IBAQANYzrvRkO+t2whxJ4IlbYFuTPIz/+kxpYuQPISdx+4pzoi qq4z/KIAKhj+sSzVx4AakvcPRV+yUwiWb9bOAzVwXCaIWxEmzWn4l++LfAO/PpVs 5ozosmBjAGbfzgFBRkueyvNI2UCfgQtXYrZUU3FQZw4hCYS2WUzwbMBXovCpYQ1k jWXCX94cfKslQN37Q6NCdEDym25oIelluJNZWtsbL+jPQKPW+HWk3i0YhzER0Z2J 8g3RDjYLkP5EHv2Cu+w85xS7xTrhJMTfoWHKkNacmYiIgji4/aUflO+W/mvQXwLq RF8MbUF8kQBCcQVEx0jrFYw1p1xoENf4LhGIRUtO -----END CERTIFICATE-----Generated at Mon Oct 20 15:33:19 2025 by rpki-client