$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: hPyIxp0hj3k+joStahsmifFKwjq2yL5rkOsyq1Wlc34= Subject key identifier: 05:A8:F3:59:04:0A:B9:43:19:8C:17:91:47:4E:CB:73:6E:7E:78:04 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 241809EF4740362EFD315708AD8DD560FA5F4D5A Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa Signing time: Wed 10 Sep 2025 06:00:02 +0000 ROA not before: Wed 10 Sep 2025 05:55:02 +0000 ROA not after: Wed 09 Sep 2026 06:00:02 +0000 asID: 17727 IP address blocks: 103.105.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 14:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:18:09:ef:47:40:36:2e:fd:31:57:08:ad:8d:d5:60:fa:5f:4d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Sep 10 05:55:02 2025 GMT Not After : Sep 9 06:00:02 2026 GMT Subject: CN=05A8F359040AB943198C1791474ECB736E7E7804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a6:b6:8e:84:cc:f9:18:f1:0f:8f:c8:47:a2: 13:cb:26:56:85:7e:c6:41:94:37:b7:c0:b8:8b:35: 76:98:fb:2f:7c:1b:5a:b9:3a:8a:f4:60:1f:1d:35: af:cc:39:c0:7f:a7:f4:45:63:31:d7:c7:71:d3:05: a0:e3:3a:0b:c2:82:a2:9f:9a:f1:e1:73:bf:b8:c4: 7f:42:1b:66:85:9a:46:74:a2:38:34:6d:20:56:89: d2:ce:4e:48:d0:68:93:72:f0:1d:bc:5f:13:78:0c: c4:c4:ad:27:ff:57:90:36:84:76:22:a5:cf:91:27: 47:df:41:20:b7:c8:90:b5:d0:3d:41:60:39:57:bd: 86:22:6e:a4:18:ba:32:ef:45:e3:6b:c6:77:57:d2: d6:07:6b:d0:cd:ec:81:2e:78:61:fb:23:c7:a3:a2: 69:36:5c:a2:83:9b:63:e0:fe:69:c0:01:db:9b:19: 76:1d:bb:75:61:c4:6b:2d:c0:03:99:43:f0:0e:32: 8b:17:e6:88:66:2f:47:58:72:01:3e:30:ca:ab:6f: d3:06:06:52:2a:a6:cb:4c:4c:cb:ac:82:25:cb:16: d8:60:fb:f6:f8:62:1c:45:4c:e2:b0:33:1a:a4:d4: f7:9c:0e:86:d5:40:03:98:62:23:30:50:80:a7:ba: f8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A8:F3:59:04:0A:B9:43:19:8C:17:91:47:4E:CB:73:6E:7E:78:04 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132392e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.129.0/24 Signature Algorithm: sha256WithRSAEncryption 87:be:eb:c0:dc:5d:5d:cf:89:91:6d:1a:0f:42:de:07:76:6f: 4e:df:fe:bc:29:0f:03:5d:69:87:aa:07:31:20:1f:bf:dd:06: 08:46:51:80:12:0b:8d:e8:00:06:80:aa:21:38:eb:43:63:fc: f9:e3:f8:f4:6c:cc:30:1e:14:30:61:c4:7e:f7:18:90:54:ed: cb:29:69:4e:38:53:df:57:b6:7b:c1:a3:8d:0a:a8:3c:1c:0d: 2d:a0:2b:bc:14:51:bd:8f:f6:57:63:f4:42:34:d8:2c:d9:ad: d9:42:32:60:9d:53:98:10:80:e4:e2:9b:7a:72:67:4b:94:86: 6c:0c:88:e6:14:f1:f0:23:8d:29:22:ac:be:76:37:68:f2:6f: 19:1f:4b:06:f3:d0:98:7d:a8:5f:44:26:b8:d6:98:0e:eb:c7: 3c:62:f5:ad:1c:e4:80:99:f5:0c:27:0a:3f:58:14:b6:9e:96: a5:f7:9a:43:14:e6:1a:93:e8:5d:8b:a1:6a:e0:7f:e2:cd:bb: 81:88:22:ff:d6:88:45:b0:10:4c:4a:d0:d6:77:d0:9f:ef:dc: e8:4a:cc:a6:ee:d1:af:2e:15:a1:aa:03:33:2c:a4:d2:36:64: ea:62:47:a3:ee:f0:08:13:c5:6e:7c:95:6d:e1:57:59:79:16: 77:b5:d9:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJBgJ70dANi79MVcIrY3VYPpfTVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yNTA5MTAwNTU1MDJaFw0yNjA5MDkwNjAwMDJaMDMxMTAvBgNV BAMTKDA1QThGMzU5MDQwQUI5NDMxOThDMTc5MTQ3NEVDQjczNkU3RTc4MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0praOhMz5GPEPj8hHohPLJlaF fsZBlDe3wLiLNXaY+y98G1q5Oor0YB8dNa/MOcB/p/RFYzHXx3HTBaDjOgvCgqKf mvHhc7+4xH9CG2aFmkZ0ojg0bSBWidLOTkjQaJNy8B28XxN4DMTErSf/V5A2hHYi pc+RJ0ffQSC3yJC10D1BYDlXvYYibqQYujLvReNrxndX0tYHa9DN7IEueGH7I8ej omk2XKKDm2Pg/mnAAdubGXYdu3VhxGstwAOZQ/AOMosX5ohmL0dYcgE+MMqrb9MG BlIqpstMTMusgiXLFthg+/b4YhxFTOKwMxqk1PecDobVQAOYYiMwUICnuvhXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBajzWQQKuUMZjBeRR07Lc25+eAQwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mBMA0GCSqG SIb3DQEBCwUAA4IBAQCHvuvA3F1dz4mRbRoPQt4Hdm9O3/68KQ8DXWmHqgcxIB+/ 3QYIRlGAEguN6AAGgKohOOtDY/z54/j0bMwwHhQwYcR+9xiQVO3LKWlOOFPfV7Z7 waONCqg8HA0toCu8FFG9j/ZXY/RCNNgs2a3ZQjJgnVOYEIDk4pt6cmdLlIZsDIjm FPHwI40pIqy+djdo8m8ZH0sG89CYfahfRCa41pgO68c8YvWtHOSAmfUMJwo/WBS2 npal95pDFOYak+hdi6Fq4H/izbuBiCL/1ohFsBBMStDWd9Cf79zoSsym7tGvLhWh qgMzLKTSNmTqYkej7vAIE8VufJVt4VdZeRZ3tdk1 -----END CERTIFICATE-----Generated at Mon Oct 20 15:33:22 2025 by rpki-client