$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: MeNQV5B+OerhDUDBOkfR5BHmeZ2GFCk+XtpnzmEeM9I= Subject key identifier: 69:48:3C:5F:CC:36:7B:A9:C2:B1:AF:5D:14:FD:B6:F6:94:BF:59:EA Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 68BC25B02911F791CD2BF541E3DFBF182183C884 Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa Signing time: Wed 10 Sep 2025 05:00:02 +0000 ROA not before: Wed 10 Sep 2025 04:55:02 +0000 ROA not after: Wed 09 Sep 2026 05:00:02 +0000 asID: 17727 IP address blocks: 103.105.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 14:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:bc:25:b0:29:11:f7:91:cd:2b:f5:41:e3:df:bf:18:21:83:c8:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Sep 10 04:55:02 2025 GMT Not After : Sep 9 05:00:02 2026 GMT Subject: CN=69483C5FCC367BA9C2B1AF5D14FDB6F694BF59EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:90:e6:b8:28:b2:aa:d3:0d:78:6f:bb:bd:ec: 82:c6:24:dd:07:60:a1:04:d3:44:d5:cd:c7:26:ff: 24:f7:4c:ab:f3:1b:1a:44:b4:9e:3e:09:99:2b:30: 38:50:1f:e5:a8:b0:68:a5:1d:da:99:5d:bd:70:b0: 08:2d:b3:fb:d2:e7:57:70:41:e9:4b:e6:6e:8e:e6: 39:8c:91:a4:55:8f:62:89:c9:3e:93:1a:e7:c7:b0: 87:8d:6c:6b:0c:e3:c2:a2:03:1a:a9:ee:9b:4b:13: 2e:f2:e9:87:5a:63:c1:0b:9c:04:a6:17:3b:fa:84: ec:16:d1:69:ce:6a:a0:c9:42:b8:65:25:5c:37:58: bd:70:8e:9e:74:00:a1:c3:6b:a9:56:95:bf:7b:e7: ae:24:18:06:6f:6c:51:d2:a9:ed:21:d9:15:5f:45: cd:ae:58:40:61:86:b5:4f:43:f8:fa:c4:4d:84:fd: ef:f6:e5:ca:40:d4:c0:eb:fe:5e:f6:ac:88:d0:cf: fb:ed:b4:58:1a:8b:a2:08:65:bd:fe:8e:84:38:e0: 6a:b9:34:1b:e3:e7:fc:41:6b:ad:21:6b:2e:60:ac: 46:e6:e7:4d:1e:67:e5:e8:db:f6:ac:31:6d:17:e7: 2b:fa:bd:c3:46:75:36:52:b8:fb:4b:44:9e:dd:4e: 8f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:48:3C:5F:CC:36:7B:A9:C2:B1:AF:5D:14:FD:B6:F6:94:BF:59:EA X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.131.0/24 Signature Algorithm: sha256WithRSAEncryption 71:e6:4b:e8:4c:93:75:43:b1:b7:35:65:e6:80:cc:78:f4:04: 93:d6:c4:e7:a8:86:1e:0c:f4:86:62:ef:d1:65:bb:c4:30:f4: 5f:0c:ad:2f:01:10:7f:24:9a:63:2f:b4:28:c3:55:30:76:6c: c3:7c:11:30:f5:bb:04:a4:36:1c:18:ad:e5:1e:e4:2b:30:f8: c8:5e:d1:37:13:33:e8:1a:6f:03:df:51:a2:63:16:cc:a7:eb: d5:5d:7c:d0:ea:b7:66:32:cb:29:46:f5:8a:7d:e9:4b:a3:06: 09:66:70:e7:3a:1f:26:21:9b:9c:9e:f7:ce:f8:05:dd:3b:ee: 62:95:2d:82:52:8e:fe:41:e5:2c:be:ec:82:71:88:d2:41:2f: 22:51:e6:8b:3e:4a:e2:40:d8:62:f6:ed:e1:de:ce:8d:44:79: f6:38:71:c6:8e:eb:47:b2:63:27:67:a3:0b:e7:12:51:d7:0f: 09:07:34:28:36:dc:54:ce:1e:56:e2:0f:d3:67:f6:38:6d:9d: 20:db:10:c7:73:65:d2:9a:a7:31:e6:3e:d0:94:34:f8:f3:fc: dc:a7:9c:f2:0c:97:ca:0e:55:c8:7a:f0:8f:71:56:37:44:8d: 9a:27:b9:bf:c8:4f:bf:08:6b:66:1c:4f:26:c5:8f:3d:29:ff: cc:d7:20:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaLwlsCkR95HNK/VB49+/GCGDyIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yNTA5MTAwNDU1MDJaFw0yNjA5MDkwNTAwMDJaMDMxMTAvBgNV BAMTKDY5NDgzQzVGQ0MzNjdCQTlDMkIxQUY1RDE0RkRCNkY2OTRCRjU5RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqkOa4KLKq0w14b7u97ILGJN0H YKEE00TVzccm/yT3TKvzGxpEtJ4+CZkrMDhQH+WosGilHdqZXb1wsAgts/vS51dw QelL5m6O5jmMkaRVj2KJyT6TGufHsIeNbGsM48KiAxqp7ptLEy7y6YdaY8ELnASm Fzv6hOwW0WnOaqDJQrhlJVw3WL1wjp50AKHDa6lWlb97564kGAZvbFHSqe0h2RVf Rc2uWEBhhrVPQ/j6xE2E/e/25cpA1MDr/l72rIjQz/vttFgai6IIZb3+joQ44Gq5 NBvj5/xBa60hay5grEbm500eZ+Xo2/asMW0X5yv6vcNGdTZSuPtLRJ7dTo//AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaUg8X8w2e6nCsa9dFP229pS/WeowHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mDMA0GCSqG SIb3DQEBCwUAA4IBAQBx5kvoTJN1Q7G3NWXmgMx49AST1sTnqIYeDPSGYu/RZbvE MPRfDK0vARB/JJpjL7Qow1UwdmzDfBEw9bsEpDYcGK3lHuQrMPjIXtE3EzPoGm8D 31GiYxbMp+vVXXzQ6rdmMsspRvWKfelLowYJZnDnOh8mIZucnvfO+AXdO+5ilS2C Uo7+QeUsvuyCcYjSQS8iUeaLPkriQNhi9u3h3s6NRHn2OHHGjutHsmMnZ6ML5xJR 1w8JBzQoNtxUzh5W4g/TZ/Y4bZ0g2xDHc2XSmqcx5j7QlDT48/zcp5zyDJfKDlXI evCPcVY3RI2aJ7m/yE+/CGtmHE8mxY89Kf/M1yCz -----END CERTIFICATE-----Generated at Mon Oct 20 15:33:08 2025 by rpki-client