$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133362e302f32342d3234203d3e203633383638.roa File: 3130332e3131322e3133362e302f32342d3234203d3e203633383638.roa (raw, json) Hash identifier: pkEXO9z6ueQK4Zfm+Nf2SnX0XqqCEAzcqWTKKEbP/J8= Subject key identifier: 92:8D:09:BE:9F:9F:DC:54:83:D8:33:07:68:C2:42:59:AF:FD:BB:8D Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 0C5B22E1BE9FBEED04EFA84D47C588D53A2BDCE4 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133362e302f32342d3234203d3e203633383638.roa Signing time: Sat 04 Oct 2025 16:44:53 +0000 ROA not before: Sat 04 Oct 2025 16:39:53 +0000 ROA not after: Sat 03 Oct 2026 16:44:53 +0000 asID: 63868 IP address blocks: 103.112.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5b:22:e1:be:9f:be:ed:04:ef:a8:4d:47:c5:88:d5:3a:2b:dc:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Oct 4 16:39:53 2025 GMT Not After : Oct 3 16:44:53 2026 GMT Subject: CN=928D09BE9F9FDC5483D8330768C24259AFFDBB8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:78:4e:d3:99:ca:eb:62:00:a8:f8:50:d2:52: ae:a3:74:1b:da:e7:0b:2a:ae:f3:1f:23:95:28:fb: c9:42:45:da:bd:25:78:7c:01:90:e7:9d:b0:4d:67: 41:a7:be:d5:70:12:e9:76:0e:99:64:64:08:1c:37: e2:17:c2:95:15:00:c2:72:2d:90:5a:81:07:e7:b3: ab:8b:6a:47:93:c1:49:25:8b:3a:87:6c:a6:a4:f7: 71:f2:0f:b2:11:4d:1f:25:85:83:c9:3d:6d:28:0e: 15:da:30:43:27:ae:6f:e5:5b:7f:5e:79:3c:b0:55: 41:c2:0f:5a:fe:5d:01:4d:49:9d:02:c4:a3:a6:ff: 04:18:7c:6d:d2:f3:f2:08:ae:83:cb:24:50:e1:ec: 9b:0f:cf:61:b2:c7:bf:4e:b8:ec:37:09:e6:41:1b: 9e:c7:fe:14:99:02:d9:03:f7:a0:a4:35:64:6e:9e: 15:71:7a:12:dc:b0:1c:1d:37:9f:54:8c:b3:94:26: bb:46:c3:3d:c1:4e:75:6b:5d:c5:d6:6b:19:83:b2: 75:e5:08:c9:3a:05:7c:2c:8c:25:0d:45:47:54:11: b2:cc:30:c1:78:82:98:f5:52:a7:65:8e:2d:42:b7: ec:27:58:ca:59:4f:af:2e:62:55:cc:61:a1:b2:86: ad:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:8D:09:BE:9F:9F:DC:54:83:D8:33:07:68:C2:42:59:AF:FD:BB:8D X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133362e302f32342d3234203d3e203633383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.136.0/24 Signature Algorithm: sha256WithRSAEncryption 28:ba:51:4d:96:7c:8f:99:8f:0e:11:43:d4:01:dc:5b:e0:ee: 54:97:1e:8c:e5:7b:f2:f6:41:54:b7:d9:2b:90:b1:da:2f:8d: 19:2b:de:93:78:7b:02:02:fb:28:f9:80:58:81:96:cf:ed:44: a8:83:e2:0a:cb:57:a2:80:ae:3f:9d:af:77:cf:b3:d4:d0:d8: 82:27:8c:b7:cb:cc:a4:81:c9:87:e7:d0:65:04:af:32:5a:70: 81:6b:dc:de:9c:6f:85:5b:c6:a3:a2:c6:9e:ed:ae:ce:ab:27: 37:72:9f:09:29:4e:34:84:52:cf:75:75:dc:be:e9:25:60:82: 86:c0:3c:4c:18:5c:69:20:93:1f:27:d5:9e:88:d4:7c:2f:2b: 1e:23:6e:70:1d:ea:80:19:aa:5a:90:a9:a4:ca:3e:92:43:96: 4d:6c:7e:65:04:16:fd:65:c7:34:4f:ba:26:60:10:c7:5d:eb: 2b:21:76:81:03:fd:0a:a9:c4:fe:40:ec:ed:3c:d0:29:87:55: b0:73:9a:4e:25:1e:1c:73:2a:aa:b8:15:3a:3a:3f:33:58:70: 13:29:ed:a8:bf:c0:33:af:01:ce:67:8c:5c:8f:39:70:d4:0a: 46:a4:fc:58:c0:f7:52:03:f7:b9:ba:59:7b:3b:e0:bd:f6:80: cc:d4:ce:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDFsi4b6fvu0E76hNR8WI1Tor3OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTEwMDQxNjM5NTNaFw0yNjEwMDMxNjQ0NTNaMDMxMTAvBgNV BAMTKDkyOEQwOUJFOUY5RkRDNTQ4M0Q4MzMwNzY4QzI0MjU5QUZGREJCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQeE7TmcrrYgCo+FDSUq6jdBva 5wsqrvMfI5Uo+8lCRdq9JXh8AZDnnbBNZ0GnvtVwEul2DplkZAgcN+IXwpUVAMJy LZBagQfns6uLakeTwUklizqHbKak93HyD7IRTR8lhYPJPW0oDhXaMEMnrm/lW39e eTywVUHCD1r+XQFNSZ0CxKOm/wQYfG3S8/IIroPLJFDh7JsPz2Gyx79OuOw3CeZB G57H/hSZAtkD96CkNWRunhVxehLcsBwdN59UjLOUJrtGwz3BTnVrXcXWaxmDsnXl CMk6BXwsjCUNRUdUEbLMMMF4gpj1Uqdlji1Ct+wnWMpZT68uYlXMYaGyhq2BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUko0Jvp+f3FSD2DMHaMJCWa/9u40wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3CIMA0GCSqG SIb3DQEBCwUAA4IBAQAoulFNlnyPmY8OEUPUAdxb4O5Ulx6M5Xvy9kFUt9krkLHa L40ZK96TeHsCAvso+YBYgZbP7USog+IKy1eigK4/na93z7PU0NiCJ4y3y8ykgcmH 59BlBK8yWnCBa9zenG+FW8ajosae7a7Oqyc3cp8JKU40hFLPdXXcvuklYIKGwDxM GFxpIJMfJ9WeiNR8LyseI25wHeqAGapakKmkyj6SQ5ZNbH5lBBb9Zcc0T7omYBDH XesrIXaBA/0KqcT+QOztPNAph1Wwc5pOJR4ccyqquBU6Oj8zWHATKe2ov8AzrwHO Z4xcjzlw1ApGpPxYwPdSA/e5ull7O+C99oDM1M5l -----END CERTIFICATE-----Generated at Mon Oct 20 23:04:05 2025 by rpki-client