$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32332d3233203d3e20313337333330.roa File: 3130332e3131322e3133382e302f32332d3233203d3e20313337333330.roa (raw, json) Hash identifier: lnP9wyN4FGjoTooiZljkgDbdrrgpwmvbLCRV3A9O9bs= Subject key identifier: 8B:BF:93:5A:D4:90:B3:C1:D5:AB:8B:8D:5B:F6:E0:F4:35:5C:87:3A Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6911DCC4A07D292EDE637222C4CABD05A40B9F6D Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32332d3233203d3e20313337333330.roa Signing time: Mon 06 Oct 2025 06:50:29 +0000 ROA not before: Mon 06 Oct 2025 06:45:29 +0000 ROA not after: Mon 05 Oct 2026 06:50:29 +0000 asID: 137330 IP address blocks: 103.112.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:11:dc:c4:a0:7d:29:2e:de:63:72:22:c4:ca:bd:05:a4:0b:9f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Oct 6 06:45:29 2025 GMT Not After : Oct 5 06:50:29 2026 GMT Subject: CN=8BBF935AD490B3C1D5AB8B8D5BF6E0F4355C873A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:15:e6:e6:d4:75:79:c9:16:ee:44:9e:dd:f9: 1f:ff:58:f4:5d:f9:58:e1:e9:e2:89:32:02:a5:fc: 75:95:70:b3:f1:c5:aa:79:f2:6d:c5:2b:c4:ab:2c: f9:19:1c:35:11:b9:ea:93:fb:33:6a:02:3b:d6:31: ed:5f:4b:59:e4:94:e1:03:af:2b:46:72:9d:35:e1: a7:14:a8:33:f3:b0:82:8c:f2:70:b7:39:72:49:b3: 28:3f:24:91:7f:d0:ab:ee:df:17:30:b1:73:37:a8: 7c:62:a7:7e:e9:dc:69:e3:88:41:df:33:bb:34:b5: c1:a4:de:f2:e9:36:28:84:1c:c0:12:d5:ae:12:dd: f0:9e:25:c9:b2:85:40:0a:8b:2c:bc:41:2a:bf:1d: a0:81:f4:a3:3a:b3:15:d2:74:af:03:97:6e:b3:89: 40:ac:5b:60:b0:d7:37:7d:af:03:ec:63:da:20:49: a0:a0:ae:4d:c5:bc:33:6f:d7:67:04:e2:53:70:1c: f8:e8:6e:ef:c0:1f:4e:c6:5f:04:97:07:d0:fa:f8: a1:f3:cd:df:eb:37:52:7b:5a:f1:b6:f5:8c:31:7d: 09:84:6d:bb:ce:de:7b:b6:7a:77:a0:66:bb:41:78: 00:a5:55:24:5d:ef:eb:ef:08:48:0d:33:3b:e8:c9: 4d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BF:93:5A:D4:90:B3:C1:D5:AB:8B:8D:5B:F6:E0:F4:35:5C:87:3A X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32332d3233203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.138.0/23 Signature Algorithm: sha256WithRSAEncryption 01:75:b2:ed:97:cd:90:40:91:eb:14:f1:41:93:9a:69:36:0a: b4:6e:8c:fe:24:66:85:2e:de:12:a5:f2:5a:26:69:48:7f:03: 5b:08:51:62:67:61:e6:85:c9:51:da:f9:c9:01:ef:3d:59:69: 7b:67:56:13:d1:55:62:16:d8:8d:6f:be:70:94:03:37:fe:8f: 24:6a:21:75:ae:13:74:9a:05:3f:01:d4:4f:7f:26:74:e5:22: 03:4b:49:65:82:d8:a1:2c:d8:21:1a:c9:97:03:3b:2f:e6:18: 86:2e:57:63:89:eb:8d:cb:75:56:27:a9:38:3c:72:0e:b3:c9: 31:72:8a:5d:64:8b:79:3b:93:19:db:2d:35:4e:26:d4:fd:ef: b2:35:ae:6f:3c:9c:eb:d9:b0:b5:95:95:98:50:f7:6c:e2:ff: f5:6f:4c:fc:12:6e:79:e3:62:ee:16:a0:03:e9:72:21:17:ee: 07:c7:f7:39:41:94:56:d5:b7:0e:f2:e2:db:b4:dd:a5:a5:5a: e9:32:c5:a3:65:2e:5f:af:73:f0:8d:53:f7:ae:b5:51:de:3d: cc:f4:d1:eb:04:f3:36:d5:30:d6:c3:c6:f2:81:bc:65:ed:4f: bc:0c:c7:c9:04:5b:04:da:89:71:57:27:37:10:15:0a:a7:5d: 61:d9:d0:31 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaRHcxKB9KS7eY3IixMq9BaQLn20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTEwMDYwNjQ1MjlaFw0yNjEwMDUwNjUwMjlaMDMxMTAvBgNV BAMTKDhCQkY5MzVBRDQ5MEIzQzFENUFCOEI4RDVCRjZFMEY0MzU1Qzg3M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIFebm1HV5yRbuRJ7d+R//WPRd +Vjh6eKJMgKl/HWVcLPxxap58m3FK8SrLPkZHDURueqT+zNqAjvWMe1fS1nklOED rytGcp014acUqDPzsIKM8nC3OXJJsyg/JJF/0Kvu3xcwsXM3qHxip37p3GnjiEHf M7s0tcGk3vLpNiiEHMAS1a4S3fCeJcmyhUAKiyy8QSq/HaCB9KM6sxXSdK8Dl26z iUCsW2Cw1zd9rwPsY9ogSaCgrk3FvDNv12cE4lNwHPjobu/AH07GXwSXB9D6+KHz zd/rN1J7WvG29YwxfQmEbbvO3nu2enegZrtBeAClVSRd7+vvCEgNMzvoyU2rAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi7+TWtSQs8HVq4uNW/bg9DVchzowHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFncIowDQYJ KoZIhvcNAQELBQADggEBAAF1su2XzZBAkesU8UGTmmk2CrRujP4kZoUu3hKl8lom aUh/A1sIUWJnYeaFyVHa+ckB7z1ZaXtnVhPRVWIW2I1vvnCUAzf+jyRqIXWuE3Sa BT8B1E9/JnTlIgNLSWWC2KEs2CEayZcDOy/mGIYuV2OJ643LdVYnqTg8cg6zyTFy il1ki3k7kxnbLTVOJtT977I1rm88nOvZsLWVlZhQ92zi//VvTPwSbnnjYu4WoAPp ciEX7gfH9zlBlFbVtw7y4tu03aWlWukyxaNlLl+vc/CNU/eutVHePcz00esE8zbV MNbDxvKBvGXtT7wMx8kEWwTaiXFXJzcQFQqnXWHZ0DE= -----END CERTIFICATE-----Generated at Mon Oct 20 10:21:31 2025 by rpki-client