$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa File: 3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa (raw, json) Hash identifier: ez+ePcTWbQX/d2w/ZnqmBFZpP0RLqT3Vp1bcQw3nNm4= Subject key identifier: 1C:93:91:8F:14:06:B8:24:32:82:B9:AB:CE:6B:6A:4C:CE:5F:50:CC Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 41AF928287CD3CB01F63F0CBD7396F3905888B52 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa Signing time: Mon 06 Oct 2025 06:49:18 +0000 ROA not before: Mon 06 Oct 2025 06:44:18 +0000 ROA not after: Mon 05 Oct 2026 06:49:18 +0000 asID: 137330 IP address blocks: 103.112.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:af:92:82:87:cd:3c:b0:1f:63:f0:cb:d7:39:6f:39:05:88:8b:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Oct 6 06:44:18 2025 GMT Not After : Oct 5 06:49:18 2026 GMT Subject: CN=1C93918F1406B8243282B9ABCE6B6A4CCE5F50CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f2:42:5d:6e:97:45:9d:ba:82:54:26:ea:14: 82:8c:a6:e9:0e:80:87:c5:6f:95:54:fa:87:ad:71: af:f8:95:1c:84:28:cb:26:48:de:55:6a:a1:0a:d0: ee:56:3f:a1:29:e7:fc:f6:85:19:5a:8e:4d:46:af: 39:d8:cd:9f:52:a4:e1:98:8c:5c:9b:0f:12:9d:dc: b6:0d:4f:17:05:62:0c:85:37:f7:32:19:1b:a2:bb: a8:d8:c7:b2:c6:37:48:cb:e6:80:50:3a:37:a9:24: 1f:11:c6:65:05:6d:34:be:df:fd:4b:3e:80:b1:ef: 1e:ef:89:53:70:91:d8:8b:1a:4f:24:54:14:3e:4d: 18:97:53:27:9a:a9:d4:5c:e2:65:d2:b7:60:14:2b: b9:4a:c1:37:1d:87:97:3a:db:54:7c:e3:3a:af:2a: 23:93:cd:a4:8c:47:17:b1:22:2a:5a:3d:c8:18:39: 84:6d:1b:55:47:8d:3b:5d:ba:1f:a0:a0:91:e4:1a: b9:c9:c0:61:2c:4e:a4:f0:3e:94:fa:02:bf:43:39: 5f:3f:0c:01:f3:28:b5:f5:bd:61:f2:d4:f4:04:df: 59:8e:7c:b1:c9:2d:cf:80:64:6d:70:e1:ff:4b:41: 08:4b:ae:04:3e:b6:00:3e:45:ff:b1:7a:f5:1b:18: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:93:91:8F:14:06:B8:24:32:82:B9:AB:CE:6B:6A:4C:CE:5F:50:CC X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.139.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:35:e8:56:e2:94:53:b5:09:e4:e1:d7:53:d6:cd:a8:25:e1: 45:11:36:e2:b0:4a:8e:fb:22:5b:33:2f:90:c6:48:66:3f:b0: 3e:d8:a3:dd:dd:81:0e:c8:10:55:d0:4b:47:5c:af:fb:3f:a8: 0a:71:df:38:f9:a9:ce:0b:21:9a:9f:5d:15:18:7c:d6:6f:57: 33:c4:52:9c:b4:82:f2:9f:d2:08:a9:d6:56:49:33:5e:68:79: 21:13:a5:f7:15:a6:eb:78:48:a7:6f:ce:55:f6:eb:02:e1:35: 50:30:94:c1:5c:02:96:14:22:c2:5b:0c:97:a3:35:d5:97:51: 73:f0:87:d3:0f:dd:31:47:2f:a8:5d:e3:63:5f:70:43:c1:05: 20:e8:0b:78:39:6b:31:77:f8:d0:96:31:86:fc:f1:5e:ba:fa: 4a:0c:e2:97:40:cb:a9:4a:42:70:fc:4e:8e:ba:c8:ce:10:6f: db:9d:d8:23:be:26:52:d7:b3:76:88:8e:62:df:9f:1b:da:fc: 28:6e:65:ad:59:a0:f1:92:b3:8f:ea:cd:cd:b3:43:13:46:5d: d9:a9:4a:f1:86:8d:0e:b5:c3:68:f0:7a:3f:2c:c1:a5:70:b1: 00:1a:3e:5b:51:9c:ba:7e:c4:da:bc:6b:a8:95:ae:a7:d6:82: 1a:e8:f5:3a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQa+SgofNPLAfY/DL1zlvOQWIi1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTEwMDYwNjQ0MThaFw0yNjEwMDUwNjQ5MThaMDMxMTAvBgNV BAMTKDFDOTM5MThGMTQwNkI4MjQzMjgyQjlBQkNFNkI2QTRDQ0U1RjUwQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8kJdbpdFnbqCVCbqFIKMpukO gIfFb5VU+oetca/4lRyEKMsmSN5VaqEK0O5WP6Ep5/z2hRlajk1GrznYzZ9SpOGY jFybDxKd3LYNTxcFYgyFN/cyGRuiu6jYx7LGN0jL5oBQOjepJB8RxmUFbTS+3/1L PoCx7x7viVNwkdiLGk8kVBQ+TRiXUyeaqdRc4mXSt2AUK7lKwTcdh5c621R84zqv KiOTzaSMRxexIipaPcgYOYRtG1VHjTtduh+goJHkGrnJwGEsTqTwPpT6Ar9DOV8/ DAHzKLX1vWHy1PQE31mOfLHJLc+AZG1w4f9LQQhLrgQ+tgA+Rf+xevUbGDyFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHJORjxQGuCQygrmrzmtqTM5fUMwwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIswDQYJ KoZIhvcNAQELBQADggEBAGs16FbilFO1CeTh11PWzagl4UURNuKwSo77IlszL5DG SGY/sD7Yo93dgQ7IEFXQS0dcr/s/qApx3zj5qc4LIZqfXRUYfNZvVzPEUpy0gvKf 0gip1lZJM15oeSETpfcVput4SKdvzlX26wLhNVAwlMFcApYUIsJbDJejNdWXUXPw h9MP3TFHL6hd42NfcEPBBSDoC3g5azF3+NCWMYb88V66+koM4pdAy6lKQnD8To66 yM4Qb9ud2CO+JlLXs3aIjmLfnxva/ChuZa1ZoPGSs4/qzc2zQxNGXdmpSvGGjQ61 w2jwej8swaVwsQAaPltRnLp+xNq8a6iVrqfWghro9To= -----END CERTIFICATE-----Generated at Mon Oct 20 20:50:12 2025 by rpki-client