$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa File: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (raw, json) Hash identifier: yOguTTJn/ofmmFRzNxB5PQD5Wur97XppCIr80azCbnE= Subject key identifier: 3B:8D:60:BB:0E:CC:81:DD:64:2F:19:93:B8:E1:5D:7B:77:2A:09:6D Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 710629BBADCBAF26BC1D0453CDB75B1AB1B63F7C Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa Signing time: Mon 08 Sep 2025 14:00:00 +0000 ROA not before: Mon 08 Sep 2025 13:55:00 +0000 ROA not after: Mon 07 Sep 2026 14:00:00 +0000 asID: 150958 IP address blocks: 103.81.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:06:29:bb:ad:cb:af:26:bc:1d:04:53:cd:b7:5b:1a:b1:b6:3f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Sep 8 13:55:00 2025 GMT Not After : Sep 7 14:00:00 2026 GMT Subject: CN=3B8D60BB0ECC81DD642F1993B8E15D7B772A096D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fa:27:e9:ec:d0:ae:e6:07:c9:b5:60:ba:c5: 53:e4:b5:8a:dc:46:17:d3:c6:5f:6e:65:04:b1:0c: 23:a5:7f:38:19:a2:fc:96:5b:51:81:bb:ee:dc:05: 79:f8:6a:9a:c3:a6:ac:8e:3b:1c:39:71:c8:80:c4: 57:cc:79:91:4f:d9:1e:67:b3:dc:a7:a3:05:e5:e0: 26:6f:6e:84:8d:44:3e:bd:e3:3e:ce:a9:2a:31:19: de:d0:e8:15:1d:1f:da:1e:a8:fb:f3:4c:c3:2e:cb: 12:4b:59:39:7a:ee:5d:a6:8c:7d:56:08:44:f0:70: c2:5f:fd:e2:22:80:5d:bd:82:6e:23:ad:14:a7:37: 27:9a:81:b4:ce:8b:24:76:b8:23:0f:49:42:fb:84: 8f:ea:ce:ba:81:2f:2c:5a:55:f2:46:75:83:34:a9: 76:e4:c2:0a:00:a8:96:e6:f5:d7:f0:d7:5d:12:3b: 1e:8c:30:31:c0:a9:eb:81:d0:43:e6:6a:12:d8:6f: d1:3e:43:f0:2c:dc:f9:fe:dd:71:57:64:07:1f:3d: 3e:0e:6b:87:41:29:9f:fa:37:08:23:de:cc:da:3e: c9:e0:f8:3b:99:a0:a9:e1:88:fd:77:3c:5c:57:20: cf:c9:6b:8a:39:10:5d:32:34:a6:6f:e1:3d:df:84: e2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8D:60:BB:0E:CC:81:DD:64:2F:19:93:B8:E1:5D:7B:77:2A:09:6D X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.110.0/23 Signature Algorithm: sha256WithRSAEncryption c5:f7:ec:c3:c1:fa:57:e4:cf:e5:7e:3c:87:ae:30:e0:97:11: 23:58:0d:54:1f:14:35:fb:b8:21:5c:0d:85:38:0e:d4:0c:30: 2a:6a:a0:3e:85:17:8f:25:2c:4d:d8:5d:54:26:d4:9e:68:95: 13:44:84:92:e2:09:70:49:2b:f5:f2:51:47:4f:15:8c:b9:6f: ac:bc:11:79:b2:85:a9:95:a8:ab:4b:48:1c:6c:e5:5b:e6:ae: ef:d4:ef:63:bf:c8:11:69:d7:9d:86:90:14:6c:a9:40:70:a5: 67:ac:09:8f:f5:9d:37:ff:f8:45:8f:40:fa:09:fe:a3:18:a3: f2:0e:a1:58:33:31:b1:f4:80:39:5f:73:66:3c:a2:77:9a:f3: 18:c5:ac:93:cf:b6:a4:1d:1d:08:30:7f:66:90:8c:fb:a7:97: 45:0a:fb:b6:1f:33:67:31:ba:fe:69:8d:6f:13:e7:e0:f3:8f: 38:e8:04:44:46:93:b5:a4:96:39:79:6b:c0:0c:44:92:a1:f7: 49:f8:f8:bb:b9:ec:80:29:fd:5f:ad:04:23:13:44:a4:cd:01: 93:a0:75:16:a6:e8:a1:37:68:b9:f8:f3:d4:db:eb:c2:a8:3a: 87:18:e0:69:d6:ff:9a:4e:30:b8:c5:3b:11:fb:30:ae:a5:e5: 08:3b:bf:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcQYpu63Lrya8HQRTzbdbGrG2P3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNTA5MDgxMzU1MDBaFw0yNjA5MDcxNDAwMDBaMDMxMTAvBgNV BAMTKDNCOEQ2MEJCMEVDQzgxREQ2NDJGMTk5M0I4RTE1RDdCNzcyQTA5NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO+ifp7NCu5gfJtWC6xVPktYrc RhfTxl9uZQSxDCOlfzgZovyWW1GBu+7cBXn4aprDpqyOOxw5cciAxFfMeZFP2R5n s9ynowXl4CZvboSNRD694z7OqSoxGd7Q6BUdH9oeqPvzTMMuyxJLWTl67l2mjH1W CETwcMJf/eIigF29gm4jrRSnNyeagbTOiyR2uCMPSUL7hI/qzrqBLyxaVfJGdYM0 qXbkwgoAqJbm9dfw110SOx6MMDHAqeuB0EPmahLYb9E+Q/As3Pn+3XFXZAcfPT4O a4dBKZ/6Nwgj3szaPsng+DuZoKnhiP13PFxXIM/Ja4o5EF0yNKZv4T3fhOJtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO41guw7Mgd1kLxmTuOFde3cqCW0wHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMGJjZGMzLTBmZWEtNDc0Ny05 OTA3LTY1NjQ4NmJhZThkYS8wLzMxMzAzMzJlMzgzMTJlMzEzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1FuMA0GCSqG SIb3DQEBCwUAA4IBAQDF9+zDwfpX5M/lfjyHrjDglxEjWA1UHxQ1+7ghXA2FOA7U DDAqaqA+hRePJSxN2F1UJtSeaJUTRISS4glwSSv18lFHTxWMuW+svBF5soWplair S0gcbOVb5q7v1O9jv8gRadedhpAUbKlAcKVnrAmP9Z03//hFj0D6Cf6jGKPyDqFY MzGx9IA5X3NmPKJ3mvMYxayTz7akHR0IMH9mkIz7p5dFCvu2HzNnMbr+aY1vE+fg 84846ARERpO1pJY5eWvADESSofdJ+Pi7ueyAKf1frQQjE0SkzQGToHUWpuihN2i5 +PPU2+vCqDqHGOBp1v+aTjC4xTsR+zCupeUIO79Z -----END CERTIFICATE-----Generated at Mon Oct 20 18:22:33 2025 by rpki-client