$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa File: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: dbeooOEymowfTHu7nnG695fAge4T8FaVO8HgIWjN8ng= Subject key identifier: 97:7F:8B:93:D4:9A:9D:11:BA:3C:75:98:BC:87:4A:A6:AF:98:F0:91 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 73D7C65A8DD8C3C3E8F5FA5D9F4DF756DCE70040 Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa Signing time: Fri 17 Oct 2025 05:00:02 +0000 ROA not before: Fri 17 Oct 2025 04:55:02 +0000 ROA not after: Fri 16 Oct 2026 05:00:02 +0000 asID: 4800 IP address blocks: 103.169.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d7:c6:5a:8d:d8:c3:c3:e8:f5:fa:5d:9f:4d:f7:56:dc:e7:00:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: Oct 17 04:55:02 2025 GMT Not After : Oct 16 05:00:02 2026 GMT Subject: CN=977F8B93D49A9D11BA3C7598BC874AA6AF98F091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c7:bc:c6:70:6b:53:0f:6d:59:5b:07:8a:8a: 58:e1:33:83:87:5b:56:f4:d5:c9:10:88:67:d9:4a: 45:45:1b:f3:ca:a1:dd:ec:94:02:65:a3:83:64:a3: 31:f1:ab:f0:2f:85:be:5b:45:b4:6f:03:0e:68:c9: 59:9f:9b:86:a2:75:d9:ed:7d:4f:66:a4:2c:a8:0b: 87:eb:b6:56:76:2f:cf:7d:65:d9:9f:69:a5:fc:af: 5e:7c:46:cb:dc:e4:9e:d2:16:fe:36:43:fe:d0:05: 7d:1a:74:a3:27:0d:6f:b0:0d:b8:e9:de:57:6e:21: e1:c7:37:3d:5a:9b:60:9e:be:5a:21:bc:d4:25:8e: 40:9e:5e:a1:94:8c:96:c1:7f:1f:9f:b2:f8:8e:23: 76:44:b0:26:ac:9f:6c:ac:ec:d0:95:63:d2:69:9d: 55:6f:ec:63:a7:d8:6e:1e:e3:24:98:f5:41:db:2d: 6e:60:a3:63:53:5a:5e:52:78:3f:4d:d4:03:0c:51: 67:49:c6:e1:fa:53:f2:07:08:f7:76:b6:e3:3e:ce: e3:32:9e:2a:d4:b6:f2:a1:51:c3:e6:40:f1:81:56: 8c:0f:7a:af:42:d6:80:71:49:22:94:c0:ea:d6:c2: 4f:4a:1d:f1:9e:42:b9:15:25:d5:54:95:59:f4:58: e3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:7F:8B:93:D4:9A:9D:11:BA:3C:75:98:BC:87:4A:A6:AF:98:F0:91 X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.230.0/23 Signature Algorithm: sha256WithRSAEncryption 08:40:7e:b0:b2:47:be:cb:19:2c:45:dc:ae:2a:12:bf:60:4b: 39:e1:8b:d8:f6:5d:94:c5:14:01:86:7b:66:4b:0f:e4:17:99: 56:2d:a4:5c:49:01:52:c4:99:9d:a9:1d:a8:dc:ac:6f:f5:d0: f3:3e:60:b1:02:b4:39:ca:43:26:80:88:25:a5:fc:57:eb:e9: 56:ec:59:c3:30:42:74:e9:1e:18:d8:b3:a6:60:ba:66:32:97: 8c:c8:ad:fb:d9:28:8c:2e:e6:b2:3e:96:b7:54:ae:4d:e0:a7: d2:45:10:06:aa:42:99:64:63:88:99:44:0d:76:ee:3e:ae:a8: 52:cd:a8:ca:68:06:1b:36:9b:04:30:6e:24:e6:39:b6:76:9e: 38:88:fd:05:7a:60:10:44:1b:c4:57:c8:f4:03:10:7d:d7:44: 12:54:3f:d5:c7:55:3b:6f:52:83:4a:ae:cc:b6:ed:ab:e7:20: b4:17:a4:4a:02:b3:42:22:8d:97:08:6d:3e:37:b8:aa:e2:1d: a5:91:5e:c2:a1:f6:de:ad:51:ae:22:81:fe:33:92:d6:6b:09: 15:5a:b8:ae:5f:eb:b8:ce:ad:fa:01:34:e6:89:33:d4:c9:5c: 53:02:d6:f0:81:30:ad:3e:e3:94:83:f3:4a:7f:10:d5:94:9c: bf:bf:9e:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc9fGWo3Yw8Po9fpdn033VtznAEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNTEwMTcwNDU1MDJaFw0yNjEwMTYwNTAwMDJaMDMxMTAvBgNV BAMTKDk3N0Y4QjkzRDQ5QTlEMTFCQTNDNzU5OEJDODc0QUE2QUY5OEYwOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNx7zGcGtTD21ZWweKiljhM4OH W1b01ckQiGfZSkVFG/PKod3slAJlo4NkozHxq/Avhb5bRbRvAw5oyVmfm4aiddnt fU9mpCyoC4frtlZ2L899ZdmfaaX8r158Rsvc5J7SFv42Q/7QBX0adKMnDW+wDbjp 3lduIeHHNz1am2CevlohvNQljkCeXqGUjJbBfx+fsviOI3ZEsCasn2ys7NCVY9Jp nVVv7GOn2G4e4ySY9UHbLW5go2NTWl5SeD9N1AMMUWdJxuH6U/IHCPd2tuM+zuMy nirUtvKhUcPmQPGBVowPeq9C1oBxSSKUwOrWwk9KHfGeQrkVJdVUlVn0WOOPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl3+Lk9SanRG6PHWYvIdKpq+Y8JEwHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2ZDYxMTM1LTc1ZTQtNDZjNi1i ZGRkLWZiYTY4MzRkY2U0MS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWep5jANBgkqhkiG 9w0BAQsFAAOCAQEACEB+sLJHvssZLEXcrioSv2BLOeGL2PZdlMUUAYZ7ZksP5BeZ Vi2kXEkBUsSZnakdqNysb/XQ8z5gsQK0OcpDJoCIJaX8V+vpVuxZwzBCdOkeGNiz pmC6ZjKXjMit+9kojC7msj6Wt1SuTeCn0kUQBqpCmWRjiJlEDXbuPq6oUs2oymgG GzabBDBuJOY5tnaeOIj9BXpgEEQbxFfI9AMQfddEElQ/1cdVO29Sg0quzLbtq+cg tBekSgKzQiKNlwhtPje4quIdpZFewqH23q1RriKB/jOS1msJFVq4rl/ruM6t+gE0 5okz1MlcUwLW8IEwrT7jlIPzSn8Q1ZScv7+ejA== -----END CERTIFICATE-----Generated at Mon Oct 20 11:05:24 2025 by rpki-client