$ rpki-client -vvf repo-rpki.idnic.net/repo/2038f3a1-ac0f-4f7c-9c6c-6b27566fe70c/0/3130332e36352e3134322e302f32332d3234203d3e20313432333333.roa File: 3130332e36352e3134322e302f32332d3234203d3e20313432333333.roa (raw, json) Hash identifier: Sg9u/AwZirmCvlw+W9NyMDOy14LKr1t7vCJz3dMVUog= Subject key identifier: 0E:BD:DC:EB:5E:37:5B:13:8C:E2:07:13:0A:AC:3D:F8:4B:43:63:E0 Certificate issuer: /CN=D69B387E6B9CAF1BD26B286A948D5A77FB85F80A Certificate serial: 62FAD53C574DA6E06745971A9FD85BC13EB3BABD Authority key identifier: D6:9B:38:7E:6B:9C:AF:1B:D2:6B:28:6A:94:8D:5A:77:FB:85:F8:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D69B387E6B9CAF1BD26B286A948D5A77FB85F80A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2038f3a1-ac0f-4f7c-9c6c-6b27566fe70c/0/3130332e36352e3134322e302f32332d3234203d3e20313432333333.roa Signing time: Fri 19 Sep 2025 13:00:00 +0000 ROA not before: Fri 19 Sep 2025 12:55:00 +0000 ROA not after: Fri 18 Sep 2026 13:00:00 +0000 asID: 142333 IP address blocks: 103.65.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2038f3a1-ac0f-4f7c-9c6c-6b27566fe70c/0/D69B387E6B9CAF1BD26B286A948D5A77FB85F80A.crl rsync://repo-rpki.idnic.net/repo/2038f3a1-ac0f-4f7c-9c6c-6b27566fe70c/0/D69B387E6B9CAF1BD26B286A948D5A77FB85F80A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D69B387E6B9CAF1BD26B286A948D5A77FB85F80A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:fa:d5:3c:57:4d:a6:e0:67:45:97:1a:9f:d8:5b:c1:3e:b3:ba:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D69B387E6B9CAF1BD26B286A948D5A77FB85F80A Validity Not Before: Sep 19 12:55:00 2025 GMT Not After : Sep 18 13:00:00 2026 GMT Subject: CN=0EBDDCEB5E375B138CE207130AAC3DF84B4363E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ea:f1:93:bb:7c:a3:b7:c2:68:2a:4d:61:63: ac:a9:26:6f:12:3c:b4:45:10:b3:8e:c6:e9:3a:5b: 22:33:a3:4b:f0:e5:94:a1:c1:04:d8:c6:f3:91:fa: 51:b1:99:c9:07:22:86:9d:40:ff:c7:80:b2:3f:df: bd:06:29:12:b6:cb:0b:0b:5e:ed:5e:9d:3d:8b:fc: 7d:55:3c:83:61:12:79:98:3c:b1:90:e6:15:cc:92: 0c:88:09:d4:b8:db:08:b7:87:b8:63:10:21:6c:59: 83:44:78:c5:52:5e:a5:20:97:04:87:96:0c:ff:b0: e0:4a:e9:02:5e:d3:c0:6d:86:3a:e9:8c:89:ab:f8: 6b:df:c9:d3:27:17:8c:30:0e:38:25:72:39:77:5e: 60:56:b9:21:07:08:2a:9b:98:a4:c4:0e:d6:fe:a9: b4:35:ad:db:8a:9e:af:c9:b1:06:39:f5:ff:d6:31: fb:27:ab:de:1a:bf:f2:2b:98:de:4d:65:d2:80:23: b6:fc:dc:72:50:a4:e2:b8:bf:40:a2:af:9e:d9:90: 08:f3:00:c3:2e:a6:b8:fc:46:db:c7:ba:9a:04:a6: 91:af:35:4a:90:a8:af:60:70:2f:b3:46:a3:ae:f1: 2f:4b:da:06:c3:93:33:7e:c8:bf:49:b9:58:6a:d3: 28:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BD:DC:EB:5E:37:5B:13:8C:E2:07:13:0A:AC:3D:F8:4B:43:63:E0 X509v3 Authority Key Identifier: keyid:D6:9B:38:7E:6B:9C:AF:1B:D2:6B:28:6A:94:8D:5A:77:FB:85:F8:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2038f3a1-ac0f-4f7c-9c6c-6b27566fe70c/0/D69B387E6B9CAF1BD26B286A948D5A77FB85F80A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D69B387E6B9CAF1BD26B286A948D5A77FB85F80A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2038f3a1-ac0f-4f7c-9c6c-6b27566fe70c/0/3130332e36352e3134322e302f32332d3234203d3e20313432333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.65.142.0/23 Signature Algorithm: sha256WithRSAEncryption bc:91:73:d9:df:5c:42:53:4c:dc:6a:91:0f:4e:88:11:ea:22: 89:4e:b1:63:29:c5:84:ec:34:2e:41:74:f9:e9:7c:78:e9:be: 9c:b0:b1:bc:73:52:04:14:d9:fb:cb:48:d7:a6:71:c4:a9:da: 92:e7:fa:3f:ef:05:98:12:c6:b6:68:de:91:ac:72:42:5a:9e: fc:48:9c:ee:ef:95:c5:0d:38:76:90:d3:e2:1c:b9:fe:90:3c: 76:65:4d:94:40:fe:c2:c4:ad:04:a7:49:be:9e:b6:07:14:35: f7:48:80:70:a4:89:c8:08:4b:8a:e0:8e:88:4c:d6:59:a2:7b: e5:c6:3d:80:83:a7:1d:a1:ce:ba:36:cb:b5:13:56:0f:dd:bb: 4f:cb:c9:4f:36:9d:26:8e:31:f1:63:b2:2e:66:42:da:f1:ac: 05:07:16:d1:23:a0:a9:29:f0:07:71:a3:b0:07:81:2c:06:d5: b4:fa:b0:44:74:14:26:ab:63:54:0b:ad:40:b9:22:05:61:15: 47:59:72:32:e4:36:85:00:74:91:ed:5a:b8:26:36:b6:29:fc: 8e:7b:7c:41:3d:ea:f0:a0:24:e9:17:39:aa:c5:77:7a:3c:ce: 50:14:03:4f:c4:1b:0c:38:1f:7f:75:df:5d:88:b0:7b:23:ae: f9:db:66:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYvrVPFdNpuBnRZcan9hbwT6zur0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY5QjM4N0U2QjlDQUYxQkQyNkIyODZBOTQ4RDVBNzdG Qjg1RjgwQTAeFw0yNTA5MTkxMjU1MDBaFw0yNjA5MTgxMzAwMDBaMDMxMTAvBgNV BAMTKDBFQkREQ0VCNUUzNzVCMTM4Q0UyMDcxMzBBQUMzREY4NEI0MzYzRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu6vGTu3yjt8JoKk1hY6ypJm8S PLRFELOOxuk6WyIzo0vw5ZShwQTYxvOR+lGxmckHIoadQP/HgLI/370GKRK2ywsL Xu1enT2L/H1VPINhEnmYPLGQ5hXMkgyICdS42wi3h7hjECFsWYNEeMVSXqUglwSH lgz/sOBK6QJe08BthjrpjImr+GvfydMnF4wwDjglcjl3XmBWuSEHCCqbmKTEDtb+ qbQ1rduKnq/JsQY59f/WMfsnq94av/IrmN5NZdKAI7b83HJQpOK4v0Cir57ZkAjz AMMuprj8RtvHupoEppGvNUqQqK9gcC+zRqOu8S9L2gbDkzN+yL9JuVhq0yirAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDr3c6143WxOM4gcTCqw9+EtDY+AwHwYDVR0j BBgwFoAU1ps4fmucrxvSayhqlI1ad/uF+AowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDM4ZjNhMS1hYzBmLTRmN2MtOWM2Yy02YjI3NTY2ZmU3MGMvMC9ENjlCMzg3RTZC OUNBRjFCRDI2QjI4NkE5NDhENUE3N0ZCODVGODBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY5QjM4N0U2QjlDQUYxQkQyNkIyODZBOTQ4RDVBNzdGQjg1 RjgwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzhmM2ExLWFjMGYtNGY3Yy05 YzZjLTZiMjc1NjZmZTcwYy8wLzMxMzAzMzJlMzYzNTJlMzEzNDMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0GOMA0GCSqG SIb3DQEBCwUAA4IBAQC8kXPZ31xCU0zcapEPTogR6iKJTrFjKcWE7DQuQXT56Xx4 6b6csLG8c1IEFNn7y0jXpnHEqdqS5/o/7wWYEsa2aN6RrHJCWp78SJzu75XFDTh2 kNPiHLn+kDx2ZU2UQP7CxK0Ep0m+nrYHFDX3SIBwpInICEuK4I6ITNZZonvlxj2A g6cdoc66Nsu1E1YP3btPy8lPNp0mjjHxY7IuZkLa8awFBxbRI6CpKfAHcaOwB4Es BtW0+rBEdBQmq2NUC61AuSIFYRVHWXIy5DaFAHSR7Vq4Jja2KfyOe3xBPerwoCTp FzmqxXd6PM5QFANPxBsMOB9/dd9diLB7I67522ao -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:39 2025 by rpki-client