$ rpki-client -vvf repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31302e302f32332d3233203d3e203539323733.roa File: 3130332e34372e31302e302f32332d3233203d3e203539323733.roa (raw, json) Hash identifier: QQ3Rh44LarCBGGxrx2/AHtC6m0nt4l2HW31clE2Q/SY= Subject key identifier: E5:82:67:7D:A5:6C:AE:A4:D0:CA:BC:C7:D8:B1:90:0E:31:DA:02:F3 Certificate issuer: /CN=E91D51E54A89C0DDBD57F00A13E96E36FA29AB27 Certificate serial: 20E4F001E8799DD8A7B9BA9C87B95C8029943881 Authority key identifier: E9:1D:51:E5:4A:89:C0:DD:BD:57:F0:0A:13:E9:6E:36:FA:29:AB:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31302e302f32332d3233203d3e203539323733.roa Signing time: Fri 19 Sep 2025 18:00:01 +0000 ROA not before: Fri 19 Sep 2025 17:55:01 +0000 ROA not after: Fri 18 Sep 2026 18:00:01 +0000 asID: 59273 IP address blocks: 103.47.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.crl rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e4:f0:01:e8:79:9d:d8:a7:b9:ba:9c:87:b9:5c:80:29:94:38:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E91D51E54A89C0DDBD57F00A13E96E36FA29AB27 Validity Not Before: Sep 19 17:55:01 2025 GMT Not After : Sep 18 18:00:01 2026 GMT Subject: CN=E582677DA56CAEA4D0CABCC7D8B1900E31DA02F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:87:b8:e4:cd:20:f3:a5:02:d7:96:dc:dd: ca:d1:1f:d2:b4:bb:d6:02:5d:df:4f:34:37:3d:9a: 50:31:43:73:3b:70:f8:10:66:e6:26:92:6b:ec:49: 84:cb:2a:5f:9b:81:cf:3a:b3:34:b8:c6:05:6f:cf: a1:94:f7:12:9c:2c:2f:7e:ac:00:ea:8b:6d:e6:8d: 75:87:b1:db:e3:fe:b4:74:e5:fe:93:7f:d3:a5:49: c9:6b:cf:ad:10:6c:74:a3:b0:4c:6d:11:60:c1:35: 48:35:2f:89:fc:b5:f9:e6:c4:df:e1:60:40:30:60: a2:5e:a2:cc:d4:35:00:11:93:d7:e5:a9:d9:5c:74: 5e:68:bc:c4:08:dc:7b:39:06:ed:55:b5:53:47:e4: e2:e0:c4:cd:2f:18:75:82:fb:33:e6:76:9c:f9:73: 62:d9:5e:93:48:60:87:b3:27:44:6d:34:72:06:05: cb:a5:e9:5a:57:38:89:17:9d:13:df:4d:10:c7:3c: 7b:e1:ef:c6:77:04:58:a1:67:ea:86:29:ab:8f:d9: 7d:f1:ae:85:e5:b5:fd:aa:a3:16:25:c9:2b:a2:cf: 3c:ba:18:30:ba:96:07:16:a4:5a:63:37:4e:73:ff: 4f:9c:38:fe:5d:28:68:68:7a:f1:fb:fe:76:40:1a: 44:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:82:67:7D:A5:6C:AE:A4:D0:CA:BC:C7:D8:B1:90:0E:31:DA:02:F3 X509v3 Authority Key Identifier: keyid:E9:1D:51:E5:4A:89:C0:DD:BD:57:F0:0A:13:E9:6E:36:FA:29:AB:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31302e302f32332d3233203d3e203539323733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.10.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:f4:f5:ba:ce:fd:b7:db:16:a2:7b:d1:9b:12:93:ff:d5:bd: 83:d2:2d:0e:57:aa:47:87:31:05:df:5e:2d:54:37:4b:db:10: 15:60:0e:5d:a8:ca:9a:4a:bd:9a:ae:3b:60:2e:1b:b0:dc:b6: 74:10:89:b8:0b:29:d6:fa:74:08:0f:26:5a:76:7a:05:17:05: 72:95:ce:d1:23:25:b2:b8:55:5c:6b:0b:08:cc:8c:e4:ee:11: d1:bd:76:86:96:61:35:11:8b:eb:df:4e:d1:5e:70:e6:86:62: 39:03:45:55:2c:5d:e6:b1:4e:06:68:d2:9e:3a:73:0a:89:5e: a9:c4:cb:46:65:ec:b7:c3:a4:f4:a6:74:6a:ad:ad:17:ae:21: c9:a1:34:1f:18:b5:c9:bb:55:07:9e:8d:ba:ce:a9:39:23:ee: 62:76:fd:14:a6:3c:7f:9b:84:10:88:48:42:02:6f:de:de:d9: 62:94:ca:96:db:1d:bf:a8:15:aa:32:97:db:93:f6:36:d3:08: 34:14:3e:9d:02:52:66:96:b6:fb:30:cf:8e:16:08:58:16:81: 21:39:60:2c:8a:e7:bf:84:92:01:68:2c:d2:65:b2:8b:9e:c4: 8f:33:10:b0:e8:74:ab:97:7b:94:e1:92:4d:90:b0:d5:29:9a: f7:1b:0d:a6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIOTwAeh5ndinubqch7lcgCmUOIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTkxRDUxRTU0QTg5QzBEREJENTdGMDBBMTNFOTZFMzZG QTI5QUIyNzAeFw0yNTA5MTkxNzU1MDFaFw0yNjA5MTgxODAwMDFaMDMxMTAvBgNV BAMTKEU1ODI2NzdEQTU2Q0FFQTREMENBQkNDN0Q4QjE5MDBFMzFEQTAyRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mIe45M0g86UC15bc3crRH9K0 u9YCXd9PNDc9mlAxQ3M7cPgQZuYmkmvsSYTLKl+bgc86szS4xgVvz6GU9xKcLC9+ rADqi23mjXWHsdvj/rR05f6Tf9OlSclrz60QbHSjsExtEWDBNUg1L4n8tfnmxN/h YEAwYKJeoszUNQARk9flqdlcdF5ovMQI3Hs5Bu1VtVNH5OLgxM0vGHWC+zPmdpz5 c2LZXpNIYIezJ0RtNHIGBcul6VpXOIkXnRPfTRDHPHvh78Z3BFihZ+qGKauP2X3x roXltf2qoxYlySuizzy6GDC6lgcWpFpjN05z/0+cOP5dKGhoevH7/nZAGkTXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5YJnfaVsrqTQyrzH2LGQDjHaAvMwHwYDVR0j BBgwFoAU6R1R5UqJwN29V/AKE+luNvopqycwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWE3MmViOS04ZTUzLTQ0NzItYTM1YS1mZWU4YmYwYWY0NmYvMC9FOTFENTFFNTRB ODlDMEREQkQ1N0YwMEExM0U5NkUzNkZBMjlBQjI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTkxRDUxRTU0QTg5QzBEREJENTdGMDBBMTNFOTZFMzZGQTI5 QUIyNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1YTcyZWI5LThlNTMtNDQ3Mi1h MzVhLWZlZThiZjBhZjQ2Zi8wLzMxMzAzMzJlMzQzNzJlMzEzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzkzMjM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnLwowDQYJKoZIhvcN AQELBQADggEBACr09brO/bfbFqJ70ZsSk//VvYPSLQ5XqkeHMQXfXi1UN0vbEBVg Dl2oyppKvZquO2AuG7DctnQQibgLKdb6dAgPJlp2egUXBXKVztEjJbK4VVxrCwjM jOTuEdG9doaWYTURi+vfTtFecOaGYjkDRVUsXeaxTgZo0p46cwqJXqnEy0Zl7LfD pPSmdGqtrReuIcmhNB8Ytcm7VQeejbrOqTkj7mJ2/RSmPH+bhBCISEICb97e2WKU ypbbHb+oFaoyl9uT9jbTCDQUPp0CUmaWtvswz44WCFgWgSE5YCyK57+EkgFoLNJl souexI8zELDodKuXe5Thkk2QsNUpmvcbDaY= -----END CERTIFICATE-----Generated at Mon Oct 20 13:27:52 2025 by rpki-client