$ rpki-client -vvf repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa File: 3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: h1Tx5XQe9PTjaWSuT2kvzlzqF3kndx9Hsu7Upo8uOTc= Subject key identifier: BC:05:02:96:D5:D8:21:7B:72:5C:EB:FD:76:CE:15:29:09:B5:11:D7 Certificate issuer: /CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1 Certificate serial: 34B7A28A651699C254BBF9E75CC9D0B533BB4823 Authority key identifier: E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa Signing time: Tue 23 Sep 2025 09:00:00 +0000 ROA not before: Tue 23 Sep 2025 08:55:00 +0000 ROA not after: Tue 22 Sep 2026 09:00:00 +0000 asID: 139952 IP address blocks: 103.178.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b7:a2:8a:65:16:99:c2:54:bb:f9:e7:5c:c9:d0:b5:33:bb:48:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1 Validity Not Before: Sep 23 08:55:00 2025 GMT Not After : Sep 22 09:00:00 2026 GMT Subject: CN=BC050296D5D8217B725CEBFD76CE152909B511D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:e3:39:61:44:2e:49:3c:ce:77:02:48:f4: 29:3a:84:58:1f:d7:19:46:25:37:f5:4a:9c:38:ef: ab:7f:4e:13:9a:0e:22:80:b8:65:0a:92:53:b7:a9: 7b:ff:b5:b2:5f:a6:97:fe:40:e8:54:76:f6:29:61: 67:8e:38:c6:27:87:f5:75:e7:de:7b:2e:ca:93:b1: 3c:32:e2:fe:52:40:46:fb:f4:99:33:64:f4:2b:fe: f6:92:ea:5b:ec:a9:aa:23:52:61:13:2d:73:5b:31: 32:ed:b1:65:5d:98:5c:fc:cc:df:aa:97:a2:de:99: e8:48:ed:b4:0e:26:85:ff:6d:8e:46:54:a5:77:17: 09:00:5d:c2:2d:15:99:00:39:ac:79:bb:e1:1b:f2: 00:ed:21:14:03:e8:22:dd:1e:db:97:78:1b:08:3b: 99:e5:44:e9:e6:28:38:4c:39:09:fd:94:e6:c5:da: b0:64:bf:15:c1:6a:d1:77:c0:b0:7e:8f:aa:0d:df: fb:aa:62:2c:d2:9b:1c:e2:b5:fc:1e:82:c3:9a:68: bf:4d:1d:4a:3b:ed:28:7b:78:83:70:bd:9a:2e:15: f2:22:02:a2:55:e4:43:2e:8e:ac:da:e3:37:5a:20: d4:58:03:82:48:e8:d3:05:0e:7c:03:8a:82:51:bb: f7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:05:02:96:D5:D8:21:7B:72:5C:EB:FD:76:CE:15:29:09:B5:11:D7 X509v3 Authority Key Identifier: keyid:E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.170.0/24 Signature Algorithm: sha256WithRSAEncryption 36:41:48:88:8e:53:47:3c:e0:eb:5a:af:89:0e:2f:c4:8a:8a: 5f:06:f8:d8:34:05:fe:86:05:09:9c:81:96:b7:70:95:2c:95: 12:ee:2a:3f:30:f0:02:6d:de:71:3b:26:a9:62:7a:0f:8c:69: c9:a2:01:c9:35:37:22:c8:c8:1a:21:81:c2:95:a2:f7:a4:09: 55:54:28:f9:d4:cf:0f:9b:d6:e3:59:6d:eb:af:ba:57:93:03: 18:00:f5:68:e1:70:ee:07:0b:fd:4e:fb:c6:a0:6f:56:60:14: ca:64:db:e2:c6:0a:28:d9:32:f3:96:25:1c:c8:2d:10:3d:6b: e9:ed:1b:76:63:a6:34:42:dd:a9:c4:a7:f5:0c:b5:9a:36:2c: de:a6:a8:a5:f3:f9:12:d9:33:b2:1d:3c:83:2e:9c:55:dc:bf: eb:f1:48:9e:c3:75:69:3c:9a:9b:ba:b2:df:56:cf:c5:a1:02: 07:d3:64:23:a0:27:b5:ad:7d:ce:e6:a4:55:2b:54:69:10:8f: a5:cf:98:9d:f1:6b:cd:02:aa:73:ee:d3:f2:b5:94:eb:4b:2d: 1d:c1:53:b6:22:00:d9:87:60:df:c5:a5:24:d8:80:a5:08:f4: 61:08:bf:d2:fb:7b:ae:47:0c:e5:ff:11:62:30:13:d5:e9:42: ce:6a:af:69 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNLeiimUWmcJUu/nnXMnQtTO7SCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTA5RDBFMUQyNjNEQkQ5MTREMEM0RTBDQUE3RTVFNTBE MDIyNDZGMTAeFw0yNTA5MjMwODU1MDBaFw0yNjA5MjIwOTAwMDBaMDMxMTAvBgNV BAMTKEJDMDUwMjk2RDVEODIxN0I3MjVDRUJGRDc2Q0UxNTI5MDlCNTExRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU7OM5YUQuSTzOdwJI9Ck6hFgf 1xlGJTf1Spw476t/ThOaDiKAuGUKklO3qXv/tbJfppf+QOhUdvYpYWeOOMYnh/V1 5957LsqTsTwy4v5SQEb79JkzZPQr/vaS6lvsqaojUmETLXNbMTLtsWVdmFz8zN+q l6LemehI7bQOJoX/bY5GVKV3FwkAXcItFZkAOax5u+Eb8gDtIRQD6CLdHtuXeBsI O5nlROnmKDhMOQn9lObF2rBkvxXBatF3wLB+j6oN3/uqYizSmxzitfwegsOaaL9N HUo77Sh7eINwvZouFfIiAqJV5EMujqza4zdaINRYA4JI6NMFDnwDioJRu/ctAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvAUCltXYIXtyXOv9ds4VKQm1EdcwHwYDVR0j BBgwFoAU4J0OHSY9vZFNDE4Mqn5eUNAiRvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzAxZmQ0NC04Y2Q2LTRkOWYtOWJkMS04MzY3YWQ5Y2Q5ZWEvMC9FMDlEMEUxRDI2 M0RCRDkxNEQwQzRFMENBQTdFNUU1MEQwMjI0NkYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTA5RDBFMUQyNjNEQkQ5MTREMEM0RTBDQUE3RTVFNTBEMDIy NDZGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMDFmZDQ0LThjZDYtNGQ5Zi05 YmQxLTgzNjdhZDljZDllYS8wLzMxMzAzMzJlMzEzNzM4MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsqowDQYJ KoZIhvcNAQELBQADggEBADZBSIiOU0c84Otar4kOL8SKil8G+Ng0Bf6GBQmcgZa3 cJUslRLuKj8w8AJt3nE7Jqlieg+MacmiAck1NyLIyBohgcKVovekCVVUKPnUzw+b 1uNZbeuvuleTAxgA9WjhcO4HC/1O+8agb1ZgFMpk2+LGCijZMvOWJRzILRA9a+nt G3ZjpjRC3anEp/UMtZo2LN6mqKXz+RLZM7IdPIMunFXcv+vxSJ7DdWk8mpu6st9W z8WhAgfTZCOgJ7Wtfc7mpFUrVGkQj6XPmJ3xa80CqnPu0/K1lOtLLR3BU7YiANmH YN/FpSTYgKUI9GEIv9L7e65HDOX/EWIwE9XpQs5qr2k= -----END CERTIFICATE-----Generated at Mon Oct 20 20:29:38 2025 by rpki-client