$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: 9ga4Dz2S1yZEHVR/bNJu6K+f7jqkSZliYiYDlhJqlSc= Subject key identifier: 06:81:EA:1E:9A:F9:5F:1F:A3:10:F1:6A:7D:17:40:C4:35:57:0F:09 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 5E14957CC488F811B97E54B49605DDE66FF322FD Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa Signing time: Thu 18 Sep 2025 08:00:00 +0000 ROA not before: Thu 18 Sep 2025 07:55:00 +0000 ROA not after: Thu 17 Sep 2026 08:00:00 +0000 asID: 134658 IP address blocks: 103.210.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:14:95:7c:c4:88:f8:11:b9:7e:54:b4:96:05:dd:e6:6f:f3:22:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Sep 18 07:55:00 2025 GMT Not After : Sep 17 08:00:00 2026 GMT Subject: CN=0681EA1E9AF95F1FA310F16A7D1740C435570F09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:65:d1:a5:9d:0d:5e:02:22:1d:6a:e0:fd:5d: 64:e1:b8:98:8e:4e:3e:01:8f:d7:55:a9:e7:ed:41: 30:9d:a1:b3:31:d4:a4:ed:d9:95:87:52:8e:cd:46: 82:5c:f4:c7:6a:f8:ce:3e:96:44:43:0a:11:2f:9e: 45:b7:24:a8:01:64:b1:5b:dc:10:d8:6a:b4:ee:fd: 0d:3f:66:a8:86:5d:7a:c5:bd:98:de:e4:d8:af:c0: da:a0:3b:be:9e:2e:15:35:6f:3c:f1:38:fa:34:5b: 71:05:dd:26:79:82:bf:cf:ea:d5:8f:06:df:b4:4b: a8:aa:32:08:d1:0b:d1:bd:5b:07:d0:97:dc:e0:91: fb:d1:36:86:f9:0c:a5:91:47:43:7d:8f:ac:55:0f: be:ac:3f:78:5a:c8:cb:68:80:e1:5d:71:16:e1:0a: 78:8f:d4:8e:86:74:8a:99:d8:ec:b1:72:7a:bc:f3: 0e:13:0f:6c:33:2a:1f:7c:90:39:99:1b:04:e1:13: 52:ac:f8:32:b0:13:4a:b0:47:01:d4:d8:9b:fc:8d: 01:4e:f2:3e:46:16:8f:6e:df:46:28:22:cc:53:9c: 0e:ac:86:ac:19:26:10:59:9f:50:8a:f0:2d:69:94: cd:10:6f:d7:5b:10:d0:b4:e5:3c:52:ac:18:e7:6c: 16:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:81:EA:1E:9A:F9:5F:1F:A3:10:F1:6A:7D:17:40:C4:35:57:0F:09 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.120.0/24 Signature Algorithm: sha256WithRSAEncryption 73:91:e0:0e:84:5a:a0:7f:a0:c7:35:05:7f:95:b8:1a:e9:ce: 90:db:f8:d5:22:5a:ab:4a:11:7c:8d:e7:6c:fb:57:a9:93:70: 39:52:99:4d:8a:23:4c:8d:59:41:b8:e9:b6:0b:25:6d:c7:91: b3:ce:69:4b:75:bd:09:42:f8:02:c4:99:40:04:42:48:f4:2e: e3:d2:4c:f9:44:d9:d4:7c:57:09:4b:93:d0:dc:57:ab:02:de: dc:8c:37:26:45:ca:18:93:ec:de:1e:aa:e7:ad:10:6f:0e:4c: 8a:eb:5e:8b:e5:8c:99:f2:54:91:83:eb:08:88:5f:b4:20:2e: fa:ac:f9:b2:89:8b:93:2b:30:0f:7b:b6:4c:76:b0:01:c0:06: 61:c0:07:38:a8:92:5e:ac:42:fc:12:ca:0f:10:a3:b4:b0:91: 9b:fd:52:b4:a2:51:e3:df:1e:7c:05:4b:eb:7c:00:77:27:81: 5e:ea:cc:a7:8b:7d:39:cf:cd:23:aa:45:59:2e:cb:a5:38:84: 89:f3:ab:66:a1:4d:05:51:35:1a:57:9d:bd:91:a0:e0:ef:94: 78:74:68:9e:4d:2d:9d:96:56:e8:ef:4c:cc:17:44:16:84:d5: 51:4f:12:f9:66:63:2d:27:02:57:44:3e:55:56:30:0f:41:12: 52:a5:16:f5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXhSVfMSI+BG5flS0lgXd5m/zIv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNTA5MTgwNzU1MDBaFw0yNjA5MTcwODAwMDBaMDMxMTAvBgNV BAMTKDA2ODFFQTFFOUFGOTVGMUZBMzEwRjE2QTdEMTc0MEM0MzU1NzBGMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMZdGlnQ1eAiIdauD9XWThuJiO Tj4Bj9dVqeftQTCdobMx1KTt2ZWHUo7NRoJc9Mdq+M4+lkRDChEvnkW3JKgBZLFb 3BDYarTu/Q0/ZqiGXXrFvZje5NivwNqgO76eLhU1bzzxOPo0W3EF3SZ5gr/P6tWP Bt+0S6iqMgjRC9G9WwfQl9zgkfvRNob5DKWRR0N9j6xVD76sP3hayMtogOFdcRbh CniP1I6GdIqZ2Oyxcnq88w4TD2wzKh98kDmZGwThE1Ks+DKwE0qwRwHU2Jv8jQFO 8j5GFo9u30YoIsxTnA6shqwZJhBZn1CK8C1plM0Qb9dbENC05TxSrBjnbBZFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBoHqHpr5Xx+jEPFqfRdAxDVXDwkwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0ngwDQYJ KoZIhvcNAQELBQADggEBAHOR4A6EWqB/oMc1BX+VuBrpzpDb+NUiWqtKEXyN52z7 V6mTcDlSmU2KI0yNWUG46bYLJW3HkbPOaUt1vQlC+ALEmUAEQkj0LuPSTPlE2dR8 VwlLk9DcV6sC3tyMNyZFyhiT7N4equetEG8OTIrrXovljJnyVJGD6wiIX7QgLvqs +bKJi5MrMA97tkx2sAHABmHABziokl6sQvwSyg8Qo7SwkZv9UrSiUePfHnwFS+t8 AHcngV7qzKeLfTnPzSOqRVkuy6U4hInzq2ahTQVRNRpXnb2RoODvlHh0aJ5NLZ2W VujvTMwXRBaE1VFPEvlmYy0nAldEPlVWMA9BElKlFvU= -----END CERTIFICATE-----Generated at Mon Oct 20 20:33:30 2025 by rpki-client