$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132312e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132312e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: LTZWN20UeEpbk3/6yOOjk81arYUEDuYxFg/WlS2mmEI= Subject key identifier: 0D:0D:18:D8:56:8E:C0:C4:A3:54:50:AB:51:DA:C5:D5:32:49:D7:4B Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 662ED7F6CCE3FFDA333D71592BA8C397457AB714 Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132312e302f32342d3234203d3e20313334363538.roa Signing time: Thu 18 Sep 2025 09:00:00 +0000 ROA not before: Thu 18 Sep 2025 08:55:00 +0000 ROA not after: Thu 17 Sep 2026 09:00:00 +0000 asID: 134658 IP address blocks: 103.210.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:2e:d7:f6:cc:e3:ff:da:33:3d:71:59:2b:a8:c3:97:45:7a:b7:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Sep 18 08:55:00 2025 GMT Not After : Sep 17 09:00:00 2026 GMT Subject: CN=0D0D18D8568EC0C4A35450AB51DAC5D53249D74B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cb:9d:6b:64:cc:de:7e:b0:51:76:da:66:2f: 24:8c:5e:55:ef:88:0a:17:ee:24:7f:71:98:23:6f: fa:95:cb:c2:78:1d:b8:56:99:79:d7:29:3e:2c:c4: 1f:ee:9f:01:54:a0:c1:7e:78:b3:92:6d:4d:88:70: 6d:9c:e8:8a:93:ff:92:c8:16:09:68:90:73:eb:7b: 42:1c:b5:ea:c2:ba:1a:d5:b5:d5:53:b4:b9:52:ea: 7d:2e:8e:7f:93:14:ae:94:65:cc:e4:47:66:d7:b6: e5:f1:61:fc:2b:4e:29:c6:e3:e8:f7:b6:6b:f3:cd: 6e:54:01:0f:98:22:56:da:27:e3:d0:0b:39:f7:97: 99:dd:52:c6:49:87:87:d7:7c:0d:b7:05:2b:e6:f7: d5:7a:6b:f6:7b:91:52:76:fe:65:0e:08:4a:26:d4: 3e:7a:35:81:b0:be:7e:54:30:f3:f9:fb:6e:20:8e: c8:56:a6:bd:8e:7e:ae:0e:24:03:18:0c:52:1d:cb: 65:4a:6d:5a:6c:7e:55:22:05:55:20:6d:ab:10:c0: 1b:ab:0b:0f:52:8f:dc:47:34:18:7c:61:ed:83:e0: 12:ba:2b:f7:34:39:cc:20:50:85:cc:47:79:88:24: cb:84:20:55:0d:a4:c3:a8:1e:37:83:be:66:e8:f9: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0D:18:D8:56:8E:C0:C4:A3:54:50:AB:51:DA:C5:D5:32:49:D7:4B X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132312e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.121.0/24 Signature Algorithm: sha256WithRSAEncryption ab:fb:dc:f2:43:f8:49:17:7f:4d:12:eb:b2:67:e8:b1:48:a9: d4:83:79:3c:68:67:9a:5d:2c:4b:71:e8:1f:80:bd:fd:6e:37: 26:cd:dd:66:23:b2:56:d6:a5:41:24:04:df:9c:e2:20:71:2e: 54:bb:24:2b:bf:81:26:ed:39:00:81:85:af:bb:36:14:a4:15: 95:55:55:26:a9:87:8c:8d:59:30:33:10:d4:a5:9e:2f:7f:55: 9e:f8:a8:4c:8f:f4:68:24:72:40:c9:13:e4:ef:a8:8d:ec:df: c4:0c:8e:4d:8a:c1:8e:a3:40:35:28:1d:f7:41:cf:8a:82:44: 3b:64:d4:f3:5b:ce:6d:4b:92:70:66:96:cd:9c:31:32:0d:fd: 40:78:5e:d7:b1:12:9a:03:95:03:6f:95:a8:da:ae:e4:10:3e: bb:b7:92:fe:95:69:d7:55:67:60:c6:5f:12:f1:6b:e7:31:ec: d4:b5:b6:6d:a9:2a:62:8c:1e:e6:d9:e2:40:f4:32:b0:a7:9a: 28:4a:fd:19:66:6f:0e:a2:3f:6d:a6:9f:bf:cc:cb:65:e1:82: ae:72:69:a1:70:62:e9:b3:9d:3a:2d:62:24:ab:f4:ac:dd:b2: 10:16:4a:2f:93:be:23:b8:e7:41:d7:cd:4e:d1:68:dc:52:58: ae:4d:14:50 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZi7X9szj/9ozPXFZK6jDl0V6txQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNTA5MTgwODU1MDBaFw0yNjA5MTcwOTAwMDBaMDMxMTAvBgNV BAMTKDBEMEQxOEQ4NTY4RUMwQzRBMzU0NTBBQjUxREFDNUQ1MzI0OUQ3NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOy51rZMzefrBRdtpmLySMXlXv iAoX7iR/cZgjb/qVy8J4HbhWmXnXKT4sxB/unwFUoMF+eLOSbU2IcG2c6IqT/5LI FglokHPre0IcterCuhrVtdVTtLlS6n0ujn+TFK6UZczkR2bXtuXxYfwrTinG4+j3 tmvzzW5UAQ+YIlbaJ+PQCzn3l5ndUsZJh4fXfA23BSvm99V6a/Z7kVJ2/mUOCEom 1D56NYGwvn5UMPP5+24gjshWpr2Ofq4OJAMYDFIdy2VKbVpsflUiBVUgbasQwBur Cw9Sj9xHNBh8Ye2D4BK6K/c0OcwgUIXMR3mIJMuEIFUNpMOoHjeDvmbo+UF3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDQ0Y2FaOwMSjVFCrUdrF1TJJ10swHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nkwDQYJ KoZIhvcNAQELBQADggEBAKv73PJD+EkXf00S67Jn6LFIqdSDeTxoZ5pdLEtx6B+A vf1uNybN3WYjslbWpUEkBN+c4iBxLlS7JCu/gSbtOQCBha+7NhSkFZVVVSaph4yN WTAzENSlni9/VZ74qEyP9GgkckDJE+TvqI3s38QMjk2KwY6jQDUoHfdBz4qCRDtk 1PNbzm1LknBmls2cMTIN/UB4XtexEpoDlQNvlajaruQQPru3kv6VaddVZ2DGXxLx a+cx7NS1tm2pKmKMHubZ4kD0MrCnmihK/Rlmbw6iP22mn7/My2Xhgq5yaaFwYumz nTotYiSr9KzdshAWSi+TviO450HXzU7RaNxSWK5NFFA= -----END CERTIFICATE-----Generated at Mon Oct 20 17:44:17 2025 by rpki-client