$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: P41PFR8M2pkKOmCdUu6l5sHUIprRbj+Eb/jozno97jU= Subject key identifier: 7C:98:06:49:BC:DB:7F:B9:CF:DE:2A:9A:8A:4D:50:86:8B:7A:2E:A9 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 774E15DDE79F639717694461904DDDA6F16EBC4D Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa Signing time: Thu 18 Sep 2025 08:00:00 +0000 ROA not before: Thu 18 Sep 2025 07:55:00 +0000 ROA not after: Thu 17 Sep 2026 08:00:00 +0000 asID: 134658 IP address blocks: 103.210.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4e:15:dd:e7:9f:63:97:17:69:44:61:90:4d:dd:a6:f1:6e:bc:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Sep 18 07:55:00 2025 GMT Not After : Sep 17 08:00:00 2026 GMT Subject: CN=7C980649BCDB7FB9CFDE2A9A8A4D50868B7A2EA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b3:6b:42:fc:dd:5a:74:a2:31:61:a4:35:93: ba:b0:90:00:a8:ef:1f:1a:6b:a6:82:ce:38:13:6d: 9e:be:46:cf:a2:46:1c:e4:0b:5d:e5:48:09:ea:e7: ec:4e:e3:0e:64:64:2a:f9:f8:7d:50:c8:76:01:b4: 89:4c:d4:2c:5e:42:76:87:6f:ca:6a:a9:76:24:5a: 85:8c:d6:9d:79:79:3c:a7:f3:d5:12:0a:8c:d7:83: 96:6e:ab:58:34:fe:c6:19:55:41:64:ad:4e:37:04: 89:b5:36:3f:4e:25:5f:57:96:39:40:f0:87:f4:dc: 16:f0:0c:0f:08:a6:8b:b2:17:22:e7:1e:b9:b1:2a: 40:6d:88:0d:29:2c:7a:84:f4:26:5b:22:3e:73:2b: 07:e6:c4:1a:c0:47:7d:4f:cf:a3:86:f3:6a:a3:3f: 04:53:a7:4f:4e:f1:61:f8:32:7e:5d:ae:c5:91:45: 5d:8b:64:7f:a5:71:fb:f4:38:22:91:9d:58:20:df: b0:35:e8:ba:9c:0b:7e:90:b6:24:28:61:71:92:ae: 5d:a3:5e:f2:fe:70:c5:22:1a:dd:ec:e0:30:d2:26: 74:e3:24:44:81:6d:4a:8b:bd:1e:9c:47:48:88:a3: b6:7e:92:77:e5:f5:dd:c9:2c:0b:c8:17:45:6f:93: fd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:98:06:49:BC:DB:7F:B9:CF:DE:2A:9A:8A:4D:50:86:8B:7A:2E:A9 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.122.0/24 Signature Algorithm: sha256WithRSAEncryption 11:3e:e9:75:4f:89:a5:94:4c:97:7e:d7:35:fd:0b:17:1d:17: cc:54:40:d3:8e:cd:7c:08:3a:d5:0d:ca:ab:7a:a0:97:ee:ed: 4e:9a:b9:1f:62:7b:86:3d:d5:24:e3:ff:01:0b:5b:07:15:3e: 28:56:a0:27:51:48:92:6d:ea:53:e9:65:64:1a:ce:63:b1:b1: f5:d5:fd:53:4c:77:c8:96:4a:fd:6e:f8:bd:03:04:5d:32:0a: a1:c0:82:72:3e:38:2f:1b:3f:0e:fb:7d:92:56:2e:90:2d:fb: 74:e5:9e:8b:38:3c:3c:fc:03:f5:d1:65:e6:fa:bb:a5:16:a5: 26:06:96:68:52:02:0c:29:05:8a:44:0a:db:07:ef:5b:d8:7c: 22:da:59:6d:47:e8:88:7e:d3:ca:b0:a0:40:d0:de:4f:ce:e5: 6b:c8:11:3b:b3:2e:5f:4c:67:36:6f:0c:cb:12:a7:21:85:99: 47:62:1c:5e:f0:fc:9d:30:11:3e:1f:f4:f1:1c:18:0a:42:be: 88:e4:e4:23:19:21:be:f3:b6:e6:71:46:39:8d:77:4c:5a:b8: c9:62:83:38:0d:85:07:5e:29:35:a4:3c:a9:71:37:05:a6:93: 86:3f:8d:60:23:eb:00:41:10:6e:b6:5b:11:3b:1f:53:56:88: ad:ee:4c:4c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd04V3eefY5cXaURhkE3dpvFuvE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNTA5MTgwNzU1MDBaFw0yNjA5MTcwODAwMDBaMDMxMTAvBgNV BAMTKDdDOTgwNjQ5QkNEQjdGQjlDRkRFMkE5QThBNEQ1MDg2OEI3QTJFQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqs2tC/N1adKIxYaQ1k7qwkACo 7x8aa6aCzjgTbZ6+Rs+iRhzkC13lSAnq5+xO4w5kZCr5+H1QyHYBtIlM1CxeQnaH b8pqqXYkWoWM1p15eTyn89USCozXg5Zuq1g0/sYZVUFkrU43BIm1Nj9OJV9XljlA 8If03BbwDA8IpouyFyLnHrmxKkBtiA0pLHqE9CZbIj5zKwfmxBrAR31Pz6OG82qj PwRTp09O8WH4Mn5drsWRRV2LZH+lcfv0OCKRnVgg37A16LqcC36QtiQoYXGSrl2j XvL+cMUiGt3s4DDSJnTjJESBbUqLvR6cR0iIo7Z+knfl9d3JLAvIF0Vvk/2nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfJgGSbzbf7nP3iqaik1Qhot6LqkwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nowDQYJ KoZIhvcNAQELBQADggEBABE+6XVPiaWUTJd+1zX9CxcdF8xUQNOOzXwIOtUNyqt6 oJfu7U6auR9ie4Y91STj/wELWwcVPihWoCdRSJJt6lPpZWQazmOxsfXV/VNMd8iW Sv1u+L0DBF0yCqHAgnI+OC8bPw77fZJWLpAt+3Tlnos4PDz8A/XRZeb6u6UWpSYG lmhSAgwpBYpECtsH71vYfCLaWW1H6Ih+08qwoEDQ3k/O5WvIETuzLl9MZzZvDMsS pyGFmUdiHF7w/J0wET4f9PEcGApCvojk5CMZIb7ztuZxRjmNd0xauMligzgNhQde KTWkPKlxNwWmk4Y/jWAj6wBBEG62WxE7H1NWiK3uTEw= -----END CERTIFICATE-----Generated at Mon Oct 20 17:48:24 2025 by rpki-client