$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: NkQ9eWcHVREh5sfesIOFWzh9yqFj5sw8tkhu4ZxcoSQ= Subject key identifier: 24:0F:4B:DA:A3:57:0E:AB:AE:88:28:E3:96:09:7F:9D:90:61:E1:8B Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 168096D6BB990CFD7BF3C2DF2BAAE2D0841BEFF2 Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa Signing time: Thu 18 Sep 2025 09:00:00 +0000 ROA not before: Thu 18 Sep 2025 08:55:00 +0000 ROA not after: Thu 17 Sep 2026 09:00:00 +0000 asID: 134658 IP address blocks: 103.210.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:80:96:d6:bb:99:0c:fd:7b:f3:c2:df:2b:aa:e2:d0:84:1b:ef:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Sep 18 08:55:00 2025 GMT Not After : Sep 17 09:00:00 2026 GMT Subject: CN=240F4BDAA3570EABAE8828E396097F9D9061E18B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:10:cc:98:8c:bf:4f:74:29:76:80:cd:08:e3: 83:e4:94:a3:3c:e8:6b:ac:b5:94:07:dd:06:19:6f: e8:90:33:fe:f6:2d:65:82:8f:66:26:b8:14:85:cb: de:1c:6e:6b:11:94:16:af:04:a1:10:ea:e5:22:72: 99:81:37:85:59:61:1e:9f:1b:b0:6d:34:98:a4:18: 9f:b5:cf:6c:85:a0:42:e5:24:65:2e:13:73:a4:4a: 52:d8:ad:80:ff:68:bf:0c:c8:2b:cd:63:cb:7c:ca: 1b:e7:20:7c:20:20:93:1d:18:aa:b5:f7:86:ab:ed: 0b:44:89:80:d2:e6:0f:d4:58:f4:9e:79:fd:6f:78: 0d:4d:21:e9:6c:d3:d2:f2:6b:13:03:ad:f1:4b:ae: e8:56:73:ec:d8:0f:96:13:fe:60:3d:ca:73:94:9c: 16:5b:4d:a4:3c:bc:8d:3a:40:a1:24:c0:8d:ac:5a: a0:2b:75:42:c2:f7:fd:9f:ea:a6:39:d2:01:fc:fd: 75:3b:f3:0b:66:9a:d9:e5:bd:12:f8:ad:b9:07:de: ba:d7:b5:30:1d:cf:6d:ed:57:2f:13:e9:0d:23:7c: dc:80:8e:84:ef:50:54:40:c3:70:96:96:3b:4d:8b: 24:33:70:91:c1:46:90:e7:a9:c5:c0:28:f7:89:c0: b2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0F:4B:DA:A3:57:0E:AB:AE:88:28:E3:96:09:7F:9D:90:61:E1:8B X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.123.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:52:6c:ec:f8:0c:37:b6:53:55:b2:2c:1c:e8:09:df:2a:aa: c9:09:1f:7e:c9:5d:0e:0f:f8:ec:2b:c6:75:b3:f4:ce:4a:53: 67:fa:ae:93:6d:cf:1c:6b:7d:20:75:16:11:b6:df:86:29:42: 5c:15:9c:fb:43:9c:34:5b:da:6f:44:f4:eb:b6:7d:14:f3:4b: 2f:84:61:30:82:5c:65:32:f4:ef:7d:f5:ab:70:af:24:4e:b7: 06:75:27:cd:07:a1:91:7f:df:86:97:ac:bd:13:9f:a9:6f:30: 64:3a:f7:d0:ae:bc:96:fd:5f:55:ba:52:0c:f7:b7:fd:b4:e3: 02:3a:e1:a9:ba:05:2f:38:16:5f:1e:f1:ad:a2:74:2a:ae:67: d2:9f:af:e3:54:19:b3:72:36:9f:e0:d6:14:15:f2:23:2c:be: 72:70:16:8f:f7:f5:9d:1c:59:11:be:45:c8:67:4e:79:5e:ac: fb:81:c4:4d:bb:d8:28:85:a4:c7:02:a9:9a:c7:5e:9e:e4:fc: c5:fa:4b:86:a8:42:09:6c:9b:57:7c:72:17:6a:64:c5:19:d3: 62:e0:f8:f0:e6:66:88:3e:44:92:7d:1c:5e:ed:81:14:f2:ea: eb:d2:6f:20:5e:c8:e2:0a:62:48:ff:11:4c:9e:3a:42:c0:67: 62:ae:bb:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFoCW1ruZDP1788LfK6ri0IQb7/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNTA5MTgwODU1MDBaFw0yNjA5MTcwOTAwMDBaMDMxMTAvBgNV BAMTKDI0MEY0QkRBQTM1NzBFQUJBRTg4MjhFMzk2MDk3RjlEOTA2MUUxOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeEMyYjL9PdCl2gM0I44PklKM8 6GustZQH3QYZb+iQM/72LWWCj2YmuBSFy94cbmsRlBavBKEQ6uUicpmBN4VZYR6f G7BtNJikGJ+1z2yFoELlJGUuE3OkSlLYrYD/aL8MyCvNY8t8yhvnIHwgIJMdGKq1 94ar7QtEiYDS5g/UWPSeef1veA1NIels09LyaxMDrfFLruhWc+zYD5YT/mA9ynOU nBZbTaQ8vI06QKEkwI2sWqArdULC9/2f6qY50gH8/XU78wtmmtnlvRL4rbkH3rrX tTAdz23tVy8T6Q0jfNyAjoTvUFRAw3CWljtNiyQzcJHBRpDnqcXAKPeJwLI3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJA9L2qNXDquuiCjjlgl/nZBh4YswHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nswDQYJ KoZIhvcNAQELBQADggEBAA1SbOz4DDe2U1WyLBzoCd8qqskJH37JXQ4P+OwrxnWz 9M5KU2f6rpNtzxxrfSB1FhG234YpQlwVnPtDnDRb2m9E9Ou2fRTzSy+EYTCCXGUy 9O999atwryROtwZ1J80HoZF/34aXrL0Tn6lvMGQ699CuvJb9X1W6Ugz3t/204wI6 4am6BS84Fl8e8a2idCquZ9Kfr+NUGbNyNp/g1hQV8iMsvnJwFo/39Z0cWRG+Rchn TnlerPuBxE272CiFpMcCqZrHXp7k/MX6S4aoQglsm1d8chdqZMUZ02Lg+PDmZog+ RJJ9HF7tgRTy6uvSbyBeyOIKYkj/EUyeOkLAZ2Kuu9k= -----END CERTIFICATE-----Generated at Mon Oct 20 17:48:22 2025 by rpki-client