$ rpki-client -vvf repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132322e302f32342d3234203d3e20313530343730.roa File: 3130332e35312e3132322e302f32342d3234203d3e20313530343730.roa (raw, json) Hash identifier: 9H3El07W5poKziXy5nJS/+wd9IjLStSX7hOc3PPnjBQ= Subject key identifier: 04:5E:7D:05:0D:EA:2B:92:A2:55:F2:FA:47:A1:60:1D:C7:13:CB:F3 Certificate issuer: /CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Certificate serial: 4060317E58A76863BEF41E98DA3DD4E2AFA03FFF Authority key identifier: 10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132322e302f32342d3234203d3e20313530343730.roa Signing time: Wed 24 Sep 2025 05:02:23 +0000 ROA not before: Wed 24 Sep 2025 04:57:23 +0000 ROA not after: Wed 23 Sep 2026 05:02:23 +0000 asID: 150470 IP address blocks: 103.51.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:60:31:7e:58:a7:68:63:be:f4:1e:98:da:3d:d4:e2:af:a0:3f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Validity Not Before: Sep 24 04:57:23 2025 GMT Not After : Sep 23 05:02:23 2026 GMT Subject: CN=045E7D050DEA2B92A255F2FA47A1601DC713CBF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a5:af:f7:76:a3:a7:b8:88:57:e8:93:74:8e: 8a:a6:17:ae:f1:52:c2:f6:08:58:4a:d6:e5:1f:3d: 35:fa:b5:5b:37:96:2e:65:69:4b:c6:80:19:45:b0: 58:3a:de:c6:9b:38:9a:da:d2:b6:5f:c5:59:4d:43: 22:18:30:4b:70:45:23:1a:cf:ca:a3:8f:78:dd:6b: dd:37:aa:95:60:15:6b:6a:9f:fe:ad:d8:04:67:57: 08:ea:45:0d:ec:51:c6:cd:7e:65:69:44:55:47:72: a9:56:80:5a:16:37:71:5b:21:66:7e:10:1f:d6:71: 5d:6b:e9:5a:15:35:52:31:c5:56:b7:85:e9:88:a9: db:6b:c3:71:7a:5e:f3:a6:9e:91:94:5f:2d:ad:37: 01:c9:e9:9f:af:ee:f0:c6:83:8e:59:ce:65:d2:6c: a4:30:f4:71:ee:63:46:34:d6:25:77:11:48:b6:62: 29:11:a0:ac:08:1f:88:c6:da:9a:a8:3f:08:66:ab: d4:a8:c2:91:e3:e7:7b:81:73:9b:f1:f1:65:be:a2: ec:70:8d:0f:52:e3:8c:85:ca:23:87:16:1f:0d:1f: 14:33:ef:82:40:cf:12:f2:d8:10:ae:e1:6c:94:93: 7b:65:a2:75:a4:0e:3c:83:8f:de:0b:cb:6d:53:03: 8b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:5E:7D:05:0D:EA:2B:92:A2:55:F2:FA:47:A1:60:1D:C7:13:CB:F3 X509v3 Authority Key Identifier: keyid:10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132322e302f32342d3234203d3e20313530343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.122.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:6b:7b:a2:a2:97:fc:c1:63:29:7b:b2:36:9a:cb:65:a5:64: 8c:80:c7:e2:2c:e3:79:58:19:61:ec:dc:43:8c:74:51:5e:25: 71:6b:f4:19:ac:bf:1a:98:73:31:9d:c3:38:40:d1:3e:77:e7: 03:ef:f7:78:f5:20:f6:71:a5:c8:5c:67:8e:ac:b3:bd:16:d7: 3a:f2:d1:59:08:3c:91:0d:64:e0:25:82:8e:48:57:dc:f3:83: 71:10:4a:74:01:57:a1:d1:d5:71:6b:8b:35:02:7b:88:fc:33: 4e:56:6b:04:3b:21:96:1f:3a:68:b2:b1:80:03:d9:17:3c:06: 76:69:78:3b:82:a1:9d:24:b3:3a:e4:4a:91:c3:01:5e:dd:b1: 7c:e8:a0:3c:ec:c6:3b:c0:73:cf:12:69:66:6c:11:20:2d:c9: 63:89:14:86:ae:48:d0:54:8e:bd:12:cf:f9:eb:55:99:e1:2c: b3:fc:68:19:6d:f0:ee:6b:c9:79:f2:e4:61:74:4b:b6:0f:21: df:42:bd:7d:45:8a:a9:2f:df:b5:17:5b:e8:e5:ec:a7:98:cd: 96:2b:35:35:f0:83:d8:1d:1b:c1:87:b9:f9:8c:92:fd:d0:22: 83:83:5b:c3:64:d8:62:63:76:c8:af:ee:d1:80:c2:b6:60:fe: 3a:e7:d6:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQGAxflinaGO+9B6Y2j3U4q+gP/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1 Mzg5QkI1OTAeFw0yNTA5MjQwNDU3MjNaFw0yNjA5MjMwNTAyMjNaMDMxMTAvBgNV BAMTKDA0NUU3RDA1MERFQTJCOTJBMjU1RjJGQTQ3QTE2MDFEQzcxM0NCRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHpa/3dqOnuIhX6JN0joqmF67x UsL2CFhK1uUfPTX6tVs3li5laUvGgBlFsFg63sabOJra0rZfxVlNQyIYMEtwRSMa z8qjj3jda903qpVgFWtqn/6t2ARnVwjqRQ3sUcbNfmVpRFVHcqlWgFoWN3FbIWZ+ EB/WcV1r6VoVNVIxxVa3hemIqdtrw3F6XvOmnpGUXy2tNwHJ6Z+v7vDGg45ZzmXS bKQw9HHuY0Y01iV3EUi2YikRoKwIH4jG2pqoPwhmq9SowpHj53uBc5vx8WW+ouxw jQ9S44yFyiOHFh8NHxQz74JAzxLy2BCu4WyUk3tlonWkDjyDj94Ly21TA4v3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBF59BQ3qK5KiVfL6R6FgHccTy/MwHwYDVR0j BBgwFoAUEExPz4iPPIa4wSjYHFuV/lOJu1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjhlZWM1Yi01MzI0LTQ0MjItYTMyZi05YjFkY2VkMzc1OWYvMC8xMDRDNEZDRjg4 OEYzQzg2QjhDMTI4RDgxQzVCOTVGRTUzODlCQjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1Mzg5 QkI1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyOGVlYzViLTUzMjQtNDQyMi1h MzJmLTliMWRjZWQzNzU5Zi8wLzMxMzAzMzJlMzUzMTJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzN6MA0GCSqG SIb3DQEBCwUAA4IBAQAqa3uiopf8wWMpe7I2mstlpWSMgMfiLON5WBlh7NxDjHRR XiVxa/QZrL8amHMxncM4QNE+d+cD7/d49SD2caXIXGeOrLO9Ftc68tFZCDyRDWTg JYKOSFfc84NxEEp0AVeh0dVxa4s1AnuI/DNOVmsEOyGWHzposrGAA9kXPAZ2aXg7 gqGdJLM65EqRwwFe3bF86KA87MY7wHPPEmlmbBEgLcljiRSGrkjQVI69Es/561WZ 4Syz/GgZbfDua8l58uRhdEu2DyHfQr19RYqpL9+1F1vo5eynmM2WKzU18IPYHRvB h7n5jJL90CKDg1vDZNhiY3bIr+7RgMK2YP4659Y1 -----END CERTIFICATE-----Generated at Mon Oct 20 17:43:59 2025 by rpki-client