$ rpki-client -vvf repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa File: 3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa (raw, json) Hash identifier: vxMPTESIzZEY7G3+9W6n+soUJ5to979lR7MTr9paLOY= Subject key identifier: B0:AF:05:43:9A:8C:6A:16:6D:B5:18:F0:6D:86:87:D7:FA:8F:78:77 Certificate issuer: /CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Certificate serial: 417AA1911DA47D08100C95D07372748249425A21 Authority key identifier: 10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa Signing time: Wed 24 Sep 2025 05:02:23 +0000 ROA not before: Wed 24 Sep 2025 04:57:23 +0000 ROA not after: Wed 23 Sep 2026 05:02:23 +0000 asID: 150470 IP address blocks: 103.51.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7a:a1:91:1d:a4:7d:08:10:0c:95:d0:73:72:74:82:49:42:5a:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Validity Not Before: Sep 24 04:57:23 2025 GMT Not After : Sep 23 05:02:23 2026 GMT Subject: CN=B0AF05439A8C6A166DB518F06D8687D7FA8F7877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:ea:98:1d:04:f6:ee:27:59:7b:0c:67:20: 52:30:50:6f:25:85:a2:d5:04:a7:d1:27:0d:f4:6b: c7:e4:29:d4:25:0e:23:25:67:7e:00:82:1a:39:6a: 61:3e:54:1d:02:51:5c:e3:55:6b:2d:22:5a:16:da: c0:68:88:af:26:38:81:c4:15:90:e4:9d:b8:0e:6f: 23:c9:a7:a0:6f:2d:cb:a3:f7:96:03:13:73:46:d0: ba:91:f0:93:50:07:02:b3:1a:83:eb:dd:8c:84:c4: da:bb:19:22:13:28:03:f6:01:fc:64:28:c4:37:49: 68:da:96:6c:6f:72:0e:d7:d7:2b:b0:33:a8:c7:7a: 8c:51:cc:46:8e:c2:ff:46:42:15:01:3f:74:c2:7e: 0a:2c:3f:98:31:bd:c6:eb:15:a2:8f:4a:54:d6:f0: 68:c5:5e:eb:69:2a:51:b9:d2:43:e2:fd:bb:1a:32: 69:62:25:2d:d7:fd:4a:71:4f:dc:1c:12:ae:a7:20: 11:78:0c:09:44:dc:93:93:36:ff:dc:28:5c:07:ed: da:18:56:e2:52:a4:60:44:fd:3d:b2:cd:b2:04:5f: c5:f7:a0:19:b2:ba:23:21:9f:0f:55:df:8c:a2:96: 9f:8f:0b:04:34:a1:17:6e:da:95:d1:05:3a:7c:6a: 29:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AF:05:43:9A:8C:6A:16:6D:B5:18:F0:6D:86:87:D7:FA:8F:78:77 X509v3 Authority Key Identifier: keyid:10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.123.0/24 Signature Algorithm: sha256WithRSAEncryption 98:92:0e:bf:a1:d7:d3:83:af:02:e9:b5:59:f4:75:51:e0:c1: d6:dd:9e:78:53:a7:f7:da:3a:5b:59:73:f9:ff:3e:a9:49:ae: 1a:cb:6d:35:f6:98:de:28:0b:00:5c:c3:3f:3f:71:24:6c:cb: d4:3e:f6:7b:1a:cc:46:61:da:17:0c:3d:f5:d7:fc:eb:a2:f6: 1c:f0:5d:39:b3:73:d2:14:7b:e8:50:a7:14:c9:8e:2b:38:cc: a1:56:45:cf:60:e5:b4:ef:87:73:47:a2:3e:4c:d5:f4:8e:7a: 01:e2:ac:27:ab:4d:18:30:e6:b0:e7:9b:77:a7:93:2d:fa:9b: 4d:eb:56:2f:02:7d:3d:04:3f:56:0a:10:35:e8:2c:a7:04:57: c2:64:29:e0:d5:d7:ee:c7:4d:79:e6:7b:30:c9:87:3f:10:21: d9:9a:33:46:e2:79:ba:3c:b8:d2:cf:e2:9d:9c:46:94:8f:5d: 89:d6:80:4a:98:83:85:0d:a0:53:59:8b:db:8d:5d:cb:49:8b: a1:83:70:ef:4f:6b:e6:84:c4:17:59:0c:a3:a6:14:65:4a:26: 2f:ae:9e:f7:62:78:c2:b8:11:41:ff:55:fc:cb:37:84:d2:60: 53:8a:28:e0:71:37:a3:24:07:90:04:41:33:94:ae:1e:18:dd: 96:0f:3d:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQXqhkR2kfQgQDJXQc3J0gklCWiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1 Mzg5QkI1OTAeFw0yNTA5MjQwNDU3MjNaFw0yNjA5MjMwNTAyMjNaMDMxMTAvBgNV BAMTKEIwQUYwNTQzOUE4QzZBMTY2REI1MThGMDZEODY4N0Q3RkE4Rjc4NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCXeqYHQT27idZewxnIFIwUG8l haLVBKfRJw30a8fkKdQlDiMlZ34Agho5amE+VB0CUVzjVWstIloW2sBoiK8mOIHE FZDknbgObyPJp6BvLcuj95YDE3NG0LqR8JNQBwKzGoPr3YyExNq7GSITKAP2Afxk KMQ3SWjalmxvcg7X1yuwM6jHeoxRzEaOwv9GQhUBP3TCfgosP5gxvcbrFaKPSlTW 8GjFXutpKlG50kPi/bsaMmliJS3X/UpxT9wcEq6nIBF4DAlE3JOTNv/cKFwH7doY VuJSpGBE/T2yzbIEX8X3oBmyuiMhnw9V34yilp+PCwQ0oRdu2pXRBTp8aikzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsK8FQ5qMahZttRjwbYaH1/qPeHcwHwYDVR0j BBgwFoAUEExPz4iPPIa4wSjYHFuV/lOJu1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjhlZWM1Yi01MzI0LTQ0MjItYTMyZi05YjFkY2VkMzc1OWYvMC8xMDRDNEZDRjg4 OEYzQzg2QjhDMTI4RDgxQzVCOTVGRTUzODlCQjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1Mzg5 QkI1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyOGVlYzViLTUzMjQtNDQyMi1h MzJmLTliMWRjZWQzNzU5Zi8wLzMxMzAzMzJlMzUzMTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzN7MA0GCSqG SIb3DQEBCwUAA4IBAQCYkg6/odfTg68C6bVZ9HVR4MHW3Z54U6f32jpbWXP5/z6p Sa4ay2019pjeKAsAXMM/P3EkbMvUPvZ7GsxGYdoXDD311/zrovYc8F05s3PSFHvo UKcUyY4rOMyhVkXPYOW074dzR6I+TNX0jnoB4qwnq00YMOaw55t3p5Mt+ptN61Yv An09BD9WChA16CynBFfCZCng1dfux0155nswyYc/ECHZmjNG4nm6PLjSz+KdnEaU j12J1oBKmIOFDaBTWYvbjV3LSYuhg3DvT2vmhMQXWQyjphRlSiYvrp73YnjCuBFB /1X8yzeE0mBTiijgcTejJAeQBEEzlK4eGN2WDz0U -----END CERTIFICATE-----Generated at Mon Oct 20 17:43:58 2025 by rpki-client