$ rpki-client -vvf repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33332e302f32342d3234203d3e20313530323238.roa File: 3130332e31372e33332e302f32342d3234203d3e20313530323238.roa (raw, json) Hash identifier: Din5W7YK7LMJbRJUi9wsZasS4GJU6jj09R0J09VzjXg= Subject key identifier: 59:58:A2:5A:94:42:6D:C1:B8:5E:C2:E9:64:CC:38:FA:BB:59:03:65 Certificate issuer: /CN=B2650BD2D997B6C198A4B362B7395AC364683312 Certificate serial: 4587F83D118D0522AC4BD1873A23C8CBD3258C03 Authority key identifier: B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33332e302f32342d3234203d3e20313530323238.roa Signing time: Tue 09 Sep 2025 14:00:01 +0000 ROA not before: Tue 09 Sep 2025 13:55:01 +0000 ROA not after: Tue 08 Sep 2026 14:00:01 +0000 asID: 150228 IP address blocks: 103.17.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 05:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:87:f8:3d:11:8d:05:22:ac:4b:d1:87:3a:23:c8:cb:d3:25:8c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2650BD2D997B6C198A4B362B7395AC364683312 Validity Not Before: Sep 9 13:55:01 2025 GMT Not After : Sep 8 14:00:01 2026 GMT Subject: CN=5958A25A94426DC1B85EC2E964CC38FABB590365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f5:75:73:e5:98:39:2a:23:ed:e5:03:15:48: 31:34:59:bc:12:b1:74:66:c0:0e:5a:00:bd:05:98: c8:ba:d6:9a:db:28:40:ab:26:69:fb:ff:11:27:16: 0a:ab:3a:13:fa:87:94:29:9b:ff:bb:6a:ce:1c:10: 0c:c0:80:76:60:6c:3c:ca:c5:9a:79:c1:29:1e:82: 1b:a3:77:41:93:67:dd:21:3f:96:54:7e:91:9d:6a: 3a:ad:5f:74:80:8c:0c:86:35:df:c6:72:3f:6e:e5: 7f:89:0c:66:58:06:55:fb:de:08:91:f4:70:cd:19: b0:8f:6a:ba:98:2c:a5:87:86:5f:c8:05:65:99:b7: 3a:92:45:5c:d8:44:15:62:a3:72:f5:87:33:6f:72: 99:95:de:ba:c0:3a:c5:18:f8:36:36:f9:a9:ac:49: 86:eb:89:e1:ad:9b:e1:06:95:28:5b:32:9a:dd:13: e5:39:46:00:66:24:c5:99:e5:41:46:5e:a5:f2:f4: 22:79:3c:f6:ff:82:3c:c7:fe:ea:84:6d:0e:5e:19: cf:a5:11:fa:02:a9:ed:17:cb:08:e7:0e:38:d3:c9: 74:16:6f:c5:3f:58:a6:e8:91:35:66:50:6a:31:b3: 50:e6:76:38:57:44:49:b6:3c:ae:9d:74:b6:dd:0b: 1b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:58:A2:5A:94:42:6D:C1:B8:5E:C2:E9:64:CC:38:FA:BB:59:03:65 X509v3 Authority Key Identifier: keyid:B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33332e302f32342d3234203d3e20313530323238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.33.0/24 Signature Algorithm: sha256WithRSAEncryption 01:89:8c:3f:f0:99:d5:9a:68:6e:69:39:41:7d:e1:64:e1:16: 30:fa:3d:d5:89:6e:ce:6d:3a:09:17:54:9b:f8:04:9a:1f:c2: 14:53:75:93:84:db:01:f5:e4:47:e7:fa:1d:d3:2a:c3:db:03: 2c:31:a4:f8:f1:17:e3:b4:43:73:3b:db:3b:8b:73:41:43:63: 46:28:51:0a:fc:7f:2c:16:0c:0d:bd:7e:20:ec:22:e9:6d:6c: 2c:6b:ee:59:74:c3:de:21:37:01:67:c4:22:42:dc:43:eb:cc: c4:bd:23:22:10:ff:55:17:8f:33:4b:2e:38:0e:1f:1a:99:95: 99:8e:91:f2:c9:67:9d:a4:ec:fe:cd:fd:49:34:24:3c:cb:da: 2c:8b:9d:ea:ab:cf:b8:f2:0b:1f:41:07:2c:20:54:ad:9d:2b: 8f:70:80:8f:d8:6b:ce:a5:4b:f6:b9:af:9d:6b:dc:b2:80:27: df:e6:c1:7c:36:8c:ec:f5:b4:e1:6f:38:8b:39:d3:2d:dd:c3: cc:49:e0:bc:74:52:2f:e2:2a:08:c7:47:97:79:8b:25:43:06: 34:11:24:8a:de:af:c5:3e:f5:df:92:f6:8a:e8:cf:d3:10:a6: 3e:af:a1:3f:3d:b0:3e:ff:bb:1c:44:d9:f0:cc:30:b3:24:08: 84:4a:df:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURYf4PRGNBSKsS9GHOiPIy9MljAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2 NDY4MzMxMjAeFw0yNTA5MDkxMzU1MDFaFw0yNjA5MDgxNDAwMDFaMDMxMTAvBgNV BAMTKDU5NThBMjVBOTQ0MjZEQzFCODVFQzJFOTY0Q0MzOEZBQkI1OTAzNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb9XVz5Zg5KiPt5QMVSDE0WbwS sXRmwA5aAL0FmMi61prbKECrJmn7/xEnFgqrOhP6h5Qpm/+7as4cEAzAgHZgbDzK xZp5wSkeghujd0GTZ90hP5ZUfpGdajqtX3SAjAyGNd/Gcj9u5X+JDGZYBlX73giR 9HDNGbCParqYLKWHhl/IBWWZtzqSRVzYRBVio3L1hzNvcpmV3rrAOsUY+DY2+ams SYbrieGtm+EGlShbMprdE+U5RgBmJMWZ5UFGXqXy9CJ5PPb/gjzH/uqEbQ5eGc+l EfoCqe0XywjnDjjTyXQWb8U/WKbokTVmUGoxs1DmdjhXREm2PK6ddLbdCxv7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWViiWpRCbcG4XsLpZMw4+rtZA2UwHwYDVR0j BBgwFoAUsmUL0tmXtsGYpLNitzlaw2RoMxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjkwNTc2Ni00NDBlLTRiY2ItYWU3Mi0zZTc4ODMxY2U5ZGMvMC9CMjY1MEJEMkQ5 OTdCNkMxOThBNEIzNjJCNzM5NUFDMzY0NjgzMzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2NDY4 MzMxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiOTA1NzY2LTQ0MGUtNGJjYi1h ZTcyLTNlNzg4MzFjZTlkYy8wLzMxMzAzMzJlMzEzNzJlMzMzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcRITANBgkqhkiG 9w0BAQsFAAOCAQEAAYmMP/CZ1Zpobmk5QX3hZOEWMPo91Yluzm06CRdUm/gEmh/C FFN1k4TbAfXkR+f6HdMqw9sDLDGk+PEX47RDczvbO4tzQUNjRihRCvx/LBYMDb1+ IOwi6W1sLGvuWXTD3iE3AWfEIkLcQ+vMxL0jIhD/VRePM0suOA4fGpmVmY6R8sln naTs/s39STQkPMvaLIud6qvPuPILH0EHLCBUrZ0rj3CAj9hrzqVL9rmvnWvcsoAn 3+bBfDaM7PW04W84iznTLd3DzEngvHRSL+IqCMdHl3mLJUMGNBEkit6vxT7135L2 iujP0xCmPq+hPz2wPv+7HETZ8MwwsyQIhErfyg== -----END CERTIFICATE-----Generated at Mon Oct 20 13:06:13 2025 by rpki-client