$ rpki-client -vvf repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa File: 3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: IWu36PgrlbrIyJKi1yWtOTjXE0y4uzUHTwZcjUqTWx8= Subject key identifier: 0B:89:93:90:0A:59:3C:06:68:9C:25:30:B0:15:84:7C:C7:47:97:F2 Certificate issuer: /CN=1811CB623E9BFFB82945CA39C74C4C274914837F Certificate serial: 6BD825AFE5C17C970CC48B5C8E74BF6EA2EF22D6 Authority key identifier: 18:11:CB:62:3E:9B:FF:B8:29:45:CA:39:C7:4C:4C:27:49:14:83:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1811CB623E9BFFB82945CA39C74C4C274914837F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa Signing time: Fri 12 Sep 2025 09:02:54 +0000 ROA not before: Fri 12 Sep 2025 08:57:54 +0000 ROA not after: Fri 11 Sep 2026 09:02:54 +0000 asID: 131111 IP address blocks: 103.177.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/1811CB623E9BFFB82945CA39C74C4C274914837F.crl rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/1811CB623E9BFFB82945CA39C74C4C274914837F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1811CB623E9BFFB82945CA39C74C4C274914837F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 14:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d8:25:af:e5:c1:7c:97:0c:c4:8b:5c:8e:74:bf:6e:a2:ef:22:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1811CB623E9BFFB82945CA39C74C4C274914837F Validity Not Before: Sep 12 08:57:54 2025 GMT Not After : Sep 11 09:02:54 2026 GMT Subject: CN=0B8993900A593C06689C2530B015847CC74797F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:49:6b:1c:ee:bc:78:dd:df:00:5d:c2:10: 29:df:38:a9:70:ef:9f:b8:ce:f2:23:b5:b9:09:bf: 7e:bd:5a:14:8d:1e:77:4d:cb:53:d5:2a:e7:07:89: c4:d8:7a:2f:05:99:0c:e9:f1:cb:38:a7:6e:98:7c: 74:d7:64:46:80:3b:08:36:df:00:34:bc:71:69:61: 5d:9e:99:70:3a:b1:f1:24:ce:5b:b1:a0:67:d0:c8: d7:9f:e9:d6:73:43:20:f0:db:bb:97:71:25:c1:59: a6:61:40:1e:0a:4f:74:59:51:f0:87:26:ab:7a:18: 6c:4c:77:f7:5c:86:97:15:d4:6b:03:2d:34:c6:56: 30:76:62:8c:a0:6d:b5:7d:73:c1:fe:1a:38:fc:d4: b7:04:c8:18:be:8a:20:0c:7a:9f:e6:48:61:6c:fe: 42:b8:7b:c1:35:34:77:c2:4d:fc:8b:79:fb:79:85: bc:28:2a:27:ec:68:7e:9d:05:db:ac:f2:2f:f5:27: 8e:2f:38:b5:5b:64:4f:fb:a9:33:aa:81:8a:96:57: eb:42:63:8e:89:be:e0:7e:80:c0:1e:6a:80:6a:90: cd:eb:5a:c4:dc:99:d2:35:a3:fa:11:33:a2:06:2f: 5a:ed:d6:6a:1f:5c:4c:b5:37:1f:cc:fe:cb:da:22: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:89:93:90:0A:59:3C:06:68:9C:25:30:B0:15:84:7C:C7:47:97:F2 X509v3 Authority Key Identifier: keyid:18:11:CB:62:3E:9B:FF:B8:29:45:CA:39:C7:4C:4C:27:49:14:83:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/1811CB623E9BFFB82945CA39C74C4C274914837F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1811CB623E9BFFB82945CA39C74C4C274914837F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.96.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:3f:66:e1:c1:5b:ba:89:d0:d3:07:1a:60:cd:ee:73:bd:46: dd:35:82:7c:92:a2:e1:01:fd:18:a2:5b:ac:a6:75:89:e8:27: 7d:08:54:36:36:2c:b0:8c:ea:52:8d:c5:a3:a2:9a:41:db:f9: f3:5c:59:ff:d9:e0:17:c1:2d:24:69:08:d9:f1:53:78:9a:ab: 04:23:68:c0:c4:c1:51:9b:b7:37:55:62:80:81:8a:81:2a:af: f5:9e:f6:4a:fc:c0:69:dc:da:ef:11:65:a7:68:2b:af:0a:91: 35:63:3b:0e:14:26:3f:46:ac:fc:d3:1f:17:fb:ed:fb:ac:b9: 05:4f:5b:2d:0e:bd:63:21:0f:d5:8f:67:32:81:e0:79:0b:57: e0:c6:09:85:52:5c:76:04:40:b8:29:51:d3:d4:a0:b3:4d:c7: e5:bc:9d:e1:32:86:10:3e:60:e1:fa:07:a0:97:cf:b7:e6:b5: d6:4d:c4:86:0f:5a:d1:93:e7:3d:0a:6b:c9:d6:8d:a6:da:cc: 16:6e:24:05:ed:b7:71:1d:99:0a:68:f5:39:fd:58:11:6c:d6: e4:44:4f:71:e5:a6:14:cf:d4:01:a9:9d:f9:e1:15:4e:a0:9a: 66:ad:1f:0e:38:57:b8:d2:bf:09:e6:7b:b3:bf:5a:68:96:52: e1:5f:e6:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa9glr+XBfJcMxItcjnS/bqLvItYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTgxMUNCNjIzRTlCRkZCODI5NDVDQTM5Qzc0QzRDMjc0 OTE0ODM3RjAeFw0yNTA5MTIwODU3NTRaFw0yNjA5MTEwOTAyNTRaMDMxMTAvBgNV BAMTKDBCODk5MzkwMEE1OTNDMDY2ODlDMjUzMEIwMTU4NDdDQzc0Nzk3RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNMklrHO68eN3fAF3CECnfOKlw 75+4zvIjtbkJv369WhSNHndNy1PVKucHicTYei8FmQzp8cs4p26YfHTXZEaAOwg2 3wA0vHFpYV2emXA6sfEkzluxoGfQyNef6dZzQyDw27uXcSXBWaZhQB4KT3RZUfCH Jqt6GGxMd/dchpcV1GsDLTTGVjB2YoygbbV9c8H+Gjj81LcEyBi+iiAMep/mSGFs /kK4e8E1NHfCTfyLeft5hbwoKifsaH6dBdus8i/1J44vOLVbZE/7qTOqgYqWV+tC Y46JvuB+gMAeaoBqkM3rWsTcmdI1o/oRM6IGL1rt1mofXEy1Nx/M/svaIlYHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUC4mTkApZPAZonCUwsBWEfMdHl/IwHwYDVR0j BBgwFoAUGBHLYj6b/7gpRco5x0xMJ0kUg38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg3ZjFkMS0wNmZiLTQzNmItOWNlNi05MmRhYTI5ZjFmOWIvMC8xODExQ0I2MjNF OUJGRkI4Mjk0NUNBMzlDNzRDNEMyNzQ5MTQ4MzdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTgxMUNCNjIzRTlCRkZCODI5NDVDQTM5Qzc0QzRDMjc0OTE0 ODM3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODdmMWQxLTA2ZmItNDM2Yi05 Y2U2LTkyZGFhMjlmMWY5Yi8wLzMxMzAzMzJlMzEzNzM3MmUzOTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7FgMA0GCSqG SIb3DQEBCwUAA4IBAQBtP2bhwVu6idDTBxpgze5zvUbdNYJ8kqLhAf0YoluspnWJ 6Cd9CFQ2NiywjOpSjcWjoppB2/nzXFn/2eAXwS0kaQjZ8VN4mqsEI2jAxMFRm7c3 VWKAgYqBKq/1nvZK/MBp3NrvEWWnaCuvCpE1YzsOFCY/Rqz80x8X++37rLkFT1st Dr1jIQ/Vj2cygeB5C1fgxgmFUlx2BEC4KVHT1KCzTcflvJ3hMoYQPmDh+gegl8+3 5rXWTcSGD1rRk+c9CmvJ1o2m2swWbiQF7bdxHZkKaPU5/VgRbNbkRE9x5aYUz9QB qZ354RVOoJpmrR8OOFe40r8J5nuzv1pollLhX+Zl -----END CERTIFICATE-----Generated at Mon Oct 20 14:57:38 2025 by rpki-client