$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa File: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (raw, json) Hash identifier: LmeqzYeHbwqjRvKuIbroVaXCpVEz8bLJBtycTcCFJu4= Subject key identifier: 2E:1D:39:39:30:58:8B:33:F1:23:A6:DA:D4:E7:FF:4D:F8:A5:E2:1A Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 4BB69718278AC5A7BCED6427D2E408990272488F Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa Signing time: Wed 17 Sep 2025 09:03:24 +0000 ROA not before: Wed 17 Sep 2025 08:58:24 +0000 ROA not after: Wed 16 Sep 2026 09:03:24 +0000 asID: 141615 IP address blocks: 103.161.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b6:97:18:27:8a:c5:a7:bc:ed:64:27:d2:e4:08:99:02:72:48:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Sep 17 08:58:24 2025 GMT Not After : Sep 16 09:03:24 2026 GMT Subject: CN=2E1D393930588B33F123A6DAD4E7FF4DF8A5E21A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:76:43:4a:ba:11:8b:ab:ae:d4:70:e8:37: 63:67:d1:e3:3c:96:a3:84:97:ff:23:d9:c6:dc:27: 7a:60:a6:93:9c:9d:2d:e5:eb:f7:48:a8:f1:92:9d: 3c:d1:17:56:de:f7:2c:84:5e:ad:0d:31:34:69:6f: ac:90:77:60:df:32:24:6a:aa:23:d2:75:08:f1:ae: 01:81:22:20:af:4b:6c:dd:f2:c0:db:ef:8c:c5:35: 09:8c:36:4d:30:03:57:e7:d4:7b:81:15:8f:5a:34: df:14:6b:db:aa:8f:d6:00:c5:79:38:52:a4:06:3a: 5c:44:e2:1e:1d:11:58:5b:44:29:eb:21:a1:30:0d: 1c:70:a6:b5:d2:16:ce:1e:a6:a6:8e:69:9a:c0:17: ef:8e:7d:ce:fb:0b:61:f3:27:e0:b8:9e:ac:32:e5: b9:37:e4:7d:96:70:75:79:aa:a9:7d:7e:0a:ec:48: f6:a9:2a:5a:e3:81:79:27:b7:f7:77:6a:32:cf:6d: 7b:ed:00:81:67:65:de:97:96:23:0a:a2:00:94:3e: 74:7a:11:e2:d3:c0:e4:0b:34:c5:ac:b0:15:33:22: de:4d:c8:40:83:e5:cc:5e:ce:ff:1e:6d:d9:f4:22: 8c:4c:ff:bb:34:ea:0f:a4:9a:7b:42:6c:a5:46:0f: e9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1D:39:39:30:58:8B:33:F1:23:A6:DA:D4:E7:FF:4D:F8:A5:E2:1A X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.110.0/24 Signature Algorithm: sha256WithRSAEncryption 19:0b:6d:a5:97:e1:62:03:76:d1:19:86:79:a7:25:e8:8b:56: 09:cd:73:9f:b5:43:0e:5b:17:fc:7b:2a:b9:e7:f4:0b:c9:3e: b5:93:33:68:30:88:e5:42:f5:41:29:dc:b3:db:29:39:8c:5a: 7a:5f:78:3b:ce:e1:9b:35:3f:de:5a:7c:5c:f9:4c:a4:06:75: 60:76:cf:e2:a7:d0:57:bf:45:b4:24:d2:87:a6:c9:44:4c:88: 18:87:30:22:c9:b4:9a:ed:f1:9c:f4:e9:12:76:b8:f4:ee:84: e7:37:06:a0:0a:4c:68:72:90:51:b8:7e:4d:24:80:d3:10:be: be:c8:18:4c:2e:a2:38:4b:c3:4a:8c:3d:48:af:e9:20:81:69: 79:86:05:7b:ba:38:b0:d2:b2:4f:88:cb:78:07:cb:1d:bb:80: 6b:dc:c6:f8:fa:f3:19:dd:01:3a:87:50:a3:3f:d8:e2:4c:4e: 18:06:93:98:55:30:ac:21:96:97:f7:17:53:dd:04:3d:49:b6: f5:a2:9d:21:8f:fb:db:3a:6c:ac:7b:36:72:a6:74:8b:fb:10: 87:cf:e9:a4:49:53:e7:6c:4a:b7:b7:a1:9f:8b:a4:20:9e:d7: d8:46:9d:f5:38:56:14:4f:d9:f4:fe:6f:59:bf:54:68:5f:6a: 94:88:d0:18 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS7aXGCeKxae87WQn0uQImQJySI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTA5MTcwODU4MjRaFw0yNjA5MTYwOTAzMjRaMDMxMTAvBgNV BAMTKDJFMUQzOTM5MzA1ODhCMzNGMTIzQTZEQUQ0RTdGRjRERjhBNUUyMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC45nZDSroRi6uu1HDoN2Nn0eM8 lqOEl/8j2cbcJ3pgppOcnS3l6/dIqPGSnTzRF1be9yyEXq0NMTRpb6yQd2DfMiRq qiPSdQjxrgGBIiCvS2zd8sDb74zFNQmMNk0wA1fn1HuBFY9aNN8Ua9uqj9YAxXk4 UqQGOlxE4h4dEVhbRCnrIaEwDRxwprXSFs4epqaOaZrAF++Ofc77C2HzJ+C4nqwy 5bk35H2WcHV5qql9fgrsSPapKlrjgXknt/d3ajLPbXvtAIFnZd6XliMKogCUPnR6 EeLTwOQLNMWssBUzIt5NyECD5cxezv8ebdn0IoxM/7s06g+kmntCbKVGD+l/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULh05OTBYizPxI6ba1Of/Tfil4howHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmNDA4ZTQ0LTNlOWMtNDVlNS1i Y2E0LTVkZmJkNGIyNzEzMC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoW4wDQYJ KoZIhvcNAQELBQADggEBABkLbaWX4WIDdtEZhnmnJeiLVgnNc5+1Qw5bF/x7Krnn 9AvJPrWTM2gwiOVC9UEp3LPbKTmMWnpfeDvO4Zs1P95afFz5TKQGdWB2z+Kn0Fe/ RbQk0oemyURMiBiHMCLJtJrt8Zz06RJ2uPTuhOc3BqAKTGhykFG4fk0kgNMQvr7I GEwuojhLw0qMPUiv6SCBaXmGBXu6OLDSsk+Iy3gHyx27gGvcxvj68xndATqHUKM/ 2OJMThgGk5hVMKwhlpf3F1PdBD1JtvWinSGP+9s6bKx7NnKmdIv7EIfP6aRJU+ds Sre3oZ+LpCCe19hGnfU4VhRP2fT+b1m/VGhfapSI0Bg= -----END CERTIFICATE-----Generated at Mon Oct 20 21:19:33 2025 by rpki-client