$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa File: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (raw, json) Hash identifier: g4MCHQFO3MQThoyM2TjwQb6nRcwAjTBYmahYDBr6bho= Subject key identifier: 71:0F:CD:23:FC:C4:D6:07:02:A0:CE:84:E0:55:86:80:39:2C:6D:82 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 64BBD8190E02C4A236888F399D79A942A3EBD79C Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa Signing time: Wed 17 Sep 2025 09:03:24 +0000 ROA not before: Wed 17 Sep 2025 08:58:24 +0000 ROA not after: Wed 16 Sep 2026 09:03:24 +0000 asID: 141615 IP address blocks: 103.161.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:bb:d8:19:0e:02:c4:a2:36:88:8f:39:9d:79:a9:42:a3:eb:d7:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Sep 17 08:58:24 2025 GMT Not After : Sep 16 09:03:24 2026 GMT Subject: CN=710FCD23FCC4D60702A0CE84E0558680392C6D82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:37:05:b0:ac:62:8d:a8:3a:0c:c5:d2:53: f7:95:cb:02:50:2a:7b:17:2d:1a:7d:a0:b0:75:95: 5a:29:28:a1:71:f1:5b:c7:8a:55:6b:25:43:3e:16: 2e:fe:11:32:b2:ab:78:7b:7a:cc:75:1f:3b:2b:75: d5:5e:f6:ac:00:18:3d:44:44:ea:cf:04:f2:58:ee: 7c:5c:b2:e5:d8:cb:2a:a6:42:d5:6b:47:ee:4c:43: c3:c1:b7:93:18:f9:f6:6c:c7:4e:6c:47:82:e0:b5: a8:b5:5f:38:0f:02:63:da:4f:8b:a6:73:88:b7:57: e6:e6:bb:66:e9:c9:b7:80:64:80:9a:01:60:69:60: 88:fc:00:90:3b:bf:db:5f:9e:35:57:18:b6:a4:7c: d1:03:73:cd:e5:8f:db:90:13:75:6c:fa:2e:3a:2f: 29:ac:58:bc:c2:e5:2d:26:fd:5e:07:29:0b:aa:77: db:88:a4:c3:40:af:32:9d:ff:96:26:19:6e:65:98: f4:68:58:3b:d5:3c:54:05:89:d1:22:ed:f7:b4:6a: 25:f0:9e:a0:80:1a:dc:f3:df:a0:90:f1:57:1c:7d: cd:dc:33:2b:6b:34:cc:5b:cb:92:36:7f:26:72:5f: d4:88:5a:4d:76:fd:7e:8c:03:db:ac:63:9a:d0:91: cf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0F:CD:23:FC:C4:D6:07:02:A0:CE:84:E0:55:86:80:39:2C:6D:82 X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.111.0/24 Signature Algorithm: sha256WithRSAEncryption 09:10:45:e9:5a:1b:70:b5:a9:bd:3a:fc:59:e2:3a:3f:e1:04: b8:e3:b6:74:be:e6:ee:95:b7:df:d9:c9:5c:66:2c:0a:82:ed: c1:2b:bc:9b:cb:1d:80:3a:5e:92:bf:3b:74:75:34:74:92:f7: 1c:9b:75:16:17:ef:5c:5d:2d:64:fa:48:08:f8:5f:3a:d8:39: 28:46:d0:60:98:5b:d9:ed:ff:8c:49:28:70:38:e5:6d:91:5e: 25:11:40:5d:50:1f:06:26:8b:ce:d1:94:e5:89:4d:3d:cb:cc: ee:ae:8f:fa:a8:e4:23:bc:a7:3e:6c:11:40:24:f3:d1:db:da: d0:e5:58:65:05:14:f1:ea:db:73:65:90:46:5d:1a:26:c9:d9: a2:33:8a:1c:d7:fe:fb:c4:2c:fc:83:45:d5:a9:00:6b:f2:47: 95:ef:22:33:2f:d5:52:bb:e9:8f:47:76:ea:ec:72:be:e4:ec: e2:4d:2e:34:b1:fe:8d:c2:d5:ba:59:b5:c0:1d:5b:c9:e6:69: 29:c0:6a:64:3c:e8:94:52:0e:bc:16:52:5b:a2:bc:2c:a6:84: 9c:01:41:8f:61:88:3c:61:f9:d3:4d:eb:36:b4:9b:4d:83:16: 3a:2c:24:94:84:6d:11:2e:9e:af:20:f5:6a:3c:3f:36:17:7f: 04:1d:51:f3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZLvYGQ4CxKI2iI85nXmpQqPr15wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTA5MTcwODU4MjRaFw0yNjA5MTYwOTAzMjRaMDMxMTAvBgNV BAMTKDcxMEZDRDIzRkNDNEQ2MDcwMkEwQ0U4NEUwNTU4NjgwMzkyQzZEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI8TcFsKxijag6DMXSU/eVywJQ KnsXLRp9oLB1lVopKKFx8VvHilVrJUM+Fi7+ETKyq3h7esx1HzsrddVe9qwAGD1E ROrPBPJY7nxcsuXYyyqmQtVrR+5MQ8PBt5MY+fZsx05sR4Lgtai1XzgPAmPaT4um c4i3V+bmu2bpybeAZICaAWBpYIj8AJA7v9tfnjVXGLakfNEDc83lj9uQE3Vs+i46 LymsWLzC5S0m/V4HKQuqd9uIpMNArzKd/5YmGW5lmPRoWDvVPFQFidEi7fe0aiXw nqCAGtzz36CQ8Vccfc3cMytrNMxby5I2fyZyX9SIWk12/X6MA9usY5rQkc+1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcQ/NI/zE1gcCoM6E4FWGgDksbYIwHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmNDA4ZTQ0LTNlOWMtNDVlNS1i Y2E0LTVkZmJkNGIyNzEzMC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoW8wDQYJ KoZIhvcNAQELBQADggEBAAkQRelaG3C1qb06/FniOj/hBLjjtnS+5u6Vt9/ZyVxm LAqC7cErvJvLHYA6XpK/O3R1NHSS9xybdRYX71xdLWT6SAj4XzrYOShG0GCYW9nt /4xJKHA45W2RXiURQF1QHwYmi87RlOWJTT3LzO6uj/qo5CO8pz5sEUAk89Hb2tDl WGUFFPHq23NlkEZdGibJ2aIzihzX/vvELPyDRdWpAGvyR5XvIjMv1VK76Y9Hdurs cr7k7OJNLjSx/o3C1bpZtcAdW8nmaSnAamQ86JRSDrwWUluivCymhJwBQY9hiDxh +dNN6za0m02DFjosJJSEbREunq8g9Wo8PzYXfwQdUfM= -----END CERTIFICATE-----Generated at Mon Oct 20 21:14:54 2025 by rpki-client