$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37302e302f32342d3234203d3e203536323334.roa File: 3131372e3130332e37302e302f32342d3234203d3e203536323334.roa (raw, json) Hash identifier: FMlAAb4oa/1SAW0ki6G5gnzHtyuWiQvqxUUC0qgRwT4= Subject key identifier: 59:FA:30:E2:23:10:79:9D:69:A3:42:40:A6:4B:F8:5E:C4:23:93:BF Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 3DF6204A31482BF9BABAFC92435056EBC00C72F0 Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37302e302f32342d3234203d3e203536323334.roa Signing time: Sat 20 Sep 2025 07:45:50 +0000 ROA not before: Sat 20 Sep 2025 07:40:50 +0000 ROA not after: Sat 19 Sep 2026 07:45:50 +0000 asID: 56234 IP address blocks: 117.103.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 20:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f6:20:4a:31:48:2b:f9:ba:ba:fc:92:43:50:56:eb:c0:0c:72:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Sep 20 07:40:50 2025 GMT Not After : Sep 19 07:45:50 2026 GMT Subject: CN=59FA30E22310799D69A34240A64BF85EC42393BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ed:0b:dd:26:7c:11:46:08:61:b5:d3:7c:64: c9:c1:f0:28:1b:89:f5:22:3d:14:77:8b:a6:1f:13: 23:7b:d1:19:6d:c6:3f:59:52:16:55:77:0c:94:b4: 3c:a1:b2:07:6d:38:de:30:76:7a:5e:97:cc:a4:8c: 20:32:f7:aa:d1:00:71:b2:92:42:ed:70:2f:40:40: 82:16:c0:9a:8d:5e:ec:04:2f:7d:61:d7:49:c4:59: 81:67:4f:e4:ad:21:83:04:86:b9:28:12:47:30:63: ee:90:36:34:64:0a:96:24:b1:63:cd:48:f7:6f:30: 78:81:78:2f:4d:20:4f:d1:b2:db:77:81:f6:b7:16: 95:87:e5:b2:ec:b1:ee:e8:e2:5c:7e:2e:ba:e0:7b: 1f:f1:06:dd:68:96:82:05:7d:14:69:08:61:1d:1b: e5:d7:d8:62:62:05:62:45:e3:90:5c:f6:a8:33:8a: 78:d9:de:e5:44:f3:af:79:56:10:82:e4:39:08:5e: b6:fd:c0:a6:f9:29:5e:9c:d5:8a:72:3b:2d:01:e7: 65:cc:93:10:93:32:cb:dc:f0:7a:8b:2f:db:6b:d8: bd:7c:50:39:cc:af:a5:fc:15:12:ff:e4:29:82:ff: 64:42:0a:22:4a:0b:f4:c3:61:a4:2d:e2:39:2b:ef: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FA:30:E2:23:10:79:9D:69:A3:42:40:A6:4B:F8:5E:C4:23:93:BF X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37302e302f32342d3234203d3e203536323334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.70.0/24 Signature Algorithm: sha256WithRSAEncryption 46:c1:7d:07:27:ad:98:51:33:bb:16:40:c6:b2:85:2d:eb:27: 9a:05:43:2e:cf:df:b6:14:14:6c:06:d0:91:d1:b4:96:aa:f5: 0a:cc:b5:f3:fa:e4:bc:54:64:ec:87:dd:cc:4a:20:d2:1b:5c: cf:eb:ce:0f:b4:63:46:f0:83:55:62:d1:96:6f:bf:26:c3:2a: ee:6a:bd:29:af:19:5d:bb:5d:82:b6:65:ff:5d:2c:e1:b2:ff: 9b:ef:fb:26:99:41:09:13:dc:46:c7:8c:55:cd:b7:7d:52:c3: 47:fd:0a:61:c6:ca:4f:39:b1:d3:b2:53:c5:f6:2c:08:c4:b6: 0d:75:64:2a:df:ba:78:bd:e4:24:43:db:8f:5e:96:50:b5:5d: ab:d0:8d:cd:d9:38:68:e5:05:f2:98:e2:12:9c:e5:9a:3a:8b: 7e:c0:98:61:e9:2c:d3:72:1d:ca:12:28:c2:8a:45:7f:7d:ea: c4:35:33:14:8d:87:b5:b0:6e:a0:c6:bb:06:52:23:42:f1:48: 11:b1:e3:c7:ee:c5:15:64:65:70:f8:9a:58:d1:45:fa:f5:93: 30:d9:7a:b5:e6:cb:cf:4e:32:fa:d8:89:ca:a9:bb:ce:33:3d: 86:df:8e:10:f7:b5:ff:a1:1f:94:93:0d:39:cb:5b:a8:52:36: 0f:07:1f:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPfYgSjFIK/m6uvySQ1BW68AMcvAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNTA5MjAwNzQwNTBaFw0yNjA5MTkwNzQ1NTBaMDMxMTAvBgNV BAMTKDU5RkEzMEUyMjMxMDc5OUQ2OUEzNDI0MEE2NEJGODVFQzQyMzkzQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg7QvdJnwRRghhtdN8ZMnB8Cgb ifUiPRR3i6YfEyN70Rltxj9ZUhZVdwyUtDyhsgdtON4wdnpel8ykjCAy96rRAHGy kkLtcC9AQIIWwJqNXuwEL31h10nEWYFnT+StIYMEhrkoEkcwY+6QNjRkCpYksWPN SPdvMHiBeC9NIE/Rstt3gfa3FpWH5bLsse7o4lx+Lrrgex/xBt1oloIFfRRpCGEd G+XX2GJiBWJF45Bc9qgzinjZ3uVE8695VhCC5DkIXrb9wKb5KV6c1YpyOy0B52XM kxCTMsvc8HqLL9tr2L18UDnMr6X8FRL/5CmC/2RCCiJKC/TDYaQt4jkr719XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWfow4iMQeZ1po0JApkv4XsQjk78wHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzEzNzJlMzEzMDMzMmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVnRjANBgkqhkiG 9w0BAQsFAAOCAQEARsF9ByetmFEzuxZAxrKFLesnmgVDLs/fthQUbAbQkdG0lqr1 Csy18/rkvFRk7IfdzEog0htcz+vOD7RjRvCDVWLRlm+/JsMq7mq9Ka8ZXbtdgrZl /10s4bL/m+/7JplBCRPcRseMVc23fVLDR/0KYcbKTzmx07JTxfYsCMS2DXVkKt+6 eL3kJEPbj16WULVdq9CNzdk4aOUF8pjiEpzlmjqLfsCYYeks03IdyhIowopFf33q xDUzFI2HtbBuoMa7BlIjQvFIEbHjx+7FFWRlcPiaWNFF+vWTMNl6tebLz04y+tiJ yqm7zjM9ht+OEPe1/6EflJMNOctbqFI2Dwcfng== -----END CERTIFICATE-----Generated at Mon Oct 20 13:18:44 2025 by rpki-client