$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37312e302f32342d3234203d3e203536323334.roa File: 3131372e3130332e37312e302f32342d3234203d3e203536323334.roa (raw, json) Hash identifier: 1kyzi1r50RrQw1lh7O746Ykgi+j0sINCWFqBw58oQ98= Subject key identifier: 39:5D:08:5D:26:18:16:A3:9A:6F:09:88:08:0B:C0:E9:5A:28:98:2D Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 7A635B95CC5EC431508CC934FEE110CA8193E64F Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37312e302f32342d3234203d3e203536323334.roa Signing time: Thu 16 Oct 2025 11:02:56 +0000 ROA not before: Thu 16 Oct 2025 10:57:56 +0000 ROA not after: Thu 15 Oct 2026 11:02:56 +0000 asID: 56234 IP address blocks: 117.103.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:63:5b:95:cc:5e:c4:31:50:8c:c9:34:fe:e1:10:ca:81:93:e6:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Oct 16 10:57:56 2025 GMT Not After : Oct 15 11:02:56 2026 GMT Subject: CN=395D085D261816A39A6F0988080BC0E95A28982D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:01:10:0e:68:ae:52:9d:7d:a6:55:f8:0d:2f: 91:78:64:76:be:a6:63:04:7c:09:76:d4:e6:7f:d9: b8:7b:31:7a:c3:52:48:71:23:f1:21:52:bb:d4:47: 2c:bf:29:52:21:7e:b6:8a:2c:b8:67:83:14:67:40: 89:5b:38:d3:11:42:3b:26:fd:96:17:cc:8f:ab:b1: 79:86:ce:53:f2:d1:fe:aa:b1:d2:4c:44:3b:c4:d3: 23:3a:6a:e0:7f:34:19:a2:63:5e:86:5a:f6:10:3e: 9a:7a:85:39:8a:be:4f:f5:be:09:8f:25:56:9b:e9: 23:cb:d5:92:b0:fe:6f:bf:9b:d4:86:3f:55:85:43: a4:5f:ed:97:dc:f1:66:e2:ad:28:00:ce:35:f9:5a: e0:42:c9:c5:58:52:8d:45:05:5d:e1:cb:ed:3b:09: 4b:ba:dd:0a:c9:c7:2e:45:f3:54:ea:dd:44:41:66: 2f:19:43:8a:8a:19:b3:5e:e3:e9:0c:65:bc:db:13: 6f:3c:8c:7f:1b:96:61:9f:f4:ea:6c:e0:27:ad:87: ae:d0:34:2d:78:a7:bd:81:da:65:c9:5d:26:cc:ae: 31:50:3a:ef:5a:ed:69:da:d2:8d:3f:e6:b8:e8:c0: ac:49:47:bd:17:d0:57:2a:af:eb:f9:40:7d:ad:07: 83:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5D:08:5D:26:18:16:A3:9A:6F:09:88:08:0B:C0:E9:5A:28:98:2D X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3131372e3130332e37312e302f32342d3234203d3e203536323334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.71.0/24 Signature Algorithm: sha256WithRSAEncryption 21:17:6a:31:75:f5:14:c1:83:f5:fc:1b:0d:32:43:72:6e:06: 58:37:72:e0:18:7b:59:cd:2e:44:10:5f:ff:a5:9e:53:3a:5b: 9e:c3:5d:14:fa:e2:91:41:6c:2f:52:4e:db:67:34:ad:a4:4d: 70:39:51:c6:64:78:1e:67:02:1b:47:ab:b4:bd:2e:2c:c2:64: 81:eb:aa:7d:6a:66:eb:47:db:25:61:10:b2:6a:08:73:f3:c5: 77:9a:b0:3a:9e:7c:81:8b:81:7a:13:b6:75:36:69:e4:b6:9b: cf:9c:00:09:c8:1d:1b:db:c0:8e:9b:02:c2:e9:bd:31:ed:49: d0:5e:a9:4a:2d:22:11:06:26:d3:ee:bd:bb:8c:5c:72:53:1d: 89:a7:4e:d0:ee:b7:36:22:43:a9:f5:66:c6:31:c1:e0:45:f6: 9d:1d:09:01:93:6d:3a:41:f8:06:d9:58:c7:ab:65:54:d2:e5: e0:c8:98:80:4b:7e:bc:7a:b3:ba:59:4f:86:9e:e8:14:56:59: d8:46:6b:e5:9c:a8:78:ee:8a:84:0f:5f:65:46:fb:41:61:5f: d2:25:08:92:af:81:6d:22:1d:3d:f0:9f:f7:3f:8f:a2:c0:04: 3c:a0:4e:74:47:4a:cd:98:79:2a:16:4b:67:1e:e1:54:c3:8e: ad:be:5a:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUemNblcxexDFQjMk0/uEQyoGT5k8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNTEwMTYxMDU3NTZaFw0yNjEwMTUxMTAyNTZaMDMxMTAvBgNV BAMTKDM5NUQwODVEMjYxODE2QTM5QTZGMDk4ODA4MEJDMEU5NUEyODk4MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBARAOaK5SnX2mVfgNL5F4ZHa+ pmMEfAl21OZ/2bh7MXrDUkhxI/EhUrvURyy/KVIhfraKLLhngxRnQIlbONMRQjsm /ZYXzI+rsXmGzlPy0f6qsdJMRDvE0yM6auB/NBmiY16GWvYQPpp6hTmKvk/1vgmP JVab6SPL1ZKw/m+/m9SGP1WFQ6Rf7Zfc8WbirSgAzjX5WuBCycVYUo1FBV3hy+07 CUu63QrJxy5F81Tq3URBZi8ZQ4qKGbNe4+kMZbzbE288jH8blmGf9Ops4Ceth67Q NC14p72B2mXJXSbMrjFQOu9a7Wna0o0/5rjowKxJR70X0Fcqr+v5QH2tB4OzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOV0IXSYYFqOabwmICAvA6VoomC0wHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzEzNzJlMzEzMDMzMmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVnRzANBgkqhkiG 9w0BAQsFAAOCAQEAIRdqMXX1FMGD9fwbDTJDcm4GWDdy4Bh7Wc0uRBBf/6WeUzpb nsNdFPrikUFsL1JO22c0raRNcDlRxmR4HmcCG0ertL0uLMJkgeuqfWpm60fbJWEQ smoIc/PFd5qwOp58gYuBehO2dTZp5Labz5wACcgdG9vAjpsCwum9Me1J0F6pSi0i EQYm0+69u4xcclMdiadO0O63NiJDqfVmxjHB4EX2nR0JAZNtOkH4BtlYx6tlVNLl 4MiYgEt+vHqzullPhp7oFFZZ2EZr5ZyoeO6KhA9fZUb7QWFf0iUIkq+BbSIdPfCf 9z+PosAEPKBOdEdKzZh5KhZLZx7hVMOOrb5aRA== -----END CERTIFICATE-----Generated at Tue Oct 21 02:06:53 2025 by rpki-client