$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa File: 3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa (raw, json) Hash identifier: bAg6MsDstetOvzdA+3u3BpUGBWifQkKCKKizemY7LEk= Subject key identifier: B8:C9:60:C4:28:EC:1F:28:66:E7:34:E8:BD:50:18:83:9D:35:91:31 Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 656FF2BD314CB56CE844490138F78F9D6CD4C70E Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa Signing time: Tue 09 Sep 2025 06:00:01 +0000 ROA not before: Tue 09 Sep 2025 05:55:01 +0000 ROA not after: Tue 08 Sep 2026 06:00:01 +0000 asID: 134644 IP address blocks: 103.207.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:6f:f2:bd:31:4c:b5:6c:e8:44:49:01:38:f7:8f:9d:6c:d4:c7:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: Sep 9 05:55:01 2025 GMT Not After : Sep 8 06:00:01 2026 GMT Subject: CN=B8C960C428EC1F2866E734E8BD5018839D359131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9e:8b:80:0f:27:f4:c2:8c:cf:c7:79:f9:de: 6e:44:1c:9d:30:5f:ab:a7:a1:32:9b:62:4f:05:23: f3:70:31:2d:be:c5:fb:29:c0:f2:ff:45:77:92:4b: 6f:fe:58:e6:21:ae:87:94:7a:d3:e3:d4:76:8f:d4: a0:f3:89:fa:b9:50:2d:db:90:29:38:5b:4f:00:6f: 22:12:05:0f:a3:30:f4:d0:9a:4a:40:c9:eb:87:a9: cf:98:77:07:4b:3f:d6:82:d0:1e:81:1e:b4:50:ad: fc:7c:d4:76:9b:c8:34:88:45:9e:07:6b:fb:11:44: a0:f9:db:eb:65:62:8b:38:7c:74:d4:9b:d7:2a:28: 3c:b3:86:ce:01:b0:f7:81:b8:a8:22:35:aa:8c:58: 72:43:2b:32:56:12:d2:1f:07:f0:1f:57:82:ec:fe: e4:af:f1:ed:f6:10:fd:c1:2c:05:62:d0:61:1d:06: 78:e3:5c:52:6d:5e:3b:93:85:65:37:71:77:d0:d7: ed:ca:43:56:b0:33:17:43:44:94:83:03:ab:6c:a8: 3f:b3:bb:a5:11:33:ed:3b:21:7f:b8:01:8e:92:cd: 37:a7:9c:96:b1:ac:b9:40:77:ea:d3:76:49:d0:2e: c1:52:c9:6e:55:a4:74:dd:54:30:8c:50:bb:e0:9e: c9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C9:60:C4:28:EC:1F:28:66:E7:34:E8:BD:50:18:83:9D:35:91:31 X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.236.0/23 Signature Algorithm: sha256WithRSAEncryption 28:db:79:69:cb:03:bb:2d:ae:36:ba:86:4c:bd:0e:7a:4c:15: 82:7f:27:1c:8e:1d:1a:bd:9a:5c:dc:6d:2a:39:8c:52:50:3b: 42:9c:c2:43:25:75:2d:ee:ed:4a:59:42:d6:67:67:ba:81:b5: a1:b8:f8:38:1e:ef:42:b4:29:e6:0c:7e:6c:09:a0:b1:63:7b: 08:44:9b:3c:e4:7f:5f:03:22:2c:71:c7:d1:0e:5f:7f:9d:be: a6:5c:38:59:4d:6c:80:f5:87:0a:a4:d5:c2:b5:ba:dc:17:55: b2:46:b1:b2:e9:31:65:b7:ae:1c:43:e0:f2:e4:c8:88:fd:75: e6:58:2b:30:53:d0:f6:72:26:da:58:2d:0b:22:01:bf:a2:49: 38:f9:6a:23:86:8f:2b:5a:8f:64:c7:09:61:1c:75:5e:4d:9d: 99:0d:10:2f:f8:6c:fe:3b:28:04:cb:31:a5:23:1e:ff:73:c3: 1d:bf:fc:3e:97:50:3d:cc:d9:67:84:fd:db:ba:ad:37:15:47: 11:a2:96:f3:28:1c:d6:d9:fc:b2:35:46:08:c8:cb:a5:d7:da: fd:72:cc:2c:a0:0b:6e:14:3b:a9:61:59:1b:be:1c:b7:4b:07: 60:da:c0:bf:55:eb:53:06:3f:8c:7f:cb:1e:ff:6c:ab:08:8d: cf:13:71:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZW/yvTFMtWzoREkBOPePnWzUxw4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yNTA5MDkwNTU1MDFaFw0yNjA5MDgwNjAwMDFaMDMxMTAvBgNV BAMTKEI4Qzk2MEM0MjhFQzFGMjg2NkU3MzRFOEJENTAxODgzOUQzNTkxMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnouADyf0wozPx3n53m5EHJ0w X6unoTKbYk8FI/NwMS2+xfspwPL/RXeSS2/+WOYhroeUetPj1HaP1KDzifq5UC3b kCk4W08AbyISBQ+jMPTQmkpAyeuHqc+YdwdLP9aC0B6BHrRQrfx81HabyDSIRZ4H a/sRRKD52+tlYos4fHTUm9cqKDyzhs4BsPeBuKgiNaqMWHJDKzJWEtIfB/AfV4Ls /uSv8e32EP3BLAVi0GEdBnjjXFJtXjuThWU3cXfQ1+3KQ1awMxdDRJSDA6tsqD+z u6URM+07IX+4AY6SzTennJaxrLlAd+rTdknQLsFSyW5VpHTdVDCMULvgnsnjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuMlgxCjsHyhm5zTovVAYg501kTEwHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnz+wwDQYJ KoZIhvcNAQELBQADggEBACjbeWnLA7strja6hky9DnpMFYJ/JxyOHRq9mlzcbSo5 jFJQO0KcwkMldS3u7UpZQtZnZ7qBtaG4+Dge70K0KeYMfmwJoLFjewhEmzzkf18D Iixxx9EOX3+dvqZcOFlNbID1hwqk1cK1utwXVbJGsbLpMWW3rhxD4PLkyIj9deZY KzBT0PZyJtpYLQsiAb+iSTj5aiOGjytaj2THCWEcdV5NnZkNEC/4bP47KATLMaUj Hv9zwx2//D6XUD3M2WeE/du6rTcVRxGilvMoHNbZ/LI1RgjIy6XX2v1yzCygC24U O6lhWRu+HLdLB2DawL9V61MGP4x/yx7/bKsIjc8Tcfg= -----END CERTIFICATE-----Generated at Tue Oct 21 00:00:56 2025 by rpki-client