$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa File: 3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: ceY23gZq7fyvuACT0VzLXjn2OzCRdbTZW+mufK3gDDU= Subject key identifier: 7E:0E:B9:86:85:B7:2E:9B:0C:80:CC:FD:C7:F1:5B:B4:B5:EF:CC:1C Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 334B0F52ADC9C720D022CD7DBED1D4E4C9518B9F Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa Signing time: Sat 18 Oct 2025 09:00:00 +0000 ROA not before: Sat 18 Oct 2025 08:55:00 +0000 ROA not after: Sat 17 Oct 2026 09:00:00 +0000 asID: 135464 IP address blocks: 103.102.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:4b:0f:52:ad:c9:c7:20:d0:22:cd:7d:be:d1:d4:e4:c9:51:8b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Oct 18 08:55:00 2025 GMT Not After : Oct 17 09:00:00 2026 GMT Subject: CN=7E0EB98685B72E9B0C80CCFDC7F15BB4B5EFCC1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:73:5b:7e:0b:01:7d:96:ac:ee:ae:12:5d:be: fb:3e:fe:69:4b:d6:cb:ce:43:83:3f:e8:bb:4b:33: 6f:bc:1c:e2:a9:4b:5c:47:42:04:4c:28:5b:bb:41: e0:91:d3:1a:6f:7c:b7:af:b3:3a:85:51:4a:5e:3f: 7b:3b:59:11:d6:fd:ff:74:2a:fb:76:b3:0e:e2:a3: f7:3b:21:a7:a9:af:70:51:e5:c7:d7:37:1d:68:e6: 78:18:fc:06:d6:e2:7a:fa:e9:38:25:c9:d7:39:1a: f5:c1:ae:e0:8c:d5:4e:28:1e:a3:47:b9:90:e3:3d: e8:39:2f:fa:ce:92:c0:f5:c3:d7:36:1a:bb:c9:7f: 3c:24:69:77:f4:5b:0c:90:a1:78:61:b9:d3:cb:b7: 47:4f:6c:9e:a2:73:12:90:b5:3c:75:e5:7a:2c:d7: c6:d0:3d:c9:b6:ef:5a:49:8c:7a:0d:74:2d:dd:9d: 3b:1c:cc:50:af:8b:0c:66:92:1e:de:63:ab:93:c3: 20:e4:ba:a9:d7:d2:cc:43:fc:30:4e:87:1f:47:b9: 88:90:3e:f2:97:01:2a:17:fc:6d:9e:5d:83:ab:80: 00:9e:e2:33:d7:f3:53:b7:7a:e2:cf:d9:ab:53:56: 87:87:f7:9c:01:95:72:82:85:45:5b:d3:80:ee:20: 2d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0E:B9:86:85:B7:2E:9B:0C:80:CC:FD:C7:F1:5B:B4:B5:EF:CC:1C X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.167.0/24 Signature Algorithm: sha256WithRSAEncryption 66:2c:27:0c:44:72:65:5e:dd:ce:95:0a:0f:15:89:f6:65:55: cd:46:07:da:9c:d5:3e:b2:08:5b:50:44:cf:38:ce:03:fc:86: a9:1d:1c:bb:ae:19:82:2f:e9:a0:c6:af:d4:77:a7:df:90:9a: 4a:40:91:29:62:96:67:41:b4:6d:7c:dd:ab:25:a3:54:ff:23: cc:92:84:2c:ce:e0:07:a2:c8:a6:fe:3a:38:a9:d1:68:6d:a3: 1c:55:c5:f1:c4:50:32:60:6e:af:d8:22:c4:2a:3c:a9:59:df: be:70:34:7b:b6:69:a8:da:8b:a9:8b:0e:13:ff:f6:53:08:b5: 71:4a:3b:78:9f:78:c3:d9:9f:fc:31:61:18:10:76:2c:b5:81: e8:f9:07:84:12:de:fe:ad:2d:65:ef:ec:5e:aa:fe:bf:2b:a6: 7c:fa:3e:cb:eb:49:4a:bd:d6:f4:e9:de:67:6b:e6:7f:21:e9: 92:b7:be:b5:cf:6d:ea:76:54:f4:d1:14:c6:f0:30:09:3f:7d: ad:06:ae:63:33:ae:84:34:02:a3:e1:b1:83:d3:61:04:b5:c9: 65:b9:3b:d4:9e:17:53:09:12:0e:db:ae:5d:b9:61:9d:af:5d: aa:c4:93:58:af:94:1c:c7:12:80:c0:7b:7b:95:4a:e0:c6:17: 1f:3c:e1:eb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM0sPUq3JxyDQIs19vtHU5MlRi58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yNTEwMTgwODU1MDBaFw0yNjEwMTcwOTAwMDBaMDMxMTAvBgNV BAMTKDdFMEVCOTg2ODVCNzJFOUIwQzgwQ0NGREM3RjE1QkI0QjVFRkNDMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/c1t+CwF9lqzurhJdvvs+/mlL 1svOQ4M/6LtLM2+8HOKpS1xHQgRMKFu7QeCR0xpvfLevszqFUUpeP3s7WRHW/f90 Kvt2sw7io/c7Iaepr3BR5cfXNx1o5ngY/AbW4nr66Tglydc5GvXBruCM1U4oHqNH uZDjPeg5L/rOksD1w9c2GrvJfzwkaXf0WwyQoXhhudPLt0dPbJ6icxKQtTx15Xos 18bQPcm271pJjHoNdC3dnTsczFCviwxmkh7eY6uTwyDkuqnX0sxD/DBOhx9HuYiQ PvKXASoX/G2eXYOrgACe4jPX81O3euLP2atTVoeH95wBlXKChUVb04DuIC1LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfg65hoW3LpsMgMz9x/FbtLXvzBwwHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzEzMDMyMmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZqcwDQYJ KoZIhvcNAQELBQADggEBAGYsJwxEcmVe3c6VCg8VifZlVc1GB9qc1T6yCFtQRM84 zgP8hqkdHLuuGYIv6aDGr9R3p9+QmkpAkSlilmdBtG183aslo1T/I8yShCzO4Aei yKb+Ojip0WhtoxxVxfHEUDJgbq/YIsQqPKlZ375wNHu2aajai6mLDhP/9lMItXFK O3ifeMPZn/wxYRgQdiy1gej5B4QS3v6tLWXv7F6q/r8rpnz6PsvrSUq91vTp3mdr 5n8h6ZK3vrXPbep2VPTRFMbwMAk/fa0GrmMzroQ0AqPhsYPTYQS1yWW5O9SeF1MJ Eg7brl25YZ2vXarEk1ivlBzHEoDAe3uVSuDGFx884es= -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:26 2025 by rpki-client