$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa File: 3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: zAqV6QY/TappIht3b1tctxgtErOisyD+TbFdtRBFjYk= Subject key identifier: 64:42:26:9D:2A:29:33:DD:05:41:13:D6:6E:DB:12:71:CC:0C:0C:0F Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 7AE6C0B6F33F97881A86311E9075F1EC646EDB30 Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa Signing time: Sat 18 Oct 2025 08:00:00 +0000 ROA not before: Sat 18 Oct 2025 07:55:00 +0000 ROA not after: Sat 17 Oct 2026 08:00:00 +0000 asID: 135464 IP address blocks: 103.102.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e6:c0:b6:f3:3f:97:88:1a:86:31:1e:90:75:f1:ec:64:6e:db:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Oct 18 07:55:00 2025 GMT Not After : Oct 17 08:00:00 2026 GMT Subject: CN=6442269D2A2933DD054113D66EDB1271CC0C0C0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:61:20:60:00:f8:69:07:cf:f5:8b:38:80:22: a6:03:8c:c9:1b:6a:23:3e:2d:ba:3e:45:2b:29:e9: d9:3e:e3:c9:d1:74:75:54:36:03:6b:2a:04:4e:39: 7a:c5:46:30:04:7c:50:04:dc:fc:35:47:68:4b:b9: af:97:dc:c1:62:49:0b:96:5c:31:00:aa:f1:ee:bf: aa:df:86:f2:85:1f:cb:fe:25:db:00:e7:cc:26:b3: 5b:46:f1:1a:50:03:95:9d:97:11:94:ba:8c:0a:d9: 3f:67:7e:99:52:86:ec:4b:40:19:e6:bb:ea:4e:12: 97:bd:4a:30:f0:a1:75:0c:e6:79:99:48:54:a6:bd: a5:b5:de:f4:7a:04:d3:e1:fd:b8:16:05:94:08:68: 7d:d7:3a:12:ce:65:85:9a:6b:26:21:11:44:c1:55: cb:a5:74:03:c8:70:59:3b:9d:b5:ba:37:29:13:46: 54:06:1f:96:f8:cf:6a:66:93:53:11:05:eb:44:63: 5d:c8:5f:21:2d:1e:c0:25:7a:df:3d:40:42:5d:f6: 30:f7:46:6e:8d:3e:5f:7c:fd:ed:96:f9:1c:75:34: ac:15:4a:74:25:3e:7c:06:6d:18:9b:74:51:6f:88: 5d:4c:28:7c:41:2e:03:a8:ec:39:df:e8:bd:34:43: 50:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:42:26:9D:2A:29:33:DD:05:41:13:D6:6E:DB:12:71:CC:0C:0C:0F X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137362e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.176.0/24 Signature Algorithm: sha256WithRSAEncryption b2:83:5e:3b:24:e0:9d:16:33:e6:19:8b:85:f8:2f:15:44:9c: c8:c2:1a:43:a4:12:ca:73:b0:8e:e0:25:61:4d:0c:db:af:e0: cd:10:79:d3:e7:dd:ec:ab:d0:be:5f:6e:09:6a:b8:17:db:04: 0b:f1:c5:2d:11:6e:e8:d6:06:ef:79:45:d5:fb:3d:c8:1a:de: 81:3e:b5:6d:e1:25:7d:5a:3d:1d:00:23:e1:4f:42:19:bc:44: 21:db:59:23:dd:a0:04:19:d5:44:1f:07:8b:75:d0:7b:83:1d: 61:dd:b4:07:00:c0:95:c5:ee:47:17:8e:bb:69:fc:15:d0:bb: 93:c8:42:ec:a7:04:36:48:2f:92:ea:70:a6:e9:16:d1:4f:99: e0:31:85:8f:86:54:6a:52:85:0a:58:38:eb:d2:7a:b2:37:6b: 02:82:c8:04:9b:57:41:64:29:ad:64:65:78:4f:cd:ed:6d:17: a9:fd:5e:e6:90:93:ce:36:30:4a:34:21:d5:75:70:29:ac:a1: cd:92:e2:d8:1f:90:38:5d:07:51:fe:36:d6:66:41:84:b2:19: c5:53:aa:e1:9f:ee:05:66:5f:dc:53:49:9c:08:60:2d:a7:07: 0d:f0:6a:ea:d1:b4:6f:bd:a3:71:57:a1:d4:d7:30:c0:ec:00: a8:ce:d1:24 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeubAtvM/l4gahjEekHXx7GRu2zAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yNTEwMTgwNzU1MDBaFw0yNjEwMTcwODAwMDBaMDMxMTAvBgNV BAMTKDY0NDIyNjlEMkEyOTMzREQwNTQxMTNENjZFREIxMjcxQ0MwQzBDMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxYSBgAPhpB8/1iziAIqYDjMkb aiM+Lbo+RSsp6dk+48nRdHVUNgNrKgROOXrFRjAEfFAE3Pw1R2hLua+X3MFiSQuW XDEAqvHuv6rfhvKFH8v+JdsA58wms1tG8RpQA5WdlxGUuowK2T9nfplShuxLQBnm u+pOEpe9SjDwoXUM5nmZSFSmvaW13vR6BNPh/bgWBZQIaH3XOhLOZYWaayYhEUTB VculdAPIcFk7nbW6NykTRlQGH5b4z2pmk1MRBetEY13IXyEtHsAlet89QEJd9jD3 Rm6NPl98/e2W+Rx1NKwVSnQlPnwGbRibdFFviF1MKHxBLgOo7Dnf6L00Q1A5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZEImnSopM90FQRPWbtsSccwMDA8wHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzEzMDMyMmUzMTM3MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZrAwDQYJ KoZIhvcNAQELBQADggEBALKDXjsk4J0WM+YZi4X4LxVEnMjCGkOkEspzsI7gJWFN DNuv4M0QedPn3eyr0L5fbglquBfbBAvxxS0RbujWBu95RdX7Pcga3oE+tW3hJX1a PR0AI+FPQhm8RCHbWSPdoAQZ1UQfB4t10HuDHWHdtAcAwJXF7kcXjrtp/BXQu5PI QuynBDZIL5LqcKbpFtFPmeAxhY+GVGpShQpYOOvSerI3awKCyASbV0FkKa1kZXhP ze1tF6n9XuaQk842MEo0IdV1cCmsoc2S4tgfkDhdB1H+NtZmQYSyGcVTquGf7gVm X9xTSZwIYC2nBw3waurRtG+9o3FXodTXMMDsAKjO0SQ= -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:07 2025 by rpki-client