$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e37302e36382e302f32342d3234203d3e20313335343634.roa File: 3130332e37302e36382e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: l9uygWTtqWMPyZojlz6MhHbKKXqBISgxnKW2QuyQglM= Subject key identifier: CC:43:1B:C7:33:2C:93:21:C3:39:54:BB:DF:BB:70:C9:E3:45:02:A2 Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 7B74E6F27A841F07FDA32D051181E87B1182752A Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e37302e36382e302f32342d3234203d3e20313335343634.roa Signing time: Sat 18 Oct 2025 09:00:00 +0000 ROA not before: Sat 18 Oct 2025 08:55:00 +0000 ROA not after: Sat 17 Oct 2026 09:00:00 +0000 asID: 135464 IP address blocks: 103.70.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:74:e6:f2:7a:84:1f:07:fd:a3:2d:05:11:81:e8:7b:11:82:75:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Oct 18 08:55:00 2025 GMT Not After : Oct 17 09:00:00 2026 GMT Subject: CN=CC431BC7332C9321C33954BBDFBB70C9E34502A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f1:f0:eb:82:8b:a5:92:4e:59:14:cf:36:5b: e9:87:9b:8b:5e:6f:56:8e:a9:79:0b:de:80:1f:f4: fe:bc:98:02:ca:d7:b2:5e:97:a4:c4:34:26:a6:12: 5e:7b:cf:46:a7:05:57:55:52:e4:bd:35:dd:1b:4d: d1:ee:d4:4d:17:31:e9:6f:23:ac:0d:f2:aa:8a:6e: 95:73:cd:b6:c8:01:10:eb:89:65:f1:da:5d:76:ba: f6:22:58:98:f9:26:b8:61:3c:63:bd:ea:98:2d:69: b6:ff:40:7d:2a:79:04:c9:bd:e3:e6:d9:0d:c1:ad: 27:d7:36:49:b1:28:9f:44:c6:bf:c3:68:34:d4:4e: 22:06:27:73:93:a2:7a:2d:0e:99:9e:17:72:7d:57: 0c:ef:d9:c5:3b:9c:7c:c1:1f:6d:27:f3:3c:ee:2c: 3c:92:bf:c6:a5:fe:e1:be:c7:00:56:88:93:f8:16: 6c:e7:6f:03:ac:27:a1:bd:56:3c:2a:d5:6a:07:76: da:36:78:34:94:43:e3:7f:06:8b:7b:73:09:95:05: 85:4b:0f:30:3d:55:e7:f1:b4:87:0c:bd:2e:55:3c: 08:64:a6:0e:e6:c4:2e:2a:05:03:36:2a:0c:5b:9b: ff:36:67:53:0e:76:dd:85:f5:ca:44:7d:1f:9e:2b: 45:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:43:1B:C7:33:2C:93:21:C3:39:54:BB:DF:BB:70:C9:E3:45:02:A2 X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e37302e36382e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.68.0/24 Signature Algorithm: sha256WithRSAEncryption 08:d0:e2:f0:30:51:14:e6:ee:a8:94:f9:95:ac:5e:a6:dd:e4: 5e:5b:a5:8d:6b:b0:28:01:e6:20:dc:8a:c1:39:a8:a2:0b:0b: 49:36:43:79:17:09:fb:c7:4f:7e:10:a0:f1:d8:cb:95:ae:e6: 61:13:21:80:8d:d4:c4:c9:dd:14:9e:23:0a:20:0c:ba:21:9b: 68:71:c3:6a:b6:95:90:48:1a:55:3f:07:b9:65:cf:0e:4c:1c: 7f:41:ca:dc:78:a9:b8:84:69:a6:f8:f2:1e:b1:d5:e4:04:60: b3:ce:69:88:7d:a1:a4:49:45:f5:0d:7e:1a:35:6f:36:b9:df: ae:dc:39:ac:5d:b5:48:86:97:85:6d:6e:ea:0c:0a:23:71:63: 66:ba:fb:2e:39:b3:a5:49:ac:3b:9f:8f:d8:3e:b3:0e:49:cd: 9e:ea:57:78:a5:53:45:af:98:fc:9b:e0:b6:8c:1b:ea:cf:a2: f8:4a:57:75:6c:4f:a1:7a:8e:ee:4c:dc:cd:3d:b4:dd:1a:7c: 35:fa:86:cc:89:75:ea:04:eb:39:27:89:23:cf:69:86:7a:14: 73:97:6e:a2:25:a7:b5:06:02:68:4f:34:80:c5:7e:62:a6:3a: 7a:09:63:d4:ee:d4:26:e5:c0:a3:af:e3:14:9f:6e:5c:f5:57: f0:15:05:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe3Tm8nqEHwf9oy0FEYHoexGCdSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yNTEwMTgwODU1MDBaFw0yNjEwMTcwOTAwMDBaMDMxMTAvBgNV BAMTKENDNDMxQkM3MzMyQzkzMjFDMzM5NTRCQkRGQkI3MEM5RTM0NTAyQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF8fDrgoulkk5ZFM82W+mHm4te b1aOqXkL3oAf9P68mALK17Jel6TENCamEl57z0anBVdVUuS9Nd0bTdHu1E0XMelv I6wN8qqKbpVzzbbIARDriWXx2l12uvYiWJj5JrhhPGO96pgtabb/QH0qeQTJvePm 2Q3BrSfXNkmxKJ9Exr/DaDTUTiIGJ3OTonotDpmeF3J9Vwzv2cU7nHzBH20n8zzu LDySv8al/uG+xwBWiJP4FmznbwOsJ6G9Vjwq1WoHdto2eDSUQ+N/Bot7cwmVBYVL DzA9VefxtIcMvS5VPAhkpg7mxC4qBQM2Kgxbm/82Z1MOdt2F9cpEfR+eK0U1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzEMbxzMskyHDOVS737twyeNFAqIwHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzczMDJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGRDANBgkqhkiG 9w0BAQsFAAOCAQEACNDi8DBRFObuqJT5laxept3kXluljWuwKAHmINyKwTmoogsL STZDeRcJ+8dPfhCg8djLla7mYRMhgI3UxMndFJ4jCiAMuiGbaHHDaraVkEgaVT8H uWXPDkwcf0HK3HipuIRppvjyHrHV5ARgs85piH2hpElF9Q1+GjVvNrnfrtw5rF21 SIaXhW1u6gwKI3FjZrr7LjmzpUmsO5+P2D6zDknNnupXeKVTRa+Y/Jvgtowb6s+i +EpXdWxPoXqO7kzczT203Rp8NfqGzIl16gTrOSeJI89phnoUc5duoiWntQYCaE80 gMV+YqY6eglj1O7UJuXAo6/jFJ9uXPVX8BUFzg== -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:17 2025 by rpki-client