$ rpki-client -vvf repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa File: 3130332e36362e33362e302f32342d3234203d3e20313530323233.roa (raw, json) Hash identifier: ajl2EFm0qBhjAXALIOJlI8I7dBianNhiyu03BfEHE4I= Subject key identifier: C8:8A:D2:40:3E:04:24:3D:7F:EE:D2:C1:D1:52:AA:4B:8C:D7:94:8D Certificate issuer: /CN=E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771 Certificate serial: 1ABCE114F3F15DAE47CD9CF1084613AF050D873B Authority key identifier: E4:C5:17:8B:DB:BD:EF:7B:7D:D4:1B:AF:58:EB:3D:25:B2:13:27:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa Signing time: Thu 18 Sep 2025 07:00:01 +0000 ROA not before: Thu 18 Sep 2025 06:55:01 +0000 ROA not after: Thu 17 Sep 2026 07:00:01 +0000 asID: 150223 IP address blocks: 103.66.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.crl rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 17:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:bc:e1:14:f3:f1:5d:ae:47:cd:9c:f1:08:46:13:af:05:0d:87:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771 Validity Not Before: Sep 18 06:55:01 2025 GMT Not After : Sep 17 07:00:01 2026 GMT Subject: CN=C88AD2403E04243D7FEED2C1D152AA4B8CD7948D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:47:92:6e:98:de:c0:2a:84:65:f9:6a:cf: 8a:7e:1a:10:da:5c:81:76:dd:72:8d:29:55:1d:f6: db:d1:83:69:58:39:a2:55:2a:d3:e2:b7:46:82:f2: 37:9f:71:da:61:d8:ed:5d:29:8f:b5:8f:55:d7:83: b7:75:95:bb:38:23:8b:1b:48:a3:3c:de:eb:50:c6: 55:43:37:8d:27:9c:25:65:0d:db:44:e7:7a:6d:1b: 9e:18:87:7e:7e:e5:a2:97:ef:95:7e:62:67:7e:1a: ca:72:41:79:aa:32:85:1d:f8:6b:4d:c7:0a:33:7b: 1a:58:b2:70:3c:66:d0:c1:e5:0a:55:b5:a9:eb:bd: 1b:7a:00:d9:18:9f:3a:3f:7d:6f:3a:66:cc:c7:bb: 9a:65:6d:39:75:50:2a:48:43:96:90:97:82:86:18: f4:f3:c8:5a:2e:4d:ae:d6:7c:a3:71:c2:6a:bc:7a: ec:72:99:40:ad:5d:cc:02:57:05:85:34:30:2e:36: 8e:c9:13:0f:5b:a9:6d:c9:be:b2:ba:ea:4e:5e:48: ff:ff:49:0b:69:2d:f4:9a:44:22:5d:0d:2a:06:c8: 46:e5:ad:ab:81:92:a3:62:6d:40:ba:52:78:ee:18: c7:7b:12:84:52:ac:8c:9e:de:c8:38:fa:cf:28:53: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8A:D2:40:3E:04:24:3D:7F:EE:D2:C1:D1:52:AA:4B:8C:D7:94:8D X509v3 Authority Key Identifier: keyid:E4:C5:17:8B:DB:BD:EF:7B:7D:D4:1B:AF:58:EB:3D:25:B2:13:27:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.36.0/24 Signature Algorithm: sha256WithRSAEncryption 65:3c:74:da:ee:bb:e2:bf:b0:c2:67:84:66:ba:a3:f5:9e:af: 41:88:8a:60:4f:7c:ae:3b:91:54:83:d3:37:57:ba:8f:66:3e: 5d:21:63:8c:a5:3e:7a:63:d3:0e:a4:04:78:af:b6:93:97:a9: a6:45:62:9d:a8:80:df:01:5e:bb:cf:ae:cb:e6:d2:bf:a5:f9: d0:46:e7:04:1c:69:0f:fc:69:53:e0:55:5c:83:6f:13:2a:4d: 23:95:aa:32:86:8b:33:57:87:3a:01:92:56:cb:c0:e0:8d:34: 73:ee:f4:b4:53:63:0f:35:db:00:1f:8f:42:e4:5a:dd:40:ee: ab:ac:fd:57:3a:a3:15:3f:d0:aa:9c:b2:b1:a5:5e:73:4f:2d: 38:58:0f:92:81:8f:af:c5:aa:b2:39:07:77:3b:98:11:9c:cb: d5:76:86:c3:58:e1:e0:a3:c2:c4:6f:94:7b:2e:ce:a2:8c:23: 89:10:e9:42:25:61:43:6d:0b:19:b0:de:cc:3c:ef:ad:44:d2: dd:59:75:cd:d3:a9:81:fe:1f:71:51:ab:5d:9e:c7:a1:0d:76: 7c:9d:02:77:e9:c5:26:0b:ab:38:ec:6c:d3:77:ab:0a:0f:5c: c5:b8:03:b6:6f:cb:3e:f8:91:08:c3:fc:cc:a5:9e:2f:99:0e: ff:fa:9a:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGrzhFPPxXa5HzZzxCEYTrwUNhzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDNTE3OEJEQkJERUY3QjdERDQxQkFGNThFQjNEMjVC MjEzMjc3MTAeFw0yNTA5MTgwNjU1MDFaFw0yNjA5MTcwNzAwMDFaMDMxMTAvBgNV BAMTKEM4OEFEMjQwM0UwNDI0M0Q3RkVFRDJDMUQxNTJBQTRCOENENzk0OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClYUeSbpjewCqEZflqz4p+GhDa XIF23XKNKVUd9tvRg2lYOaJVKtPit0aC8jefcdph2O1dKY+1j1XXg7d1lbs4I4sb SKM83utQxlVDN40nnCVlDdtE53ptG54Yh35+5aKX75V+Ymd+GspyQXmqMoUd+GtN xwozexpYsnA8ZtDB5QpVtanrvRt6ANkYnzo/fW86ZszHu5plbTl1UCpIQ5aQl4KG GPTzyFouTa7WfKNxwmq8euxymUCtXcwCVwWFNDAuNo7JEw9bqW3JvrK66k5eSP// SQtpLfSaRCJdDSoGyEblrauBkqNibUC6UnjuGMd7EoRSrIye3sg4+s8oU9CbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyIrSQD4EJD1/7tLB0VKqS4zXlI0wHwYDVR0j BBgwFoAU5MUXi9u973t91BuvWOs9JbITJ3EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmRiZDc4NS02YmNhLTQ5M2ItOGE2NS0zYjUyNzcwMDdmZWQvMC9FNEM1MTc4QkRC QkRFRjdCN0RENDFCQUY1OEVCM0QyNUIyMTMyNzcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDNTE3OEJEQkJERUY3QjdERDQxQkFGNThFQjNEMjVCMjEz Mjc3MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyZGJkNzg1LTZiY2EtNDkzYi04 YTY1LTNiNTI3NzAwN2ZlZC8wLzMxMzAzMzJlMzYzNjJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCJDANBgkqhkiG 9w0BAQsFAAOCAQEAZTx02u674r+wwmeEZrqj9Z6vQYiKYE98rjuRVIPTN1e6j2Y+ XSFjjKU+emPTDqQEeK+2k5eppkVinaiA3wFeu8+uy+bSv6X50EbnBBxpD/xpU+BV XINvEypNI5WqMoaLM1eHOgGSVsvA4I00c+70tFNjDzXbAB+PQuRa3UDuq6z9Vzqj FT/QqpyysaVec08tOFgPkoGPr8WqsjkHdzuYEZzL1XaGw1jh4KPCxG+Uey7Ooowj iRDpQiVhQ20LGbDezDzvrUTS3Vl1zdOpgf4fcVGrXZ7HoQ12fJ0Cd+nFJgurOOxs 03erCg9cxbgDtm/LPviRCMP8zKWeL5kO//qa/A== -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:27 2025 by rpki-client