$ rpki-client -vvf repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/3130332e3137352e38342e302f32332d3234203d3e20313437313137.roa File: 3130332e3137352e38342e302f32332d3234203d3e20313437313137.roa (raw, json) Hash identifier: sYuoPIutBM6UsTB74BSY1gl4de6W9HHMo31g7KdPOkQ= Subject key identifier: 20:C9:11:00:A2:F2:2A:CC:8D:78:9D:35:D0:6E:30:A7:47:C1:69:7A Certificate issuer: /CN=1A88815F25C9ADC8E68E2145CC20A00096657347 Certificate serial: 71B061A86511805EE420B10315D1CFE452ADD4CE Authority key identifier: 1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer Subject info access: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/3130332e3137352e38342e302f32332d3234203d3e20313437313137.roa Signing time: Fri 10 Oct 2025 13:00:02 +0000 ROA not before: Fri 10 Oct 2025 12:55:02 +0000 ROA not after: Fri 09 Oct 2026 13:00:02 +0000 asID: 147117 IP address blocks: 103.175.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.crl rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b0:61:a8:65:11:80:5e:e4:20:b1:03:15:d1:cf:e4:52:ad:d4:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A88815F25C9ADC8E68E2145CC20A00096657347 Validity Not Before: Oct 10 12:55:02 2025 GMT Not After : Oct 9 13:00:02 2026 GMT Subject: CN=20C91100A2F22ACC8D789D35D06E30A747C1697A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:31:45:42:d2:a4:7d:94:68:54:59:98:8e:fd: 94:df:7c:e3:5a:43:b4:73:c3:30:3e:3c:00:93:f9: 0f:35:b4:de:53:3d:0e:26:c9:6a:2f:e9:c3:c8:6d: 59:43:86:5c:a1:c1:a8:92:20:fb:7b:36:8b:c2:b5: 53:4f:c3:6d:d0:ba:fa:a4:bd:d9:b0:03:9c:26:e1: e7:13:f6:8a:63:f5:c8:88:ea:72:b6:3c:91:fe:cb: 69:23:3e:0a:52:72:28:9c:39:4d:72:68:46:33:02: 26:ac:70:3e:96:e5:ff:f6:e6:19:dd:26:ee:88:8e: 88:a3:a9:fb:53:36:62:b2:f3:cf:9a:ec:45:59:14: 2d:0d:de:de:d1:da:32:f3:f7:32:1d:1b:b1:02:ae: 27:a3:63:79:5e:79:67:b3:7c:e0:15:0e:13:9d:c5: 42:dc:b8:fa:4e:f4:ac:89:e5:94:25:49:21:95:49: ed:aa:fd:dd:82:1d:3f:54:e7:20:6c:bd:a4:78:9d: 95:25:76:c6:89:81:dc:c4:f3:84:1a:3e:f0:db:c9: af:2f:48:95:8b:60:66:85:6f:99:83:d9:80:44:0f: 5c:79:fd:bf:44:cb:75:0f:46:1e:80:24:cb:50:a4: f3:bf:ee:a8:fc:ab:a9:98:b1:93:b4:4d:e8:45:4f: e3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:C9:11:00:A2:F2:2A:CC:8D:78:9D:35:D0:6E:30:A7:47:C1:69:7A X509v3 Authority Key Identifier: keyid:1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/3130332e3137352e38342e302f32332d3234203d3e20313437313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.84.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:9a:c5:8d:01:bd:e2:5b:b1:0e:3e:c8:a0:a6:50:2f:03:b3: 30:7b:6c:da:6c:6f:89:3d:91:5e:2f:8d:1d:a2:57:fa:59:6f: 26:c2:51:31:18:5b:a3:51:9b:d0:d0:c2:ed:7e:7e:e6:8a:96: 23:e5:b0:b2:6a:69:91:5e:29:84:32:b9:5c:12:f7:16:f9:ef: cd:48:d5:3d:f6:31:2e:d8:b0:62:c6:bc:3a:29:11:25:8f:2c: f3:62:fc:dc:28:e2:e4:c1:b0:a8:a9:f5:23:e3:f0:9f:9b:ed: ec:e7:19:e7:b9:9d:7c:2a:dc:2c:75:af:75:d1:5d:a4:05:c5: 7f:46:98:97:63:56:03:6a:e6:b1:1a:a2:a7:d7:18:3a:f1:f5: 66:5a:85:62:5c:80:b5:e1:c0:ca:b7:d3:2c:7a:1a:cb:b6:50: 43:d9:f5:af:f8:e3:0e:51:d5:e3:6e:05:5b:27:0f:bd:1a:1c: 66:1e:eb:ec:5c:98:4d:92:e7:77:01:85:29:77:02:0d:48:49: 93:31:89:02:40:1e:f1:2c:a2:5a:6a:ce:42:0e:03:2a:b3:69: 3a:15:f4:44:10:93:d6:8e:73:51:9a:41:2f:b6:13:14:ec:40: 36:16:7a:6f:aa:03:44:dd:26:b1:3f:a5:d0:ee:15:e8:d6:d3: 40:6b:e4:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcbBhqGURgF7kILEDFdHP5FKt1M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE4ODgxNUYyNUM5QURDOEU2OEUyMTQ1Q0MyMEEwMDA5 NjY1NzM0NzAeFw0yNTEwMTAxMjU1MDJaFw0yNjEwMDkxMzAwMDJaMDMxMTAvBgNV BAMTKDIwQzkxMTAwQTJGMjJBQ0M4RDc4OUQzNUQwNkUzMEE3NDdDMTY5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcMUVC0qR9lGhUWZiO/ZTffONa Q7RzwzA+PACT+Q81tN5TPQ4myWov6cPIbVlDhlyhwaiSIPt7NovCtVNPw23Quvqk vdmwA5wm4ecT9opj9ciI6nK2PJH+y2kjPgpSciicOU1yaEYzAiascD6W5f/25hnd Ju6IjoijqftTNmKy88+a7EVZFC0N3t7R2jLz9zIdG7ECriejY3leeWezfOAVDhOd xULcuPpO9KyJ5ZQlSSGVSe2q/d2CHT9U5yBsvaR4nZUldsaJgdzE84QaPvDbya8v SJWLYGaFb5mD2YBED1x5/b9Ey3UPRh6AJMtQpPO/7qj8q6mYsZO0TehFT+O1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIMkRAKLyKsyNeJ010G4wp0fBaXowHwYDVR0j BBgwFoAUGoiBXyXJrcjmjiFFzCCgAJZlc0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NGM3NzY2Ni00Yzc0LTQ0MGQtOTE2Ny1hZjYzZmFhNmViOWUvMC8xQTg4ODE1RjI1 QzlBREM4RTY4RTIxNDVDQzIwQTAwMDk2NjU3MzQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUE4ODgxNUYyNUM5QURDOEU2OEUyMTQ1Q0MyMEEwMDA5NjY1 NzM0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0Yzc3NjY2LTRjNzQtNDQwZC05 MTY3LWFmNjNmYWE2ZWI5ZS8wLzMxMzAzMzJlMzEzNzM1MmUzODM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ69UMA0GCSqG SIb3DQEBCwUAA4IBAQA+msWNAb3iW7EOPsigplAvA7Mwe2zabG+JPZFeL40dolf6 WW8mwlExGFujUZvQ0MLtfn7mipYj5bCyammRXimEMrlcEvcW+e/NSNU99jEu2LBi xrw6KREljyzzYvzcKOLkwbCoqfUj4/Cfm+3s5xnnuZ18Ktwsda910V2kBcV/RpiX Y1YDauaxGqKn1xg68fVmWoViXIC14cDKt9MsehrLtlBD2fWv+OMOUdXjbgVbJw+9 GhxmHuvsXJhNkud3AYUpdwINSEmTMYkCQB7xLKJaas5CDgMqs2k6FfREEJPWjnNR mkEvthMU7EA2FnpvqgNE3SaxP6XQ7hXo1tNAa+Sj -----END CERTIFICATE-----Generated at Tue Oct 21 01:37:34 2025 by rpki-client