$ rpki-client -vvf repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32332d3234203d3e203436303233.roa File: 3130332e3234352e31382e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: td0OSINBGBuv5HEsFIZ58nSKSttNzeWBzHe87KLyw90= Subject key identifier: D0:E9:1B:B6:C5:77:A4:06:F8:97:01:17:21:30:65:BD:75:0A:01:0A Certificate issuer: /CN=6D2120D281865021E16D49A2451DC53A851B5BBD Certificate serial: 129639011071270C7ABBFE987912736CCD402DCE Authority key identifier: 6D:21:20:D2:81:86:50:21:E1:6D:49:A2:45:1D:C5:3A:85:1B:5B:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32332d3234203d3e203436303233.roa Signing time: Wed 15 Oct 2025 10:02:08 +0000 ROA not before: Wed 15 Oct 2025 09:57:08 +0000 ROA not after: Wed 14 Oct 2026 10:02:08 +0000 asID: 46023 IP address blocks: 103.245.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.crl rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:96:39:01:10:71:27:0c:7a:bb:fe:98:79:12:73:6c:cd:40:2d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D2120D281865021E16D49A2451DC53A851B5BBD Validity Not Before: Oct 15 09:57:08 2025 GMT Not After : Oct 14 10:02:08 2026 GMT Subject: CN=D0E91BB6C577A406F8970117213065BD750A010A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:19:ca:54:4e:e8:36:e5:b6:61:cd:ba:e3:2b: 96:99:89:b7:08:46:2a:45:13:84:5a:33:97:01:3b: 76:8a:a9:36:f1:4d:d8:18:06:58:db:64:e7:71:db: 86:88:55:6a:e5:0c:da:5f:d1:5d:6b:72:ff:01:eb: 57:e5:d9:ea:7e:f7:f8:80:5f:99:be:8b:77:ea:55: 93:53:5b:6a:35:a1:0b:2a:79:66:fa:16:18:2c:cc: 76:52:9e:b9:63:92:b8:02:9d:f0:16:6d:40:ce:de: c2:bb:96:7d:c4:61:bc:89:8c:8a:b7:76:33:98:e9: 13:70:88:73:43:23:2a:48:d5:b7:14:40:70:34:93: 2f:41:4b:b8:f3:aa:2d:f4:f4:da:22:82:2b:0b:74: 9f:ee:65:b4:c4:bc:48:9a:aa:bc:a1:89:68:eb:76: 4e:0b:b6:ae:29:ce:2f:f3:ef:04:ca:5b:23:7b:57: b1:c5:39:8f:fa:93:28:fd:8f:17:81:74:82:91:17: 33:25:6d:ac:2e:0a:21:e6:21:3c:9a:1b:dd:76:ae: 83:27:43:9f:37:bb:ec:08:f7:40:f4:5d:67:74:2f: d4:59:d1:78:12:1c:18:1e:c1:de:6d:0d:48:0c:e4: 13:18:1d:dd:1f:47:3c:70:e1:9e:c1:a8:2c:5f:5e: 90:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E9:1B:B6:C5:77:A4:06:F8:97:01:17:21:30:65:BD:75:0A:01:0A X509v3 Authority Key Identifier: keyid:6D:21:20:D2:81:86:50:21:E1:6D:49:A2:45:1D:C5:3A:85:1B:5B:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.18.0/23 Signature Algorithm: sha256WithRSAEncryption 64:a9:37:03:85:1e:0a:83:1e:5b:58:50:c9:44:b3:52:4a:6e: 97:9e:41:3f:93:ad:d8:73:f1:bc:d9:1e:8b:08:0b:22:cb:c4: 0f:13:df:50:8a:89:42:e0:64:8f:25:0d:ac:3f:46:e3:ac:f1: f8:4c:34:a2:aa:bf:ee:36:cb:79:92:56:5b:d9:c7:83:52:45: e0:dd:42:74:f3:af:74:1c:a3:be:65:1b:2f:f4:b5:69:95:91: 5b:37:77:9d:02:c6:72:e5:88:5b:03:85:15:b8:d3:83:14:40: 74:85:77:a2:58:07:43:43:9c:fe:97:8d:7b:90:19:bf:e1:f1: 49:19:e3:d0:57:de:8f:f0:47:9a:c5:1a:50:82:7d:9b:bc:01: 00:3e:d1:04:2d:cb:5e:21:c2:b5:f5:de:e5:e3:b7:a2:21:7d: d0:3b:63:7b:05:6f:49:e6:52:43:3e:2a:b3:6e:7f:46:d9:76: 6c:24:e9:00:fe:9c:57:39:11:09:0b:a6:09:e9:97:bd:de:98: fe:35:d9:e8:ae:f7:40:20:d5:07:6b:7d:53:c7:10:6b:d8:27: 78:b6:39:1c:2d:e1:c9:01:b2:85:19:e4:15:a4:b6:8a:78:42: a6:11:3e:fb:e4:d6:77:b5:5d:c4:2a:89:9d:26:b5:65:3d:a3: 73:c1:0b:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEpY5ARBxJwx6u/6YeRJzbM1ALc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQyMTIwRDI4MTg2NTAyMUUxNkQ0OUEyNDUxREM1M0E4 NTFCNUJCRDAeFw0yNTEwMTUwOTU3MDhaFw0yNjEwMTQxMDAyMDhaMDMxMTAvBgNV BAMTKEQwRTkxQkI2QzU3N0E0MDZGODk3MDExNzIxMzA2NUJENzUwQTAxMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiGcpUTug25bZhzbrjK5aZibcI RipFE4RaM5cBO3aKqTbxTdgYBljbZOdx24aIVWrlDNpf0V1rcv8B61fl2ep+9/iA X5m+i3fqVZNTW2o1oQsqeWb6FhgszHZSnrljkrgCnfAWbUDO3sK7ln3EYbyJjIq3 djOY6RNwiHNDIypI1bcUQHA0ky9BS7jzqi309NoigisLdJ/uZbTEvEiaqryhiWjr dk4Ltq4pzi/z7wTKWyN7V7HFOY/6kyj9jxeBdIKRFzMlbawuCiHmITyaG912roMn Q583u+wI90D0XWd0L9RZ0XgSHBgewd5tDUgM5BMYHd0fRzxw4Z7BqCxfXpAfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0OkbtsV3pAb4lwEXITBlvXUKAQowHwYDVR0j BBgwFoAUbSEg0oGGUCHhbUmiRR3FOoUbW70wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTI3MmY3Yi1kNjU2LTQwNTgtYTdiNi1mMjVhZGYzZWQxYmUvMC82RDIxMjBEMjgx ODY1MDIxRTE2RDQ5QTI0NTFEQzUzQTg1MUI1QkJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQyMTIwRDI4MTg2NTAyMUUxNkQ0OUEyNDUxREM1M0E4NTFC NUJCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1MjcyZjdiLWQ2NTYtNDA1OC1h N2I2LWYyNWFkZjNlZDFiZS8wLzMxMzAzMzJlMzIzNDM1MmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf1EjANBgkqhkiG 9w0BAQsFAAOCAQEAZKk3A4UeCoMeW1hQyUSzUkpul55BP5Ot2HPxvNkeiwgLIsvE DxPfUIqJQuBkjyUNrD9G46zx+Ew0oqq/7jbLeZJWW9nHg1JF4N1CdPOvdByjvmUb L/S1aZWRWzd3nQLGcuWIWwOFFbjTgxRAdIV3olgHQ0Oc/peNe5AZv+HxSRnj0Ffe j/BHmsUaUIJ9m7wBAD7RBC3LXiHCtfXe5eO3oiF90DtjewVvSeZSQz4qs25/Rtl2 bCTpAP6cVzkRCQumCemXvd6Y/jXZ6K73QCDVB2t9U8cQa9gneLY5HC3hyQGyhRnk FaS2inhCphE+++TWd7VdxCqJnSa1ZT2jc8ELbA== -----END CERTIFICATE-----Generated at Mon Oct 20 16:55:25 2025 by rpki-client