$ rpki-client -vvf repo-rpki.idnic.net/repo/56fd9a58-a906-4029-92e2-adcb56ae18bd/0/3130332e3137382e32312e302f32342d3234203d3e20313439333139.roa File: 3130332e3137382e32312e302f32342d3234203d3e20313439333139.roa (raw, json) Hash identifier: n2eHTuRPz7VRKqIm4y6ERY38jrtnwA1mKjZRAuLNji8= Subject key identifier: 32:6E:50:96:A5:FB:97:63:BE:10:76:F9:BB:93:DA:BC:E3:9F:56:24 Certificate issuer: /CN=90EF20986B3061451D9F1178EB4D439522186281 Certificate serial: 2023FE9A74D82590B27B160664819D1B48FA712F Authority key identifier: 90:EF:20:98:6B:30:61:45:1D:9F:11:78:EB:4D:43:95:22:18:62:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90EF20986B3061451D9F1178EB4D439522186281.cer Subject info access: rsync://repo-rpki.idnic.net/repo/56fd9a58-a906-4029-92e2-adcb56ae18bd/0/3130332e3137382e32312e302f32342d3234203d3e20313439333139.roa Signing time: Sat 13 Sep 2025 07:00:00 +0000 ROA not before: Sat 13 Sep 2025 06:55:00 +0000 ROA not after: Sat 12 Sep 2026 07:00:00 +0000 asID: 149319 IP address blocks: 103.178.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/56fd9a58-a906-4029-92e2-adcb56ae18bd/0/90EF20986B3061451D9F1178EB4D439522186281.crl rsync://repo-rpki.idnic.net/repo/56fd9a58-a906-4029-92e2-adcb56ae18bd/0/90EF20986B3061451D9F1178EB4D439522186281.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90EF20986B3061451D9F1178EB4D439522186281.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 08:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:23:fe:9a:74:d8:25:90:b2:7b:16:06:64:81:9d:1b:48:fa:71:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90EF20986B3061451D9F1178EB4D439522186281 Validity Not Before: Sep 13 06:55:00 2025 GMT Not After : Sep 12 07:00:00 2026 GMT Subject: CN=326E5096A5FB9763BE1076F9BB93DABCE39F5624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8c:6f:b8:6b:c4:8d:66:f8:64:b0:ea:41:e7: de:dc:01:9d:f7:ef:bf:79:47:ba:49:e2:51:0d:ef: 0a:d4:bd:17:40:39:ec:9e:ef:43:ec:c1:35:8e:41: 13:fd:d5:03:9b:b9:d2:8a:43:0d:b8:98:69:fc:45: 8c:4f:ca:c8:d8:a3:df:77:4c:4b:75:54:cc:a7:b6: e2:8a:00:4e:dc:3a:ca:75:1c:f8:32:69:55:f0:55: 61:4a:ee:cc:15:30:00:be:25:ff:f6:f1:99:09:29: 6b:e6:8f:66:4e:8d:5e:43:3b:dc:e0:d4:21:51:af: 32:ee:0d:94:4d:aa:8d:3f:45:7c:41:78:09:6e:34: ee:6f:f5:82:4a:0b:77:90:42:f6:16:8e:c0:51:1d: a0:73:3b:0f:09:1a:fc:6f:b9:1a:4d:78:5c:d0:6b: 24:3c:9f:40:ca:c8:6f:2c:9e:24:b2:cc:17:c7:8e: e1:70:ce:25:b1:5c:65:93:f8:17:39:cc:09:51:d6: 7b:ac:b3:14:03:81:1c:0a:13:dc:6c:f2:87:4b:c6: d8:cc:56:af:b9:4f:58:f8:6b:df:86:f3:b4:68:3a: 62:63:2c:3f:e6:15:8a:46:8c:f5:ad:85:fb:2e:49: be:9a:fb:a8:1a:4e:33:8b:92:dd:2d:d9:50:7c:2b: ac:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6E:50:96:A5:FB:97:63:BE:10:76:F9:BB:93:DA:BC:E3:9F:56:24 X509v3 Authority Key Identifier: keyid:90:EF:20:98:6B:30:61:45:1D:9F:11:78:EB:4D:43:95:22:18:62:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/56fd9a58-a906-4029-92e2-adcb56ae18bd/0/90EF20986B3061451D9F1178EB4D439522186281.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90EF20986B3061451D9F1178EB4D439522186281.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/56fd9a58-a906-4029-92e2-adcb56ae18bd/0/3130332e3137382e32312e302f32342d3234203d3e20313439333139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.21.0/24 Signature Algorithm: sha256WithRSAEncryption 29:65:cb:21:1c:34:43:8f:2a:08:1b:5a:ea:64:3d:02:cc:bb: b3:16:40:85:3a:b8:b4:f9:35:bc:7f:58:44:52:12:61:c7:bc: 4b:db:52:37:a1:72:0e:fb:23:2b:3f:62:24:d1:4a:21:70:75: 53:6b:61:65:4a:d3:5a:6a:2b:87:8c:3d:97:ad:f9:02:a5:56: 4c:15:30:cf:95:92:41:0e:88:d4:6b:d0:b1:46:ed:d3:ab:36: 4d:e9:aa:1f:6c:1c:2b:b6:c6:10:7c:df:b5:d6:aa:d4:b6:bd: f1:48:05:c7:8d:85:e6:bb:60:3e:e4:52:71:50:23:49:77:f3: ee:0e:95:fc:d9:5e:ab:30:a9:ac:69:d5:4b:bb:d1:52:dd:a5: e1:ef:fd:a7:0e:82:47:9b:68:37:f4:dc:a2:cc:74:e5:59:9b: d2:6f:aa:ce:2f:b0:f5:e0:15:57:a6:64:17:b9:57:c1:b5:ff: 49:51:7e:e5:32:33:04:b5:53:55:d9:2a:d4:a2:92:11:59:5e: 69:e9:25:3f:7d:9b:c0:41:79:bc:9f:9d:b7:4a:8d:8e:17:21: 4a:c4:bd:d6:69:c5:67:6d:73:24:bc:e6:56:a6:00:1c:18:e9: 9e:1e:1a:57:54:3f:a6:de:a3:2c:4d:4b:88:5f:70:ca:d4:48: 3a:7a:c1:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUICP+mnTYJZCyexYGZIGdG0j6cS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBFRjIwOTg2QjMwNjE0NTFEOUYxMTc4RUI0RDQzOTUy MjE4NjI4MTAeFw0yNTA5MTMwNjU1MDBaFw0yNjA5MTIwNzAwMDBaMDMxMTAvBgNV BAMTKDMyNkU1MDk2QTVGQjk3NjNCRTEwNzZGOUJCOTNEQUJDRTM5RjU2MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTjG+4a8SNZvhksOpB597cAZ33 7795R7pJ4lEN7wrUvRdAOeye70PswTWOQRP91QObudKKQw24mGn8RYxPysjYo993 TEt1VMyntuKKAE7cOsp1HPgyaVXwVWFK7swVMAC+Jf/28ZkJKWvmj2ZOjV5DO9zg 1CFRrzLuDZRNqo0/RXxBeAluNO5v9YJKC3eQQvYWjsBRHaBzOw8JGvxvuRpNeFzQ ayQ8n0DKyG8sniSyzBfHjuFwziWxXGWT+Bc5zAlR1nussxQDgRwKE9xs8odLxtjM Vq+5T1j4a9+G87RoOmJjLD/mFYpGjPWthfsuSb6a+6gaTjOLkt0t2VB8K6xrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMm5QlqX7l2O+EHb5u5PavOOfViQwHwYDVR0j BBgwFoAUkO8gmGswYUUdnxF4601DlSIYYoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NmZkOWE1OC1hOTA2LTQwMjktOTJlMi1hZGNiNTZhZTE4YmQvMC85MEVGMjA5ODZC MzA2MTQ1MUQ5RjExNzhFQjRENDM5NTIyMTg2MjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTBFRjIwOTg2QjMwNjE0NTFEOUYxMTc4RUI0RDQzOTUyMjE4 NjI4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU2ZmQ5YTU4LWE5MDYtNDAyOS05 MmUyLWFkY2I1NmFlMThiZC8wLzMxMzAzMzJlMzEzNzM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7IVMA0GCSqG SIb3DQEBCwUAA4IBAQApZcshHDRDjyoIG1rqZD0CzLuzFkCFOri0+TW8f1hEUhJh x7xL21I3oXIO+yMrP2Ik0UohcHVTa2FlStNaaiuHjD2XrfkCpVZMFTDPlZJBDojU a9CxRu3TqzZN6aofbBwrtsYQfN+11qrUtr3xSAXHjYXmu2A+5FJxUCNJd/PuDpX8 2V6rMKmsadVLu9FS3aXh7/2nDoJHm2g39NyizHTlWZvSb6rOL7D14BVXpmQXuVfB tf9JUX7lMjMEtVNV2SrUopIRWV5p6SU/fZvAQXm8n523So2OFyFKxL3WacVnbXMk vOZWpgAcGOmeHhpXVD+m3qMsTUuIX3DK1Eg6esHE -----END CERTIFICATE-----Generated at Mon Oct 20 20:57:17 2025 by rpki-client