$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa File: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (raw, json) Hash identifier: 0PyZ1Izmcdz8RbI4pvamYzCkDML//PlzpXnY61vINZs= Subject key identifier: 42:16:08:51:EA:75:3F:76:FE:69:39:56:5A:84:2E:C1:EE:C0:67:E4 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 1B1EBAB414885AE343EBC79C77E68359DADFCF07 Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa Signing time: Thu 02 Oct 2025 11:00:01 +0000 ROA not before: Thu 02 Oct 2025 10:55:01 +0000 ROA not after: Thu 01 Oct 2026 11:00:01 +0000 asID: 152062 IP address blocks: 103.225.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1e:ba:b4:14:88:5a:e3:43:eb:c7:9c:77:e6:83:59:da:df:cf:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Oct 2 10:55:01 2025 GMT Not After : Oct 1 11:00:01 2026 GMT Subject: CN=42160851EA753F76FE6939565A842EC1EEC067E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:51:6d:a2:1a:ca:bb:cf:22:15:43:12:12: 05:d1:61:e4:84:3c:a0:f1:e5:0d:e6:f4:8a:1e:00: df:db:e3:3d:3d:88:85:3d:65:bb:be:0e:98:be:17: da:41:1d:ae:c0:a1:ab:53:65:e6:42:d1:a1:5a:41: 4a:43:20:0e:dd:cd:0b:7e:99:b2:ad:bc:27:32:d4: a2:a0:7e:62:13:80:1c:2a:52:ef:ef:af:b8:1c:af: 75:ff:dd:9d:46:e2:bc:ad:8d:04:aa:3b:ad:b1:40: d3:a1:5c:2a:d8:23:ab:84:81:e0:fc:92:59:a6:2a: 5d:e3:3d:af:a3:8e:6e:cd:21:15:fd:5c:b1:9c:39: 5c:c1:2a:43:02:0e:23:e7:eb:b2:d8:41:c1:6b:c3: cd:e9:eb:d7:ef:cd:16:07:f5:54:17:b1:f8:c9:4b: 1f:e0:8d:f8:6a:55:fd:7c:b2:4e:f9:76:ad:50:50: 68:9e:a4:06:d0:db:b5:e1:e6:95:6d:22:18:a1:05: 54:0c:28:d8:0e:ad:7e:08:ed:ba:36:b4:52:c8:4d: c8:75:84:6b:65:8d:4c:65:25:c8:3d:fc:5b:d0:83: 9a:cf:62:22:6a:bd:52:58:5c:e2:35:5f:2e:85:3d: b7:6f:d4:65:5c:71:f7:09:20:2f:ee:c0:99:8c:5f: 6b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:16:08:51:EA:75:3F:76:FE:69:39:56:5A:84:2E:C1:EE:C0:67:E4 X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.17.0/24 Signature Algorithm: sha256WithRSAEncryption c1:b1:48:e0:cb:70:37:77:e2:fe:23:69:9a:7b:3f:37:3e:a8: cf:33:47:a0:99:fe:6e:55:fd:50:91:a7:7d:95:92:6d:5f:99: ae:a3:b1:fd:24:aa:41:17:14:34:b7:0b:d0:c2:da:60:4e:f4: db:d6:d7:ed:c9:c8:98:64:ab:3a:32:2c:64:4e:b2:37:16:d2: c1:af:4d:0f:c1:24:f8:10:f0:e5:b6:a8:15:2f:f0:98:9a:8f: 97:72:84:d0:37:74:5f:ce:46:fe:66:2a:7c:69:06:0d:ca:fe: ca:89:72:9f:a4:d1:8f:a4:fc:c8:54:18:90:71:b4:54:0d:6f: fd:b7:a8:a4:74:4f:b2:af:1a:46:1d:35:8d:f7:5d:3a:e6:95: 3b:b1:3c:e9:3d:ef:d4:bf:89:4b:be:13:12:97:60:da:84:dc: b6:26:69:57:df:f9:64:d7:2f:e9:49:06:91:f3:d6:b3:73:2a: d8:86:f8:e3:3d:da:da:6c:9b:11:6c:23:01:02:2d:04:bc:21: 41:1a:3e:00:05:6b:e5:f6:d8:6a:7d:8e:c7:5f:30:be:e5:0e: 67:29:00:f2:f7:ba:6d:36:79:88:1e:2e:f4:6e:54:34:be:0f: ee:89:be:9a:26:df:75:4a:4d:25:2f:7f:60:86:02:ac:84:35: fe:d8:dc:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGx66tBSIWuND68ecd+aDWdrfzwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNTEwMDIxMDU1MDFaFw0yNjEwMDExMTAwMDFaMDMxMTAvBgNV BAMTKDQyMTYwODUxRUE3NTNGNzZGRTY5Mzk1NjVBODQyRUMxRUVDMDY3RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm31FtohrKu88iFUMSEgXRYeSE PKDx5Q3m9IoeAN/b4z09iIU9Zbu+Dpi+F9pBHa7AoatTZeZC0aFaQUpDIA7dzQt+ mbKtvCcy1KKgfmITgBwqUu/vr7gcr3X/3Z1G4rytjQSqO62xQNOhXCrYI6uEgeD8 klmmKl3jPa+jjm7NIRX9XLGcOVzBKkMCDiPn67LYQcFrw83p69fvzRYH9VQXsfjJ Sx/gjfhqVf18sk75dq1QUGiepAbQ27Xh5pVtIhihBVQMKNgOrX4I7bo2tFLITch1 hGtljUxlJcg9/FvQg5rPYiJqvVJYXOI1Xy6FPbdv1GVccfcJIC/uwJmMX2tlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQhYIUep1P3b+aTlWWoQuwe7AZ+QwHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjNzJkM2Y1LWRkNTMtNGI3NC05 NDdjLTZiYjUxMGY0ZjUwMy8wLzMxMzAzMzJlMzIzMjM1MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ERMA0GCSqG SIb3DQEBCwUAA4IBAQDBsUjgy3A3d+L+I2maez83PqjPM0egmf5uVf1Qkad9lZJt X5muo7H9JKpBFxQ0twvQwtpgTvTb1tftyciYZKs6MixkTrI3FtLBr00PwST4EPDl tqgVL/CYmo+XcoTQN3Rfzkb+Zip8aQYNyv7KiXKfpNGPpPzIVBiQcbRUDW/9t6ik dE+yrxpGHTWN91065pU7sTzpPe/Uv4lLvhMSl2DahNy2JmlX3/lk1y/pSQaR89az cyrYhvjjPdrabJsRbCMBAi0EvCFBGj4ABWvl9thqfY7HXzC+5Q5nKQDy97ptNnmI Hi70blQ0vg/uib6aJt91Sk0lL39ghgKshDX+2NyY -----END CERTIFICATE-----Generated at Mon Oct 20 15:31:13 2025 by rpki-client