$ rpki-client -vvf repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/3130332e3138312e3234362e302f32332d3234203d3e20313439333935.roa File: 3130332e3138312e3234362e302f32332d3234203d3e20313439333935.roa (raw, json) Hash identifier: f+QBOOF3ku4fnd+hE7xgl+gv5MnJPh+aT9iEef7iDl8= Subject key identifier: CD:06:D9:CB:CB:F0:EE:33:60:9A:80:7C:8D:CE:D9:17:EE:A1:8A:51 Certificate issuer: /CN=E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF Certificate serial: 1E099520953C7066B7BE36FC25F3DB6E16A90B91 Authority key identifier: E9:31:43:07:AD:14:30:2D:F4:0D:E1:A8:ED:0B:5D:48:D6:F7:3F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/3130332e3138312e3234362e302f32332d3234203d3e20313439333935.roa Signing time: Fri 12 Sep 2025 11:00:00 +0000 ROA not before: Fri 12 Sep 2025 10:55:00 +0000 ROA not after: Fri 11 Sep 2026 11:00:00 +0000 asID: 149395 IP address blocks: 103.181.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.crl rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:09:95:20:95:3c:70:66:b7:be:36:fc:25:f3:db:6e:16:a9:0b:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF Validity Not Before: Sep 12 10:55:00 2025 GMT Not After : Sep 11 11:00:00 2026 GMT Subject: CN=CD06D9CBCBF0EE33609A807C8DCED917EEA18A51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4f:1b:2d:50:80:d1:43:c0:58:eb:1e:62:a2: ed:29:f2:bb:fc:89:5b:d7:a8:f8:da:ba:cc:d2:ed: db:c6:26:43:b1:30:cc:c8:18:ca:57:7e:44:4d:83: 4d:61:90:42:4d:f4:3c:d4:4f:10:bd:03:b8:0b:14: a0:91:4f:b7:d1:8f:bf:7b:85:bd:95:35:66:ff:43: 56:ef:b1:10:0b:98:a2:61:53:3b:1e:9f:66:34:df: cc:26:81:bf:02:b2:da:f4:33:48:3d:42:2a:0b:48: 19:7d:0a:c5:43:ac:8e:c6:4a:3f:46:2f:ac:21:77: da:7b:a7:f8:e6:32:5d:b9:cc:94:53:61:69:42:64: 83:4d:04:c0:d6:b0:52:b9:f3:be:02:cc:29:f3:d9: 0b:07:00:96:de:cb:51:d1:09:4a:de:3d:cd:da:15: c2:3b:ca:ae:36:ab:ac:d5:5c:ef:51:13:15:be:ad: aa:de:c4:c1:7c:43:df:fb:9b:a8:7b:ba:66:4d:c2: ac:f0:b4:c1:c7:bf:34:ac:ba:56:68:43:c8:c9:bc: 16:ca:c4:dc:89:ba:d1:d7:35:e8:51:91:c1:0f:66: 8f:d9:fa:6b:f0:b3:3c:b1:b2:6c:6a:58:60:95:aa: 70:60:f1:73:63:42:49:d3:ae:8e:38:2f:5a:24:c0: b5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:06:D9:CB:CB:F0:EE:33:60:9A:80:7C:8D:CE:D9:17:EE:A1:8A:51 X509v3 Authority Key Identifier: keyid:E9:31:43:07:AD:14:30:2D:F4:0D:E1:A8:ED:0B:5D:48:D6:F7:3F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9314307AD14302DF40DE1A8ED0B5D48D6F73FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/3130332e3138312e3234362e302f32332d3234203d3e20313439333935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.246.0/23 Signature Algorithm: sha256WithRSAEncryption 50:54:03:b5:88:b7:8a:44:f5:7d:49:42:cc:82:ae:89:59:d1: c4:40:57:ad:79:c6:86:ec:c8:42:f1:5a:26:5c:e2:0e:16:ce: 3b:15:be:cf:df:d5:12:8d:4c:39:a8:a3:d9:0c:06:f1:da:47: 7f:bc:23:a9:87:6a:d2:4e:4a:db:08:6b:f8:3d:74:ac:4f:b6: 79:47:64:b4:b8:72:54:f7:9a:2d:b7:6b:d1:3a:9d:24:13:4a: 91:3f:ae:4f:77:4a:69:35:33:fe:05:0f:52:54:71:0d:9a:b5: c8:9f:23:7c:f5:68:ab:fa:8b:a1:9c:3a:a0:18:26:98:fa:47: f6:52:bb:68:db:22:7a:c7:ba:12:3f:db:ab:97:37:1c:89:89: a4:4a:b1:5d:97:7c:18:ea:21:45:2d:f2:8a:de:13:14:c3:df: e2:fd:cb:42:a5:fb:10:b1:e1:13:0f:1d:f8:26:1e:1a:3d:32: 18:34:18:e1:c5:39:63:e0:7f:fc:ff:54:2a:67:b0:4b:5f:78: ab:ad:77:74:3d:73:74:f6:68:f3:dc:d8:4a:d3:77:8c:21:cd: 1e:1c:8e:8c:06:ec:0d:9b:f9:d9:3e:83:11:7a:09:94:3a:90: 33:41:ed:d1:d0:93:dd:a4:47:b0:c5:a3:a0:08:a6:0f:95:f0: 1f:c6:bb:9b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHgmVIJU8cGa3vjb8JfPbbhapC5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTkzMTQzMDdBRDE0MzAyREY0MERFMUE4RUQwQjVENDhE NkY3M0ZBRjAeFw0yNTA5MTIxMDU1MDBaFw0yNjA5MTExMTAwMDBaMDMxMTAvBgNV BAMTKENEMDZEOUNCQ0JGMEVFMzM2MDlBODA3QzhEQ0VEOTE3RUVBMThBNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXTxstUIDRQ8BY6x5iou0p8rv8 iVvXqPjauszS7dvGJkOxMMzIGMpXfkRNg01hkEJN9DzUTxC9A7gLFKCRT7fRj797 hb2VNWb/Q1bvsRALmKJhUzsen2Y038wmgb8Cstr0M0g9QioLSBl9CsVDrI7GSj9G L6whd9p7p/jmMl25zJRTYWlCZINNBMDWsFK5874CzCnz2QsHAJbey1HRCUrePc3a FcI7yq42q6zVXO9RExW+rarexMF8Q9/7m6h7umZNwqzwtMHHvzSsulZoQ8jJvBbK xNyJutHXNehRkcEPZo/Z+mvwszyxsmxqWGCVqnBg8XNjQknTro44L1okwLVhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzQbZy8vw7jNgmoB8jc7ZF+6hilEwHwYDVR0j BBgwFoAU6TFDB60UMC30DeGo7QtdSNb3P68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDFlMDhlZi0zYWU2LTRiOTAtYjQ3Ny0wZTkxNDBkMDQzODAvMC9FOTMxNDMwN0FE MTQzMDJERjQwREUxQThFRDBCNUQ0OEQ2RjczRkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTkzMTQzMDdBRDE0MzAyREY0MERFMUE4RUQwQjVENDhENkY3 M0ZBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0MWUwOGVmLTNhZTYtNGI5MC1i NDc3LTBlOTE0MGQwNDM4MC8wLzMxMzAzMzJlMzEzODMxMmUzMjM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntfYwDQYJ KoZIhvcNAQELBQADggEBAFBUA7WIt4pE9X1JQsyCrolZ0cRAV615xobsyELxWiZc 4g4WzjsVvs/f1RKNTDmoo9kMBvHaR3+8I6mHatJOStsIa/g9dKxPtnlHZLS4clT3 mi23a9E6nSQTSpE/rk93Smk1M/4FD1JUcQ2atcifI3z1aKv6i6GcOqAYJpj6R/ZS u2jbInrHuhI/26uXNxyJiaRKsV2XfBjqIUUt8oreExTD3+L9y0Kl+xCx4RMPHfgm Hho9Mhg0GOHFOWPgf/z/VCpnsEtfeKutd3Q9c3T2aPPc2ErTd4whzR4cjowG7A2b +dk+gxF6CZQ6kDNB7dHQk92kR7DFo6AIpg+V8B/Gu5s= -----END CERTIFICATE-----Generated at Mon Oct 20 13:25:01 2025 by rpki-client