$ rpki-client -vvf repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa File: 3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa (raw, json) Hash identifier: SrZZMNyD+weFJ6GOZ0htogUZ6HrLc/IW65Udx/Gnnmc= Subject key identifier: 04:02:1B:C1:6F:2A:18:3B:31:0B:CD:B4:22:1E:41:81:53:B7:DB:6E Certificate issuer: /CN=A35D0D096727FDBE2A4EED451994708ECB4A5F14 Certificate serial: 0A7D98B5369AF8C813D5976049A05D546EA98FFA Authority key identifier: A3:5D:0D:09:67:27:FD:BE:2A:4E:ED:45:19:94:70:8E:CB:4A:5F:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A35D0D096727FDBE2A4EED451994708ECB4A5F14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa Signing time: Tue 23 Sep 2025 05:00:00 +0000 ROA not before: Tue 23 Sep 2025 04:55:00 +0000 ROA not after: Tue 22 Sep 2026 05:00:00 +0000 asID: 151574 IP address blocks: 103.142.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/A35D0D096727FDBE2A4EED451994708ECB4A5F14.crl rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/A35D0D096727FDBE2A4EED451994708ECB4A5F14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A35D0D096727FDBE2A4EED451994708ECB4A5F14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7d:98:b5:36:9a:f8:c8:13:d5:97:60:49:a0:5d:54:6e:a9:8f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A35D0D096727FDBE2A4EED451994708ECB4A5F14 Validity Not Before: Sep 23 04:55:00 2025 GMT Not After : Sep 22 05:00:00 2026 GMT Subject: CN=04021BC16F2A183B310BCDB4221E418153B7DB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d0:9a:a4:a1:c8:31:ea:8f:b9:39:4c:b6:c8: 2e:8b:fb:85:aa:e8:55:1d:f7:c3:3f:b3:4b:9b:73: 4c:89:f2:39:c1:54:19:1a:41:10:6e:e7:7e:31:fc: 0b:8e:94:82:36:04:36:66:73:b0:e7:34:53:aa:09: 52:f1:2d:54:9a:b5:71:25:c3:7c:1e:8c:04:41:51: b3:05:f8:e3:07:27:8c:0a:22:47:df:ab:4c:d4:e9: 40:79:62:01:b2:26:2e:98:3c:6f:ea:d6:a6:a3:61: c3:40:c4:ea:e3:10:8e:47:5e:b8:36:4d:69:fc:1a: b7:3d:8a:c5:f5:fc:59:49:fe:a2:5e:ae:23:f1:ed: 59:7f:fa:08:b8:5f:60:9e:53:ca:99:28:e7:65:6e: a0:49:77:6d:18:df:84:97:37:41:d7:8d:e5:9f:07: 74:3f:75:3d:00:7a:ee:0b:73:fb:0c:0a:b1:af:bf: e6:0f:f5:62:91:29:b3:67:77:7c:4d:9f:8b:9f:6e: 56:c4:b1:e3:32:02:90:1c:e1:4c:42:c0:50:e4:a1: 2d:2e:6a:1f:9e:4b:4a:8f:cd:3f:c6:38:72:9d:b6: 39:c3:83:67:ba:62:f3:ab:4a:6e:5c:ba:d2:ed:51: 6b:a3:c5:02:45:71:e4:d7:60:17:44:f7:a2:3f:91: ef:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:02:1B:C1:6F:2A:18:3B:31:0B:CD:B4:22:1E:41:81:53:B7:DB:6E X509v3 Authority Key Identifier: keyid:A3:5D:0D:09:67:27:FD:BE:2A:4E:ED:45:19:94:70:8E:CB:4A:5F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/A35D0D096727FDBE2A4EED451994708ECB4A5F14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A35D0D096727FDBE2A4EED451994708ECB4A5F14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.20.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:d3:5d:f3:70:5d:88:2d:d3:27:49:17:f5:be:6b:e8:95:d6: 0a:a5:3e:d6:83:bf:26:ee:57:f3:ec:54:cd:2c:09:24:fd:ac: 52:60:c7:4c:16:2b:05:96:21:bf:72:26:ed:76:bf:61:aa:5b: fe:45:34:f7:17:d8:3e:41:ad:61:41:69:0e:12:66:0f:5d:1d: 1f:42:92:e7:c0:25:79:d9:35:a0:d9:c8:47:f4:05:f1:05:3d: a1:c4:41:00:24:bb:0e:89:e8:16:8b:38:89:e4:5d:b9:ce:c8: 69:f7:9b:36:7a:8c:7a:6a:67:87:1b:24:fe:b7:85:30:15:e9: 64:85:94:90:87:d8:ed:14:a2:be:6d:fa:77:36:7f:23:81:61: 7a:e3:8a:3d:f7:97:1d:2d:a6:ef:e5:b3:7a:d9:fc:41:71:77: 97:59:3d:73:db:39:4f:91:48:b2:d1:1b:af:77:01:ec:93:2b: 09:49:53:31:54:9c:29:27:33:25:02:95:d5:ff:49:90:b0:36: dd:12:03:00:14:db:3b:3a:c3:12:bd:50:d1:ae:18:e9:07:19: bd:1f:e0:07:96:d6:aa:1d:ef:c3:91:04:92:43:00:a8:e6:cc: fa:db:69:cc:3d:1b:76:11:66:4a:47:f8:44:2e:de:3b:00:64: 42:b0:41:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCn2YtTaa+MgT1ZdgSaBdVG6pj/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM1RDBEMDk2NzI3RkRCRTJBNEVFRDQ1MTk5NDcwOEVD QjRBNUYxNDAeFw0yNTA5MjMwNDU1MDBaFw0yNjA5MjIwNTAwMDBaMDMxMTAvBgNV BAMTKDA0MDIxQkMxNkYyQTE4M0IzMTBCQ0RCNDIyMUU0MTgxNTNCN0RCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn0Jqkocgx6o+5OUy2yC6L+4Wq 6FUd98M/s0ubc0yJ8jnBVBkaQRBu534x/AuOlII2BDZmc7DnNFOqCVLxLVSatXEl w3wejARBUbMF+OMHJ4wKIkffq0zU6UB5YgGyJi6YPG/q1qajYcNAxOrjEI5HXrg2 TWn8Grc9isX1/FlJ/qJeriPx7Vl/+gi4X2CeU8qZKOdlbqBJd20Y34SXN0HXjeWf B3Q/dT0Aeu4Lc/sMCrGvv+YP9WKRKbNnd3xNn4ufblbEseMyApAc4UxCwFDkoS0u ah+eS0qPzT/GOHKdtjnDg2e6YvOrSm5cutLtUWujxQJFceTXYBdE96I/ke8hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBAIbwW8qGDsxC820Ih5BgVO3224wHwYDVR0j BBgwFoAUo10NCWcn/b4qTu1FGZRwjstKXxQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZGVlZjIxOC0wZDliLTRkMGQtYTVjNS1mODMyYjhlYjVhYmEvMC9BMzVEMEQwOTY3 MjdGREJFMkE0RUVENDUxOTk0NzA4RUNCNEE1RjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM1RDBEMDk2NzI3RkRCRTJBNEVFRDQ1MTk5NDcwOEVDQjRB NUYxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkZWVmMjE4LTBkOWItNGQwZC1h NWM1LWY4MzJiOGViNWFiYS8wLzMxMzAzMzJlMzEzNDMyMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ44UMA0GCSqG SIb3DQEBCwUAA4IBAQAc013zcF2ILdMnSRf1vmvoldYKpT7Wg78m7lfz7FTNLAkk /axSYMdMFisFliG/cibtdr9hqlv+RTT3F9g+Qa1hQWkOEmYPXR0fQpLnwCV52TWg 2chH9AXxBT2hxEEAJLsOiegWiziJ5F25zshp95s2eox6ameHGyT+t4UwFelkhZSQ h9jtFKK+bfp3Nn8jgWF644o995cdLabv5bN62fxBcXeXWT1z2zlPkUiy0RuvdwHs kysJSVMxVJwpJzMlApXV/0mQsDbdEgMAFNs7OsMSvVDRrhjpBxm9H+AHltaqHe/D kQSSQwCo5sz622nMPRt2EWZKR/hELt47AGRCsEGg -----END CERTIFICATE-----Generated at Mon Oct 20 15:40:06 2025 by rpki-client