$ rpki-client -vvf repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/3130332e3137362e3138322e302f32332d3234203d3e20313437313332.roa File: 3130332e3137362e3138322e302f32332d3234203d3e20313437313332.roa (raw, json) Hash identifier: 3b02tyVyXZeMs6y0uPPq0P29J4NxhIV9FAqBTSQpOwg= Subject key identifier: 50:DC:B9:12:D2:82:49:A8:F4:D8:77:5A:94:CA:24:D2:70:86:9C:46 Certificate issuer: /CN=1BD753D8CEFFB0C4CBB19A2E15765EC32333A873 Certificate serial: 619F1C2480145B021A179A42002429951549E258 Authority key identifier: 1B:D7:53:D8:CE:FF:B0:C4:CB:B1:9A:2E:15:76:5E:C3:23:33:A8:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/3130332e3137362e3138322e302f32332d3234203d3e20313437313332.roa Signing time: Sat 11 Oct 2025 10:00:00 +0000 ROA not before: Sat 11 Oct 2025 09:55:00 +0000 ROA not after: Sat 10 Oct 2026 10:00:00 +0000 asID: 147132 IP address blocks: 103.176.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.crl rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 20:27:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9f:1c:24:80:14:5b:02:1a:17:9a:42:00:24:29:95:15:49:e2:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BD753D8CEFFB0C4CBB19A2E15765EC32333A873 Validity Not Before: Oct 11 09:55:00 2025 GMT Not After : Oct 10 10:00:00 2026 GMT Subject: CN=50DCB912D28249A8F4D8775A94CA24D270869C46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0e:70:be:fc:44:cf:0c:a7:eb:86:ed:62:04: 69:bb:8c:2e:b0:36:d1:47:d2:57:7e:76:a2:d4:af: ca:88:af:43:8f:c2:57:83:53:7f:97:73:00:e2:dd: 17:21:45:96:48:63:4e:f6:69:a5:51:3e:de:28:d8: f8:ef:96:ec:3f:92:8e:9c:d4:10:11:73:90:d9:70: 72:46:9c:db:fb:cd:e7:40:cf:58:6c:1f:ae:36:8a: cb:ee:67:de:c6:a1:b7:f0:0b:26:96:0a:b3:5e:ef: b1:57:a3:9a:4d:a8:d2:bd:9b:9d:bb:62:c5:eb:ee: 17:56:88:4f:7d:cc:f0:9b:c6:99:ed:79:34:8d:2e: 18:58:63:65:a4:27:43:62:c5:58:03:09:03:b3:0c: 56:d8:35:22:cc:e2:56:d7:b5:d1:70:ad:07:8b:62: dd:71:e8:fa:d0:42:7f:5d:ea:ab:07:85:d8:8f:9a: 4f:f6:78:29:ad:f1:b3:65:4f:ab:bb:6b:70:ea:6b: 60:3b:10:b0:83:44:00:95:8c:a6:63:d5:da:ea:b4: 3c:07:02:b8:25:0f:bc:64:59:6d:00:af:e6:d4:18: 91:f9:99:61:51:5a:08:eb:9e:30:fc:94:22:a5:d8: 59:b4:91:fd:86:d5:a1:b8:1b:ee:9f:f5:1f:3c:db: c3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:DC:B9:12:D2:82:49:A8:F4:D8:77:5A:94:CA:24:D2:70:86:9C:46 X509v3 Authority Key Identifier: keyid:1B:D7:53:D8:CE:FF:B0:C4:CB:B1:9A:2E:15:76:5E:C3:23:33:A8:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/3130332e3137362e3138322e302f32332d3234203d3e20313437313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.182.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:b8:ac:4f:81:96:71:d8:45:be:04:b8:a8:a3:9d:e3:1b:11: 3c:f0:28:90:57:ee:0d:df:41:72:bc:7b:cb:0b:bd:61:ca:14: bf:31:7f:3c:14:ab:3f:19:2e:bb:7a:ad:b5:db:ae:fb:0d:1e: 20:a7:ec:c8:ef:1f:bc:24:fb:b6:81:ff:56:c5:70:80:54:e9: d2:aa:00:09:4e:1a:41:9c:7a:dd:53:57:0b:bf:85:99:e9:9c: 50:02:4d:72:03:85:ce:c5:ce:e0:ac:5a:79:f4:ac:ce:bc:88: b5:01:12:84:aa:6e:2b:1d:5a:e7:f6:0f:23:fe:dc:48:a7:fd: 45:b8:49:c5:87:4e:6b:41:72:5a:3b:94:d8:a8:09:a4:d8:0c: 5d:15:35:c7:e4:b7:d6:44:7d:b9:a3:e3:3f:8f:d7:35:b1:98: 8e:14:00:86:98:a4:85:9a:ef:b8:62:0a:81:45:00:41:a8:11: e4:dc:1b:1e:ca:69:49:aa:fb:36:f8:76:cc:d6:08:f0:8a:60: b7:98:32:6e:73:32:b4:1a:d9:7f:58:da:a0:73:c5:10:38:53: 51:b4:e5:91:e6:c8:03:0d:00:2e:ff:d2:0a:b6:3c:ec:d2:91: 13:0d:f3:cd:1d:4e:6e:a3:f0:1f:53:fb:9b:e8:f4:92:7d:0c: b8:8d:10:d5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYZ8cJIAUWwIaF5pCACQplRVJ4lgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJENzUzRDhDRUZGQjBDNENCQjE5QTJFMTU3NjVFQzMy MzMzQTg3MzAeFw0yNTEwMTEwOTU1MDBaFw0yNjEwMTAxMDAwMDBaMDMxMTAvBgNV BAMTKDUwRENCOTEyRDI4MjQ5QThGNEQ4Nzc1QTk0Q0EyNEQyNzA4NjlDNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrDnC+/ETPDKfrhu1iBGm7jC6w NtFH0ld+dqLUr8qIr0OPwleDU3+XcwDi3RchRZZIY072aaVRPt4o2Pjvluw/ko6c 1BARc5DZcHJGnNv7zedAz1hsH642isvuZ97GobfwCyaWCrNe77FXo5pNqNK9m527 YsXr7hdWiE99zPCbxpnteTSNLhhYY2WkJ0NixVgDCQOzDFbYNSLM4lbXtdFwrQeL Yt1x6PrQQn9d6qsHhdiPmk/2eCmt8bNlT6u7a3Dqa2A7ELCDRACVjKZj1drqtDwH ArglD7xkWW0Ar+bUGJH5mWFRWgjrnjD8lCKl2Fm0kf2G1aG4G+6f9R8828PLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUNy5EtKCSaj02HdalMok0nCGnEYwHwYDVR0j BBgwFoAUG9dT2M7/sMTLsZouFXZewyMzqHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGU2ZmQ4MS1iODc3LTRmN2MtYWJjNi0wODJmY2JlYTE4OWYvMC8xQkQ3NTNEOENF RkZCMEM0Q0JCMTlBMkUxNTc2NUVDMzIzMzNBODczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJENzUzRDhDRUZGQjBDNENCQjE5QTJFMTU3NjVFQzMyMzMz QTg3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZTZmZDgxLWI4NzctNGY3Yy1h YmM2LTA4MmZjYmVhMTg5Zi8wLzMxMzAzMzJlMzEzNzM2MmUzMTM4MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsLYwDQYJ KoZIhvcNAQELBQADggEBAGu4rE+BlnHYRb4EuKijneMbETzwKJBX7g3fQXK8e8sL vWHKFL8xfzwUqz8ZLrt6rbXbrvsNHiCn7MjvH7wk+7aB/1bFcIBU6dKqAAlOGkGc et1TVwu/hZnpnFACTXIDhc7FzuCsWnn0rM68iLUBEoSqbisdWuf2DyP+3Ein/UW4 ScWHTmtBclo7lNioCaTYDF0VNcfkt9ZEfbmj4z+P1zWxmI4UAIaYpIWa77hiCoFF AEGoEeTcGx7KaUmq+zb4dszWCPCKYLeYMm5zMrQa2X9Y2qBzxRA4U1G05ZHmyAMN AC7/0gq2POzSkRMN880dTm6j8B9T+5vo9JJ9DLiNENU= -----END CERTIFICATE-----Generated at Tue Oct 21 04:44:49 2025 by rpki-client