$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: bk766NBayeqzl2TpClpr9IhYx+ApKL2x4uzDJCxWkIk= Subject key identifier: 0B:6B:41:BE:7B:DC:08:A6:BD:45:E2:98:1F:B4:B0:3E:CB:0B:B6:35 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 527F2AB405066F7D00BC09E6CB3BDB8F31DA43EC Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa Signing time: Mon 13 Oct 2025 08:00:00 +0000 ROA not before: Mon 13 Oct 2025 07:55:00 +0000 ROA not after: Mon 12 Oct 2026 08:00:00 +0000 asID: 38750 IP address blocks: 103.213.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:7f:2a:b4:05:06:6f:7d:00:bc:09:e6:cb:3b:db:8f:31:da:43:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 13 07:55:00 2025 GMT Not After : Oct 12 08:00:00 2026 GMT Subject: CN=0B6B41BE7BDC08A6BD45E2981FB4B03ECB0BB635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:3a:06:bc:2e:ad:6b:8b:f9:da:18:30:65: 78:de:a2:c0:89:e7:d5:90:c0:95:20:84:2b:45:db: 68:27:35:a8:bc:7b:9f:f7:d2:8d:de:19:b1:86:c9: 13:e1:e1:28:e7:a1:1d:db:7c:84:b4:84:75:5a:eb: 12:ff:d7:2d:3b:50:42:08:67:cd:9d:b1:4a:69:d0: 4d:b0:e4:0f:20:48:ed:bf:23:54:23:1b:be:6a:b6: 4c:ad:77:7a:43:79:f9:26:5c:c2:c1:d3:65:c4:18: 15:3b:0b:54:34:2c:c4:f5:84:8f:88:0c:44:02:1a: d8:a6:74:dd:12:32:5b:97:69:1e:4c:94:26:00:8f: d0:3e:8a:67:ed:15:f1:a5:c3:f8:45:e7:00:cf:fd: c2:b3:3c:f4:dc:f0:c9:6a:3d:8f:1e:cb:a0:3a:31: bc:e0:15:5a:33:a2:0a:4b:d7:99:a5:e6:0c:24:e4: d2:69:fe:8f:a7:1d:bb:36:1c:30:ef:d7:7d:bd:b3: 44:fa:f9:25:7d:d9:6d:74:e0:18:98:17:12:59:eb: 18:51:c8:94:94:ab:ff:83:6d:a4:fb:ba:98:5c:74: eb:cb:c3:5d:e5:48:9f:3a:fe:92:89:6b:73:1f:5b: dc:af:3a:3e:66:72:1d:ea:74:ca:b7:48:b3:c8:1e: fa:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6B:41:BE:7B:DC:08:A6:BD:45:E2:98:1F:B4:B0:3E:CB:0B:B6:35 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.116.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:f3:b7:58:a0:55:1b:ab:97:e3:12:d3:4d:30:f6:75:36:33: 2d:7f:92:0a:6e:d5:bf:f5:02:d6:e5:26:36:1a:f4:4c:69:a8: 2f:1a:08:21:77:a3:83:96:db:7d:71:8d:8d:ff:eb:7f:04:7b: a0:be:26:12:55:cf:fa:c2:c0:a1:88:17:d7:06:dc:9f:35:28: bd:f7:ac:db:b5:c7:41:33:1b:3e:0e:6b:8e:c4:c9:d2:59:9c: 15:ec:01:6b:dd:4a:30:87:f4:29:7f:93:8f:a4:15:c9:a3:01: 19:36:a8:5c:f6:55:95:6b:cf:a4:37:43:1e:e9:37:f1:42:50: 2f:47:3f:92:5b:f3:6b:53:6a:72:55:7a:14:eb:bd:5d:ed:78: 82:a9:60:9e:a6:46:88:91:cc:2a:a8:34:2b:be:d5:e2:5a:62: a8:22:a9:76:fa:c1:0b:7e:10:83:2d:be:71:2f:b5:3d:51:09: d2:6e:b6:25:94:9a:42:f6:63:e5:1c:69:7a:76:e6:cc:17:2c: f2:ab:1a:9c:f7:eb:1e:7b:c5:be:f8:5d:02:51:e2:74:1e:2b: 15:3a:20:7e:2a:0b:ed:7b:e7:ee:ea:b5:c6:2e:7a:55:7d:07: 34:22:db:48:0f:79:bc:70:71:ed:bf:9e:1d:f1:81:b3:a0:9a: d5:29:e9:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUn8qtAUGb30AvAnmyzvbjzHaQ+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMTMwNzU1MDBaFw0yNjEwMTIwODAwMDBaMDMxMTAvBgNV BAMTKDBCNkI0MUJFN0JEQzA4QTZCRDQ1RTI5ODFGQjRCMDNFQ0IwQkI2MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtUzoGvC6ta4v52hgwZXjeosCJ 59WQwJUghCtF22gnNai8e5/30o3eGbGGyRPh4SjnoR3bfIS0hHVa6xL/1y07UEII Z82dsUpp0E2w5A8gSO2/I1QjG75qtkytd3pDefkmXMLB02XEGBU7C1Q0LMT1hI+I DEQCGtimdN0SMluXaR5MlCYAj9A+imftFfGlw/hF5wDP/cKzPPTc8MlqPY8ey6A6 MbzgFVozogpL15ml5gwk5NJp/o+nHbs2HDDv1329s0T6+SV92W104BiYFxJZ6xhR yJSUq/+DbaT7uphcdOvLw13lSJ86/pKJa3MfW9yvOj5mch3qdMq3SLPIHvrTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUC2tBvnvcCKa9ReKYH7SwPssLtjUwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V0MA0GCSqG SIb3DQEBCwUAA4IBAQBf87dYoFUbq5fjEtNNMPZ1NjMtf5IKbtW/9QLW5SY2GvRM aagvGgghd6ODltt9cY2N/+t/BHugviYSVc/6wsChiBfXBtyfNSi996zbtcdBMxs+ DmuOxMnSWZwV7AFr3Uowh/Qpf5OPpBXJowEZNqhc9lWVa8+kN0Me6TfxQlAvRz+S W/NrU2pyVXoU671d7XiCqWCepkaIkcwqqDQrvtXiWmKoIql2+sELfhCDLb5xL7U9 UQnSbrYllJpC9mPlHGl6dubMFyzyqxqc9+see8W++F0CUeJ0HisVOiB+Kgvte+fu 6rXGLnpVfQc0IttID3m8cHHtv54d8YGzoJrVKelN -----END CERTIFICATE-----Generated at Mon Oct 20 17:48:41 2025 by rpki-client