$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: WKBxmJwVLzCYBVgxt4LMTfwAcTtnh7yu4VGARK2zxgY= Subject key identifier: D9:B2:0B:CB:61:96:04:80:64:88:5D:50:72:4D:DC:40:BF:72:CA:2B Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 145FDB6CEB9BC0A371C2833D97748F9F02049662 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa Signing time: Mon 13 Oct 2025 09:00:00 +0000 ROA not before: Mon 13 Oct 2025 08:55:00 +0000 ROA not after: Mon 12 Oct 2026 09:00:00 +0000 asID: 38750 IP address blocks: 103.213.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:5f:db:6c:eb:9b:c0:a3:71:c2:83:3d:97:74:8f:9f:02:04:96:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 13 08:55:00 2025 GMT Not After : Oct 12 09:00:00 2026 GMT Subject: CN=D9B20BCB6196048064885D50724DDC40BF72CA2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e3:69:97:78:83:d1:ad:78:e5:e9:f9:35:b1: 66:7c:a1:2c:57:ac:f5:b3:0f:24:5c:f5:a1:bc:c8: ec:14:0a:2c:56:f4:16:06:5f:18:47:d4:3c:41:3a: 39:f6:22:a8:2d:1c:a4:c7:12:7d:88:75:24:21:3e: 94:32:32:50:d9:42:0b:04:de:d7:1d:cd:68:53:c3: a4:fb:b9:30:a4:63:64:e9:57:e1:f4:51:ed:54:52: c1:60:46:37:e1:bc:20:b1:7f:7c:8f:d0:69:5e:19: f3:78:ec:ac:84:43:34:98:73:55:61:29:c7:c0:79: 56:4d:a3:10:ac:8d:47:6e:fd:c8:dd:01:4f:88:18: 61:37:10:da:a4:4a:22:89:41:67:f7:ad:e0:9b:85: 00:ad:53:8a:80:d9:a6:51:2b:15:b4:a9:b1:04:95: 42:30:af:16:04:f9:92:99:ff:21:3e:6a:2b:9b:cc: 42:9f:31:c7:83:30:e1:c8:9d:9d:eb:ab:0c:0d:9e: 5c:e0:02:50:51:db:35:76:c7:0d:a1:8b:0d:c5:73: 6f:a2:10:7b:4d:4c:68:6e:53:e5:6a:49:2d:07:26: d5:13:64:34:13:d1:eb:84:9a:c5:5d:71:97:60:d4: c9:6d:1c:03:b8:61:3d:fb:8f:38:06:3a:84:f6:b9: 07:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B2:0B:CB:61:96:04:80:64:88:5D:50:72:4D:DC:40:BF:72:CA:2B X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.118.0/24 Signature Algorithm: sha256WithRSAEncryption 17:7d:f2:6e:31:63:e0:35:36:e5:7c:91:9b:b4:81:9c:95:83: 2e:73:e5:1d:9b:b4:6d:82:16:09:44:0f:e7:83:31:f7:8d:e9: 0a:0f:ff:bd:80:5e:9a:77:ef:a2:d6:1f:b8:2e:51:a7:56:5d: 19:af:b8:9d:c5:f3:08:3d:0a:ed:84:2a:aa:53:3e:f3:2a:9d: a0:cb:3e:2e:e2:a4:a1:91:52:39:62:09:ae:18:9f:9a:6e:06: 21:e9:3a:65:0e:50:74:43:38:93:98:e6:fc:bd:be:9a:e6:9a: 34:7e:5d:7c:bb:d8:52:88:46:e8:6c:eb:c7:d7:69:d4:91:dd: a5:c4:a6:6c:6c:e7:2d:94:dc:1f:9b:c8:7e:99:6f:1d:e0:85: 17:87:9c:fb:1d:37:4a:fa:19:05:e7:de:8f:98:9c:d6:b5:0f: e1:32:97:8b:1e:0a:2b:e2:47:74:d8:35:c3:0e:38:31:78:11: cc:25:e6:39:df:05:e1:8d:c0:c6:78:61:a5:8a:4f:2d:8c:ab: a1:58:38:9b:56:19:5b:21:9b:a8:ca:d8:8f:6e:dd:a2:7f:87: 65:b0:4f:6c:63:68:5a:ef:ac:5f:5e:84:d1:9e:7c:8c:f7:9a: 00:a9:08:15:f7:06:38:1e:a9:92:13:b1:77:0d:fb:8d:e6:b7: c9:83:50:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFF/bbOubwKNxwoM9l3SPnwIElmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMTMwODU1MDBaFw0yNjEwMTIwOTAwMDBaMDMxMTAvBgNV BAMTKEQ5QjIwQkNCNjE5NjA0ODA2NDg4NUQ1MDcyNEREQzQwQkY3MkNBMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa42mXeIPRrXjl6fk1sWZ8oSxX rPWzDyRc9aG8yOwUCixW9BYGXxhH1DxBOjn2IqgtHKTHEn2IdSQhPpQyMlDZQgsE 3tcdzWhTw6T7uTCkY2TpV+H0Ue1UUsFgRjfhvCCxf3yP0GleGfN47KyEQzSYc1Vh KcfAeVZNoxCsjUdu/cjdAU+IGGE3ENqkSiKJQWf3reCbhQCtU4qA2aZRKxW0qbEE lUIwrxYE+ZKZ/yE+aiubzEKfMceDMOHInZ3rqwwNnlzgAlBR2zV2xw2hiw3Fc2+i EHtNTGhuU+VqSS0HJtUTZDQT0euEmsVdcZdg1MltHAO4YT37jzgGOoT2uQf/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2bILy2GWBIBkiF1Qck3cQL9yyiswHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V2MA0GCSqG SIb3DQEBCwUAA4IBAQAXffJuMWPgNTblfJGbtIGclYMuc+Udm7RtghYJRA/ngzH3 jekKD/+9gF6ad++i1h+4LlGnVl0Zr7idxfMIPQrthCqqUz7zKp2gyz4u4qShkVI5 YgmuGJ+abgYh6TplDlB0QziTmOb8vb6a5po0fl18u9hSiEbobOvH12nUkd2lxKZs bOctlNwfm8h+mW8d4IUXh5z7HTdK+hkF596PmJzWtQ/hMpeLHgor4kd02DXDDjgx eBHMJeY53wXhjcDGeGGlik8tjKuhWDibVhlbIZuoytiPbt2if4dlsE9sY2ha76xf XoTRnnyM95oAqQgV9wY4HqmSE7F3DfuN5rfJg1BY -----END CERTIFICATE-----Generated at Mon Oct 20 17:48:42 2025 by rpki-client