$ rpki-client -vvf repo-rpki.idnic.net/repo/76a5ab54-7844-4602-8aea-3c2e641f6a3c/0/3130332e3234362e3138342e302f32342d3234203d3e203538333833.roa File: 3130332e3234362e3138342e302f32342d3234203d3e203538333833.roa (raw, json) Hash identifier: xufBW0tgF9GH044ZCtCODOthPCoRzgsrcm0HHfNPNhM= Subject key identifier: 8B:1B:4D:63:DD:7A:CA:F9:FF:D2:C1:94:21:4B:23:21:AE:0F:D0:ED Certificate issuer: /CN=C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6 Certificate serial: 4A9539726EB77073C1DE750594EAF6F64CD609D5 Authority key identifier: C5:F2:AF:A0:AB:7A:B2:DD:BD:8F:87:5B:21:B8:EC:0C:3F:F8:31:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a5ab54-7844-4602-8aea-3c2e641f6a3c/0/3130332e3234362e3138342e302f32342d3234203d3e203538333833.roa Signing time: Fri 10 Oct 2025 10:00:00 +0000 ROA not before: Fri 10 Oct 2025 09:55:00 +0000 ROA not after: Fri 09 Oct 2026 10:00:00 +0000 asID: 58383 IP address blocks: 103.246.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a5ab54-7844-4602-8aea-3c2e641f6a3c/0/C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6.crl rsync://repo-rpki.idnic.net/repo/76a5ab54-7844-4602-8aea-3c2e641f6a3c/0/C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:95:39:72:6e:b7:70:73:c1:de:75:05:94:ea:f6:f6:4c:d6:09:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6 Validity Not Before: Oct 10 09:55:00 2025 GMT Not After : Oct 9 10:00:00 2026 GMT Subject: CN=8B1B4D63DD7ACAF9FFD2C194214B2321AE0FD0ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:08:dd:01:66:c4:83:f2:89:9d:21:f3:cf:41: 0a:0e:b4:57:d2:94:b6:e6:c7:71:b2:30:5c:66:39: 16:a4:47:82:6e:3b:a5:4c:30:67:b4:a8:99:2c:27: ef:ff:44:1f:c7:69:f6:53:91:65:ce:1c:bb:87:c7: 48:5c:bc:24:6b:e8:dd:ba:45:1a:e1:9b:b8:24:2e: cb:46:f6:7f:d0:25:11:ff:0f:2d:1c:f6:a8:0f:68: c6:b1:1e:81:ab:e9:18:25:d9:ac:75:17:7b:22:ca: a4:f2:9f:de:98:74:b6:06:2b:6f:12:53:e1:b3:c8: e1:8f:73:59:8e:7e:c0:c0:07:01:0c:12:33:d1:bf: 7c:48:1e:6c:c5:ef:ff:bc:66:ad:e7:b1:29:19:85: 34:f8:c5:d2:42:d8:ef:f0:27:8c:2b:94:04:52:a2: cd:26:1d:7a:f5:7e:72:26:90:06:e8:3c:c4:02:f4: e3:bd:2f:49:93:0a:ea:c8:92:72:f6:92:43:e3:2e: 3e:aa:d1:53:bb:8f:87:54:29:28:5a:1a:71:b4:70: 0d:94:f1:9b:7d:74:d6:2e:79:99:5f:13:2d:43:da: 66:58:19:8e:bf:6a:29:0f:d8:55:e1:e1:83:7e:10: 09:84:89:a3:32:23:01:4f:b7:b2:dd:46:89:f1:fc: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1B:4D:63:DD:7A:CA:F9:FF:D2:C1:94:21:4B:23:21:AE:0F:D0:ED X509v3 Authority Key Identifier: keyid:C5:F2:AF:A0:AB:7A:B2:DD:BD:8F:87:5B:21:B8:EC:0C:3F:F8:31:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a5ab54-7844-4602-8aea-3c2e641f6a3c/0/C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5F2AFA0AB7AB2DDBD8F875B21B8EC0C3FF831F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a5ab54-7844-4602-8aea-3c2e641f6a3c/0/3130332e3234362e3138342e302f32342d3234203d3e203538333833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.184.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:94:37:2d:ee:25:ad:e8:cf:0d:61:9b:2c:19:25:02:75:da: 34:27:15:48:2d:81:6e:29:fb:88:6d:81:17:25:70:02:8d:a9: 29:72:9f:1a:a3:d3:f5:ad:42:4b:02:1e:71:1c:23:aa:6f:9d: 85:41:e8:0f:2d:ac:87:67:ea:5b:da:a1:05:81:9e:55:e1:15: b8:5c:7b:57:d5:c3:a7:33:86:28:2e:61:cf:14:5f:52:d5:03: 17:5e:a5:61:3d:a5:d8:4d:5e:61:6a:72:a8:d7:7c:3e:7a:a2: c4:89:65:76:f7:7c:14:2d:d4:5f:17:9a:f2:31:25:cf:38:f2: f9:4b:fd:36:df:45:56:72:22:14:02:94:a1:7f:b8:74:96:c1: 59:4a:92:b6:12:81:32:29:0a:46:16:80:ff:36:43:3c:68:15: 5e:4c:13:58:5c:a2:56:47:86:81:28:db:e0:77:27:e2:98:1b: 2f:06:f5:c4:07:6f:a0:2f:c9:ec:22:40:27:9d:81:c7:be:24: c0:f4:03:5b:eb:08:fc:ed:42:b4:99:45:d2:41:e2:f4:4c:d5: d3:ca:37:06:0e:dd:ec:40:10:c5:b2:e6:48:3e:fd:7a:f4:f6: 37:45:4d:b5:cb:0e:85:37:d6:2e:76:49:d8:90:d5:19:e4:17: 64:5c:14:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSpU5cm63cHPB3nUFlOr29kzWCdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzVGMkFGQTBBQjdBQjJEREJEOEY4NzVCMjFCOEVDMEMz RkY4MzFGNjAeFw0yNTEwMTAwOTU1MDBaFw0yNjEwMDkxMDAwMDBaMDMxMTAvBgNV BAMTKDhCMUI0RDYzREQ3QUNBRjlGRkQyQzE5NDIxNEIyMzIxQUUwRkQwRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeCN0BZsSD8omdIfPPQQoOtFfS lLbmx3GyMFxmORakR4JuO6VMMGe0qJksJ+//RB/HafZTkWXOHLuHx0hcvCRr6N26 RRrhm7gkLstG9n/QJRH/Dy0c9qgPaMaxHoGr6Rgl2ax1F3siyqTyn96YdLYGK28S U+GzyOGPc1mOfsDABwEMEjPRv3xIHmzF7/+8Zq3nsSkZhTT4xdJC2O/wJ4wrlARS os0mHXr1fnImkAboPMQC9OO9L0mTCurIknL2kkPjLj6q0VO7j4dUKShaGnG0cA2U 8Zt9dNYueZlfEy1D2mZYGY6/aikP2FXh4YN+EAmEiaMyIwFPt7LdRonx/PyDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUixtNY916yvn/0sGUIUsjIa4P0O0wHwYDVR0j BBgwFoAUxfKvoKt6st29j4dbIbjsDD/4MfYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmE1YWI1NC03ODQ0LTQ2MDItOGFlYS0zYzJlNjQxZjZhM2MvMC9DNUYyQUZBMEFC N0FCMkREQkQ4Rjg3NUIyMUI4RUMwQzNGRjgzMUY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzVGMkFGQTBBQjdBQjJEREJEOEY4NzVCMjFCOEVDMEMzRkY4 MzFGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTVhYjU0LTc4NDQtNDYwMi04 YWVhLTNjMmU2NDFmNmEzYy8wLzMxMzAzMzJlMzIzNDM2MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/a4MA0GCSqG SIb3DQEBCwUAA4IBAQAtlDct7iWt6M8NYZssGSUCddo0JxVILYFuKfuIbYEXJXAC jakpcp8ao9P1rUJLAh5xHCOqb52FQegPLayHZ+pb2qEFgZ5V4RW4XHtX1cOnM4Yo LmHPFF9S1QMXXqVhPaXYTV5hanKo13w+eqLEiWV293wULdRfF5ryMSXPOPL5S/02 30VWciIUApShf7h0lsFZSpK2EoEyKQpGFoD/NkM8aBVeTBNYXKJWR4aBKNvgdyfi mBsvBvXEB2+gL8nsIkAnnYHHviTA9ANb6wj87UK0mUXSQeL0TNXTyjcGDt3sQBDF suZIPv169PY3RU21yw6FN9YudknYkNUZ5BdkXBQn -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:44 2025 by rpki-client