$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/3130332e3135302e3137342e302f32342d3234203d3e20313430333936.roa File: 3130332e3135302e3137342e302f32342d3234203d3e20313430333936.roa (raw, json) Hash identifier: AVUnfzqrbeXvBd5BraZJwmqr2wTn8R4ubDG+bOW20aI= Subject key identifier: 99:67:11:24:0D:7A:9E:B2:6E:30:21:10:4E:D6:87:17:27:35:95:3B Certificate issuer: /CN=658CE677CBFABF819AD1DE1FB865B1A2FD17C487 Certificate serial: 12B97AF99AF68633762627D4F84A0099C374410F Authority key identifier: 65:8C:E6:77:CB:FA:BF:81:9A:D1:DE:1F:B8:65:B1:A2:FD:17:C4:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/3130332e3135302e3137342e302f32342d3234203d3e20313430333936.roa Signing time: Fri 03 Oct 2025 04:02:27 +0000 ROA not before: Fri 03 Oct 2025 03:57:27 +0000 ROA not after: Fri 02 Oct 2026 04:02:27 +0000 asID: 140396 IP address blocks: 103.150.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.crl rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b9:7a:f9:9a:f6:86:33:76:26:27:d4:f8:4a:00:99:c3:74:41:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658CE677CBFABF819AD1DE1FB865B1A2FD17C487 Validity Not Before: Oct 3 03:57:27 2025 GMT Not After : Oct 2 04:02:27 2026 GMT Subject: CN=996711240D7A9EB26E3021104ED687172735953B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:63:a2:36:cf:49:64:ff:57:07:6f:a3:d5: fc:c0:d4:e7:1f:44:55:30:bb:35:73:88:4e:83:29: 20:e5:2e:c6:72:06:bb:62:2c:33:a0:69:76:d6:7c: 64:3a:84:7c:e6:59:69:1e:e7:b9:3e:c8:99:1d:14: 66:6f:93:9f:23:0b:dc:77:f5:aa:a2:9a:db:74:e1: 6b:97:1d:53:78:07:0f:cb:8e:70:29:54:e5:85:79: 3d:f4:ed:1a:bc:f5:2c:cc:38:e1:c5:5f:b8:e3:ed: e0:aa:83:0b:34:98:a1:23:8c:25:c2:6d:25:be:ad: 34:02:95:8e:90:e5:fa:2e:ea:5d:ca:6a:c7:5b:71: 32:b4:d6:94:5d:1d:f5:33:12:37:ba:c6:c6:86:ca: 05:cd:4b:cf:7d:cd:95:82:6d:af:8c:eb:36:13:1d: a3:80:78:c9:7d:0e:3e:b0:6f:30:a1:b7:b2:39:fa: 2b:7b:83:14:37:97:84:a1:6d:99:96:b4:95:04:2b: ff:c1:6a:2c:90:3a:48:17:de:b6:5a:ff:c6:2f:cc: ed:fe:4b:48:80:c7:7f:43:7c:fd:05:68:c0:c7:89: 02:2b:2b:eb:1c:6e:70:86:ac:30:8f:4b:0c:e4:9a: 61:c2:4c:a2:81:81:52:3f:05:c4:9d:8f:50:a9:ae: 53:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:67:11:24:0D:7A:9E:B2:6E:30:21:10:4E:D6:87:17:27:35:95:3B X509v3 Authority Key Identifier: keyid:65:8C:E6:77:CB:FA:BF:81:9A:D1:DE:1F:B8:65:B1:A2:FD:17:C4:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658CE677CBFABF819AD1DE1FB865B1A2FD17C487.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5ecd74-4424-4d40-96a1-7fd763011944/0/3130332e3135302e3137342e302f32342d3234203d3e20313430333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.174.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:c2:08:c4:f2:c6:b0:b4:66:5e:77:c2:24:a5:36:2e:67:91: be:63:22:77:66:97:a6:da:25:55:57:be:31:9a:21:88:e7:75: d2:74:49:96:c0:07:76:b1:65:1b:07:6f:2e:14:e7:4c:33:db: f8:f6:c6:cd:9e:1f:34:bb:d9:ec:a8:4c:59:38:86:96:e5:60: cd:c4:42:73:11:c0:af:0f:63:07:f2:61:7d:2a:af:1a:d9:fe: 58:64:b0:ad:8c:ce:b7:45:53:d4:9a:66:ef:70:44:00:17:7a: bd:0d:62:e8:b3:d3:4c:e5:26:10:97:a3:09:0b:25:d4:7e:c1: 4a:60:00:8f:9d:6d:34:f8:79:3d:6b:00:0a:ae:0b:8f:e3:3a: 1f:e4:ae:be:3f:b8:98:12:e8:57:ca:16:1c:f9:9e:4e:ad:a0: 69:5f:23:85:48:1d:1d:b7:52:44:4f:c6:4a:b7:a0:a0:93:b4: 84:fa:ee:b3:f9:f6:e6:d4:7a:bd:9c:6d:6f:63:fd:f5:ba:92: 31:89:88:e2:de:1d:2e:36:cd:3b:a0:8d:0e:6b:b4:49:35:0a: 71:94:2a:1c:3a:cc:1f:1a:5a:ef:e3:bd:52:2d:d5:ff:ac:fb: 14:10:79:9d:fd:ca:e1:d1:d6:3e:c4:82:d2:34:37:b1:fa:12: 7e:5b:32:07 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUErl6+Zr2hjN2JifU+EoAmcN0QQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4Q0U2NzdDQkZBQkY4MTlBRDFERTFGQjg2NUIxQTJG RDE3QzQ4NzAeFw0yNTEwMDMwMzU3MjdaFw0yNjEwMDIwNDAyMjdaMDMxMTAvBgNV BAMTKDk5NjcxMTI0MEQ3QTlFQjI2RTMwMjExMDRFRDY4NzE3MjczNTk1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL1mOiNs9JZP9XB2+j1fzA1Ocf RFUwuzVziE6DKSDlLsZyBrtiLDOgaXbWfGQ6hHzmWWke57k+yJkdFGZvk58jC9x3 9aqimtt04WuXHVN4Bw/LjnApVOWFeT307Rq89SzMOOHFX7jj7eCqgws0mKEjjCXC bSW+rTQClY6Q5fou6l3KasdbcTK01pRdHfUzEje6xsaGygXNS899zZWCba+M6zYT HaOAeMl9Dj6wbzCht7I5+it7gxQ3l4ShbZmWtJUEK//BaiyQOkgX3rZa/8YvzO3+ S0iAx39DfP0FaMDHiQIrK+scbnCGrDCPSwzkmmHCTKKBgVI/BcSdj1CprlP9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmWcRJA16nrJuMCEQTtaHFyc1lTswHwYDVR0j BBgwFoAUZYzmd8v6v4Ga0d4fuGWxov0XxIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjVlY2Q3NC00NDI0LTRkNDAtOTZhMS03ZmQ3NjMwMTE5NDQvMC82NThDRTY3N0NC RkFCRjgxOUFEMURFMUZCODY1QjFBMkZEMTdDNDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4Q0U2NzdDQkZBQkY4MTlBRDFERTFGQjg2NUIxQTJGRDE3 QzQ4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNWVjZDc0LTQ0MjQtNGQ0MC05 NmExLTdmZDc2MzAxMTk0NC8wLzMxMzAzMzJlMzEzNTMwMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlq4wDQYJ KoZIhvcNAQELBQADggEBAJ/CCMTyxrC0Zl53wiSlNi5nkb5jIndml6baJVVXvjGa IYjnddJ0SZbAB3axZRsHby4U50wz2/j2xs2eHzS72eyoTFk4hpblYM3EQnMRwK8P YwfyYX0qrxrZ/lhksK2MzrdFU9SaZu9wRAAXer0NYuiz00zlJhCXowkLJdR+wUpg AI+dbTT4eT1rAAquC4/jOh/krr4/uJgS6FfKFhz5nk6toGlfI4VIHR23UkRPxkq3 oKCTtIT67rP59ubUer2cbW9j/fW6kjGJiOLeHS42zTugjQ5rtEk1CnGUKhw6zB8a Wu/jvVIt1f+s+xQQeZ39yuHR1j7EgtI0N7H6En5bMgc= -----END CERTIFICATE-----Generated at Mon Oct 20 19:03:22 2025 by rpki-client