$ rpki-client -vvf repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32332d3234203d3e20313531353432.roa File: 3130332e3234342e3130362e302f32332d3234203d3e20313531353432.roa (raw, json) Hash identifier: lvsTtW252Ri8zLP6LeQkBWwPzY993cpPilJUNYfFwDQ= Subject key identifier: AC:6F:9E:EB:C1:E5:B8:EB:F2:A9:F1:31:A1:77:96:F3:01:A0:72:C1 Certificate issuer: /CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5 Certificate serial: 1C11C04E89C72EAB15587520CC807F768FD71A5F Authority key identifier: 32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32332d3234203d3e20313531353432.roa Signing time: Tue 23 Sep 2025 03:00:00 +0000 ROA not before: Tue 23 Sep 2025 02:55:00 +0000 ROA not after: Tue 22 Sep 2026 03:00:00 +0000 asID: 151542 IP address blocks: 103.244.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:11:c0:4e:89:c7:2e:ab:15:58:75:20:cc:80:7f:76:8f:d7:1a:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5 Validity Not Before: Sep 23 02:55:00 2025 GMT Not After : Sep 22 03:00:00 2026 GMT Subject: CN=AC6F9EEBC1E5B8EBF2A9F131A17796F301A072C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5d:a9:4a:6b:f1:cf:27:33:49:ef:cb:d9:ba: f0:80:55:6d:0f:08:98:ba:80:2f:ce:54:b3:59:6b: 14:92:81:77:0b:d9:6d:21:7e:13:e4:e1:88:e5:b5: 8d:dd:55:63:a6:89:04:c0:be:5e:30:77:e5:db:81: 83:d3:9e:0c:2a:f7:6d:b2:28:76:e4:f9:ee:19:06: f2:0c:0e:8d:ba:7c:64:bd:87:b3:8f:5f:dc:25:cb: b9:05:36:9e:20:6f:ec:e3:5e:6d:a0:58:d6:30:f2: be:b5:b7:70:6a:44:33:94:f6:aa:63:ed:ed:19:7e: c7:94:9e:2d:6e:e0:75:d2:00:d9:96:0f:f5:6f:b1: b1:d7:66:88:c9:83:e4:01:2d:1f:4b:9c:84:9c:1f: f7:52:72:8d:85:e1:90:22:97:12:53:9d:0b:36:34: c0:3a:8b:2d:31:a1:aa:1b:98:6d:e1:c5:85:e7:d4: fd:1d:9b:d8:36:88:e5:9f:bc:6a:f1:85:a1:2c:d8: e2:4b:50:13:77:ed:5a:aa:7e:0b:24:5b:52:0c:55: 55:5a:ce:63:fd:a7:17:70:b9:5a:7d:38:d2:52:17: 05:dd:14:3d:0c:27:bf:8f:e0:c9:c2:63:e0:cb:29: e3:af:5a:76:19:15:ce:15:20:da:fa:74:8b:5f:64: ac:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6F:9E:EB:C1:E5:B8:EB:F2:A9:F1:31:A1:77:96:F3:01:A0:72:C1 X509v3 Authority Key Identifier: keyid:32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32332d3234203d3e20313531353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.106.0/23 Signature Algorithm: sha256WithRSAEncryption 22:93:18:be:19:a9:03:93:6b:9d:aa:b1:5c:b2:0c:10:ba:ea: fe:00:2e:5b:7c:d7:5d:9c:17:db:69:01:20:1b:bf:39:e3:ef: aa:c7:59:7f:88:ac:65:8d:26:d4:dd:f2:09:f2:8c:52:cf:9c: 2f:ec:8d:39:c8:52:17:53:97:f1:6e:3d:9c:62:e3:81:8a:8b: dd:18:42:13:cb:86:06:3c:cf:be:0b:aa:21:50:e5:1e:3c:e3: f1:93:ca:6d:28:1d:73:6a:63:53:cb:cb:a8:6f:2a:01:a9:d3: ff:91:8d:15:1b:35:84:a1:c0:39:33:65:0a:78:18:15:c4:2b: 2d:7b:e7:82:d5:69:a3:48:eb:92:e9:90:fb:bb:ec:40:9b:46: 50:9f:a9:2d:4c:64:85:71:e2:45:6c:4f:43:ec:15:94:2c:44: c4:cc:30:8d:63:2f:72:dc:ca:8c:1c:dc:5b:dc:96:42:ac:0b: d1:4f:20:6b:72:5b:5f:65:15:75:b6:44:c6:7d:a8:3a:a7:6d: 66:44:ea:34:db:b1:12:66:cb:a9:e9:1b:28:10:64:84:6b:23: 5f:1a:b9:2c:33:7d:56:13:78:ee:d0:dd:98:8d:a3:f3:aa:65: 26:63:8d:19:27:3a:96:8b:f4:0c:4a:4f:0c:29:21:42:5f:a2: b4:47:33:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHBHATonHLqsVWHUgzIB/do/XGl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJGMEYxQ0VBQjYwOEU2NkU1NjE0MzNBRjZDRDlCRTEy RjU2MDJFNTAeFw0yNTA5MjMwMjU1MDBaFw0yNjA5MjIwMzAwMDBaMDMxMTAvBgNV BAMTKEFDNkY5RUVCQzFFNUI4RUJGMkE5RjEzMUExNzc5NkYzMDFBMDcyQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrXalKa/HPJzNJ78vZuvCAVW0P CJi6gC/OVLNZaxSSgXcL2W0hfhPk4YjltY3dVWOmiQTAvl4wd+XbgYPTngwq922y KHbk+e4ZBvIMDo26fGS9h7OPX9wly7kFNp4gb+zjXm2gWNYw8r61t3BqRDOU9qpj 7e0ZfseUni1u4HXSANmWD/VvsbHXZojJg+QBLR9LnIScH/dSco2F4ZAilxJTnQs2 NMA6iy0xoaobmG3hxYXn1P0dm9g2iOWfvGrxhaEs2OJLUBN37VqqfgskW1IMVVVa zmP9pxdwuVp9ONJSFwXdFD0MJ7+P4MnCY+DLKeOvWnYZFc4VINr6dItfZKynAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrG+e68HluOvyqfExoXeW8wGgcsEwHwYDVR0j BBgwFoAUMvDxzqtgjmblYUM69s2b4S9WAuUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MGRiMGRlYy1mNDlhLTRlN2MtODU2Yi1iMWYwNTQwYjFlMjUvMC8zMkYwRjFDRUFC NjA4RTY2RTU2MTQzM0FGNkNEOUJFMTJGNTYwMkU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzJGMEYxQ0VBQjYwOEU2NkU1NjE0MzNBRjZDRDlCRTEyRjU2 MDJFNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwZGIwZGVjLWY0OWEtNGU3Yy04 NTZiLWIxZjA1NDBiMWUyNS8wLzMxMzAzMzJlMzIzNDM0MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM0MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn9GowDQYJ KoZIhvcNAQELBQADggEBACKTGL4ZqQOTa52qsVyyDBC66v4ALlt8112cF9tpASAb vznj76rHWX+IrGWNJtTd8gnyjFLPnC/sjTnIUhdTl/FuPZxi44GKi90YQhPLhgY8 z74LqiFQ5R484/GTym0oHXNqY1PLy6hvKgGp0/+RjRUbNYShwDkzZQp4GBXEKy17 54LVaaNI65LpkPu77ECbRlCfqS1MZIVx4kVsT0PsFZQsRMTMMI1jL3Lcyowc3Fvc lkKsC9FPIGtyW19lFXW2RMZ9qDqnbWZE6jTbsRJmy6npGygQZIRrI18auSwzfVYT eO7Q3ZiNo/OqZSZjjRknOpaL9AxKTwwpIUJforRHM0Q= -----END CERTIFICATE-----Generated at Mon Oct 20 15:39:41 2025 by rpki-client