$ rpki-client -vvf repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa File: 3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa (raw, json) Hash identifier: 6xlug0XUa7+3muEc0qZobCHKsLZsnvqmD4DOKyPgW3E= Subject key identifier: F5:AE:CC:4B:0E:DC:59:B5:FD:EB:BE:17:4B:E9:C8:35:EE:D4:25:5C Certificate issuer: /CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5 Certificate serial: 498A79CF6DAD057C347226E4CDDACF088BB4DD34 Authority key identifier: 32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa Signing time: Tue 23 Sep 2025 03:00:00 +0000 ROA not before: Tue 23 Sep 2025 02:55:00 +0000 ROA not after: Tue 22 Sep 2026 03:00:00 +0000 asID: 151542 IP address blocks: 103.244.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:8a:79:cf:6d:ad:05:7c:34:72:26:e4:cd:da:cf:08:8b:b4:dd:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5 Validity Not Before: Sep 23 02:55:00 2025 GMT Not After : Sep 22 03:00:00 2026 GMT Subject: CN=F5AECC4B0EDC59B5FDEBBE174BE9C835EED4255C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:56:69:e6:a2:0c:1b:ec:38:3f:e1:cb:65:a4: 03:73:40:f3:ac:56:89:e4:ec:45:e0:f2:9e:3a:e1: 2e:a9:0c:6f:4d:73:fa:d3:97:fd:f2:ec:29:f3:f3: 7d:ca:51:3e:bd:ed:03:6b:57:09:1b:b4:3e:6a:b1: d6:64:04:7f:f1:e5:e3:27:fc:6c:b2:96:50:a7:42: a9:81:68:f5:80:de:ab:1b:0f:06:77:8b:4f:e9:0a: ee:d1:c5:91:bb:36:88:da:8c:4b:9c:ee:16:36:c3: 4f:ef:cf:8c:0d:e0:97:60:ef:14:ff:d8:5a:93:db: c1:bf:12:62:76:4e:80:89:a0:bc:2f:cb:24:da:fc: cd:b8:99:7d:9a:67:d0:d8:cf:d2:13:e3:23:54:ad: c6:c1:8f:ef:36:ff:ae:48:80:ee:c2:71:e5:79:71: b2:d6:bb:b1:ea:e0:e3:1e:18:ce:8a:9b:f7:87:13: 62:dd:a9:1d:fc:a2:0b:11:42:9c:88:f6:da:0e:58: e2:09:d1:13:04:40:47:4e:fa:90:f8:14:0d:de:c8: 2c:34:18:1c:85:82:6f:22:1c:c6:f8:b3:fc:d8:40: 0c:ea:a5:19:89:e3:fc:65:c7:08:c3:04:3e:da:d0: 11:fe:23:ea:75:56:23:b5:a3:8f:3c:0a:e6:e7:39: 49:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AE:CC:4B:0E:DC:59:B5:FD:EB:BE:17:4B:E9:C8:35:EE:D4:25:5C X509v3 Authority Key Identifier: keyid:32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.106.0/24 Signature Algorithm: sha256WithRSAEncryption 40:5c:ab:69:ce:37:07:c7:95:b7:23:ba:6b:d0:00:3c:02:fc: ca:fa:7c:a7:b5:62:9e:dc:1b:7e:6e:79:92:24:3c:8e:aa:92: 83:12:dc:49:b8:75:b3:ed:6c:9f:53:77:c2:e1:aa:5f:44:d4: e2:02:71:fa:f4:1b:e9:fe:11:d4:de:04:b5:c1:d4:e8:3e:9e: 8e:88:cf:4f:e2:ca:5e:78:5e:85:b5:8b:a7:0c:b9:ff:ac:8f: de:04:29:ad:3f:e1:77:ff:39:21:c4:d0:7f:96:30:e6:74:41: 57:3a:5b:b7:68:e1:17:64:fd:18:0d:9f:ce:5d:22:f4:37:db: 5d:0a:cf:06:97:21:45:a2:f4:e1:9e:3a:c2:5c:f7:16:a1:39: a0:45:6d:d3:76:99:0d:f8:4d:9f:87:3e:1c:6d:3c:c5:db:f7: 83:c6:2a:18:68:d2:1c:6f:7e:5c:50:3d:ee:c5:fe:4b:5b:8d: c0:c3:c6:d7:a8:aa:6e:1d:75:2d:45:1b:ee:d5:9b:4e:4d:0d: 0b:12:88:d5:32:42:0c:4d:28:68:d4:bc:e2:b6:89:e5:86:ee: 75:cb:a4:6b:ba:5a:e2:8f:62:5f:d3:97:c1:57:82:b0:b4:de: 5c:c1:12:72:52:af:8e:40:89:09:89:a0:42:8c:0d:48:f6:28: 22:d2:cd:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSYp5z22tBXw0cibkzdrPCIu03TQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJGMEYxQ0VBQjYwOEU2NkU1NjE0MzNBRjZDRDlCRTEy RjU2MDJFNTAeFw0yNTA5MjMwMjU1MDBaFw0yNjA5MjIwMzAwMDBaMDMxMTAvBgNV BAMTKEY1QUVDQzRCMEVEQzU5QjVGREVCQkUxNzRCRTlDODM1RUVENDI1NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Vmnmogwb7Dg/4ctlpANzQPOs Vonk7EXg8p464S6pDG9Nc/rTl/3y7Cnz833KUT697QNrVwkbtD5qsdZkBH/x5eMn /GyyllCnQqmBaPWA3qsbDwZ3i0/pCu7RxZG7NojajEuc7hY2w0/vz4wN4Jdg7xT/ 2FqT28G/EmJ2ToCJoLwvyyTa/M24mX2aZ9DYz9IT4yNUrcbBj+82/65IgO7CceV5 cbLWu7Hq4OMeGM6Km/eHE2LdqR38ogsRQpyI9toOWOIJ0RMEQEdO+pD4FA3eyCw0 GByFgm8iHMb4s/zYQAzqpRmJ4/xlxwjDBD7a0BH+I+p1ViO1o488CubnOUkrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9a7MSw7cWbX9674XS+nINe7UJVwwHwYDVR0j BBgwFoAUMvDxzqtgjmblYUM69s2b4S9WAuUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MGRiMGRlYy1mNDlhLTRlN2MtODU2Yi1iMWYwNTQwYjFlMjUvMC8zMkYwRjFDRUFC NjA4RTY2RTU2MTQzM0FGNkNEOUJFMTJGNTYwMkU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzJGMEYxQ0VBQjYwOEU2NkU1NjE0MzNBRjZDRDlCRTEyRjU2 MDJFNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwZGIwZGVjLWY0OWEtNGU3Yy04 NTZiLWIxZjA1NDBiMWUyNS8wLzMxMzAzMzJlMzIzNDM0MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM0MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9GowDQYJ KoZIhvcNAQELBQADggEBAEBcq2nONwfHlbcjumvQADwC/Mr6fKe1Yp7cG35ueZIk PI6qkoMS3Em4dbPtbJ9Td8Lhql9E1OICcfr0G+n+EdTeBLXB1Og+no6Iz0/iyl54 XoW1i6cMuf+sj94EKa0/4Xf/OSHE0H+WMOZ0QVc6W7do4Rdk/RgNn85dIvQ3210K zwaXIUWi9OGeOsJc9xahOaBFbdN2mQ34TZ+HPhxtPMXb94PGKhho0hxvflxQPe7F /ktbjcDDxteoqm4ddS1FG+7Vm05NDQsSiNUyQgxNKGjUvOK2ieWG7nXLpGu6WuKP Yl/Tl8FXgrC03lzBEnJSr45AiQmJoEKMDUj2KCLSzWI= -----END CERTIFICATE-----Generated at Mon Oct 20 15:40:09 2025 by rpki-client