$ rpki-client -vvf repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130372e302f32342d3234203d3e20313531353432.roa File: 3130332e3234342e3130372e302f32342d3234203d3e20313531353432.roa (raw, json) Hash identifier: dSVS127lwWi8iK2HhNgRMx5903WtJScz9453drHDtJU= Subject key identifier: 66:E7:7C:3D:17:AE:0C:CB:81:67:9C:56:B9:2E:29:37:A9:5B:A7:24 Certificate issuer: /CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5 Certificate serial: 56031D781639CC4DEB34438E62B9437F9C6A6391 Authority key identifier: 32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130372e302f32342d3234203d3e20313531353432.roa Signing time: Tue 23 Sep 2025 03:00:00 +0000 ROA not before: Tue 23 Sep 2025 02:55:00 +0000 ROA not after: Tue 22 Sep 2026 03:00:00 +0000 asID: 151542 IP address blocks: 103.244.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:03:1d:78:16:39:cc:4d:eb:34:43:8e:62:b9:43:7f:9c:6a:63:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5 Validity Not Before: Sep 23 02:55:00 2025 GMT Not After : Sep 22 03:00:00 2026 GMT Subject: CN=66E77C3D17AE0CCB81679C56B92E2937A95BA724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dc:b8:53:6c:e8:68:26:6a:0a:a3:d2:c5:1d: 64:fe:6b:b6:7e:6e:1f:d4:ff:dc:36:f1:a4:e3:58: 90:1c:81:b6:4d:9d:ec:cd:89:34:83:e6:de:e6:6e: f6:e5:0c:5c:39:05:65:ff:5b:6c:33:a3:a7:1d:0d: 5a:8a:8d:65:63:0e:a0:9b:bf:33:a3:b2:46:32:62: 25:b8:5b:bb:80:31:8f:b2:f9:c2:4f:75:4e:08:27: ed:65:87:23:80:30:b4:94:54:fe:2e:18:3c:d9:f1: ef:1b:06:a2:78:9d:93:22:f3:b1:57:b5:4b:fb:65: 8f:15:9b:f6:8a:bf:e7:97:8a:4d:1a:90:3b:11:9c: f9:89:f1:12:72:ff:98:69:99:23:6f:61:e1:c5:ca: 9e:22:c2:ab:08:00:fd:0d:8a:89:fd:3d:46:cc:33: ec:8b:28:3c:07:34:7f:55:65:5d:c5:e4:e6:0f:ac: 98:8f:20:33:db:49:dd:2c:72:c1:87:3e:5b:58:24: e6:a9:f6:21:bf:3d:b9:a2:00:bf:ee:12:57:2c:f9: 5d:ce:f4:36:7c:a2:98:49:61:f9:71:11:60:d4:c8: 0e:3f:82:14:83:5d:4f:da:0a:27:68:c1:65:f6:ce: 12:f3:16:fe:28:23:5f:2e:35:a4:49:45:b9:8a:fd: b2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E7:7C:3D:17:AE:0C:CB:81:67:9C:56:B9:2E:29:37:A9:5B:A7:24 X509v3 Authority Key Identifier: keyid:32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130372e302f32342d3234203d3e20313531353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.107.0/24 Signature Algorithm: sha256WithRSAEncryption 21:8e:1b:2d:d5:85:45:fc:62:29:65:0a:15:44:1d:c8:76:8c: 69:bd:5a:41:71:47:af:7b:60:a4:60:26:8c:ff:2a:50:72:be: f2:f2:fb:89:f4:42:dd:1e:95:80:a1:d2:46:69:c7:43:03:60: 53:0b:05:51:5d:db:7e:05:a4:dc:0f:27:3f:96:3b:79:ca:10: cb:71:3c:2f:63:37:43:fe:53:43:c0:0c:a9:b0:ef:73:c8:ca: 95:77:b6:03:45:ca:9a:ce:1f:8a:cc:e8:c8:86:8e:7d:1e:74: c7:56:07:4b:e5:a1:a4:33:e8:b3:d2:b8:d3:6d:92:c6:d6:a9: f1:98:d9:ed:93:7f:f5:cd:e2:79:1a:33:9e:d6:9e:38:a3:a7: 6c:16:e5:ad:1d:0d:fc:35:57:16:09:bb:66:cd:bb:19:a4:57: 46:03:57:32:d0:63:3a:fe:47:76:97:c0:0c:0b:c7:4a:18:c7: cc:98:da:30:df:bd:2c:d0:85:ac:a0:1f:ad:5c:73:cc:9d:a8: ca:dc:f5:81:84:e9:3d:a0:ff:e2:b0:dd:2f:8b:1d:aa:18:a1: 1b:15:8f:76:ab:c4:6b:9e:94:7d:7b:ac:d9:a8:e6:7f:0d:09: 17:7b:d2:46:45:d5:4a:79:7d:07:5f:03:93:d5:19:4a:00:a3: a5:0d:3a:d8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVgMdeBY5zE3rNEOOYrlDf5xqY5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJGMEYxQ0VBQjYwOEU2NkU1NjE0MzNBRjZDRDlCRTEy RjU2MDJFNTAeFw0yNTA5MjMwMjU1MDBaFw0yNjA5MjIwMzAwMDBaMDMxMTAvBgNV BAMTKDY2RTc3QzNEMTdBRTBDQ0I4MTY3OUM1NkI5MkUyOTM3QTk1QkE3MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy3LhTbOhoJmoKo9LFHWT+a7Z+ bh/U/9w28aTjWJAcgbZNnezNiTSD5t7mbvblDFw5BWX/W2wzo6cdDVqKjWVjDqCb vzOjskYyYiW4W7uAMY+y+cJPdU4IJ+1lhyOAMLSUVP4uGDzZ8e8bBqJ4nZMi87FX tUv7ZY8Vm/aKv+eXik0akDsRnPmJ8RJy/5hpmSNvYeHFyp4iwqsIAP0Nion9PUbM M+yLKDwHNH9VZV3F5OYPrJiPIDPbSd0scsGHPltYJOap9iG/PbmiAL/uElcs+V3O 9DZ8ophJYflxEWDUyA4/ghSDXU/aCidowWX2zhLzFv4oI18uNaRJRbmK/bJDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZud8PReuDMuBZ5xWuS4pN6lbpyQwHwYDVR0j BBgwFoAUMvDxzqtgjmblYUM69s2b4S9WAuUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MGRiMGRlYy1mNDlhLTRlN2MtODU2Yi1iMWYwNTQwYjFlMjUvMC8zMkYwRjFDRUFC NjA4RTY2RTU2MTQzM0FGNkNEOUJFMTJGNTYwMkU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzJGMEYxQ0VBQjYwOEU2NkU1NjE0MzNBRjZDRDlCRTEyRjU2 MDJFNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwZGIwZGVjLWY0OWEtNGU3Yy04 NTZiLWIxZjA1NDBiMWUyNS8wLzMxMzAzMzJlMzIzNDM0MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM0MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9GswDQYJ KoZIhvcNAQELBQADggEBACGOGy3VhUX8YillChVEHch2jGm9WkFxR697YKRgJoz/ KlByvvLy+4n0Qt0elYCh0kZpx0MDYFMLBVFd234FpNwPJz+WO3nKEMtxPC9jN0P+ U0PADKmw73PIypV3tgNFyprOH4rM6MiGjn0edMdWB0vloaQz6LPSuNNtksbWqfGY 2e2Tf/XN4nkaM57Wnjijp2wW5a0dDfw1VxYJu2bNuxmkV0YDVzLQYzr+R3aXwAwL x0oYx8yY2jDfvSzQhaygH61cc8ydqMrc9YGE6T2g/+Kw3S+LHaoYoRsVj3arxGue lH17rNmo5n8NCRd70kZF1Up5fQdfA5PVGUoAo6UNOtg= -----END CERTIFICATE-----Generated at Mon Oct 20 18:02:52 2025 by rpki-client