$ rpki-client -vvf repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa File: 3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa (raw, json) Hash identifier: PhBm6FHQzLYkuyoWbZnBV9HiHTGNLsKA9LefOpfbYek= Subject key identifier: 0E:E1:84:27:A7:4C:AC:CE:CF:57:F0:51:97:40:12:B5:23:43:A5:77 Certificate issuer: /CN=DE871A367510652B50812EF1D04572635502AD6E Certificate serial: 135BF436595435E9E2727885F7C238D777B6D237 Authority key identifier: DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa Signing time: Tue 07 Oct 2025 17:00:02 +0000 ROA not before: Tue 07 Oct 2025 16:55:02 +0000 ROA not after: Tue 06 Oct 2026 17:00:02 +0000 asID: 147095 IP address blocks: 103.174.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5b:f4:36:59:54:35:e9:e2:72:78:85:f7:c2:38:d7:77:b6:d2:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE871A367510652B50812EF1D04572635502AD6E Validity Not Before: Oct 7 16:55:02 2025 GMT Not After : Oct 6 17:00:02 2026 GMT Subject: CN=0EE18427A74CACCECF57F051974012B52343A577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0d:45:ef:e0:b5:ff:d6:d7:10:a7:7f:6e:fd: 12:99:5d:3e:70:d9:93:ba:ca:77:00:51:b7:f0:5f: e4:72:f5:e7:33:6b:f4:5d:92:10:6a:92:b4:7e:a4: 43:ce:b0:3a:6a:de:fc:84:21:09:1c:fd:6d:8e:a5: 3d:6c:79:20:41:20:8f:29:7c:15:cf:d8:be:ca:ad: 04:d6:f2:ab:25:8a:b4:4a:74:58:0b:a0:25:ab:4e: b5:3f:86:89:ce:91:1b:ef:3c:50:0d:16:e0:d4:9e: c5:0d:66:a1:eb:28:ef:9b:86:8b:93:7e:1c:3d:07: b5:bc:08:2d:e8:2c:49:d4:8a:da:1e:eb:ad:5b:83: 36:38:e3:8b:60:22:51:c9:df:7c:0a:85:e0:09:a6: 7c:8d:9f:61:57:86:2a:56:38:d0:92:c6:7c:59:5a: 9c:46:53:bb:25:22:c7:25:a6:94:d1:6b:9a:d0:60: 59:0c:ef:fe:da:27:88:7b:f5:6d:a6:4c:4c:0f:b3: 99:c3:4a:cf:99:53:18:3a:85:94:2a:96:f1:de:6e: 9c:ee:e3:01:74:dc:4b:49:95:dc:5a:2b:fa:ff:21: 80:23:c4:29:27:dc:e8:b9:c4:c4:d2:9b:1f:58:9a: 09:f3:33:6c:2e:42:43:05:2c:02:d0:ec:83:19:ef: e4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E1:84:27:A7:4C:AC:CE:CF:57:F0:51:97:40:12:B5:23:43:A5:77 X509v3 Authority Key Identifier: keyid:DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.62.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f7:c5:f7:34:76:c4:79:a4:90:22:29:36:0f:40:ef:f7:5e: a3:fb:65:46:91:0c:df:f5:a4:98:3a:2d:1e:f6:17:a4:42:ef: d0:e2:db:59:eb:58:5a:b4:e0:da:b9:ef:d7:6e:cd:8d:c4:f3: a0:6c:3c:04:5f:07:e2:d2:2c:c4:6c:f2:08:e3:7d:d2:83:28: 01:91:b3:d6:5d:a4:e0:4a:73:cb:71:86:d6:0d:d3:fe:66:74: 34:70:9d:35:d7:27:b4:d0:ea:1a:9c:58:d7:68:c0:8b:b5:65: 23:db:6d:06:77:ae:11:ff:b0:90:d4:2c:a8:0b:3f:1a:d0:01: ba:26:52:23:cf:16:95:75:25:17:eb:38:c3:29:e4:17:fb:cf: 28:94:cc:c0:6d:1e:f6:af:1a:eb:73:ea:13:2f:d4:33:77:73: 84:42:f6:96:e8:4e:41:e2:27:4f:3a:1e:f1:07:e2:2b:92:85: 9c:6a:8e:86:c5:01:b3:4c:44:f0:4e:41:d6:f8:9a:0e:07:e7: 62:f6:19:4f:ef:c4:b6:a9:52:f4:9b:35:49:a7:63:c2:a5:67: 69:e8:e8:de:bb:ed:93:b4:e7:9d:0e:91:68:77:2e:ab:ee:4f: 82:cf:82:7e:ad:2c:fa:14:8f:f2:11:53:4e:ad:04:aa:ef:5f: db:c0:e7:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE1v0NllUNenicniF98I413e20jcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1 NTAyQUQ2RTAeFw0yNTEwMDcxNjU1MDJaFw0yNjEwMDYxNzAwMDJaMDMxMTAvBgNV BAMTKDBFRTE4NDI3QTc0Q0FDQ0VDRjU3RjA1MTk3NDAxMkI1MjM0M0E1NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIDUXv4LX/1tcQp39u/RKZXT5w 2ZO6yncAUbfwX+Ry9ecza/RdkhBqkrR+pEPOsDpq3vyEIQkc/W2OpT1seSBBII8p fBXP2L7KrQTW8qslirRKdFgLoCWrTrU/honOkRvvPFANFuDUnsUNZqHrKO+bhouT fhw9B7W8CC3oLEnUitoe661bgzY444tgIlHJ33wKheAJpnyNn2FXhipWONCSxnxZ WpxGU7slIsclppTRa5rQYFkM7/7aJ4h79W2mTEwPs5nDSs+ZUxg6hZQqlvHebpzu 4wF03EtJldxaK/r/IYAjxCkn3Oi5xMTSmx9YmgnzM2wuQkMFLALQ7IMZ7+TBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDuGEJ6dMrM7PV/BRl0AStSNDpXcwHwYDVR0j BBgwFoAU3ocaNnUQZStQgS7x0EVyY1UCrW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTM2NDVkNC01NDNiLTQ0NGItYTNhNS1mZGNkNDE4MTFjMjEvMC9ERTg3MUEzNjc1 MTA2NTJCNTA4MTJFRjFEMDQ1NzI2MzU1MDJBRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1NTAy QUQ2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMzY0NWQ0LTU0M2ItNDQ0Yi1h M2E1LWZkY2Q0MTgxMWMyMS8wLzMxMzAzMzJlMzEzNzM0MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64+MA0GCSqG SIb3DQEBCwUAA4IBAQAt98X3NHbEeaSQIik2D0Dv916j+2VGkQzf9aSYOi0e9hek Qu/Q4ttZ61hatODaue/Xbs2NxPOgbDwEXwfi0izEbPII433SgygBkbPWXaTgSnPL cYbWDdP+ZnQ0cJ011ye00OoanFjXaMCLtWUj220Gd64R/7CQ1CyoCz8a0AG6JlIj zxaVdSUX6zjDKeQX+88olMzAbR72rxrrc+oTL9Qzd3OEQvaW6E5B4idPOh7xB+Ir koWcao6GxQGzTETwTkHW+JoOB+di9hlP78S2qVL0mzVJp2PCpWdp6Ojeu+2TtOed DpFody6r7k+Cz4J+rSz6FI/yEVNOrQSq71/bwOfx -----END CERTIFICATE-----Generated at Tue Oct 21 09:59:56 2025 by rpki-client