$ rpki-client -vvf repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa File: 3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa (raw, json) Hash identifier: 5tgjuzU09jqsB8+Ds22MwULKYbCeu3hfy4yQgPpxaYw= Subject key identifier: E1:DB:B0:42:66:79:3D:B1:B6:05:E3:FC:A3:04:A2:4B:EE:CC:F2:46 Certificate issuer: /CN=DE871A367510652B50812EF1D04572635502AD6E Certificate serial: 6A80ABC16CC9C96599AC66CF4A5C1BF2A4B09DFA Authority key identifier: DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa Signing time: Tue 07 Oct 2025 17:00:02 +0000 ROA not before: Tue 07 Oct 2025 16:55:02 +0000 ROA not after: Tue 06 Oct 2026 17:00:02 +0000 asID: 147095 IP address blocks: 103.174.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:80:ab:c1:6c:c9:c9:65:99:ac:66:cf:4a:5c:1b:f2:a4:b0:9d:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE871A367510652B50812EF1D04572635502AD6E Validity Not Before: Oct 7 16:55:02 2025 GMT Not After : Oct 6 17:00:02 2026 GMT Subject: CN=E1DBB04266793DB1B605E3FCA304A24BEECCF246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:16:2b:82:7d:0e:8f:2c:03:fe:41:96:d5:23: c0:21:43:15:aa:7c:b4:91:c6:78:f6:56:48:3c:8b: 0f:d7:7f:b8:93:ef:89:af:42:e9:e3:fa:6f:29:41: c6:a4:13:53:74:68:f5:ec:29:4f:e7:43:c8:0d:6b: a1:03:1b:d0:ee:fd:12:91:a9:9c:bf:42:57:9e:0b: b6:ab:14:9d:88:d7:e5:9d:18:6d:12:25:02:d8:f3: 12:87:e6:5e:18:d0:2b:3c:ea:40:63:c1:c2:8a:6b: a8:55:90:ef:ae:27:5d:04:29:19:3c:fd:4a:8b:2b: 0a:75:57:c4:b9:87:9c:a8:18:7b:ee:c6:53:4b:6f: c0:39:76:d2:97:03:91:77:28:16:55:36:4e:ee:0d: d2:0d:93:41:0a:5f:d0:dd:85:2c:b5:ff:17:a1:38: 84:2a:e3:a2:2b:b3:a0:f8:56:ff:07:ec:67:a2:c2: 73:ac:db:e2:ed:c7:24:a7:a5:62:65:ce:90:45:af: 19:ca:8f:0a:60:5c:86:92:83:70:04:df:0b:48:75: 92:48:ad:0a:cb:71:16:b7:ee:f1:bf:13:f7:8d:04: 24:25:f6:b5:5e:cf:91:6f:28:76:4d:00:b6:be:a3: 6c:92:ac:19:8c:43:5d:0e:6b:42:1f:54:b9:11:3b: 37:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DB:B0:42:66:79:3D:B1:B6:05:E3:FC:A3:04:A2:4B:EE:CC:F2:46 X509v3 Authority Key Identifier: keyid:DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.63.0/24 Signature Algorithm: sha256WithRSAEncryption 03:fc:b5:7d:19:6a:54:7b:69:0a:cc:3f:5e:a4:25:59:86:42: 15:61:b8:fb:07:9c:2d:c3:c0:73:95:79:a3:a0:00:ab:36:05: c3:22:c2:c7:3c:e3:07:12:63:9f:40:df:e0:74:24:a8:7e:3f: e7:6a:39:e4:72:63:4f:f8:c0:2b:0f:6d:94:96:f4:c2:bf:59: d8:37:53:3f:3b:98:28:b0:01:d1:f9:47:ae:bf:49:4f:e0:5c: ab:a7:85:49:c5:7a:f9:3b:07:90:91:54:a7:a1:25:d3:70:88: 3a:53:7f:f8:e7:b4:11:68:1c:c7:2c:30:34:1e:b9:7a:20:7d: 19:3c:2b:b6:25:a1:13:6e:9b:eb:aa:0b:bf:f4:49:08:22:5e: 27:3f:74:45:4e:5b:74:9c:29:ce:c6:61:31:9b:39:9e:74:7d: 63:34:f0:e7:e7:b8:bd:ac:f6:13:a8:d9:a7:82:fa:3b:f4:07: b5:fd:06:4d:8d:3f:a0:9c:32:83:07:93:e0:d8:05:18:2a:78: 3c:cc:3a:da:ae:3f:e0:04:ed:de:3f:11:f1:d2:f3:75:b1:fa: f3:ed:27:61:69:1a:c0:28:02:bc:65:e1:5b:6f:0e:4e:01:a2: 98:82:9a:b9:57:8e:64:9b:90:c6:24:3e:5e:69:d5:68:8c:02: 72:54:e2:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaoCrwWzJyWWZrGbPSlwb8qSwnfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1 NTAyQUQ2RTAeFw0yNTEwMDcxNjU1MDJaFw0yNjEwMDYxNzAwMDJaMDMxMTAvBgNV BAMTKEUxREJCMDQyNjY3OTNEQjFCNjA1RTNGQ0EzMDRBMjRCRUVDQ0YyNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMFiuCfQ6PLAP+QZbVI8AhQxWq fLSRxnj2Vkg8iw/Xf7iT74mvQunj+m8pQcakE1N0aPXsKU/nQ8gNa6EDG9Du/RKR qZy/QleeC7arFJ2I1+WdGG0SJQLY8xKH5l4Y0Cs86kBjwcKKa6hVkO+uJ10EKRk8 /UqLKwp1V8S5h5yoGHvuxlNLb8A5dtKXA5F3KBZVNk7uDdINk0EKX9DdhSy1/xeh OIQq46Irs6D4Vv8H7GeiwnOs2+LtxySnpWJlzpBFrxnKjwpgXIaSg3AE3wtIdZJI rQrLcRa37vG/E/eNBCQl9rVez5FvKHZNALa+o2ySrBmMQ10Oa0IfVLkROzfTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4duwQmZ5PbG2BeP8owSiS+7M8kYwHwYDVR0j BBgwFoAU3ocaNnUQZStQgS7x0EVyY1UCrW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTM2NDVkNC01NDNiLTQ0NGItYTNhNS1mZGNkNDE4MTFjMjEvMC9ERTg3MUEzNjc1 MTA2NTJCNTA4MTJFRjFEMDQ1NzI2MzU1MDJBRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1NTAy QUQ2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMzY0NWQ0LTU0M2ItNDQ0Yi1h M2E1LWZkY2Q0MTgxMWMyMS8wLzMxMzAzMzJlMzEzNzM0MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64/MA0GCSqG SIb3DQEBCwUAA4IBAQAD/LV9GWpUe2kKzD9epCVZhkIVYbj7B5wtw8BzlXmjoACr NgXDIsLHPOMHEmOfQN/gdCSofj/najnkcmNP+MArD22UlvTCv1nYN1M/O5gosAHR +Ueuv0lP4Fyrp4VJxXr5OweQkVSnoSXTcIg6U3/457QRaBzHLDA0Hrl6IH0ZPCu2 JaETbpvrqgu/9EkIIl4nP3RFTlt0nCnOxmExmzmedH1jNPDn57i9rPYTqNmngvo7 9Ae1/QZNjT+gnDKDB5Pg2AUYKng8zDrarj/gBO3ePxHx0vN1sfrz7SdhaRrAKAK8 ZeFbbw5OAaKYgpq5V45km5DGJD5eadVojAJyVOIe -----END CERTIFICATE-----Generated at Tue Oct 21 09:59:57 2025 by rpki-client