$ rpki-client -vvf repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/3130332e37312e34342e302f32332d3233203d3e203436303232.roa File: 3130332e37312e34342e302f32332d3233203d3e203436303232.roa (raw, json) Hash identifier: V3QHQK/gWQFy09rLOPxob5SyVyg/wx9t2yimUS9bwPY= Subject key identifier: 55:68:DE:A4:B1:FD:1C:D4:6E:71:49:EF:D5:3C:D7:52:A8:51:EA:A9 Certificate issuer: /CN=4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F Certificate serial: 6121C736676D3A427B253A536F7F61AC5C3F2DC1 Authority key identifier: 4C:34:08:B6:E0:82:54:22:DC:2D:07:1E:49:0B:D7:CB:1F:BD:2A:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/3130332e37312e34342e302f32332d3233203d3e203436303232.roa Signing time: Fri 05 Sep 2025 05:00:01 +0000 ROA not before: Fri 05 Sep 2025 04:55:01 +0000 ROA not after: Fri 04 Sep 2026 05:00:01 +0000 asID: 46022 IP address blocks: 103.71.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.crl rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 04:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:21:c7:36:67:6d:3a:42:7b:25:3a:53:6f:7f:61:ac:5c:3f:2d:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F Validity Not Before: Sep 5 04:55:01 2025 GMT Not After : Sep 4 05:00:01 2026 GMT Subject: CN=5568DEA4B1FD1CD46E7149EFD53CD752A851EAA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:19:72:57:ec:7f:f8:50:c1:90:b4:1a:7e:91: f3:6e:aa:c8:60:3b:de:4c:86:81:be:e0:78:31:bc: 15:fe:de:1d:75:c1:79:9e:2d:e2:49:a8:59:8e:1a: dc:96:32:18:5d:dd:d4:06:21:e1:a4:4c:0f:b2:0a: b9:5b:cb:9b:49:1a:82:66:22:f3:2c:a6:5c:c6:f0: 33:05:6c:0f:0b:de:af:88:60:c1:8f:8e:94:b1:b6: 95:a4:89:db:e8:37:ee:77:3a:1f:89:08:38:a4:dd: 62:ff:6f:f4:70:3a:c7:8d:51:cb:5a:ed:f9:59:bb: a8:21:e5:83:2e:57:4c:30:68:89:31:62:16:67:01: 65:a9:06:49:f4:89:fb:b6:31:11:7d:8a:ab:5b:fc: b8:73:08:1e:e0:84:48:37:66:36:3c:15:f9:11:7d: 26:0a:ef:96:b6:ab:59:85:dd:b3:11:63:52:a1:0f: ab:c1:0c:88:5c:cb:fa:48:af:bf:51:71:72:dd:d5: ba:2d:41:9d:f2:f7:d9:25:08:80:fd:8d:48:3c:d7: 50:b6:f8:f6:6e:1e:16:c9:41:ce:b7:a7:ef:9f:b1: 33:60:4d:fe:1e:9d:10:a6:ce:e8:7d:83:ad:93:48: 42:ca:b1:14:c6:6f:9d:aa:42:28:78:36:ed:97:2b: ec:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:68:DE:A4:B1:FD:1C:D4:6E:71:49:EF:D5:3C:D7:52:A8:51:EA:A9 X509v3 Authority Key Identifier: keyid:4C:34:08:B6:E0:82:54:22:DC:2D:07:1E:49:0B:D7:CB:1F:BD:2A:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/3130332e37312e34342e302f32332d3233203d3e203436303232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.44.0/23 Signature Algorithm: sha256WithRSAEncryption 95:80:8e:8b:ae:1f:b6:2a:e2:a3:d6:52:f3:0f:ca:07:77:3c: d9:50:a4:f4:1e:ee:d0:4e:7c:cd:57:fa:fb:68:35:67:28:54: 77:73:c1:fd:09:69:99:71:6f:22:c3:32:4f:b6:83:07:40:14: 47:03:1e:81:5a:f5:1b:a5:99:fb:7e:9f:21:13:b1:bc:77:0c: 25:e1:5d:bc:c3:22:fb:13:3d:1e:88:18:b4:c8:81:39:f3:42: b7:4c:41:af:f7:99:e5:d8:02:43:c3:4b:29:17:7f:79:c5:51: 4a:cf:5d:25:93:18:c8:2f:ba:87:19:cc:e5:1f:4d:da:92:c1: b4:4b:e0:e3:27:8a:d3:7b:e7:00:89:d0:49:c3:dd:48:07:4a: d5:ba:1d:53:24:5e:54:43:a4:c7:fb:13:6a:b0:e2:1f:f1:90: 0b:27:ab:fe:72:8a:0e:83:55:6c:85:c7:fd:d0:58:ff:f0:34: 09:3b:12:71:3d:a7:02:59:10:dd:47:ed:7f:f7:4f:2d:c7:10: d1:74:3f:c5:c5:dc:24:0b:18:55:97:81:48:17:1f:f8:cb:f0: c5:a6:83:30:4c:28:73:10:c3:af:ca:23:0b:e1:ba:42:f9:2b: bc:9f:a1:02:fa:11:4f:12:59:98:67:03:7b:d3:ff:c3:61:7d: 4c:00:b1:e3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYSHHNmdtOkJ7JTpTb39hrFw/LcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEMzNDA4QjZFMDgyNTQyMkRDMkQwNzFFNDkwQkQ3Q0Ix RkJEMkEzRjAeFw0yNTA5MDUwNDU1MDFaFw0yNjA5MDQwNTAwMDFaMDMxMTAvBgNV BAMTKDU1NjhERUE0QjFGRDFDRDQ2RTcxNDlFRkQ1M0NENzUyQTg1MUVBQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJGXJX7H/4UMGQtBp+kfNuqshg O95MhoG+4HgxvBX+3h11wXmeLeJJqFmOGtyWMhhd3dQGIeGkTA+yCrlby5tJGoJm IvMsplzG8DMFbA8L3q+IYMGPjpSxtpWkidvoN+53Oh+JCDik3WL/b/RwOseNUcta 7flZu6gh5YMuV0wwaIkxYhZnAWWpBkn0ifu2MRF9iqtb/LhzCB7ghEg3ZjY8FfkR fSYK75a2q1mF3bMRY1KhD6vBDIhcy/pIr79RcXLd1botQZ3y99klCID9jUg811C2 +PZuHhbJQc63p++fsTNgTf4enRCmzuh9g62TSELKsRTGb52qQih4Nu2XK+yFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUVWjepLH9HNRucUnv1TzXUqhR6qkwHwYDVR0j BBgwFoAUTDQItuCCVCLcLQceSQvXyx+9Kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MWM5Y2U1YS02NjkwLTQ5MDEtOWUwYS1jMjdiMzE5MzE2YmUvMC80QzM0MDhCNkUw ODI1NDIyREMyRDA3MUU0OTBCRDdDQjFGQkQyQTNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEMzNDA4QjZFMDgyNTQyMkRDMkQwNzFFNDkwQkQ3Q0IxRkJE MkEzRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxYzljZTVhLTY2OTAtNDkwMS05 ZTBhLWMyN2IzMTkzMTZiZS8wLzMxMzAzMzJlMzczMTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzYzMDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnRywwDQYJKoZIhvcN AQELBQADggEBAJWAjouuH7Yq4qPWUvMPygd3PNlQpPQe7tBOfM1X+vtoNWcoVHdz wf0JaZlxbyLDMk+2gwdAFEcDHoFa9Rulmft+nyETsbx3DCXhXbzDIvsTPR6IGLTI gTnzQrdMQa/3meXYAkPDSykXf3nFUUrPXSWTGMgvuocZzOUfTdqSwbRL4OMnitN7 5wCJ0EnD3UgHStW6HVMkXlRDpMf7E2qw4h/xkAsnq/5yig6DVWyFx/3QWP/wNAk7 EnE9pwJZEN1H7X/3Ty3HENF0P8XF3CQLGFWXgUgXH/jL8MWmgzBMKHMQw6/KIwvh ukL5K7yfoQL6EU8SWZhnA3vT/8NhfUwAseM= -----END CERTIFICATE-----Generated at Tue Oct 21 06:25:34 2025 by rpki-client