$ rpki-client -vvf repo-rpki.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/3130332e3137352e3233382e302f32342d3234203d3e20313437313232.roa File: 3130332e3137352e3233382e302f32342d3234203d3e20313437313232.roa (raw, json) Hash identifier: 9OAoWczmJPqSai15ZAPOgSohr4eVEGJzypq/J/xc2bI= Subject key identifier: 13:E6:F0:0C:57:0A:45:1D:27:4B:96:2A:98:FB:88:88:B0:FA:14:D0 Certificate issuer: /CN=0C3C113F980D800FAD5FC467EE7F10806CEF7151 Certificate serial: 2A79DFE9FD106D7E20E7105099B4E367FE5171E3 Authority key identifier: 0C:3C:11:3F:98:0D:80:0F:AD:5F:C4:67:EE:7F:10:80:6C:EF:71:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0C3C113F980D800FAD5FC467EE7F10806CEF7151.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/3130332e3137352e3233382e302f32342d3234203d3e20313437313232.roa Signing time: Sat 30 Aug 2025 10:00:02 +0000 ROA not before: Sat 30 Aug 2025 09:55:02 +0000 ROA not after: Sat 29 Aug 2026 10:00:02 +0000 asID: 147122 IP address blocks: 103.175.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/0C3C113F980D800FAD5FC467EE7F10806CEF7151.crl rsync://repo-rpki.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/0C3C113F980D800FAD5FC467EE7F10806CEF7151.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0C3C113F980D800FAD5FC467EE7F10806CEF7151.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 05:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:79:df:e9:fd:10:6d:7e:20:e7:10:50:99:b4:e3:67:fe:51:71:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C3C113F980D800FAD5FC467EE7F10806CEF7151 Validity Not Before: Aug 30 09:55:02 2025 GMT Not After : Aug 29 10:00:02 2026 GMT Subject: CN=13E6F00C570A451D274B962A98FB8888B0FA14D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e9:8a:08:3e:e4:52:a8:f6:6d:74:b7:21:2b: cf:af:80:9b:0c:cc:2c:ab:b5:a1:63:22:c2:72:8b: ad:d9:9d:6d:4e:36:5d:98:96:5f:13:63:92:a9:cb: 44:86:8d:29:92:84:5b:11:d4:3d:d1:e9:cc:c9:8f: bc:a7:be:82:5c:9c:22:cb:eb:9e:4b:49:a9:68:1e: dd:e3:6c:2f:7a:bd:ab:82:8e:2f:65:1c:76:df:5f: 57:38:3d:57:67:76:7e:66:ae:d6:4e:03:62:bb:d3: 3c:a2:3d:d7:de:d4:df:f6:10:5a:7d:26:cf:ac:39: 42:9f:c2:50:09:44:22:dd:f4:d4:7c:14:c3:48:8b: 6e:f3:88:4e:b2:9b:f2:21:11:2d:47:e5:4b:8d:f9: 23:54:0c:ab:29:79:8c:36:29:08:5f:55:be:02:f9: 6c:81:84:1e:01:57:d1:93:b2:2d:34:e6:11:7d:1a: f2:c0:7c:8d:fb:ce:99:d3:76:5e:1f:6d:74:90:f6: cd:4f:a3:80:5a:25:45:55:b7:2c:04:c8:c1:74:8d: 01:5a:77:2f:6e:1e:3a:1e:82:38:9c:37:3f:2b:f5: 98:b8:02:4b:86:bb:80:90:18:a8:9c:61:a5:38:3e: 09:f6:47:d7:d8:c1:1c:21:d6:d5:4a:85:e4:c4:ca: 97:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E6:F0:0C:57:0A:45:1D:27:4B:96:2A:98:FB:88:88:B0:FA:14:D0 X509v3 Authority Key Identifier: keyid:0C:3C:11:3F:98:0D:80:0F:AD:5F:C4:67:EE:7F:10:80:6C:EF:71:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/0C3C113F980D800FAD5FC467EE7F10806CEF7151.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0C3C113F980D800FAD5FC467EE7F10806CEF7151.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/3130332e3137352e3233382e302f32342d3234203d3e20313437313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.238.0/24 Signature Algorithm: sha256WithRSAEncryption aa:1f:21:80:56:22:e4:00:42:1f:ce:ea:05:d5:da:b9:b9:00: 89:2a:34:17:62:14:42:21:c5:3e:1f:ce:27:c3:07:04:fc:96: 23:57:2e:ab:52:ba:48:91:fe:3d:ce:3e:5a:5a:31:64:76:b6: 74:54:bd:26:32:47:32:4d:c0:b0:49:bd:09:f7:8e:11:a5:f4: 68:1b:65:73:5c:c6:58:65:8b:32:d6:59:25:b4:5a:5a:cc:13: bb:e4:d4:a9:be:7f:6f:13:cf:24:7f:80:7c:12:b7:a9:8b:19: dd:84:88:9c:5e:42:19:83:95:52:3d:31:cf:fe:75:8e:df:c3: 4b:ef:e0:dc:61:d1:b8:32:23:1b:9d:49:f4:cb:56:f3:b8:63: af:db:5f:15:e1:17:a4:98:78:08:ef:41:35:dd:88:46:38:6d: ba:da:f5:25:12:2d:c6:54:f4:5b:66:bb:03:51:58:27:53:f1: ba:f9:19:ac:54:8f:23:35:87:48:72:a5:fe:56:51:9d:b1:b1: 16:64:86:f9:d4:5a:7a:40:70:bc:04:4e:28:4d:47:6e:72:bf: df:41:79:5e:ee:b0:94:48:db:59:a4:49:3e:ce:d2:1f:35:c6: 0c:c8:ce:13:3e:31:46:a2:2b:bd:34:e6:e4:84:f5:44:1d:6b: d9:70:4e:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKnnf6f0QbX4g5xBQmbTjZ/5RceMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEMzQzExM0Y5ODBEODAwRkFENUZDNDY3RUU3RjEwODA2 Q0VGNzE1MTAeFw0yNTA4MzAwOTU1MDJaFw0yNjA4MjkxMDAwMDJaMDMxMTAvBgNV BAMTKDEzRTZGMDBDNTcwQTQ1MUQyNzRCOTYyQTk4RkI4ODg4QjBGQTE0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc6YoIPuRSqPZtdLchK8+vgJsM zCyrtaFjIsJyi63ZnW1ONl2Yll8TY5Kpy0SGjSmShFsR1D3R6czJj7ynvoJcnCLL 655LSaloHt3jbC96vauCji9lHHbfX1c4PVdndn5mrtZOA2K70zyiPdfe1N/2EFp9 Js+sOUKfwlAJRCLd9NR8FMNIi27ziE6ym/IhES1H5UuN+SNUDKspeYw2KQhfVb4C +WyBhB4BV9GTsi005hF9GvLAfI37zpnTdl4fbXSQ9s1Po4BaJUVVtywEyMF0jQFa dy9uHjoegjicNz8r9Zi4AkuGu4CQGKicYaU4Pgn2R9fYwRwh1tVKheTEypfdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUE+bwDFcKRR0nS5YqmPuIiLD6FNAwHwYDVR0j BBgwFoAUDDwRP5gNgA+tX8Rn7n8QgGzvcVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTU3YTNiZi00ODIzLTQ2MDktODVjZC03NzU3MGJmMTg1ODAvMC8wQzNDMTEzRjk4 MEQ4MDBGQUQ1RkM0NjdFRTdGMTA4MDZDRUY3MTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEMzQzExM0Y5ODBEODAwRkFENUZDNDY3RUU3RjEwODA2Q0VG NzE1MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5NTdhM2JmLTQ4MjMtNDYwOS04 NWNkLTc3NTcwYmYxODU4MC8wLzMxMzAzMzJlMzEzNzM1MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnr+4wDQYJ KoZIhvcNAQELBQADggEBAKofIYBWIuQAQh/O6gXV2rm5AIkqNBdiFEIhxT4fzifD BwT8liNXLqtSukiR/j3OPlpaMWR2tnRUvSYyRzJNwLBJvQn3jhGl9GgbZXNcxlhl izLWWSW0WlrME7vk1Km+f28TzyR/gHwSt6mLGd2EiJxeQhmDlVI9Mc/+dY7fw0vv 4Nxh0bgyIxudSfTLVvO4Y6/bXxXhF6SYeAjvQTXdiEY4bbra9SUSLcZU9FtmuwNR WCdT8br5GaxUjyM1h0hypf5WUZ2xsRZkhvnUWnpAcLwETihNR25yv99BeV7usJRI 21mkST7O0h81xgzIzhM+MUaiK7005uSE9UQda9lwTiE= -----END CERTIFICATE-----Generated at Tue Oct 21 00:50:21 2025 by rpki-client