$ rpki-client -vvf repo-rpki.idnic.net/repo/8c1e80d4-6ebe-492c-a0c5-d759827533b3/0/3130332e3137382e31362e302f32332d3233203d3e2039333431.roa File: 3130332e3137382e31362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: MsT3Z49E42KS28/Nv+cFIfYRhlxroO4eKBgAGaRI40k= Subject key identifier: A8:B6:F7:F9:9D:64:BA:53:53:24:56:FD:03:40:51:F3:B6:BE:6B:27 Certificate issuer: /CN=091F7323435A889C466D811B73B98389C1E084DD Certificate serial: 385A80D1EF11748427A1E928AE375545F15DCC2C Authority key identifier: 09:1F:73:23:43:5A:88:9C:46:6D:81:1B:73:B9:83:89:C1:E0:84:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/091F7323435A889C466D811B73B98389C1E084DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c1e80d4-6ebe-492c-a0c5-d759827533b3/0/3130332e3137382e31362e302f32332d3233203d3e2039333431.roa Signing time: Thu 16 Oct 2025 16:00:01 +0000 ROA not before: Thu 16 Oct 2025 15:55:01 +0000 ROA not after: Thu 15 Oct 2026 16:00:01 +0000 asID: 9341 IP address blocks: 103.178.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c1e80d4-6ebe-492c-a0c5-d759827533b3/0/091F7323435A889C466D811B73B98389C1E084DD.crl rsync://repo-rpki.idnic.net/repo/8c1e80d4-6ebe-492c-a0c5-d759827533b3/0/091F7323435A889C466D811B73B98389C1E084DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/091F7323435A889C466D811B73B98389C1E084DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5a:80:d1:ef:11:74:84:27:a1:e9:28:ae:37:55:45:f1:5d:cc:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=091F7323435A889C466D811B73B98389C1E084DD Validity Not Before: Oct 16 15:55:01 2025 GMT Not After : Oct 15 16:00:01 2026 GMT Subject: CN=A8B6F7F99D64BA53532456FD034051F3B6BE6B27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:69:31:3d:9b:1e:a5:78:c5:eb:a1:d2:ad:34: 1c:2f:c3:e9:26:b3:67:e8:9f:e6:6e:aa:e1:20:73: 94:22:e5:9e:35:86:c1:3f:5c:35:4b:21:cd:df:63: f5:7e:aa:bd:0f:85:fd:07:27:c2:6e:9c:d3:28:4d: 15:af:bd:45:a7:b4:2a:8e:fa:e2:10:77:fd:a7:5a: 0e:81:00:9c:81:3e:17:8f:f2:1a:56:56:2f:8a:55: 3e:e6:3f:2e:c6:71:7a:39:1b:01:56:1c:39:3c:f8: 81:23:84:83:1e:1d:f5:6a:80:84:8e:3c:e2:a4:37: f7:d1:28:c2:50:61:50:85:e2:d2:95:4f:3f:eb:0b: 3d:29:a8:3e:79:e3:64:0e:06:f4:11:48:cf:85:38: 3a:73:74:d1:10:ba:74:90:71:cc:90:e1:e7:e2:dd: 12:75:77:27:30:10:c8:53:e1:31:80:cb:06:79:cd: 82:c1:6b:11:bd:33:27:38:6f:5e:6e:93:bd:a1:6c: dc:cc:47:f1:1d:b5:c0:5c:ff:b4:21:57:9d:a2:17: 96:20:98:f1:a0:7e:aa:cf:49:37:2f:55:17:de:93: cf:a7:e2:c7:46:b7:3b:04:23:31:46:b9:61:82:94: 5c:e5:68:bb:ad:d8:b2:d9:83:cc:6a:6c:c5:a3:b0: 7e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B6:F7:F9:9D:64:BA:53:53:24:56:FD:03:40:51:F3:B6:BE:6B:27 X509v3 Authority Key Identifier: keyid:09:1F:73:23:43:5A:88:9C:46:6D:81:1B:73:B9:83:89:C1:E0:84:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c1e80d4-6ebe-492c-a0c5-d759827533b3/0/091F7323435A889C466D811B73B98389C1E084DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/091F7323435A889C466D811B73B98389C1E084DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c1e80d4-6ebe-492c-a0c5-d759827533b3/0/3130332e3137382e31362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.16.0/23 Signature Algorithm: sha256WithRSAEncryption 51:1f:47:18:f5:3a:43:07:94:8f:28:0d:15:f4:1c:89:5e:d6: 41:31:46:fd:03:ac:ff:9f:63:05:6d:c8:52:94:72:1a:4e:89: 2d:91:c2:f5:81:35:96:39:fe:f3:51:de:2f:4d:8a:8d:c7:cf: 25:11:b8:2f:a9:61:6a:76:3f:1c:f6:a6:ec:42:33:98:3d:21: 75:59:5f:b0:e8:96:c9:46:52:2b:b9:b5:d9:51:5a:0f:a6:ad: 46:24:45:75:42:da:1a:a1:41:1b:80:29:f8:06:ac:79:b6:3b: d1:97:f1:bb:64:d9:90:11:f0:10:1f:77:51:9e:af:98:f5:22: d7:7b:d8:90:4f:a3:04:36:17:51:af:6d:f7:bc:40:61:ab:33: c3:13:98:9a:94:99:6f:d9:89:97:92:77:20:35:f3:6d:1e:bc: 9a:46:be:b4:a6:54:9d:f2:f1:ad:46:06:6e:c9:dc:36:b0:66: 6a:42:be:81:33:b2:32:6a:7f:fc:ff:64:1b:15:02:5c:3d:85: 6a:66:b4:38:c2:a6:64:93:0e:c6:80:f6:f2:4f:fb:b2:02:4c: f4:81:ff:07:75:f2:94:1d:82:58:14:32:ef:5c:8a:a2:c9:55: 34:d2:d7:0c:49:e9:db:cd:d5:6c:1a:86:3f:21:fa:53:3b:bd: b9:0d:28:b5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOFqA0e8RdIQnoekorjdVRfFdzCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDkxRjczMjM0MzVBODg5QzQ2NkQ4MTFCNzNCOTgzODlD MUUwODRERDAeFw0yNTEwMTYxNTU1MDFaFw0yNjEwMTUxNjAwMDFaMDMxMTAvBgNV BAMTKEE4QjZGN0Y5OUQ2NEJBNTM1MzI0NTZGRDAzNDA1MUYzQjZCRTZCMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDraTE9mx6leMXrodKtNBwvw+km s2fon+ZuquEgc5Qi5Z41hsE/XDVLIc3fY/V+qr0Phf0HJ8JunNMoTRWvvUWntCqO +uIQd/2nWg6BAJyBPheP8hpWVi+KVT7mPy7GcXo5GwFWHDk8+IEjhIMeHfVqgISO POKkN/fRKMJQYVCF4tKVTz/rCz0pqD5542QOBvQRSM+FODpzdNEQunSQccyQ4efi 3RJ1dycwEMhT4TGAywZ5zYLBaxG9Myc4b15uk72hbNzMR/EdtcBc/7QhV52iF5Yg mPGgfqrPSTcvVRfek8+n4sdGtzsEIzFGuWGClFzlaLut2LLZg8xqbMWjsH4hAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqLb3+Z1kulNTJFb9A0BR87a+aycwHwYDVR0j BBgwFoAUCR9zI0NaiJxGbYEbc7mDicHghN0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzFlODBkNC02ZWJlLTQ5MmMtYTBjNS1kNzU5ODI3NTMzYjMvMC8wOTFGNzMyMzQz NUE4ODlDNDY2RDgxMUI3M0I5ODM4OUMxRTA4NERELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDkxRjczMjM0MzVBODg5QzQ2NkQ4MTFCNzNCOTgzODlDMUUw ODRERC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjMWU4MGQ0LTZlYmUtNDkyYy1h MGM1LWQ3NTk4Mjc1MzNiMy8wLzMxMzAzMzJlMzEzNzM4MmUzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnshAwDQYJKoZIhvcN AQELBQADggEBAFEfRxj1OkMHlI8oDRX0HIle1kExRv0DrP+fYwVtyFKUchpOiS2R wvWBNZY5/vNR3i9Nio3HzyURuC+pYWp2Pxz2puxCM5g9IXVZX7DolslGUiu5tdlR Wg+mrUYkRXVC2hqhQRuAKfgGrHm2O9GX8btk2ZAR8BAfd1Ger5j1Itd72JBPowQ2 F1Gvbfe8QGGrM8MTmJqUmW/ZiZeSdyA1820evJpGvrSmVJ3y8a1GBm7J3DawZmpC voEzsjJqf/z/ZBsVAlw9hWpmtDjCpmSTDsaA9vJP+7ICTPSB/wd18pQdglgUMu9c iqLJVTTS1wxJ6dvN1Wwahj8h+lM7vbkNKLU= -----END CERTIFICATE-----Generated at Mon Oct 20 14:58:34 2025 by rpki-client