$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa File: 3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa (raw, json) Hash identifier: R48/rgbNCjjp4lN8u0WLGy1+WSaMSCFGbeTToOjbzmw= Subject key identifier: B5:F7:72:D6:35:D0:27:B4:76:4E:9E:1B:16:85:B0:85:1C:90:08:E0 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 37AA348D2C37B582AA52F56CF27427764791EC72 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa Signing time: Thu 09 Oct 2025 12:02:26 +0000 ROA not before: Thu 09 Oct 2025 11:57:26 +0000 ROA not after: Thu 08 Oct 2026 12:02:26 +0000 asID: 58819 IP address blocks: 103.240.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:aa:34:8d:2c:37:b5:82:aa:52:f5:6c:f2:74:27:76:47:91:ec:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Oct 9 11:57:26 2025 GMT Not After : Oct 8 12:02:26 2026 GMT Subject: CN=B5F772D635D027B4764E9E1B1685B0851C9008E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3c:7e:e6:e5:5d:7f:2a:e5:9e:25:87:72:bb: 1e:39:81:08:b9:3b:38:b7:ad:7a:ef:b0:80:c0:be: 89:27:23:13:90:6c:d7:d3:50:d6:f7:1a:1d:71:cf: 60:44:34:9d:6a:69:aa:9b:4c:ef:64:ce:ef:70:f7: 00:b6:91:5f:d4:29:c1:07:bc:23:8f:e0:24:91:da: c3:6b:ff:a9:2b:7b:76:02:23:f5:4b:04:0d:7f:dd: 89:71:fa:45:4d:1a:e0:60:9b:07:25:75:37:06:2c: 18:8c:e1:a2:86:2a:e2:06:ac:07:85:cb:ee:0d:22: 2e:55:57:50:2e:ce:67:9f:6f:81:e4:4b:1d:42:d8: 8f:d5:6f:57:73:45:32:57:e9:65:19:a8:f9:d6:74: e6:f2:49:03:70:dd:2f:d8:93:bc:b0:df:b9:a7:39: c1:8f:9c:6d:6e:e7:0a:b5:3a:60:68:d3:f0:af:2e: b5:6f:c9:cf:0e:03:68:e5:b9:da:4e:cc:b9:fc:25: 1e:84:fe:a6:9e:3d:2b:a4:c4:97:4f:d0:05:93:18: f2:ca:bf:92:67:8e:59:45:45:6d:dd:e9:26:22:82: b1:05:2f:e6:2d:56:33:9b:b1:22:05:5a:36:af:02: 3a:e5:67:7f:9d:98:4d:1e:2b:90:66:80:c6:f9:05: 8a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F7:72:D6:35:D0:27:B4:76:4E:9E:1B:16:85:B0:85:1C:90:08:E0 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.108.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:bb:f8:c8:2a:21:28:28:df:36:03:55:13:20:8b:7d:82:95: 20:20:f5:3d:b5:64:d3:9c:70:45:36:11:6f:89:82:c0:e4:75: 8c:b8:a5:af:9f:f1:4c:c0:fb:c5:ed:1d:74:48:21:18:e3:e4: 4f:8a:bd:0f:28:1e:08:80:2c:e1:b6:ff:12:5e:7d:e7:3f:c4: 28:e8:63:bc:8b:ac:86:1c:ae:91:05:41:d6:93:bd:cd:be:66: d2:0f:48:b9:9e:48:dd:a7:05:5e:0c:c3:6f:ca:03:28:76:35: 10:20:f8:34:6a:b1:3d:a9:05:14:89:ca:56:bd:38:8d:be:8b: 93:14:96:4d:ed:7c:15:bc:d0:b1:db:3f:f4:98:41:03:7b:05: ed:f2:fe:24:0a:5d:93:f9:12:3e:cd:83:ee:2d:8f:6c:e7:44: 1c:52:06:48:56:fd:87:ee:59:ed:f9:10:d1:06:63:ae:0d:8e: 62:1b:ff:49:d6:1a:fb:20:45:81:9e:5c:08:f8:b0:40:eb:0b: 11:d1:f7:a3:2a:45:a8:b4:4a:79:ef:74:a3:b8:10:54:49:64: 2a:f4:4d:17:16:27:ef:23:32:83:dd:cd:37:87:34:88:a5:ca: 82:22:dc:67:ca:95:7b:62:1d:81:40:87:c1:2d:56:0d:5b:31: f6:3f:7d:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN6o0jSw3tYKqUvVs8nQndkeR7HIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNTEwMDkxMTU3MjZaFw0yNjEwMDgxMjAyMjZaMDMxMTAvBgNV BAMTKEI1Rjc3MkQ2MzVEMDI3QjQ3NjRFOUUxQjE2ODVCMDg1MUM5MDA4RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkPH7m5V1/KuWeJYdyux45gQi5 Ozi3rXrvsIDAvoknIxOQbNfTUNb3Gh1xz2BENJ1qaaqbTO9kzu9w9wC2kV/UKcEH vCOP4CSR2sNr/6kre3YCI/VLBA1/3Ylx+kVNGuBgmwcldTcGLBiM4aKGKuIGrAeF y+4NIi5VV1Auzmefb4HkSx1C2I/Vb1dzRTJX6WUZqPnWdObySQNw3S/Yk7yw37mn OcGPnG1u5wq1OmBo0/CvLrVvyc8OA2jludpOzLn8JR6E/qaePSukxJdP0AWTGPLK v5JnjllFRW3d6SYigrEFL+YtVjObsSIFWjavAjrlZ3+dmE0eK5BmgMb5BYrfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtfdy1jXQJ7R2Tp4bFoWwhRyQCOAwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BsMA0GCSqG SIb3DQEBCwUAA4IBAQA8u/jIKiEoKN82A1UTIIt9gpUgIPU9tWTTnHBFNhFviYLA 5HWMuKWvn/FMwPvF7R10SCEY4+RPir0PKB4IgCzhtv8SXn3nP8Qo6GO8i6yGHK6R BUHWk73NvmbSD0i5nkjdpwVeDMNvygModjUQIPg0arE9qQUUicpWvTiNvouTFJZN 7XwVvNCx2z/0mEEDewXt8v4kCl2T+RI+zYPuLY9s50QcUgZIVv2H7lnt+RDRBmOu DY5iG/9J1hr7IEWBnlwI+LBA6wsR0fejKkWotEp573SjuBBUSWQq9E0XFifvIzKD 3c03hzSIpcqCItxnypV7Yh2BQIfBLVYNWzH2P31l -----END CERTIFICATE-----Generated at Mon Oct 20 09:32:27 2025 by rpki-client