$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa File: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (raw, json) Hash identifier: yBAmYPcX6Hw9g9sbt5o4PVcLnMdm+J2PfCuUjXQ0T5g= Subject key identifier: 67:D2:13:D7:FF:2C:F9:43:DA:54:85:1D:D8:1E:66:FB:03:E0:7C:C5 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 0EF1A5B7C9C5F9EDAD3A6A7C1036F8B095381E65 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa Signing time: Thu 09 Oct 2025 12:02:26 +0000 ROA not before: Thu 09 Oct 2025 11:57:26 +0000 ROA not after: Thu 08 Oct 2026 12:02:26 +0000 asID: 58819 IP address blocks: 103.240.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f1:a5:b7:c9:c5:f9:ed:ad:3a:6a:7c:10:36:f8:b0:95:38:1e:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Oct 9 11:57:26 2025 GMT Not After : Oct 8 12:02:26 2026 GMT Subject: CN=67D213D7FF2CF943DA54851DD81E66FB03E07CC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:85:74:4e:c0:6f:f9:2f:66:93:aa:ae:15:33: ae:81:2f:83:97:c6:74:c2:42:c0:0f:a3:92:09:1c: 73:dd:e1:43:66:17:3f:cf:88:b9:bc:2a:05:3d:b1: bd:c1:e6:28:40:94:ed:4e:b4:1a:5d:94:2e:46:60: 60:ec:22:5d:ed:9b:72:77:97:4b:31:6f:38:27:d3: 36:ff:de:15:da:a6:6b:41:d9:3c:47:59:f1:54:e8: 69:cb:aa:e3:57:04:c0:58:7d:7a:65:42:dd:00:61: ba:cc:b2:d8:d5:3e:f5:d8:89:e2:2d:d0:a8:ee:ad: fa:af:7b:55:c8:3d:91:d0:c8:65:17:40:70:36:d2: 0a:c6:33:f2:0d:bb:ee:5c:87:77:de:cd:c4:e6:60: 31:2e:23:61:4e:f7:1c:7c:ba:43:92:82:07:d8:94: 29:50:ce:3f:42:f6:32:58:65:21:47:7a:69:32:98: c5:c0:49:64:ce:a9:33:c8:c1:94:65:6f:87:62:44: 42:01:1c:f2:60:9e:66:b2:e9:6e:62:20:0f:d2:32: 8f:21:7e:68:de:ca:fc:e5:9a:ca:f8:40:6e:c9:8a: d0:f6:cd:e6:97:26:04:90:b1:14:d8:88:cb:78:7d: 88:8e:1a:b8:00:36:d8:cc:5d:53:19:3b:a4:8d:ad: b9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D2:13:D7:FF:2C:F9:43:DA:54:85:1D:D8:1E:66:FB:03:E0:7C:C5 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.109.0/24 Signature Algorithm: sha256WithRSAEncryption 74:8d:2f:72:2b:56:3b:36:a9:d3:a2:0c:c1:81:4b:c7:2d:4e: 8e:56:d0:46:10:7c:83:8e:32:ef:d0:5b:3f:ea:a1:b2:f7:8e: 4d:4f:02:c8:7d:87:98:43:1c:83:c5:be:7d:dc:ef:7b:05:63: a0:74:37:2c:dd:2c:d5:53:90:44:41:df:96:f2:8d:74:eb:54: d7:6a:6d:2d:ff:d7:f4:34:a8:5c:37:bf:d5:89:2a:25:16:43: 00:66:e1:0d:05:93:d6:f5:79:6c:75:99:d8:5a:57:8c:3e:47: b8:c1:ec:d4:1b:d9:ec:24:0d:6b:c6:ad:22:7d:31:2e:b4:1b: 7a:1f:65:2a:ca:45:a7:ff:dc:40:ab:2a:89:ea:43:8c:84:b2: ed:83:c5:06:33:b0:b6:df:92:cf:fe:c6:23:fb:b4:63:bd:61: ae:37:50:70:6d:f9:2e:c0:24:e7:79:05:6f:c2:98:bf:7b:4e: 6b:97:76:45:ea:e5:84:ff:b0:e1:1d:42:b5:1b:15:33:fc:77: 38:c8:bb:24:20:cb:a0:3b:88:4d:30:f0:d5:06:f7:2b:e4:fe: 03:95:9c:b2:36:2d:bd:63:54:b5:92:2a:98:8c:3b:af:ed:ae: 32:2b:a9:e1:3a:3e:f2:16:cb:8a:86:44:99:36:c5:75:87:e7: 27:56:d7:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDvGlt8nF+e2tOmp8EDb4sJU4HmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNTEwMDkxMTU3MjZaFw0yNjEwMDgxMjAyMjZaMDMxMTAvBgNV BAMTKDY3RDIxM0Q3RkYyQ0Y5NDNEQTU0ODUxREQ4MUU2NkZCMDNFMDdDQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxhXROwG/5L2aTqq4VM66BL4OX xnTCQsAPo5IJHHPd4UNmFz/PiLm8KgU9sb3B5ihAlO1OtBpdlC5GYGDsIl3tm3J3 l0sxbzgn0zb/3hXapmtB2TxHWfFU6GnLquNXBMBYfXplQt0AYbrMstjVPvXYieIt 0Kjurfqve1XIPZHQyGUXQHA20grGM/INu+5ch3fezcTmYDEuI2FO9xx8ukOSggfY lClQzj9C9jJYZSFHemkymMXASWTOqTPIwZRlb4diREIBHPJgnmay6W5iIA/SMo8h fmjeyvzlmsr4QG7JitD2zeaXJgSQsRTYiMt4fYiOGrgANtjMXVMZO6SNrbl7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ9IT1/8s+UPaVIUd2B5m+wPgfMUwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BtMA0GCSqG SIb3DQEBCwUAA4IBAQB0jS9yK1Y7NqnTogzBgUvHLU6OVtBGEHyDjjLv0Fs/6qGy 945NTwLIfYeYQxyDxb593O97BWOgdDcs3SzVU5BEQd+W8o1061TXam0t/9f0NKhc N7/ViSolFkMAZuENBZPW9XlsdZnYWleMPke4wezUG9nsJA1rxq0ifTEutBt6H2Uq ykWn/9xAqyqJ6kOMhLLtg8UGM7C235LP/sYj+7RjvWGuN1BwbfkuwCTneQVvwpi/ e05rl3ZF6uWE/7DhHUK1GxUz/Hc4yLskIMugO4hNMPDVBvcr5P4DlZyyNi29Y1S1 kiqYjDuv7a4yK6nhOj7yFsuKhkSZNsV1h+cnVtcK -----END CERTIFICATE-----Generated at Mon Oct 20 09:33:09 2025 by rpki-client