$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa File: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (raw, json) Hash identifier: oOGj5tlcgCuOuQ6ORsdrfX31aFz0B3FN8fvqd8j5T/A= Subject key identifier: CF:90:4C:C9:54:02:0B:CE:73:CF:9D:D7:E1:16:6F:B8:82:80:55:65 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 71A3213F633332549C8557006B510BE5DF6C18C1 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa Signing time: Thu 09 Oct 2025 13:00:01 +0000 ROA not before: Thu 09 Oct 2025 12:55:01 +0000 ROA not after: Thu 08 Oct 2026 13:00:01 +0000 asID: 58819 IP address blocks: 103.240.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a3:21:3f:63:33:32:54:9c:85:57:00:6b:51:0b:e5:df:6c:18:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Oct 9 12:55:01 2025 GMT Not After : Oct 8 13:00:01 2026 GMT Subject: CN=CF904CC954020BCE73CF9DD7E1166FB882805565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:e9:cf:5f:9c:42:4f:4a:f9:5f:06:57:6c: 6a:8e:a0:92:e9:f2:13:71:7c:5c:a4:7d:8d:d8:10: b6:85:8b:d3:2f:52:b3:d9:4a:d6:4e:ec:96:e4:15: 50:5b:0f:f7:31:6d:2d:ad:67:5e:57:53:41:f2:59: a1:a2:86:e0:cf:77:75:54:a2:9f:a8:ec:3c:28:58: 01:07:0b:6b:01:a1:62:03:42:32:b8:bf:4c:8b:65: 31:f0:06:da:dc:3a:8f:b5:93:1d:da:54:07:cc:e4: 51:02:91:88:f1:ab:a3:5a:b4:3f:55:6d:ea:a5:62: 8b:71:68:6d:b1:33:44:9a:57:30:f7:e3:69:e0:1c: e6:8a:e1:1a:33:88:61:63:bc:0b:1f:95:1a:94:a7: e5:65:dc:87:0d:e3:48:3b:18:fb:2b:db:c1:1a:20: 86:2f:3e:a5:f8:35:07:b6:5f:77:1a:ca:dc:71:9b: 53:35:dd:69:a3:c0:6a:0c:35:09:a9:21:7f:53:48: b6:ea:1c:9b:5a:f8:04:92:25:6f:23:25:87:06:86: b9:8b:41:8a:b7:ac:cb:c6:55:2e:ad:b5:3f:6c:ac: b7:24:40:09:eb:d5:f4:58:86:2d:33:c9:3e:a7:ee: e1:46:63:de:70:3e:9f:9a:8a:2c:e7:56:23:23:c6: 0a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:90:4C:C9:54:02:0B:CE:73:CF:9D:D7:E1:16:6F:B8:82:80:55:65 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.110.0/24 Signature Algorithm: sha256WithRSAEncryption b9:1b:a6:80:55:0d:69:40:ea:2f:8b:eb:67:9e:12:8f:54:bb: 50:ee:81:95:b3:5e:dc:3e:2c:7c:4a:52:49:50:27:6a:6c:5e: 5c:02:ce:1a:3c:a6:5e:81:26:df:0e:8e:54:47:db:e7:6c:c7: 83:96:e6:35:ea:ad:c9:3e:ab:03:e6:0f:c3:d9:83:7a:17:bf: c5:99:2e:4b:0b:17:02:5f:cf:54:c0:35:e2:ff:a1:14:da:4b: 5d:f2:8f:fb:26:54:e8:16:18:2c:f8:ee:d9:65:2c:a2:b0:06: 49:32:d0:19:00:23:c6:1e:61:5f:2a:df:34:37:d0:f1:5b:8c: da:75:43:cc:2c:1d:bb:a1:54:4a:0c:8f:93:8a:fc:6b:cb:be: f9:ac:6e:60:bd:47:eb:c4:3f:ef:ea:01:4e:bc:7d:0f:a9:32: a8:b6:d0:7b:f0:9c:51:af:b6:a5:71:e1:1f:be:cc:68:67:0c: 64:aa:58:71:02:ba:48:87:1d:2e:f2:de:d9:96:d6:28:7e:40: d7:ea:2f:36:d6:ae:6a:d6:34:d2:f2:d4:3f:6d:2e:19:68:a1: 64:ca:e6:e9:d1:52:3b:cc:5e:44:63:7d:5b:41:01:fd:e5:fb: 6e:0a:ef:9c:f9:91:d8:50:4c:19:c4:9d:ed:b1:ae:f5:67:56: cf:51:e0:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcaMhP2MzMlSchVcAa1EL5d9sGMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNTEwMDkxMjU1MDFaFw0yNjEwMDgxMzAwMDFaMDMxMTAvBgNV BAMTKENGOTA0Q0M5NTQwMjBCQ0U3M0NGOUREN0UxMTY2RkI4ODI4MDU1NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/JOnPX5xCT0r5XwZXbGqOoJLp 8hNxfFykfY3YELaFi9MvUrPZStZO7JbkFVBbD/cxbS2tZ15XU0HyWaGihuDPd3VU op+o7DwoWAEHC2sBoWIDQjK4v0yLZTHwBtrcOo+1kx3aVAfM5FECkYjxq6NatD9V beqlYotxaG2xM0SaVzD342ngHOaK4RoziGFjvAsflRqUp+Vl3IcN40g7GPsr28Ea IIYvPqX4NQe2X3caytxxm1M13WmjwGoMNQmpIX9TSLbqHJta+ASSJW8jJYcGhrmL QYq3rMvGVS6ttT9srLckQAnr1fRYhi0zyT6n7uFGY95wPp+aiiznViMjxgp5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz5BMyVQCC85zz53X4RZvuIKAVWUwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BuMA0GCSqG SIb3DQEBCwUAA4IBAQC5G6aAVQ1pQOovi+tnnhKPVLtQ7oGVs17cPix8SlJJUCdq bF5cAs4aPKZegSbfDo5UR9vnbMeDluY16q3JPqsD5g/D2YN6F7/FmS5LCxcCX89U wDXi/6EU2ktd8o/7JlToFhgs+O7ZZSyisAZJMtAZACPGHmFfKt80N9DxW4zadUPM LB27oVRKDI+Tivxry775rG5gvUfrxD/v6gFOvH0PqTKottB78JxRr7alceEfvsxo ZwxkqlhxArpIhx0u8t7ZltYofkDX6i821q5q1jTS8tQ/bS4ZaKFkyubp0VI7zF5E Y31bQQH95ftuCu+c+ZHYUEwZxJ3tsa71Z1bPUeBZ -----END CERTIFICATE-----Generated at Mon Oct 20 09:33:17 2025 by rpki-client