$ rpki-client -vvf repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131382e302f32342d3234203d3e20313338313136.roa File: 3130332e3132362e3131382e302f32342d3234203d3e20313338313136.roa (raw, json) Hash identifier: sksB0+JpfamOk8agUpLTqgwXQckz8CSkrdrAWOtJ4OI= Subject key identifier: 5A:F3:0D:0A:E7:79:3F:1F:DE:61:4A:33:89:92:06:0E:6D:28:CC:D0 Certificate issuer: /CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Certificate serial: 32EA17343E7FC716B8220A882F33D88E16899F0D Authority key identifier: 6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131382e302f32342d3234203d3e20313338313136.roa Signing time: Sat 13 Sep 2025 06:02:23 +0000 ROA not before: Sat 13 Sep 2025 05:57:23 +0000 ROA not after: Sat 12 Sep 2026 06:02:23 +0000 asID: 138116 IP address blocks: 103.126.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ea:17:34:3e:7f:c7:16:b8:22:0a:88:2f:33:d8:8e:16:89:9f:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Validity Not Before: Sep 13 05:57:23 2025 GMT Not After : Sep 12 06:02:23 2026 GMT Subject: CN=5AF30D0AE7793F1FDE614A338992060E6D28CCD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:43:c3:6b:19:3b:e1:f8:3e:d3:af:61:6f:14: 5a:3f:b3:b8:a0:ff:2f:40:30:23:1f:27:10:fe:d8: 94:d6:4c:0d:ac:da:07:0c:df:da:21:68:f8:9e:fb: 03:39:e4:18:6a:88:0a:95:38:2b:38:f0:97:8a:90: 3a:bf:fb:e5:60:56:28:15:ab:a3:f7:8e:51:5f:1d: f9:8a:4c:93:6b:6d:f8:03:56:31:a2:03:8b:d6:08: d6:02:70:10:aa:6d:8b:78:40:82:71:7e:e1:54:98: 02:78:33:23:13:7b:c9:05:98:3e:d8:7a:53:6f:3c: 5b:b5:fe:62:2b:a1:27:a4:ea:95:98:d2:47:d1:48: 86:8e:86:a6:7c:51:3e:e4:92:4f:41:d7:2a:ce:45: 95:71:8b:65:c9:19:8a:a5:df:b4:0b:de:2f:7c:33: 53:fe:d5:c7:41:08:8c:41:05:28:cf:51:e0:bc:61: b4:a8:c9:3e:0b:9c:ad:86:80:33:2c:7b:35:18:89: 22:4b:12:bc:c4:7b:ac:0c:87:2b:dc:c3:e6:e3:63: 61:94:ff:5b:ad:f9:d0:14:bd:93:26:c2:42:a0:28: c0:5b:79:4e:69:78:c3:4f:a6:90:45:34:f0:ac:2a: 98:47:ec:b9:ee:c3:57:50:23:da:61:64:ca:f7:09: 83:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F3:0D:0A:E7:79:3F:1F:DE:61:4A:33:89:92:06:0E:6D:28:CC:D0 X509v3 Authority Key Identifier: keyid:6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131382e302f32342d3234203d3e20313338313136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.118.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:8b:15:87:f8:14:fa:4f:11:b2:63:22:a3:19:86:b9:d6:b6: c3:66:5d:67:30:9e:96:eb:36:76:58:8f:22:65:db:95:ea:e6: 7d:6c:da:4a:81:0f:d7:92:66:c1:e7:eb:8c:b6:43:42:2f:29: 8a:4f:33:c1:6d:01:98:cd:d9:de:60:f2:6c:b3:8c:2b:0d:d3: 2f:8c:e7:6f:7d:2c:28:cb:b5:87:88:c2:2c:f3:b2:2f:28:2d: 5e:b1:f4:5c:c7:6c:03:a4:0d:43:41:22:38:1f:5c:6e:ee:0b: 02:a0:8e:63:ef:6b:76:1c:4e:80:0d:8a:fe:07:85:01:2e:57: 10:ea:a3:ea:f7:11:fa:97:b4:c0:67:27:c5:7b:78:84:7e:6f: ca:5e:c9:9a:d5:58:db:8c:61:60:ce:d9:f4:21:1f:55:d3:9d: 19:9a:a5:fa:6d:c2:ac:63:01:f2:42:83:13:7b:7c:97:c0:e6: ba:01:8d:89:ee:b1:7b:15:ab:a1:cc:e1:71:73:38:90:d4:11: 7b:62:86:07:81:16:91:a3:6e:9f:81:2f:42:e2:ff:67:47:a9: 72:7a:8b:05:19:d7:b7:53:37:df:4e:54:2f:cb:db:b5:f0:69: 8c:d2:fd:af:6b:76:21:9b:b6:14:ab:19:7e:33:cb:e6:8f:ae: 27:1f:61:72 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMuoXND5/xxa4IgqILzPYjhaJnw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdE MDJGNDdFODAeFw0yNTA5MTMwNTU3MjNaFw0yNjA5MTIwNjAyMjNaMDMxMTAvBgNV BAMTKDVBRjMwRDBBRTc3OTNGMUZERTYxNEEzMzg5OTIwNjBFNkQyOENDRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRQ8NrGTvh+D7Tr2FvFFo/s7ig /y9AMCMfJxD+2JTWTA2s2gcM39ohaPie+wM55BhqiAqVOCs48JeKkDq/++VgVigV q6P3jlFfHfmKTJNrbfgDVjGiA4vWCNYCcBCqbYt4QIJxfuFUmAJ4MyMTe8kFmD7Y elNvPFu1/mIroSek6pWY0kfRSIaOhqZ8UT7kkk9B1yrORZVxi2XJGYql37QL3i98 M1P+1cdBCIxBBSjPUeC8YbSoyT4LnK2GgDMsezUYiSJLErzEe6wMhyvcw+bjY2GU /1ut+dAUvZMmwkKgKMBbeU5peMNPppBFNPCsKphH7Lnuw1dQI9phZMr3CYP5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWvMNCud5Px/eYUoziZIGDm0ozNAwHwYDVR0j BBgwFoAUbfioc7cLqMytoxqt2CFf99AvR+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 N2QyNmRlMC02OGNmLTQyOWMtOGIwZS04ZDY0Yjc2MmY4MjQvMC82REY4QTg3M0I3 MEJBOENDQURBMzFBQUREODIxNUZGN0QwMkY0N0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdEMDJG NDdFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3ZDI2ZGUwLTY4Y2YtNDI5Yy04 YjBlLThkNjRiNzYyZjgyNC8wLzMxMzAzMzJlMzEzMjM2MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfnYwDQYJ KoZIhvcNAQELBQADggEBAA6LFYf4FPpPEbJjIqMZhrnWtsNmXWcwnpbrNnZYjyJl 25Xq5n1s2kqBD9eSZsHn64y2Q0IvKYpPM8FtAZjN2d5g8myzjCsN0y+M5299LCjL tYeIwizzsi8oLV6x9FzHbAOkDUNBIjgfXG7uCwKgjmPva3YcToANiv4HhQEuVxDq o+r3EfqXtMBnJ8V7eIR+b8peyZrVWNuMYWDO2fQhH1XTnRmapfptwqxjAfJCgxN7 fJfA5roBjYnusXsVq6HM4XFzOJDUEXtihgeBFpGjbp+BL0Li/2dHqXJ6iwUZ17dT N99OVC/L27XwaYzS/a9rdiGbthSrGX4zy+aPricfYXI= -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:50 2025 by rpki-client