$ rpki-client -vvf repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa File: 3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: obYtUl2lQpNdpgObPXIZcvY8GGanlMGkMuiOZqIlQPc= Subject key identifier: 5F:21:3B:E3:DE:29:C6:1A:0E:A7:BF:57:5A:62:5F:44:28:FA:0B:57 Certificate issuer: /CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Certificate serial: 720B1B72A947D6CAFDD69CD84B0D2AA71742E046 Authority key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa Signing time: Tue 23 Sep 2025 08:01:35 +0000 ROA not before: Tue 23 Sep 2025 07:56:35 +0000 ROA not after: Tue 22 Sep 2026 08:01:35 +0000 asID: 139456 IP address blocks: 103.167.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0b:1b:72:a9:47:d6:ca:fd:d6:9c:d8:4b:0d:2a:a7:17:42:e0:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Validity Not Before: Sep 23 07:56:35 2025 GMT Not After : Sep 22 08:01:35 2026 GMT Subject: CN=5F213BE3DE29C61A0EA7BF575A625F4428FA0B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:47:3c:87:dd:3c:dc:81:0f:8d:34:72:bd: 51:99:59:a2:74:9f:98:8f:ee:3a:a4:bc:c3:fa:f0: 65:b4:31:9f:ab:eb:92:4f:d1:da:9b:a7:18:7b:67: 1e:a4:72:ee:11:1e:e2:18:c6:f2:97:5a:26:7c:3e: a5:90:47:13:62:d1:fe:63:9e:f6:c8:e4:6e:54:dc: da:db:70:b8:c0:1d:19:b7:d0:3b:0b:13:75:9f:3b: 20:ee:c0:28:13:c9:a7:32:64:fe:2b:ef:ee:3a:a6: f8:20:44:bd:9f:a9:43:a5:83:9b:7c:f1:93:38:08: 68:f1:60:84:f0:be:71:62:5e:c5:17:de:27:6a:c9: 96:b5:26:c4:ca:b3:93:8f:e3:e0:f7:7c:24:52:62: 0b:e6:b1:37:77:93:3f:42:c2:cc:74:96:df:55:52: 55:3c:c4:24:99:ac:9a:be:a0:29:ee:8e:69:6f:20: 87:30:c4:76:11:91:58:c9:a5:25:83:67:a7:5b:a5: ec:b8:26:78:03:6b:b6:38:bb:55:8d:73:c5:06:9c: c4:26:2e:3d:2e:e8:0b:a7:c2:6c:17:78:ae:69:16: 34:30:c2:d7:09:ce:d4:ce:43:c8:9c:11:83:06:d8: 0d:9c:08:c9:74:1d:18:19:e7:7f:a2:ad:4e:c0:bf: f9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:21:3B:E3:DE:29:C6:1A:0E:A7:BF:57:5A:62:5F:44:28:FA:0B:57 X509v3 Authority Key Identifier: keyid:02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.136.0/23 Signature Algorithm: sha256WithRSAEncryption c5:90:27:a8:01:de:2c:ec:c6:ba:71:bc:47:93:bf:4f:58:4e: 80:9f:d8:fb:02:69:b3:09:52:c6:97:f4:32:8c:89:21:b9:41: 23:e6:37:ff:a1:1a:61:4c:1a:84:8a:89:a5:cb:ef:81:de:bd: 68:0a:24:78:ef:b9:21:f7:94:4f:1f:2d:da:ea:c7:82:b3:01: 59:ae:ff:d2:18:60:c0:c7:a5:a0:9f:b3:05:66:0b:fd:fc:a0: 75:85:8e:5b:b8:5d:c3:1f:fc:72:a9:4c:2a:55:19:b1:d5:18: c5:96:6a:a5:3c:16:a3:00:a3:0b:17:aa:63:f2:65:b8:53:1d: 6a:16:6c:e2:fd:70:07:0f:f3:9e:df:75:2e:aa:24:95:88:56: 1c:0a:c3:fe:11:87:af:78:db:e3:4f:bd:a3:55:fd:8e:d1:c4: 95:7f:9a:d2:30:5a:77:e0:98:53:80:8e:bd:3c:9e:a1:02:dd: 4e:ab:51:8e:0b:d0:eb:46:2d:74:87:f7:4d:d5:33:07:db:5f: ba:1e:c5:ec:a6:13:fb:b1:cf:91:32:a5:f8:d4:c7:fc:91:91: cf:c3:9b:3d:f9:f8:42:63:c0:4d:15:bc:54:9b:ca:4d:0a:35: aa:e1:ee:ed:17:8c:eb:ef:65:1c:6b:ac:8d:cf:a9:72:ae:3a: ef:82:2c:98 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcgsbcqlH1sr91pzYSw0qpxdC4EYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdF NjkxM0M5NjAeFw0yNTA5MjMwNzU2MzVaFw0yNjA5MjIwODAxMzVaMDMxMTAvBgNV BAMTKDVGMjEzQkUzREUyOUM2MUEwRUE3QkY1NzVBNjI1RjQ0MjhGQTBCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/QEc8h9083IEPjTRyvVGZWaJ0 n5iP7jqkvMP68GW0MZ+r65JP0dqbpxh7Zx6kcu4RHuIYxvKXWiZ8PqWQRxNi0f5j nvbI5G5U3NrbcLjAHRm30DsLE3WfOyDuwCgTyacyZP4r7+46pvggRL2fqUOlg5t8 8ZM4CGjxYITwvnFiXsUX3idqyZa1JsTKs5OP4+D3fCRSYgvmsTd3kz9Cwsx0lt9V UlU8xCSZrJq+oCnujmlvIIcwxHYRkVjJpSWDZ6dbpey4JngDa7Y4u1WNc8UGnMQm Lj0u6AunwmwXeK5pFjQwwtcJztTOQ8icEYMG2A2cCMl0HRgZ53+irU7Av/mLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXyE7494pxhoOp79XWmJfRCj6C1cwHwYDVR0j BBgwFoAUAkbdFK9o9eVRKr2I0dt1B+aRPJYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMC8wMjQ2REQxNEFG NjhGNUU1NTEyQUJEODhEMURCNzUwN0U2OTEzQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdFNjkx M0M5Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTkyLTFkMmYtNDZjZS04 ODZhLThlMjJhMzI2MTFmOC8wLzMxMzAzMzJlMzEzNjM3MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp4gwDQYJ KoZIhvcNAQELBQADggEBAMWQJ6gB3izsxrpxvEeTv09YToCf2PsCabMJUsaX9DKM iSG5QSPmN/+hGmFMGoSKiaXL74HevWgKJHjvuSH3lE8fLdrqx4KzAVmu/9IYYMDH paCfswVmC/38oHWFjlu4XcMf/HKpTCpVGbHVGMWWaqU8FqMAowsXqmPyZbhTHWoW bOL9cAcP857fdS6qJJWIVhwKw/4Rh6942+NPvaNV/Y7RxJV/mtIwWnfgmFOAjr08 nqEC3U6rUY4L0OtGLXSH903VMwfbX7oexeymE/uxz5EypfjUx/yRkc/Dmz35+EJj wE0VvFSbyk0KNarh7u0XjOvvZRxrrI3PqXKuOu+CLJg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:35 2025 by rpki-client