$ rpki-client -vvf repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3130332e3139352e3136382e302f32332d3234203d3e203436303437.roa File: 3130332e3139352e3136382e302f32332d3234203d3e203436303437.roa (raw, json) Hash identifier: 5tvhyREjxfe/DJlZ9wBpFrEXCdu8eQWjVSLlHduznyg= Subject key identifier: C3:00:62:18:4D:FB:17:4D:4C:48:54:0D:F9:7C:88:BE:08:15:14:83 Certificate issuer: /CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Certificate serial: 6C43D9C16D87594F163774F9FFFF12D81B00DFF5 Authority key identifier: 1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3130332e3139352e3136382e302f32332d3234203d3e203436303437.roa Signing time: Fri 12 Sep 2025 08:00:00 +0000 ROA not before: Fri 12 Sep 2025 07:55:00 +0000 ROA not after: Fri 11 Sep 2026 08:00:00 +0000 asID: 46047 IP address blocks: 103.195.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:43:d9:c1:6d:87:59:4f:16:37:74:f9:ff:ff:12:d8:1b:00:df:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Validity Not Before: Sep 12 07:55:00 2025 GMT Not After : Sep 11 08:00:00 2026 GMT Subject: CN=C30062184DFB174D4C48540DF97C88BE08151483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:ff:ac:ae:7b:6a:bb:4a:b8:4d:98:8c:db: 3b:2f:27:be:87:a9:ff:a6:f4:0f:0f:fe:b0:fb:08: 6b:1b:e3:f0:73:d6:bc:80:9c:fb:a1:f6:53:6b:81: af:18:5f:fb:10:08:86:d0:22:ee:1b:16:8f:29:8e: 93:e5:34:cc:37:9d:3f:47:71:fa:7b:f8:c0:42:ac: 0a:1b:f3:99:64:36:4e:c0:71:1c:f1:35:e0:07:3e: eb:79:87:08:56:98:cb:29:d0:35:34:f0:cb:8a:40: cd:c1:92:8a:dc:6c:f1:84:ac:2d:cf:fb:e5:96:71: 94:ea:ef:ea:3d:ad:50:83:6e:5c:69:ac:a7:ae:4c: 1a:d0:6f:b7:9a:eb:2b:95:bb:8b:6f:17:07:e1:91: d0:90:1f:5b:e3:10:7a:7d:57:43:70:cf:e3:1f:70: aa:61:96:e3:27:8e:61:69:fb:a7:f6:f1:cd:f9:e8: 2c:1d:05:c7:75:89:4f:76:bc:78:f2:a9:24:7a:2a: 35:ff:3e:22:d4:94:09:55:ff:d7:ff:4a:9e:f1:b0: bc:56:6c:18:3f:26:4b:5a:91:0c:9a:dc:82:23:dc: 84:71:6e:5c:72:f5:1e:c3:ab:6b:52:f3:b4:23:8d: 7a:3c:e2:c2:9f:4b:c4:26:2d:91:22:6f:4b:0a:21: bb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:00:62:18:4D:FB:17:4D:4C:48:54:0D:F9:7C:88:BE:08:15:14:83 X509v3 Authority Key Identifier: keyid:1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3130332e3139352e3136382e302f32332d3234203d3e203436303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.168.0/23 Signature Algorithm: sha256WithRSAEncryption 87:cd:2b:13:b7:38:13:c1:e9:8a:90:c4:bf:de:c1:39:28:a2: eb:6d:c2:a8:da:2e:da:0a:20:7d:73:95:7e:86:b3:5f:91:6a: 66:f8:83:8b:2e:55:cb:e2:35:40:6b:73:31:6d:e4:d7:50:d9: f1:aa:6f:35:0a:9e:e9:62:c1:d2:1d:7a:cd:c6:79:87:e6:f9: 41:03:7f:ef:3e:90:8f:97:67:42:e9:35:37:27:9c:63:b3:e4: 92:80:a3:0b:f3:e5:75:40:5a:40:5b:47:30:8c:01:ab:c5:95: de:b7:61:a7:0b:4b:ba:94:b6:3e:11:83:6b:77:ae:fc:b6:30: 43:2e:b6:69:e2:87:cb:99:45:9e:1b:2a:19:68:73:cf:7d:e5: 12:96:db:36:ac:ac:78:23:61:14:c6:7e:1d:bc:ac:f2:00:02: ea:20:73:b8:84:f2:79:22:cf:08:12:62:d4:0b:a5:c6:e2:a9: bd:5d:96:ea:8b:b8:b1:9f:e1:86:7a:46:09:e1:75:1b:90:c8: ef:45:40:8f:c8:9a:ba:0f:6a:96:af:0b:f5:d3:39:af:20:ad: 38:7c:ce:01:fd:71:93:ab:5a:39:8a:99:f0:05:98:96:5a:41: 0b:f3:9a:99:4c:9d:99:30:1d:68:44:62:ec:d1:cb:d6:40:f4: c9:7b:57:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbEPZwW2HWU8WN3T5//8S2BsA3/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3 QUY0NTcyQTAeFw0yNTA5MTIwNzU1MDBaFw0yNjA5MTEwODAwMDBaMDMxMTAvBgNV BAMTKEMzMDA2MjE4NERGQjE3NEQ0QzQ4NTQwREY5N0M4OEJFMDgxNTE0ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDexf+srntqu0q4TZiM2zsvJ76H qf+m9A8P/rD7CGsb4/Bz1ryAnPuh9lNrga8YX/sQCIbQIu4bFo8pjpPlNMw3nT9H cfp7+MBCrAob85lkNk7AcRzxNeAHPut5hwhWmMsp0DU08MuKQM3BkorcbPGErC3P ++WWcZTq7+o9rVCDblxprKeuTBrQb7ea6yuVu4tvFwfhkdCQH1vjEHp9V0Nwz+Mf cKphluMnjmFp+6f28c356CwdBcd1iU92vHjyqSR6KjX/PiLUlAlV/9f/Sp7xsLxW bBg/JktakQya3IIj3IRxblxy9R7Dq2tS87QjjXo84sKfS8QmLZEib0sKIbsnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwwBiGE37F01MSFQN+XyIvggVFIMwHwYDVR0j BBgwFoAUH9fO7Gnep4ODgzF/+w1KEHr0VyowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTEyOWM5NC1jNWE2LTRkZDQtYjM0YS03ZTM1M2RlNmNlODEvMC8xRkQ3Q0VFQzY5 REVBNzgzODM4MzMxN0ZGQjBENEExMDdBRjQ1NzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3QUY0 NTcyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllMTI5Yzk0LWM1YTYtNGRkNC1i MzRhLTdlMzUzZGU2Y2U4MS8wLzMxMzAzMzJlMzEzOTM1MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM2MzAzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ8OoMA0GCSqG SIb3DQEBCwUAA4IBAQCHzSsTtzgTwemKkMS/3sE5KKLrbcKo2i7aCiB9c5V+hrNf kWpm+IOLLlXL4jVAa3MxbeTXUNnxqm81Cp7pYsHSHXrNxnmH5vlBA3/vPpCPl2dC 6TU3J5xjs+SSgKML8+V1QFpAW0cwjAGrxZXet2GnC0u6lLY+EYNrd678tjBDLrZp 4ofLmUWeGyoZaHPPfeUSlts2rKx4I2EUxn4dvKzyAALqIHO4hPJ5Is8IEmLUC6XG 4qm9XZbqi7ixn+GGekYJ4XUbkMjvRUCPyJq6D2qWrwv10zmvIK04fM4B/XGTq1o5 ipnwBZiWWkEL85qZTJ2ZMB1oRGLs0cvWQPTJe1eq -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:07 2025 by rpki-client