$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37322e302f32342d3234203d3e203538333738.roa File: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: KGeHvvLL7YUj6ruPXwXmEedVa7petv8U3MdeekZgjts= Subject key identifier: 6D:82:E6:B4:93:1D:AE:7F:5A:5D:F0:8F:AD:FD:7F:C1:DA:69:20:A7 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 52E611DE484204330EDF48B476A6C2CEBCBE6BE7 Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37322e302f32342d3234203d3e203538333738.roa Signing time: Sat 18 Oct 2025 15:02:24 +0000 ROA not before: Sat 18 Oct 2025 14:57:24 +0000 ROA not after: Sat 17 Oct 2026 15:02:24 +0000 asID: 58378 IP address blocks: 103.161.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 21:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e6:11:de:48:42:04:33:0e:df:48:b4:76:a6:c2:ce:bc:be:6b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Oct 18 14:57:24 2025 GMT Not After : Oct 17 15:02:24 2026 GMT Subject: CN=6D82E6B4931DAE7F5A5DF08FADFD7FC1DA6920A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:be:20:56:d3:f9:de:60:aa:40:5e:b8:2e:23: fb:de:73:a5:95:b8:61:fc:6a:ff:64:ae:13:f2:28: 00:70:dc:63:88:84:43:02:d9:b1:b6:01:5f:ed:91: d2:5d:ce:a5:30:ba:09:34:4e:d1:9a:d5:ce:50:cc: 09:0a:1a:74:2b:22:10:99:d1:77:59:d5:39:88:ea: 74:c3:b1:d9:5b:79:02:95:4b:11:81:92:cb:dd:6f: bc:fa:cf:2a:06:78:f8:b7:e3:c0:3b:dd:71:1d:e4: 68:f3:29:c0:f5:9d:84:a6:b9:a0:e2:a7:6c:7b:7e: 8e:fc:8b:a8:b0:f1:19:33:c5:fa:16:dc:26:0e:3a: 46:8a:39:b1:a2:e5:a1:20:78:7f:8e:e8:3b:22:e6: f4:4f:89:cc:cd:0c:03:3b:e3:23:8f:2b:36:41:a0: db:6b:65:55:3b:6c:2f:72:59:2f:63:00:56:61:f3: 7c:25:6a:60:5e:81:be:6d:c7:ce:07:4e:fc:b2:c3: d9:ce:ef:39:9a:25:f3:a7:03:0b:44:fd:45:a6:df: 79:d2:1d:6c:82:bd:01:f6:ae:55:4c:7f:6f:ee:2b: cd:f0:91:e4:3f:20:e2:60:9b:b7:a3:06:61:5e:bc: 84:97:52:22:9d:94:50:a2:c1:fd:54:d5:d0:11:87: c7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:82:E6:B4:93:1D:AE:7F:5A:5D:F0:8F:AD:FD:7F:C1:DA:69:20:A7 X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37322e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.72.0/24 Signature Algorithm: sha256WithRSAEncryption 75:d4:1f:e6:92:7a:8c:2d:e2:5e:68:67:54:f7:59:57:08:e8: 59:cf:ed:91:74:72:b0:58:01:50:dd:d9:07:bf:0c:9c:9e:70: b2:30:08:99:e0:e1:14:e8:4f:c7:d6:55:a3:1a:60:a2:3a:9c: 9a:09:a8:7e:95:99:58:98:b9:fa:de:e4:b2:07:0b:cb:cc:e1: 42:25:29:7b:6a:71:b8:fd:72:a4:03:bd:b5:4c:c0:5f:60:62: 0f:c3:0e:1b:79:86:69:f3:1e:21:e4:1e:7c:ca:34:33:8e:87: 3a:a5:ae:a1:44:1c:e0:9c:ef:42:2a:cc:07:ee:29:b0:67:26: ed:6b:ae:be:1d:ea:b8:87:72:ec:ae:81:b7:25:14:70:cd:97: cc:39:92:ea:38:a3:a5:61:8e:7b:6c:2c:c9:c2:24:e9:2c:21: bd:ee:91:57:ef:ad:0f:0d:4f:af:c3:ab:08:18:9a:f5:8d:b6: ef:1c:dc:a2:9a:e9:1d:38:d2:1f:49:b2:82:d6:85:45:02:fb: 35:6f:9c:59:0d:e7:65:24:e5:49:85:3a:5d:35:dc:e9:ff:99: fe:f4:2b:58:aa:c7:06:c4:41:87:5e:40:ff:92:33:35:d4:b1: ff:66:51:d6:e4:cc:41:0c:c5:70:3c:26:42:d6:3c:f2:1c:c7: df:a2:ec:2f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUuYR3khCBDMO30i0dqbCzry+a+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNTEwMTgxNDU3MjRaFw0yNjEwMTcxNTAyMjRaMDMxMTAvBgNV BAMTKDZEODJFNkI0OTMxREFFN0Y1QTVERjA4RkFERkQ3RkMxREE2OTIwQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoviBW0/neYKpAXrguI/vec6WV uGH8av9krhPyKABw3GOIhEMC2bG2AV/tkdJdzqUwugk0TtGa1c5QzAkKGnQrIhCZ 0XdZ1TmI6nTDsdlbeQKVSxGBksvdb7z6zyoGePi348A73XEd5GjzKcD1nYSmuaDi p2x7fo78i6iw8RkzxfoW3CYOOkaKObGi5aEgeH+O6Dsi5vRPiczNDAM74yOPKzZB oNtrZVU7bC9yWS9jAFZh83wlamBegb5tx84HTvyyw9nO7zmaJfOnAwtE/UWm33nS HWyCvQH2rlVMf2/uK83wkeQ/IOJgm7ejBmFevISXUiKdlFCiwf1U1dARh8dTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbYLmtJMdrn9aXfCPrf1/wdppIKcwHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYmU3YWQ4LWUxNWMtNDAxNC1i ZmIzLWJlNjliN2Q1ZGU4OC8wLzMxMzAzMzJlMzEzNjMxMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGehSDANBgkqhkiG 9w0BAQsFAAOCAQEAddQf5pJ6jC3iXmhnVPdZVwjoWc/tkXRysFgBUN3ZB78MnJ5w sjAImeDhFOhPx9ZVoxpgojqcmgmofpWZWJi5+t7ksgcLy8zhQiUpe2pxuP1ypAO9 tUzAX2BiD8MOG3mGafMeIeQefMo0M46HOqWuoUQc4JzvQirMB+4psGcm7Wuuvh3q uIdy7K6BtyUUcM2XzDmS6jijpWGOe2wsycIk6Swhve6RV++tDw1Pr8OrCBia9Y22 7xzcoprpHTjSH0mygtaFRQL7NW+cWQ3nZSTlSYU6XTXc6f+Z/vQrWKrHBsRBh15A /5IzNdSx/2ZR1uTMQQzFcDwmQtY88hzH36LsLw== -----END CERTIFICATE-----Generated at Mon Oct 20 20:34:48 2025 by rpki-client