$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa File: 3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa (raw, json) Hash identifier: Dob9ZAlDUTUnctN4VlTyrKO30gGECPv6HuzZafwSF6g= Subject key identifier: 96:D7:9D:E5:DD:35:5B:23:D5:F1:74:9A:20:B7:EB:AB:FE:95:0D:D7 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 507FDCC17F322963BC6E4102767E3FACD7ED6D4F Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa Signing time: Wed 08 Oct 2025 03:00:01 +0000 ROA not before: Wed 08 Oct 2025 02:55:01 +0000 ROA not after: Wed 07 Oct 2026 03:00:01 +0000 asID: 131770 IP address blocks: 103.16.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 09:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:7f:dc:c1:7f:32:29:63:bc:6e:41:02:76:7e:3f:ac:d7:ed:6d:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Oct 8 02:55:01 2025 GMT Not After : Oct 7 03:00:01 2026 GMT Subject: CN=96D79DE5DD355B23D5F1749A20B7EBABFE950DD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5f:87:9d:1e:32:b8:54:4b:b5:76:69:81:63: ee:fc:64:af:b9:fb:d5:ca:15:ec:ee:00:e7:77:d9: 7e:b3:77:a2:25:65:01:a5:01:de:0e:2d:23:24:e3: 66:6c:a3:7f:ef:00:fa:75:cc:c5:7f:84:32:5f:03: 0f:2b:b8:0a:55:51:db:54:8f:d6:45:e9:93:41:f2: 35:51:9c:f1:44:93:8f:40:a0:be:59:bc:64:09:f4: 13:e8:de:db:cb:bd:cc:dd:5c:68:b2:3c:39:5e:a0: 53:63:05:0e:4f:72:cf:8d:c9:0a:67:df:66:1c:b3: 6c:64:c7:81:78:26:d3:ed:01:53:b5:65:e3:f2:d3: 6e:c7:15:b9:41:ef:5a:07:f2:9d:4c:98:d0:80:83: 63:2e:8b:f5:7e:e6:a1:84:0f:d5:5b:71:7d:ca:e1: 40:a4:37:30:8c:7d:b9:17:0c:cd:d4:5d:0d:0d:8c: d5:f0:c5:91:e2:45:69:52:13:84:5f:2e:9d:0f:be: 49:33:a3:f0:52:08:25:dc:ff:b0:7d:57:21:f5:3f: f7:a3:f5:fb:cf:7d:95:14:db:67:e3:16:d0:1d:d9: 6f:ad:a8:dd:e6:68:cd:d5:f2:3a:a1:4c:3e:09:44: fb:b3:f5:94:a5:76:01:58:22:a7:cf:50:ae:f2:92: 3e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D7:9D:E5:DD:35:5B:23:D5:F1:74:9A:20:B7:EB:AB:FE:95:0D:D7 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.112.0/22 Signature Algorithm: sha256WithRSAEncryption a4:2f:d7:22:7b:be:9f:3e:e8:82:e6:82:3b:38:fa:c0:27:5c: ab:35:0f:b6:aa:5f:c2:08:49:f5:1e:92:b4:f5:c6:43:a4:da: f1:58:d8:e8:4b:22:0c:e6:5b:3d:31:06:94:fe:ac:93:ea:6a: dd:b0:10:51:7c:3f:92:08:01:bd:83:12:bb:3f:98:91:ba:6e: 3c:5e:a4:08:5a:49:4e:f7:c4:55:dc:31:9c:90:36:8e:24:70: e3:4f:01:18:bd:a6:01:46:8f:4d:1f:09:0b:73:95:e0:46:54: 94:08:38:59:63:eb:46:33:b4:0a:cb:dc:c8:fa:c9:fd:01:b2: f1:db:4b:58:c3:dd:35:6e:20:78:9f:1a:c2:bc:98:21:fb:e2: fc:d3:63:f1:19:e0:92:ca:27:fd:3d:55:01:49:b4:64:dc:5c: 58:ab:65:1b:3f:1c:69:87:78:8c:bf:1a:59:9f:4e:e0:37:ec: cc:85:f2:80:ed:53:4d:3d:b3:5a:55:7f:10:f1:28:cf:08:c7: 43:6d:57:63:e3:14:56:11:d3:a6:28:14:45:66:41:ad:ca:d8: 39:9e:90:b0:d8:23:dd:b3:1b:a5:f7:e0:40:23:c6:a0:2d:8e: 50:64:2c:a7:15:b0:81:e6:ff:45:45:f4:5c:f4:5c:9b:b9:cb: 68:c4:de:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUH/cwX8yKWO8bkECdn4/rNftbU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTEwMDgwMjU1MDFaFw0yNjEwMDcwMzAwMDFaMDMxMTAvBgNV BAMTKDk2RDc5REU1REQzNTVCMjNENUYxNzQ5QTIwQjdFQkFCRkU5NTBERDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXX4edHjK4VEu1dmmBY+78ZK+5 +9XKFezuAOd32X6zd6IlZQGlAd4OLSMk42Zso3/vAPp1zMV/hDJfAw8ruApVUdtU j9ZF6ZNB8jVRnPFEk49AoL5ZvGQJ9BPo3tvLvczdXGiyPDleoFNjBQ5Pcs+NyQpn 32Ycs2xkx4F4JtPtAVO1ZePy027HFblB71oH8p1MmNCAg2Mui/V+5qGED9VbcX3K 4UCkNzCMfbkXDM3UXQ0NjNXwxZHiRWlSE4RfLp0Pvkkzo/BSCCXc/7B9VyH1P/ej 9fvPfZUU22fjFtAd2W+tqN3maM3V8jqhTD4JRPuz9ZSldgFYIqfPUK7ykj7XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlted5d01WyPV8XSaILfrq/6VDdcwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzAzMzJlMzEzNjJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxBwMA0GCSqG SIb3DQEBCwUAA4IBAQCkL9cie76fPuiC5oI7OPrAJ1yrNQ+2ql/CCEn1HpK09cZD pNrxWNjoSyIM5ls9MQaU/qyT6mrdsBBRfD+SCAG9gxK7P5iRum48XqQIWklO98RV 3DGckDaOJHDjTwEYvaYBRo9NHwkLc5XgRlSUCDhZY+tGM7QKy9zI+sn9AbLx20tY w901biB4nxrCvJgh++L802PxGeCSyif9PVUBSbRk3FxYq2UbPxxph3iMvxpZn07g N+zMhfKA7VNNPbNaVX8Q8SjPCMdDbVdj4xRWEdOmKBRFZkGtytg5npCw2CPdsxul 9+BAI8agLY5QZCynFbCB5v9FRfRc9FybuctoxN4N -----END CERTIFICATE-----Generated at Tue Oct 21 07:20:49 2025 by rpki-client