$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa File: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (raw, json) Hash identifier: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4= Subject key identifier: 53:AB:0E:24:FD:A1:94:52:66:7E:BA:3F:F2:FE:B9:99:59:01:30:24 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 77B787BFA5EC44801AF15BCC9D13CE59764E096A Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa Signing time: Sat 20 Sep 2025 09:00:01 +0000 ROA not before: Sat 20 Sep 2025 08:55:01 +0000 ROA not after: Sat 19 Sep 2026 09:00:01 +0000 asID: 132673 IP address blocks: 103.90.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b7:87:bf:a5:ec:44:80:1a:f1:5b:cc:9d:13:ce:59:76:4e:09:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Sep 20 08:55:01 2025 GMT Not After : Sep 19 09:00:01 2026 GMT Subject: CN=53AB0E24FDA19452667EBA3FF2FEB99959013024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:86:0a:56:95:da:aa:f8:06:65:04:4a:ad:d8: f7:4f:12:98:1d:c6:1e:6b:a3:c5:62:32:8c:4e:e5: 10:0e:07:24:63:cf:77:8d:b8:35:d1:28:6d:d4:a3: 6b:f3:8b:6a:2f:18:ff:3f:57:cd:7e:97:aa:e5:48: 67:d4:82:47:d8:a9:4f:8d:96:ae:4b:f5:b1:df:96: 2e:11:3c:42:67:0c:e8:8b:e3:4a:68:75:b6:80:47: ca:50:5d:ae:62:8d:98:5f:3b:f5:31:88:36:ec:62: 31:98:93:b8:a7:cd:85:5e:b0:79:9e:85:4c:3b:e9: 47:ba:54:90:a6:40:14:15:94:bd:bd:44:db:6c:78: 5c:bf:01:3b:b8:cb:e6:35:f8:95:12:04:a2:8d:8b: 5f:91:9c:ee:0d:04:a4:88:53:2f:f7:41:ad:b7:0b: 16:a7:09:72:3b:e8:34:3c:95:6b:68:da:4c:f7:d7: b8:cf:bd:fe:db:38:2b:ea:5d:85:5b:a4:9c:c2:78: f9:74:8b:00:1d:14:e7:cb:e1:80:fc:cf:0c:a1:7e: f2:81:b3:e4:95:de:ec:f2:18:ef:a7:18:ec:68:41: ee:d0:35:8d:5b:11:ea:ff:49:70:f8:51:5b:58:58: fb:78:95:88:f5:57:51:55:29:9b:ed:2c:9e:3c:38: a5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AB:0E:24:FD:A1:94:52:66:7E:BA:3F:F2:FE:B9:99:59:01:30:24 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.24.0/24 Signature Algorithm: sha256WithRSAEncryption ad:9e:30:84:bc:50:33:fa:0f:f2:a2:9a:30:3a:15:64:fb:01: c6:eb:0c:01:64:e9:4d:fd:bf:49:e8:ca:96:65:01:d7:a3:3f: 45:27:95:0a:f7:00:82:35:50:93:d6:af:7f:19:d5:b0:69:6e: 33:23:eb:71:9a:60:71:61:af:92:34:a3:bc:7f:2f:26:25:5d: b4:b9:d3:1c:33:c6:0d:fa:64:7a:dd:3a:8a:ad:e8:ba:7b:8a: f5:71:6f:a4:9e:45:6d:f1:e0:49:e4:e9:17:49:cd:c6:42:17: 05:28:31:18:d7:bd:ba:48:b7:02:b7:db:9e:ad:61:23:c9:f7: 52:ad:1d:61:e7:b7:3e:d3:6f:f6:d5:bc:a1:e0:6f:d6:73:2d: b4:7d:22:99:d2:77:f6:08:10:af:9b:6b:dc:eb:34:35:34:b1: a8:89:d4:6b:24:0c:b2:52:00:ba:17:0a:c5:ea:d5:08:73:b3: a2:b2:28:6b:8c:8a:ca:af:da:ce:9c:c4:eb:1c:36:0c:a6:72: f1:4f:91:ef:65:b3:e7:d5:8e:b2:da:cd:99:fe:ec:f3:d2:c2: a4:6e:f1:7e:0c:24:03:7f:64:ab:2d:01:13:96:13:91:a4:9f: d6:c6:86:10:3d:46:81:20:93:9e:ce:b1:26:5b:b6:60:ab:60: f0:bd:61:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd7eHv6XsRIAa8VvMnRPOWXZOCWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA5MjAwODU1MDFaFw0yNjA5MTkwOTAwMDFaMDMxMTAvBgNV BAMTKDUzQUIwRTI0RkRBMTk0NTI2NjdFQkEzRkYyRkVCOTk5NTkwMTMwMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCihgpWldqq+AZlBEqt2PdPEpgd xh5ro8ViMoxO5RAOByRjz3eNuDXRKG3Uo2vzi2ovGP8/V81+l6rlSGfUgkfYqU+N lq5L9bHfli4RPEJnDOiL40podbaAR8pQXa5ijZhfO/UxiDbsYjGYk7inzYVesHme hUw76Ue6VJCmQBQVlL29RNtseFy/ATu4y+Y1+JUSBKKNi1+RnO4NBKSIUy/3Qa23 CxanCXI76DQ8lWto2kz317jPvf7bOCvqXYVbpJzCePl0iwAdFOfL4YD8zwyhfvKB s+SV3uzyGO+nGOxoQe7QNY1bEer/SXD4UVtYWPt4lYj1V1FVKZvtLJ48OKXvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU6sOJP2hlFJmfro/8v65mVkBMCQwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzkzMDJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdaGDANBgkqhkiG 9w0BAQsFAAOCAQEArZ4whLxQM/oP8qKaMDoVZPsBxusMAWTpTf2/SejKlmUB16M/ RSeVCvcAgjVQk9avfxnVsGluMyPrcZpgcWGvkjSjvH8vJiVdtLnTHDPGDfpket06 iq3ounuK9XFvpJ5FbfHgSeTpF0nNxkIXBSgxGNe9uki3Arfbnq1hI8n3Uq0dYee3 PtNv9tW8oeBv1nMttH0imdJ39ggQr5tr3Os0NTSxqInUayQMslIAuhcKxerVCHOz orIoa4yKyq/azpzE6xw2DKZy8U+R72Wz59WOstrNmf7s89LCpG7xfgwkA39kqy0B E5YTkaSf1saGED1GgSCTns6xJlu2YKtg8L1hpQ== -----END CERTIFICATE-----Generated at Mon Oct 20 20:32:28 2025 by rpki-client