$ rpki-client -vvf repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/3130332e36352e3233362e302f32332d3234203d3e20313335343530.roa File: 3130332e36352e3233362e302f32332d3234203d3e20313335343530.roa (raw, json) Hash identifier: WbgcAemfUr/WaWV4NJzSBFx+o8EoJ/udbhhfWwBxR6I= Subject key identifier: 14:94:56:17:B4:4D:2C:60:C8:AC:D0:AB:C8:29:3A:AD:44:B9:8B:2D Certificate issuer: /CN=DEA386454A080E52CD4B89DB87E873E2BB375D86 Certificate serial: 68C6BC4313FD0404E53C9897F8E366EAA8A72994 Authority key identifier: DE:A3:86:45:4A:08:0E:52:CD:4B:89:DB:87:E8:73:E2:BB:37:5D:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEA386454A080E52CD4B89DB87E873E2BB375D86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/3130332e36352e3233362e302f32332d3234203d3e20313335343530.roa Signing time: Wed 24 Sep 2025 08:00:01 +0000 ROA not before: Wed 24 Sep 2025 07:55:01 +0000 ROA not after: Wed 23 Sep 2026 08:00:01 +0000 asID: 135450 IP address blocks: 103.65.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/DEA386454A080E52CD4B89DB87E873E2BB375D86.crl rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/DEA386454A080E52CD4B89DB87E873E2BB375D86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEA386454A080E52CD4B89DB87E873E2BB375D86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c6:bc:43:13:fd:04:04:e5:3c:98:97:f8:e3:66:ea:a8:a7:29:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEA386454A080E52CD4B89DB87E873E2BB375D86 Validity Not Before: Sep 24 07:55:01 2025 GMT Not After : Sep 23 08:00:01 2026 GMT Subject: CN=14945617B44D2C60C8ACD0ABC8293AAD44B98B2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bb:13:7d:5b:fb:63:50:6b:68:3d:a4:59:c7: 9d:00:a1:6f:fe:f3:b0:69:08:33:05:0d:dc:cf:43: 0f:54:f6:6b:b5:3a:0d:cb:df:1f:98:cc:5e:22:bc: ef:9c:7d:b3:92:cf:ce:d2:c2:04:4f:45:3c:cc:7e: 35:cc:7c:2a:bc:8c:16:4a:54:28:43:1e:f1:49:d6: d8:91:ee:8a:98:08:86:a2:32:3c:3f:f3:f3:b1:13: 85:00:07:33:9a:16:6d:f1:80:d7:1e:ac:de:21:57: 57:7c:f2:af:69:e6:60:3a:74:d1:a3:14:8a:03:b1: 27:66:f3:59:94:80:15:1f:20:60:e6:73:b2:20:4a: f0:64:c6:b9:dd:7a:00:62:e7:2a:64:25:f1:cc:ca: a3:8f:c8:c9:99:2c:5c:b8:62:7e:1b:31:92:6e:fc: dc:c3:7f:32:b4:5c:fa:6d:08:3b:c4:18:3b:a4:2e: 41:8d:65:ee:67:40:69:6e:d2:5e:65:00:c0:19:ca: d0:c6:08:8d:2e:96:6b:6d:81:fb:d1:3f:11:c4:57: 71:e9:38:83:6e:5e:11:1d:6a:09:03:12:d4:66:d7: d4:c1:db:3b:9a:90:6b:13:d2:65:83:05:8b:ac:a0: 22:d1:4a:b8:ad:1c:01:66:38:ee:6f:59:7c:f5:11: 3f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:94:56:17:B4:4D:2C:60:C8:AC:D0:AB:C8:29:3A:AD:44:B9:8B:2D X509v3 Authority Key Identifier: keyid:DE:A3:86:45:4A:08:0E:52:CD:4B:89:DB:87:E8:73:E2:BB:37:5D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/DEA386454A080E52CD4B89DB87E873E2BB375D86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEA386454A080E52CD4B89DB87E873E2BB375D86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/3130332e36352e3233362e302f32332d3234203d3e20313335343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.65.236.0/23 Signature Algorithm: sha256WithRSAEncryption 82:6c:b5:01:56:49:cd:44:04:49:a0:d1:c2:09:6d:5d:b9:f8: de:cf:0c:70:a3:2d:cd:91:b8:48:01:4f:4d:00:41:be:fa:4e: f5:6d:1b:0d:99:86:4b:02:76:7f:37:82:47:02:81:6c:4d:a8: 53:33:45:f2:99:ee:6c:3c:1f:3b:bc:5b:ac:4c:13:3d:0f:f2: 2c:10:4f:44:9f:60:d6:90:c0:b6:dc:10:1b:f5:3e:62:93:59: 56:a4:cf:28:55:95:13:73:c9:84:5e:70:7b:46:5c:f6:0b:db: f4:cb:f2:76:49:7e:27:67:5c:f3:e3:bf:a9:5a:9e:1e:71:d4: 86:3a:78:e1:7c:f2:09:e8:ed:c7:72:bf:a7:d7:17:61:06:9e: c1:0b:df:fe:74:95:af:10:5e:42:a5:0c:a4:7a:d4:11:c9:b1: 13:a3:ba:af:d3:7d:ea:86:64:d6:b6:8f:a0:bf:5c:12:2c:b5: 49:4d:90:04:3a:9c:49:90:87:86:f1:be:01:b4:aa:a7:3f:f4: b9:7c:0f:54:60:81:fe:73:4d:61:bf:16:5c:2c:2e:70:ea:46: 71:d4:df:2f:9c:aa:39:02:e5:69:12:44:c2:c4:d5:10:1f:03: 63:f1:ba:42:95:01:9d:03:49:cb:2c:ec:ad:47:c1:1b:40:58: 55:d4:9d:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaMa8QxP9BATlPJiX+ONm6qinKZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVBMzg2NDU0QTA4MEU1MkNENEI4OURCODdFODczRTJC QjM3NUQ4NjAeFw0yNTA5MjQwNzU1MDFaFw0yNjA5MjMwODAwMDFaMDMxMTAvBgNV BAMTKDE0OTQ1NjE3QjQ0RDJDNjBDOEFDRDBBQkM4MjkzQUFENDRCOThCMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMuxN9W/tjUGtoPaRZx50AoW/+ 87BpCDMFDdzPQw9U9mu1Og3L3x+YzF4ivO+cfbOSz87SwgRPRTzMfjXMfCq8jBZK VChDHvFJ1tiR7oqYCIaiMjw/8/OxE4UABzOaFm3xgNcerN4hV1d88q9p5mA6dNGj FIoDsSdm81mUgBUfIGDmc7IgSvBkxrndegBi5ypkJfHMyqOPyMmZLFy4Yn4bMZJu /NzDfzK0XPptCDvEGDukLkGNZe5nQGlu0l5lAMAZytDGCI0ulmttgfvRPxHEV3Hp OINuXhEdagkDEtRm19TB2zuakGsT0mWDBYusoCLRSritHAFmOO5vWXz1ET+VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFJRWF7RNLGDIrNCryCk6rUS5iy0wHwYDVR0j BBgwFoAU3qOGRUoIDlLNS4nbh+hz4rs3XYYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjA4YTJlMi1mODEwLTQ2ZTgtYTVhMS01NmVjNWEzNWQyYWQvMC9ERUEzODY0NTRB MDgwRTUyQ0Q0Qjg5REI4N0U4NzNFMkJCMzc1RDg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVBMzg2NDU0QTA4MEU1MkNENEI4OURCODdFODczRTJCQjM3 NUQ4Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MDhhMmUyLWY4MTAtNDZlOC1h NWExLTU2ZWM1YTM1ZDJhZC8wLzMxMzAzMzJlMzYzNTJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0HsMA0GCSqG SIb3DQEBCwUAA4IBAQCCbLUBVknNRARJoNHCCW1dufjezwxwoy3NkbhIAU9NAEG+ +k71bRsNmYZLAnZ/N4JHAoFsTahTM0Xyme5sPB87vFusTBM9D/IsEE9En2DWkMC2 3BAb9T5ik1lWpM8oVZUTc8mEXnB7Rlz2C9v0y/J2SX4nZ1zz47+pWp4ecdSGOnjh fPIJ6O3Hcr+n1xdhBp7BC9/+dJWvEF5CpQyketQRybETo7qv033qhmTWto+gv1wS LLVJTZAEOpxJkIeG8b4BtKqnP/S5fA9UYIH+c01hvxZcLC5w6kZx1N8vnKo5AuVp EkTCxNUQHwNj8bpClQGdA0nLLOytR8EbQFhV1J2Y -----END CERTIFICATE-----Generated at Mon Oct 20 16:53:45 2025 by rpki-client