$ rpki-client -vvf repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/3130332e37372e3130362e302f32332d3234203d3e20313335343530.roa File: 3130332e37372e3130362e302f32332d3234203d3e20313335343530.roa (raw, json) Hash identifier: wXTznUQArBkuy9DW6FChuphpm7A6SXPjvzN1WzF38y4= Subject key identifier: DA:2C:4B:C9:01:D4:AC:6B:75:1B:6C:74:DD:B8:47:57:14:1E:9B:25 Certificate issuer: /CN=DEA386454A080E52CD4B89DB87E873E2BB375D86 Certificate serial: 5AF9E0B201079E28CA6B27A4266851715D40843D Authority key identifier: DE:A3:86:45:4A:08:0E:52:CD:4B:89:DB:87:E8:73:E2:BB:37:5D:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEA386454A080E52CD4B89DB87E873E2BB375D86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/3130332e37372e3130362e302f32332d3234203d3e20313335343530.roa Signing time: Wed 24 Sep 2025 08:00:01 +0000 ROA not before: Wed 24 Sep 2025 07:55:01 +0000 ROA not after: Wed 23 Sep 2026 08:00:01 +0000 asID: 135450 IP address blocks: 103.77.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/DEA386454A080E52CD4B89DB87E873E2BB375D86.crl rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/DEA386454A080E52CD4B89DB87E873E2BB375D86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEA386454A080E52CD4B89DB87E873E2BB375D86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f9:e0:b2:01:07:9e:28:ca:6b:27:a4:26:68:51:71:5d:40:84:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEA386454A080E52CD4B89DB87E873E2BB375D86 Validity Not Before: Sep 24 07:55:01 2025 GMT Not After : Sep 23 08:00:01 2026 GMT Subject: CN=DA2C4BC901D4AC6B751B6C74DDB84757141E9B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4f:b5:1f:53:42:b0:68:78:72:08:ca:aa:46: ab:87:86:31:69:fe:74:c2:93:4d:4c:b5:ea:b5:41: ca:d1:9a:85:ff:36:a1:14:eb:43:ff:76:22:bd:49: db:2d:05:d3:54:10:33:46:4b:4b:6b:90:a9:6b:d5: b1:c6:fd:91:52:48:ab:89:cd:02:a5:dd:b9:8c:91: 62:8d:ad:1f:ec:b0:09:09:42:c1:59:6f:43:a0:4b: a8:38:5d:a1:5e:15:ea:92:d6:cf:06:65:c8:fc:ac: f4:d6:0c:2e:52:f8:a3:6c:75:36:ea:3b:be:fe:e4: da:48:3c:a9:5c:75:a7:84:b7:21:61:7f:3e:a4:34: ec:d2:99:37:ca:d5:d7:7d:6d:e6:96:a0:b7:96:5a: 67:61:e6:8f:f4:41:b7:00:be:82:f6:e2:54:c3:d9: 5f:15:04:ce:48:a2:1b:2b:07:84:70:6d:b3:78:93: 8b:bc:89:50:60:70:e9:7c:60:c1:47:83:77:87:de: 4c:35:f8:28:c4:9a:1e:4c:3a:43:84:aa:fa:83:ee: 2e:3e:f1:b9:38:96:eb:d6:c3:92:ea:d6:23:93:67: 99:be:cc:6e:bb:35:68:4e:3c:4e:34:e6:c7:dd:4d: af:b7:4b:60:6a:c5:12:df:60:62:65:56:1b:cd:39: cc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2C:4B:C9:01:D4:AC:6B:75:1B:6C:74:DD:B8:47:57:14:1E:9B:25 X509v3 Authority Key Identifier: keyid:DE:A3:86:45:4A:08:0E:52:CD:4B:89:DB:87:E8:73:E2:BB:37:5D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/DEA386454A080E52CD4B89DB87E873E2BB375D86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEA386454A080E52CD4B89DB87E873E2BB375D86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a608a2e2-f810-46e8-a5a1-56ec5a35d2ad/0/3130332e37372e3130362e302f32332d3234203d3e20313335343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.77.106.0/23 Signature Algorithm: sha256WithRSAEncryption 45:17:19:e7:20:b2:e2:ae:31:10:fd:b1:49:cd:17:1e:d9:9b: 23:8a:ab:b4:fe:f7:bf:fb:80:67:45:b5:a4:9b:f9:84:9e:52: 66:a2:83:af:8f:eb:eb:e4:c6:94:fe:ea:66:d5:a6:01:8e:0f: 72:38:91:51:2d:3b:d6:5b:86:19:f2:f9:77:91:f1:9b:25:2c: ab:91:2b:c6:18:5e:1c:44:d7:0d:be:cc:3a:31:a6:cd:0f:58: 36:5e:82:38:c8:65:2c:53:cd:69:e2:b4:fc:8f:67:79:b1:15: 63:3a:74:50:b4:30:77:0b:bc:cb:f4:8f:43:6e:0c:fb:4b:29: 35:bb:3c:ac:0c:c0:0e:aa:31:7b:d5:e5:66:e1:c1:14:00:57: 97:f8:a3:89:c3:bb:64:59:76:49:df:fe:d6:a2:f2:13:64:56: c2:d3:98:31:16:a3:64:02:3a:aa:d2:8a:e0:7d:13:4d:a1:4d: 73:2c:8f:05:c3:31:a6:c8:fc:1e:df:ce:6f:c6:50:52:81:cf: 0f:c6:2f:ab:48:57:5a:07:68:61:a4:bd:30:76:d0:67:53:eb: 51:65:cb:e6:69:b2:bc:54:47:81:44:62:0a:2c:cf:cd:67:fb: a4:db:a8:ae:b1:0e:16:22:9f:f7:71:20:3f:2d:34:19:e7:04: 76:82:fa:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWvngsgEHnijKayekJmhRcV1AhD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVBMzg2NDU0QTA4MEU1MkNENEI4OURCODdFODczRTJC QjM3NUQ4NjAeFw0yNTA5MjQwNzU1MDFaFw0yNjA5MjMwODAwMDFaMDMxMTAvBgNV BAMTKERBMkM0QkM5MDFENEFDNkI3NTFCNkM3NEREQjg0NzU3MTQxRTlCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoT7UfU0KwaHhyCMqqRquHhjFp /nTCk01Mteq1QcrRmoX/NqEU60P/diK9SdstBdNUEDNGS0trkKlr1bHG/ZFSSKuJ zQKl3bmMkWKNrR/ssAkJQsFZb0OgS6g4XaFeFeqS1s8GZcj8rPTWDC5S+KNsdTbq O77+5NpIPKlcdaeEtyFhfz6kNOzSmTfK1dd9beaWoLeWWmdh5o/0QbcAvoL24lTD 2V8VBM5IohsrB4RwbbN4k4u8iVBgcOl8YMFHg3eH3kw1+CjEmh5MOkOEqvqD7i4+ 8bk4luvWw5Lq1iOTZ5m+zG67NWhOPE405sfdTa+3S2BqxRLfYGJlVhvNOcyfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2ixLyQHUrGt1G2x03bhHVxQemyUwHwYDVR0j BBgwFoAU3qOGRUoIDlLNS4nbh+hz4rs3XYYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjA4YTJlMi1mODEwLTQ2ZTgtYTVhMS01NmVjNWEzNWQyYWQvMC9ERUEzODY0NTRB MDgwRTUyQ0Q0Qjg5REI4N0U4NzNFMkJCMzc1RDg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVBMzg2NDU0QTA4MEU1MkNENEI4OURCODdFODczRTJCQjM3 NUQ4Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MDhhMmUyLWY4MTAtNDZlOC1h NWExLTU2ZWM1YTM1ZDJhZC8wLzMxMzAzMzJlMzczNzJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ01qMA0GCSqG SIb3DQEBCwUAA4IBAQBFFxnnILLirjEQ/bFJzRce2Zsjiqu0/ve/+4BnRbWkm/mE nlJmooOvj+vr5MaU/upm1aYBjg9yOJFRLTvWW4YZ8vl3kfGbJSyrkSvGGF4cRNcN vsw6MabND1g2XoI4yGUsU81p4rT8j2d5sRVjOnRQtDB3C7zL9I9Dbgz7Syk1uzys DMAOqjF71eVm4cEUAFeX+KOJw7tkWXZJ3/7WovITZFbC05gxFqNkAjqq0orgfRNN oU1zLI8FwzGmyPwe385vxlBSgc8Pxi+rSFdaB2hhpL0wdtBnU+tRZcvmabK8VEeB RGIKLM/NZ/uk26iusQ4WIp/3cSA/LTQZ5wR2gvp3 -----END CERTIFICATE-----Generated at Mon Oct 20 16:54:33 2025 by rpki-client