$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e332e35382e302f32342d3234203d3e20313335343737.roa File: 3130332e332e35382e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: oe71RDdtF+9+hBS9awBl7/UQgojTF+hgJs1azOC1AoI= Subject key identifier: 37:DD:37:EC:CD:01:FF:7A:4B:74:C0:0B:D8:E5:9E:98:29:42:EE:A2 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 05153DFCD5CC6F8619B517F23B22880F88B7EE2F Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e332e35382e302f32342d3234203d3e20313335343737.roa Signing time: Thu 25 Sep 2025 09:00:01 +0000 ROA not before: Thu 25 Sep 2025 08:55:01 +0000 ROA not after: Thu 24 Sep 2026 09:00:01 +0000 asID: 135477 IP address blocks: 103.3.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 22:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:15:3d:fc:d5:cc:6f:86:19:b5:17:f2:3b:22:88:0f:88:b7:ee:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Sep 25 08:55:01 2025 GMT Not After : Sep 24 09:00:01 2026 GMT Subject: CN=37DD37ECCD01FF7A4B74C00BD8E59E982942EEA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:82:84:03:d6:9c:5b:8e:48:19:ea:ff:3e:24: 68:6d:f2:07:14:a2:cf:1e:70:9d:6e:0d:76:c4:3a: eb:88:32:ca:16:ae:87:28:bc:86:d9:ea:0c:da:5b: 10:80:87:b9:bf:0d:ab:75:93:00:57:a9:7c:b9:bb: 53:01:38:36:05:a8:0b:ab:97:3f:d6:09:09:45:7a: f7:55:a8:63:eb:18:ec:e9:fc:68:57:9a:8b:ef:3f: a5:b4:ca:a0:88:6e:b6:b0:de:6c:ce:60:72:88:b2: 14:30:9b:a5:3a:d8:cb:f1:40:87:20:a2:a6:5c:b9: 02:91:c9:64:2a:a6:d0:9d:7f:1c:4f:c2:0e:e8:16: df:72:20:3b:a0:16:45:be:3f:00:7d:22:54:4e:6e: c9:ea:9c:5b:87:79:13:ed:27:55:a2:64:16:e5:00: 96:a9:3f:c9:e2:8d:57:91:d0:c8:e4:d0:83:99:5c: 29:5c:b6:59:f5:94:f2:e4:d7:ae:0d:b2:bc:30:c9: b8:35:84:77:77:4d:75:54:23:29:0b:f5:4d:39:f4: f6:8b:74:f5:2e:d5:ce:f7:cf:ed:2e:71:da:6f:31: 9e:ac:2e:c6:16:3a:74:74:80:07:e2:18:15:64:d1: 2f:59:6a:c3:70:cd:be:ec:e2:10:31:0f:c3:58:88: 04:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DD:37:EC:CD:01:FF:7A:4B:74:C0:0B:D8:E5:9E:98:29:42:EE:A2 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e332e35382e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.58.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:a5:6b:2b:41:40:8a:e4:37:41:c5:3f:b3:28:90:f1:aa:13: f0:0d:ef:14:d0:b9:da:a4:a2:69:61:29:01:94:0c:f4:5b:cf: 6d:b4:40:8a:b8:17:a5:55:7e:3a:58:ce:b1:43:80:ac:b4:a3: e6:66:c8:03:58:1c:61:80:5e:68:bd:fe:12:9a:d0:fb:0b:8d: 31:26:d7:36:19:d0:59:db:f9:24:fd:83:cf:13:0e:5f:09:e8: 7e:4b:d6:6e:6a:2f:e3:5d:51:2c:c7:39:b7:05:37:00:e8:06: cf:73:dd:28:89:44:50:7c:9d:3a:16:04:5d:d3:ed:84:bf:01: 6f:09:f4:0f:bd:3a:24:9c:5a:8e:2f:85:c6:34:35:6c:c2:82: 4e:4a:45:a7:ab:f3:16:d4:3a:c7:ed:a4:aa:b8:1c:96:ff:1a: 6c:5a:bf:7a:32:9d:d3:7b:0a:9b:b3:3b:84:d9:75:09:e3:66: d4:0b:dc:7b:e5:bf:bb:c8:ee:b3:00:7c:dd:8c:df:10:77:81: af:77:25:8d:3c:e0:00:64:ff:48:da:0e:73:74:0d:22:58:b1: e0:58:a9:c2:db:14:e3:88:fd:21:37:dc:8a:e0:b7:00:b8:6c: f4:ca:dd:73:0f:aa:39:cc:bb:16:68:55:6f:62:37:82:54:25: 00:df:61:e4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBRU9/NXMb4YZtRfyOyKID4i37i8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNTA5MjUwODU1MDFaFw0yNjA5MjQwOTAwMDFaMDMxMTAvBgNV BAMTKDM3REQzN0VDQ0QwMUZGN0E0Qjc0QzAwQkQ4RTU5RTk4Mjk0MkVFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZgoQD1pxbjkgZ6v8+JGht8gcU os8ecJ1uDXbEOuuIMsoWrocovIbZ6gzaWxCAh7m/Dat1kwBXqXy5u1MBODYFqAur lz/WCQlFevdVqGPrGOzp/GhXmovvP6W0yqCIbraw3mzOYHKIshQwm6U62MvxQIcg oqZcuQKRyWQqptCdfxxPwg7oFt9yIDugFkW+PwB9IlRObsnqnFuHeRPtJ1WiZBbl AJapP8nijVeR0Mjk0IOZXClctln1lPLk164Nsrwwybg1hHd3TXVUIykL9U059PaL dPUu1c73z+0ucdpvMZ6sLsYWOnR0gAfiGBVk0S9ZasNwzb7s4hAxD8NYiATlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUN9037M0B/3pLdMAL2OWemClC7qIwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzMyZTM1MzgyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnAzowDQYJKoZIhvcN AQELBQADggEBAF6laytBQIrkN0HFP7MokPGqE/AN7xTQudqkomlhKQGUDPRbz220 QIq4F6VVfjpYzrFDgKy0o+ZmyANYHGGAXmi9/hKa0PsLjTEm1zYZ0Fnb+ST9g88T Dl8J6H5L1m5qL+NdUSzHObcFNwDoBs9z3SiJRFB8nToWBF3T7YS/AW8J9A+9OiSc Wo4vhcY0NWzCgk5KRaer8xbUOsftpKq4HJb/Gmxav3oyndN7CpuzO4TZdQnjZtQL 3Hvlv7vI7rMAfN2M3xB3ga93JY084ABk/0jaDnN0DSJYseBYqcLbFOOI/SE33Irg twC4bPTK3XMPqjnMuxZoVW9iN4JUJQDfYeQ= -----END CERTIFICATE-----Generated at Tue Oct 21 01:36:18 2025 by rpki-client