$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3134382e302f32342d3234203d3e20313335343737.roa File: 3130332e37362e3134382e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: 6qWlUeCLsff2Ezhc+I97fHgwx8eIfQT4fRqy3JTRAWk= Subject key identifier: CE:2B:EF:11:F2:E9:8C:19:86:AE:19:1F:9C:D0:FA:45:F1:17:A1:50 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 508F5BA701D32D69462684A31B5EBC2D01762076 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3134382e302f32342d3234203d3e20313335343737.roa Signing time: Thu 25 Sep 2025 09:00:02 +0000 ROA not before: Thu 25 Sep 2025 08:55:02 +0000 ROA not after: Thu 24 Sep 2026 09:00:02 +0000 asID: 135477 IP address blocks: 103.76.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 22:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:8f:5b:a7:01:d3:2d:69:46:26:84:a3:1b:5e:bc:2d:01:76:20:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Sep 25 08:55:02 2025 GMT Not After : Sep 24 09:00:02 2026 GMT Subject: CN=CE2BEF11F2E98C1986AE191F9CD0FA45F117A150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:bf:03:5b:62:66:92:10:85:15:29:ac:96:8c: cf:65:86:04:58:84:41:8f:96:48:34:7a:dd:22:da: ad:f9:ad:be:b9:cc:cf:dd:30:55:97:a7:58:78:ad: f2:b4:62:d6:19:2e:4a:5c:0f:b2:b2:0a:77:73:1a: c3:0d:43:14:77:e4:aa:ee:17:0b:78:23:c1:62:ba: 1c:cc:31:e2:98:a2:db:c0:e0:a5:95:c6:f8:27:64: a6:d7:81:b2:4a:0e:da:0d:2f:ff:ee:48:e2:32:3e: 93:b2:e3:37:d3:e7:7a:05:a4:98:ad:7e:c1:2b:e2: 26:f0:1e:0a:01:94:0f:57:dc:85:44:a5:f4:b4:39: c1:ec:89:ad:52:f9:88:9f:c5:bb:8e:b4:b7:d7:a3: 63:f1:f4:44:ab:36:55:ac:31:d3:77:80:ca:24:bc: 12:2e:7c:ca:7e:d2:8b:4d:86:a0:a0:2c:f5:d2:55: 97:52:d9:63:d2:d4:3d:3c:27:66:0b:8f:57:df:32: 27:25:e5:b0:e1:34:b3:23:60:10:65:f5:b1:2c:0a: d7:0e:f0:d1:49:12:64:fe:56:9d:b4:66:45:39:2f: e0:dd:b6:93:2e:e3:53:9d:d7:db:bb:b2:ac:2e:27: 80:a1:27:c8:f7:79:0a:a7:57:63:6d:68:a2:c4:48: 24:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2B:EF:11:F2:E9:8C:19:86:AE:19:1F:9C:D0:FA:45:F1:17:A1:50 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3134382e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.148.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:d6:a4:03:ac:34:a6:a6:55:95:a3:ca:67:16:3d:b8:b0:4d: 42:30:a4:12:d1:60:64:70:35:54:d9:65:3d:ad:95:7c:1e:95: 51:56:88:70:dc:1f:06:45:b6:ad:a0:6f:f9:51:3d:61:19:98: 2e:35:ed:2a:65:f2:58:2b:93:f9:ff:1d:62:fe:8a:e2:3e:18: 5d:ba:d8:59:a1:b7:2e:bd:30:2e:59:1f:1f:b2:90:11:b5:9c: d1:6b:0a:d9:b5:e4:49:10:31:3d:b1:18:31:3c:f6:ae:bf:66: 07:d1:95:91:39:23:06:dc:84:65:1e:f6:2c:06:d9:bf:49:1e: ff:1a:37:b9:69:4f:3c:5e:a2:83:01:66:b9:5e:38:68:83:d6: 1a:a5:a8:18:e6:c5:ec:88:84:15:04:e6:de:c2:c2:62:b5:b0: 3c:8f:21:45:ec:2d:ec:ec:99:9f:87:2d:41:35:06:cb:84:bb: 22:39:7f:28:da:46:07:c9:6f:ea:0a:21:1c:46:99:93:74:3e: 4b:5e:0f:36:b6:92:de:87:01:41:3f:43:55:46:06:3d:f3:d5: da:d7:7b:d4:fc:19:22:de:54:2e:ad:d3:d9:7c:52:d0:39:c1: 0f:3f:22:cd:66:5c:be:a2:b5:84:35:71:42:e8:d2:c7:7d:09: d6:97:1d:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUI9bpwHTLWlGJoSjG168LQF2IHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNTA5MjUwODU1MDJaFw0yNjA5MjQwOTAwMDJaMDMxMTAvBgNV BAMTKENFMkJFRjExRjJFOThDMTk4NkFFMTkxRjlDRDBGQTQ1RjExN0ExNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4vwNbYmaSEIUVKayWjM9lhgRY hEGPlkg0et0i2q35rb65zM/dMFWXp1h4rfK0YtYZLkpcD7KyCndzGsMNQxR35Kru Fwt4I8FiuhzMMeKYotvA4KWVxvgnZKbXgbJKDtoNL//uSOIyPpOy4zfT53oFpJit fsEr4ibwHgoBlA9X3IVEpfS0OcHsia1S+YifxbuOtLfXo2Px9ESrNlWsMdN3gMok vBIufMp+0otNhqCgLPXSVZdS2WPS1D08J2YLj1ffMicl5bDhNLMjYBBl9bEsCtcO 8NFJEmT+Vp20ZkU5L+DdtpMu41Od19u7sqwuJ4ChJ8j3eQqnV2NtaKLESCRtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzivvEfLpjBmGrhkfnND6RfEXoVAwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzczNjJlMzEzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yUMA0GCSqG SIb3DQEBCwUAA4IBAQAK1qQDrDSmplWVo8pnFj24sE1CMKQS0WBkcDVU2WU9rZV8 HpVRVohw3B8GRbatoG/5UT1hGZguNe0qZfJYK5P5/x1i/oriPhhduthZobcuvTAu WR8fspARtZzRawrZteRJEDE9sRgxPPauv2YH0ZWROSMG3IRlHvYsBtm/SR7/Gje5 aU88XqKDAWa5Xjhog9YapagY5sXsiIQVBObewsJitbA8jyFF7C3s7Jmfhy1BNQbL hLsiOX8o2kYHyW/qCiEcRpmTdD5LXg82tpLehwFBP0NVRgY989Xa13vU/Bki3lQu rdPZfFLQOcEPPyLNZly+orWENXFC6NLHfQnWlx2/ -----END CERTIFICATE-----Generated at Mon Oct 20 18:08:27 2025 by rpki-client