$ rpki-client -vvf repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa File: 3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa (raw, json) Hash identifier: xjNgDeRMgF2rvQrnjQijkWjQJOO6HqOFcQsiUsDKJMg= Subject key identifier: DF:51:5C:CC:8E:F4:B0:D5:02:F6:65:CB:EF:86:93:AA:2A:8C:70:90 Certificate issuer: /CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Certificate serial: 2789FAF959DB11D7B0F80EDEAA6E3D1F35CA65DE Authority key identifier: 9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa Signing time: Thu 09 Oct 2025 12:00:00 +0000 ROA not before: Thu 09 Oct 2025 11:55:00 +0000 ROA not after: Thu 08 Oct 2026 12:00:00 +0000 asID: 141669 IP address blocks: 103.162.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:89:fa:f9:59:db:11:d7:b0:f8:0e:de:aa:6e:3d:1f:35:ca:65:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Validity Not Before: Oct 9 11:55:00 2025 GMT Not After : Oct 8 12:00:00 2026 GMT Subject: CN=DF515CCC8EF4B0D502F665CBEF8693AA2A8C7090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:95:f2:4b:bb:98:37:58:df:b7:bd:1a:2a: 98:17:94:d4:b6:77:7e:09:38:07:7a:89:a6:5b:a3: 26:75:79:1b:ed:a6:54:3c:90:6c:eb:b6:49:1c:38: 60:2b:12:c9:4d:3e:d6:b1:f9:02:c8:dd:5d:97:ce: 5c:fe:84:50:93:75:85:d3:43:d4:be:5b:7a:b1:29: 31:27:b4:ae:f3:04:c5:2d:17:ec:2f:c9:50:a4:3a: ca:c6:e6:e1:e6:e4:bb:77:05:03:a6:b4:52:98:65: c9:f4:12:5f:8d:98:1c:35:81:af:59:06:03:3c:84: c3:8d:8f:60:71:79:89:75:fd:f7:0f:ec:be:e6:1a: a2:eb:64:53:34:41:28:8b:57:ad:3b:db:26:4b:d4: 77:d8:3d:04:77:bc:ee:f1:97:83:d3:52:8f:64:b3: e2:94:5b:42:25:06:34:b9:a9:3e:d4:7e:bf:48:70: f7:ff:4e:41:ca:02:9c:4e:90:f7:71:54:31:39:55: a0:de:eb:5d:8f:95:cf:37:51:90:8d:8d:ea:a0:d9: b2:22:80:f0:18:d2:c5:e9:cd:b6:7f:af:b8:4f:9c: 6e:71:11:df:86:f1:96:06:63:1b:f5:7c:f8:c3:b0: 52:9f:b6:ae:c3:05:63:74:49:bb:a7:e9:4f:0b:39: 2d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:51:5C:CC:8E:F4:B0:D5:02:F6:65:CB:EF:86:93:AA:2A:8C:70:90 X509v3 Authority Key Identifier: keyid:9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.238.0/24 Signature Algorithm: sha256WithRSAEncryption a1:41:9e:7c:38:96:e1:93:e0:1c:88:b1:66:a3:b1:c1:04:86: 32:21:60:0f:7d:5f:3d:16:0e:d2:8c:a1:6d:53:3e:07:f7:95: 5d:0a:b5:f5:86:b3:c5:da:3e:ed:97:cd:22:1d:82:df:df:ef: 08:ae:c7:c3:10:72:fc:7c:59:93:5f:17:27:22:7c:51:59:3c: a4:55:32:82:4d:11:55:5b:95:7d:8c:a3:02:16:30:b0:85:bf: a1:57:7d:e3:85:76:21:c2:6f:a2:ed:12:08:f1:7e:da:14:1b: 0c:d9:4e:92:d3:9e:4f:41:82:fe:86:3a:ef:bb:e7:3b:5a:9d: 34:4c:e6:7e:4d:db:e0:67:e2:ba:20:17:7f:b0:98:71:63:62: da:1f:f0:cd:93:ce:46:ac:92:0c:db:d3:08:c5:1b:ae:88:79: 01:55:a4:30:8a:6c:81:58:18:0b:84:96:b5:40:4e:d6:94:0a: 97:16:38:d6:e8:88:0d:ac:bb:de:68:fc:43:22:61:97:f7:18: 66:e1:3f:c7:ea:47:41:ae:09:a8:3a:b4:90:40:a9:40:86:f4: bb:78:fe:f2:40:67:1e:3f:2c:db:58:04:dc:4b:cc:56:00:f4: 2d:6b:19:13:2f:56:6f:43:28:59:26:94:33:82:67:a2:41:fb: 89:22:61:b5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ4n6+VnbEdew+A7eqm49HzXKZd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFG NEY1MTM1QjAeFw0yNTEwMDkxMTU1MDBaFw0yNjEwMDgxMjAwMDBaMDMxMTAvBgNV BAMTKERGNTE1Q0NDOEVGNEIwRDUwMkY2NjVDQkVGODY5M0FBMkE4QzcwOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFgZXyS7uYN1jft70aKpgXlNS2 d34JOAd6iaZboyZ1eRvtplQ8kGzrtkkcOGArEslNPtax+QLI3V2Xzlz+hFCTdYXT Q9S+W3qxKTEntK7zBMUtF+wvyVCkOsrG5uHm5Lt3BQOmtFKYZcn0El+NmBw1ga9Z BgM8hMONj2BxeYl1/fcP7L7mGqLrZFM0QSiLV6072yZL1HfYPQR3vO7xl4PTUo9k s+KUW0IlBjS5qT7Ufr9IcPf/TkHKApxOkPdxVDE5VaDe612Plc83UZCNjeqg2bIi gPAY0sXpzbZ/r7hPnG5xEd+G8ZYGYxv1fPjDsFKftq7DBWN0Sbun6U8LOS1XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU31FczI70sNUC9mXL74aTqiqMcJAwHwYDVR0j BBgwFoAUndsREKLen6AxYgozDZTuuvT1E1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWY2OTg0Zi1jY2Y5LTRjNDAtYjExNC0zODAzNTZhOGNkODgvMC85RERCMTExMEEy REU5RkEwMzE2MjBBMzMwRDk0RUVCQUY0RjUxMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFGNEY1 MTM1Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZjY5ODRmLWNjZjktNGM0MC1i MTE0LTM4MDM1NmE4Y2Q4OC8wLzMxMzAzMzJlMzEzNjMyMmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnou4wDQYJ KoZIhvcNAQELBQADggEBAKFBnnw4luGT4ByIsWajscEEhjIhYA99Xz0WDtKMoW1T Pgf3lV0KtfWGs8XaPu2XzSIdgt/f7wiux8MQcvx8WZNfFycifFFZPKRVMoJNEVVb lX2MowIWMLCFv6FXfeOFdiHCb6LtEgjxftoUGwzZTpLTnk9Bgv6GOu+75ztanTRM 5n5N2+Bn4rogF3+wmHFjYtof8M2Tzkaskgzb0wjFG66IeQFVpDCKbIFYGAuElrVA TtaUCpcWONboiA2su95o/EMiYZf3GGbhP8fqR0GuCag6tJBAqUCG9Lt4/vJAZx4/ LNtYBNxLzFYA9C1rGRMvVm9DKFkmlDOCZ6JB+4kiYbU= -----END CERTIFICATE-----Generated at Mon Oct 20 22:09:49 2025 by rpki-client