$ rpki-client -vvf repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/3130332e37382e3139352e302f32342d3234203d3e203634333033.roa File: 3130332e37382e3139352e302f32342d3234203d3e203634333033.roa (raw, json) Hash identifier: nctnXPjyCy8J8rL5xXqCg2sFFkEJpXiz1am6alHjeHM= Subject key identifier: 75:8C:BA:89:B6:82:0E:AD:AA:CC:E3:57:4F:3B:43:0F:C9:B3:27:D8 Certificate issuer: /CN=9B481670EF7678276B7F667CD9CB3577AF393FD0 Certificate serial: 34D63CFFFA5325887DC9DF8C4A3E56A307695BCA Authority key identifier: 9B:48:16:70:EF:76:78:27:6B:7F:66:7C:D9:CB:35:77:AF:39:3F:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B481670EF7678276B7F667CD9CB3577AF393FD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/3130332e37382e3139352e302f32342d3234203d3e203634333033.roa Signing time: Fri 12 Sep 2025 09:02:55 +0000 ROA not before: Fri 12 Sep 2025 08:57:55 +0000 ROA not after: Fri 11 Sep 2026 09:02:55 +0000 asID: 64303 IP address blocks: 103.78.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/9B481670EF7678276B7F667CD9CB3577AF393FD0.crl rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/9B481670EF7678276B7F667CD9CB3577AF393FD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B481670EF7678276B7F667CD9CB3577AF393FD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d6:3c:ff:fa:53:25:88:7d:c9:df:8c:4a:3e:56:a3:07:69:5b:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B481670EF7678276B7F667CD9CB3577AF393FD0 Validity Not Before: Sep 12 08:57:55 2025 GMT Not After : Sep 11 09:02:55 2026 GMT Subject: CN=758CBA89B6820EADAACCE3574F3B430FC9B327D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:22:28:ed:0f:b0:d2:db:f5:20:3b:47:5f:90: 52:6b:e8:b2:c3:b3:e7:9f:da:0f:e5:35:53:62:c4: 86:45:e1:e9:44:cd:2a:13:7d:4f:a6:ba:03:ae:ed: 3e:60:b5:38:f1:de:6d:88:7a:a0:7d:9f:eb:70:70: f4:91:0b:0a:4d:1a:8e:16:4e:80:8b:1a:d9:dc:b7: 4f:d2:ae:da:94:cd:cd:87:69:d3:11:46:76:18:fc: 66:dd:6b:1f:32:ab:9f:52:88:77:cc:50:15:03:18: 60:19:88:0b:4c:98:f7:21:4f:14:c9:41:a3:19:94: 9f:5f:67:3d:cb:51:f9:33:85:31:91:fd:4a:c6:11: 13:ef:e4:f5:68:61:14:c4:43:0c:8e:52:3b:28:80: 83:97:12:fc:21:1d:ae:2e:70:e3:de:98:16:d3:23: 9a:ad:0e:8b:07:da:03:12:3c:ee:90:1f:ad:c3:fc: a6:47:01:be:68:2d:65:66:3b:2e:79:69:56:84:0d: 2d:be:a9:13:2b:d5:fe:36:b7:17:d7:02:55:38:6e: e2:4b:57:70:c6:b3:c1:77:ea:6a:a2:f0:39:97:89: ac:ab:60:db:a3:8b:a9:99:b0:c2:38:74:1f:13:f0: 64:e6:5a:1c:7c:c7:d4:9e:54:51:35:fe:d0:b2:07: b8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:8C:BA:89:B6:82:0E:AD:AA:CC:E3:57:4F:3B:43:0F:C9:B3:27:D8 X509v3 Authority Key Identifier: keyid:9B:48:16:70:EF:76:78:27:6B:7F:66:7C:D9:CB:35:77:AF:39:3F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/9B481670EF7678276B7F667CD9CB3577AF393FD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B481670EF7678276B7F667CD9CB3577AF393FD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/3130332e37382e3139352e302f32342d3234203d3e203634333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.195.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:bc:24:da:f4:49:6d:af:9b:03:cf:fb:3b:94:eb:95:23:f2: 40:5e:51:20:d1:87:a5:c7:35:85:4a:97:12:33:82:22:75:c9: 12:a7:ac:64:87:fb:15:4f:85:b6:fd:1a:78:e4:91:d5:1b:50: df:38:04:55:cd:04:fb:49:a0:8f:a3:8f:de:d1:38:00:83:40: c0:99:8d:7d:28:09:0b:a8:76:e6:6d:db:e1:f6:d7:b4:07:42: c1:25:a8:0d:83:b9:f7:96:76:cb:7c:de:af:4e:96:b3:55:ef: 0e:a9:b6:4f:50:05:a7:34:ab:5e:44:87:61:08:bb:a1:b5:cc: 46:d1:89:a6:5a:f9:b7:b8:c2:7f:9a:98:82:22:95:f4:a8:05: 19:44:94:96:40:7f:1d:d9:76:7f:b9:bc:86:fd:b3:33:27:88: 50:85:3f:25:a6:fa:2b:ab:01:cf:bc:17:5d:1f:7a:fa:d1:83: a1:74:1f:75:8f:71:91:6a:13:a5:83:0b:75:2b:04:0c:c1:b2: ef:d2:57:c6:fb:0d:7d:44:bb:b2:49:ce:cc:63:a9:3f:a7:4f: 70:be:35:cb:79:5a:d8:fc:fc:b1:f7:44:da:69:d5:9e:b1:4f: 60:d4:71:b7:26:48:26:2f:df:db:90:58:3e:9a:64:1d:ed:9f: b6:84:9f:7d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNNY8//pTJYh9yd+MSj5WowdpW8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI0ODE2NzBFRjc2NzgyNzZCN0Y2NjdDRDlDQjM1NzdB RjM5M0ZEMDAeFw0yNTA5MTIwODU3NTVaFw0yNjA5MTEwOTAyNTVaMDMxMTAvBgNV BAMTKDc1OENCQTg5QjY4MjBFQURBQUNDRTM1NzRGM0I0MzBGQzlCMzI3RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEIijtD7DS2/UgO0dfkFJr6LLD s+ef2g/lNVNixIZF4elEzSoTfU+mugOu7T5gtTjx3m2IeqB9n+twcPSRCwpNGo4W ToCLGtnct0/SrtqUzc2HadMRRnYY/Gbdax8yq59SiHfMUBUDGGAZiAtMmPchTxTJ QaMZlJ9fZz3LUfkzhTGR/UrGERPv5PVoYRTEQwyOUjsogIOXEvwhHa4ucOPemBbT I5qtDosH2gMSPO6QH63D/KZHAb5oLWVmOy55aVaEDS2+qRMr1f42txfXAlU4buJL V3DGs8F36mqi8DmXiayrYNuji6mZsMI4dB8T8GTmWhx8x9SeVFE1/tCyB7gZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdYy6ibaCDq2qzONXTztDD8mzJ9gwHwYDVR0j BBgwFoAUm0gWcO92eCdrf2Z82cs1d685P9AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzZiNWFiYy0yYzU0LTRjNWYtYjNmOC0zMzQ2ZjE5ZTZjYzgvMC85QjQ4MTY3MEVG NzY3ODI3NkI3RjY2N0NEOUNCMzU3N0FGMzkzRkQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUI0ODE2NzBFRjc2NzgyNzZCN0Y2NjdDRDlDQjM1NzdBRjM5 M0ZEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjNmI1YWJjLTJjNTQtNGM1Zi1i M2Y4LTMzNDZmMTllNmNjOC8wLzMxMzAzMzJlMzczODJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzNDMzMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdOwzANBgkqhkiG 9w0BAQsFAAOCAQEAC7wk2vRJba+bA8/7O5TrlSPyQF5RINGHpcc1hUqXEjOCInXJ EqesZIf7FU+Ftv0aeOSR1RtQ3zgEVc0E+0mgj6OP3tE4AINAwJmNfSgJC6h25m3b 4fbXtAdCwSWoDYO595Z2y3zer06Ws1XvDqm2T1AFpzSrXkSHYQi7obXMRtGJplr5 t7jCf5qYgiKV9KgFGUSUlkB/Hdl2f7m8hv2zMyeIUIU/Jab6K6sBz7wXXR96+tGD oXQfdY9xkWoTpYMLdSsEDMGy79JXxvsNfUS7sknOzGOpP6dPcL41y3la2Pz8sfdE 2mnVnrFPYNRxtyZIJi/f25BYPppkHe2ftoSffQ== -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:35 2025 by rpki-client