$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132322e302f32342d3234203d3e20313432333630.roa File: 3130332e3234372e3132322e302f32342d3234203d3e20313432333630.roa (raw, json) Hash identifier: NQW7UwpMESN0U2eeb5sCy8+6MskrqZgb0v8mJ0QPgMY= Subject key identifier: 82:CB:62:AD:EF:1B:D5:51:9D:49:CC:BA:DB:38:05:C3:6F:00:EA:3C Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 5F48F8EB771E4A757D884312809CBA6A1D9FFBE2 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132322e302f32342d3234203d3e20313432333630.roa Signing time: Thu 09 Oct 2025 09:00:02 +0000 ROA not before: Thu 09 Oct 2025 08:55:02 +0000 ROA not after: Thu 08 Oct 2026 09:00:02 +0000 asID: 142360 IP address blocks: 103.247.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:48:f8:eb:77:1e:4a:75:7d:88:43:12:80:9c:ba:6a:1d:9f:fb:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Oct 9 08:55:02 2025 GMT Not After : Oct 8 09:00:02 2026 GMT Subject: CN=82CB62ADEF1BD5519D49CCBADB3805C36F00EA3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:46:c2:0a:8a:fe:21:22:fc:0a:49:6c:d1:39: 9b:b5:35:37:ba:ae:64:b0:9a:08:3a:ba:e8:f3:a7: ce:55:25:26:47:47:58:c9:cf:5f:7c:64:f5:f7:6f: 4e:02:e0:f2:d6:21:0d:1d:36:37:cc:1d:cc:fa:86: 04:73:9c:8b:d4:c0:c2:00:74:28:4e:28:a0:cb:e6: 42:c4:b6:1e:3f:ca:71:81:b6:22:e8:44:fd:c2:ae: 1a:6b:c8:5d:c1:a7:cc:cc:53:80:b8:aa:0f:20:49: f9:43:c8:d8:5e:dd:c5:63:f3:b7:94:00:42:ad:52: fb:d1:d6:f2:e7:a6:5e:c8:bd:59:b4:e3:63:c6:4a: 81:e2:07:6a:04:57:47:1c:dd:ec:b5:a4:04:af:b5: 8f:24:4c:6c:ff:3e:0f:34:10:8d:c8:fe:60:c9:27: 23:1f:7f:49:6a:4e:6b:e9:02:0a:63:bf:b5:2d:02: 3c:71:e4:75:bf:21:7e:0c:64:5e:48:10:fe:ac:6a: 5c:5d:b7:8c:dd:b2:79:6c:4b:da:45:91:1e:cc:03: b5:ac:0a:f3:e5:15:90:dc:8b:9b:65:5d:1c:1d:6e: 20:b3:d0:83:14:5e:2d:22:4c:25:5f:2a:fd:e5:f0: 63:17:0c:c8:43:d9:df:b9:79:77:f4:27:cf:fe:7d: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CB:62:AD:EF:1B:D5:51:9D:49:CC:BA:DB:38:05:C3:6F:00:EA:3C X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132322e302f32342d3234203d3e20313432333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.122.0/24 Signature Algorithm: sha256WithRSAEncryption b5:4d:b4:55:69:bc:ef:70:37:58:a7:ac:f8:aa:e1:a9:be:91: 4e:73:74:0a:b5:01:0e:b3:f2:14:ca:ee:4f:97:c5:e4:4e:81: c3:9f:8b:ed:d6:1d:f2:1c:5d:a4:3b:64:4e:59:ca:6b:c5:6a: d9:03:58:59:ff:e6:d3:e0:fe:03:cf:79:02:2a:8e:d1:66:82: a5:ae:7f:ce:44:8f:9f:37:81:74:88:d4:e0:6c:20:78:4a:69: 61:04:a1:01:2f:4c:da:2b:e1:cd:63:c1:6a:90:d9:b3:92:fa: 82:01:8a:41:01:ee:4a:a7:7c:ed:fd:b6:1f:5a:dc:dc:b2:21: f4:99:5c:aa:f6:63:9b:f0:96:1f:28:84:63:b2:f0:bf:e4:04: 18:1d:48:1a:2d:8b:85:a2:72:70:48:e0:97:bd:e8:81:e5:4d: 83:8e:56:02:f8:1a:30:42:27:3f:b0:33:e7:05:93:14:65:e6: 51:65:08:92:6f:bb:db:ec:00:84:75:70:2d:cb:95:80:f8:a2: c6:a0:a1:78:99:92:b1:50:1b:0c:07:d2:59:1c:bb:f2:f6:37: 9b:54:3e:09:cc:cb:0a:75:c3:49:d5:cd:d5:4e:8b:00:ce:49: b6:a7:61:ca:1f:e6:8e:07:a3:1c:c9:1a:c5:65:c7:f5:08:ed: a4:aa:51:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX0j463ceSnV9iEMSgJy6ah2f++IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTEwMDkwODU1MDJaFw0yNjEwMDgwOTAwMDJaMDMxMTAvBgNV BAMTKDgyQ0I2MkFERUYxQkQ1NTE5RDQ5Q0NCQURCMzgwNUMzNkYwMEVBM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDRsIKiv4hIvwKSWzROZu1NTe6 rmSwmgg6uujzp85VJSZHR1jJz198ZPX3b04C4PLWIQ0dNjfMHcz6hgRznIvUwMIA dChOKKDL5kLEth4/ynGBtiLoRP3CrhpryF3Bp8zMU4C4qg8gSflDyNhe3cVj87eU AEKtUvvR1vLnpl7IvVm042PGSoHiB2oEV0cc3ey1pASvtY8kTGz/Pg80EI3I/mDJ JyMff0lqTmvpAgpjv7UtAjxx5HW/IX4MZF5IEP6salxdt4zdsnlsS9pFkR7MA7Ws CvPlFZDci5tlXRwdbiCz0IMUXi0iTCVfKv3l8GMXDMhD2d+5eXf0J8/+fSbhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgstire8b1VGdScy62zgFw28A6jwwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNDM3MmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn93owDQYJ KoZIhvcNAQELBQADggEBALVNtFVpvO9wN1inrPiq4am+kU5zdAq1AQ6z8hTK7k+X xeROgcOfi+3WHfIcXaQ7ZE5ZymvFatkDWFn/5tPg/gPPeQIqjtFmgqWuf85Ej583 gXSI1OBsIHhKaWEEoQEvTNor4c1jwWqQ2bOS+oIBikEB7kqnfO39th9a3NyyIfSZ XKr2Y5vwlh8ohGOy8L/kBBgdSBoti4WicnBI4Je96IHlTYOOVgL4GjBCJz+wM+cF kxRl5lFlCJJvu9vsAIR1cC3LlYD4osagoXiZkrFQGwwH0lkcu/L2N5tUPgnMywp1 w0nVzdVOiwDOSbanYcof5o4HoxzJGsVlx/UI7aSqUdw= -----END CERTIFICATE-----Generated at Tue Oct 21 01:25:19 2025 by rpki-client