$ rpki-client -vvf repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/3130332e312e35302e302f32332d3233203d3e20313432333532.roa File: 3130332e312e35302e302f32332d3233203d3e20313432333532.roa (raw, json) Hash identifier: NK7iP85WMoAKxYMx5lbhJuhwp1xc1m7+bm7ki4OmrgU= Subject key identifier: 41:42:41:8F:B4:32:51:02:C3:65:BC:34:F9:EE:CA:3E:10:10:9F:96 Certificate issuer: /CN=B48345F7F9FB4F14FFFE8BC5B74685D2A0993094 Certificate serial: 29A5821B0C6751FAFF4C7FF1ABFD3E451DA7F403 Authority key identifier: B4:83:45:F7:F9:FB:4F:14:FF:FE:8B:C5:B7:46:85:D2:A0:99:30:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/3130332e312e35302e302f32332d3233203d3e20313432333532.roa Signing time: Tue 30 Sep 2025 09:00:58 +0000 ROA not before: Tue 30 Sep 2025 08:55:58 +0000 ROA not after: Tue 29 Sep 2026 09:00:58 +0000 asID: 142352 IP address blocks: 103.1.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.crl rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a5:82:1b:0c:67:51:fa:ff:4c:7f:f1:ab:fd:3e:45:1d:a7:f4:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B48345F7F9FB4F14FFFE8BC5B74685D2A0993094 Validity Not Before: Sep 30 08:55:58 2025 GMT Not After : Sep 29 09:00:58 2026 GMT Subject: CN=4142418FB4325102C365BC34F9EECA3E10109F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:37:87:37:3f:ee:05:5f:d1:01:8e:78:01:77: 16:7e:a7:d6:00:73:3d:e9:9a:e8:0b:3e:90:8c:22: eb:6d:d2:82:32:af:03:7d:d1:83:13:cd:89:2c:24: 81:10:be:69:dc:0a:b0:8c:10:a4:18:d6:41:25:50: af:15:b2:9e:12:22:a8:83:cf:aa:54:8c:03:f6:d8: e0:5f:bf:ad:b5:af:39:04:8b:16:69:64:74:5c:4d: 8b:9b:13:c3:52:78:fb:d0:5e:e1:0d:96:b2:7b:db: ab:01:82:9d:07:fc:0d:80:dd:ea:3f:ec:29:4f:f0: 20:f8:d7:95:6e:42:c7:2c:f1:7a:37:5e:ca:f6:bb: 0e:ca:ba:85:87:21:bb:d6:2d:38:17:cd:22:28:9c: fc:e6:ad:6f:d8:04:c5:f5:5d:ec:20:9f:f5:47:2b: 6d:55:86:59:5b:55:00:8e:16:f4:96:81:eb:2f:64: 62:25:df:e9:19:f6:f3:50:35:3e:73:6e:a3:99:21: 1b:52:04:cc:30:76:f7:69:fb:f7:d7:10:34:b6:4c: 86:83:dc:f7:72:17:ad:65:ab:6d:39:30:04:2a:24: 09:32:f3:53:3e:a1:84:68:08:82:ec:e3:86:f1:91: f1:43:dd:21:e9:63:47:91:47:f3:11:f7:bf:2f:c9: 12:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:42:41:8F:B4:32:51:02:C3:65:BC:34:F9:EE:CA:3E:10:10:9F:96 X509v3 Authority Key Identifier: keyid:B4:83:45:F7:F9:FB:4F:14:FF:FE:8B:C5:B7:46:85:D2:A0:99:30:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/3130332e312e35302e302f32332d3233203d3e20313432333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.1.50.0/23 Signature Algorithm: sha256WithRSAEncryption 03:9d:ad:5f:2d:e2:24:0a:51:93:29:73:38:5a:03:2a:40:ca: 8a:2d:11:66:24:38:3c:2f:76:1a:43:79:b4:95:e7:35:91:e3: ce:4e:cb:bc:c2:0a:be:1b:7f:d8:de:ac:91:d0:2c:cc:df:17: b6:d9:2f:83:9b:2f:42:d2:04:36:60:23:31:ee:0e:dc:75:33: c7:96:fc:54:31:ac:83:5c:01:32:46:63:f8:e6:50:aa:26:9f: c2:53:2e:2b:95:77:ae:63:7f:79:4a:b0:f4:a6:c0:0a:78:5b: 4b:16:bc:ad:49:1a:43:eb:e6:a7:06:9f:10:aa:16:75:20:c5: 92:e2:6f:66:ed:35:97:90:83:db:2f:e8:d0:c9:bf:f7:5c:01: 0b:a7:54:f2:2e:cd:96:5e:6a:4c:12:1e:63:01:9f:ce:2b:80: 46:a6:13:a4:14:7d:1f:1e:5f:c0:30:f2:36:ad:37:8f:25:8d: ee:50:35:a2:89:0b:79:00:40:1b:af:31:45:45:91:90:db:02: fa:54:40:05:6d:12:ea:5a:27:17:c4:ad:1d:5f:d3:02:34:d4: d6:03:45:86:4a:e2:d6:5a:a8:a5:db:75:70:bd:03:9f:68:d9: 87:d8:06:06:9d:b8:16:ef:9f:c2:e0:02:fc:9f:65:60:16:1e: 8f:15:89:12 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKaWCGwxnUfr/TH/xq/0+RR2n9AMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ4MzQ1RjdGOUZCNEYxNEZGRkU4QkM1Qjc0Njg1RDJB MDk5MzA5NDAeFw0yNTA5MzAwODU1NThaFw0yNjA5MjkwOTAwNThaMDMxMTAvBgNV BAMTKDQxNDI0MThGQjQzMjUxMDJDMzY1QkMzNEY5RUVDQTNFMTAxMDlGOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEN4c3P+4FX9EBjngBdxZ+p9YA cz3pmugLPpCMIutt0oIyrwN90YMTzYksJIEQvmncCrCMEKQY1kElUK8Vsp4SIqiD z6pUjAP22OBfv621rzkEixZpZHRcTYubE8NSePvQXuENlrJ726sBgp0H/A2A3eo/ 7ClP8CD415VuQscs8Xo3Xsr2uw7KuoWHIbvWLTgXzSIonPzmrW/YBMX1Xewgn/VH K21VhllbVQCOFvSWgesvZGIl3+kZ9vNQNT5zbqOZIRtSBMwwdvdp+/fXEDS2TIaD 3PdyF61lq205MAQqJAky81M+oYRoCILs44bxkfFD3SHpY0eRR/MR978vyRJVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQUJBj7QyUQLDZbw0+e7KPhAQn5YwHwYDVR0j BBgwFoAUtINF9/n7TxT//ovFt0aF0qCZMJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjUyYmY5Yy02MzRiLTQwYjktYWMwYy1hODdiNDdkNTlmOTEvMC9CNDgzNDVGN0Y5 RkI0RjE0RkZGRThCQzVCNzQ2ODVEMkEwOTkzMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQ4MzQ1RjdGOUZCNEYxNEZGRkU4QkM1Qjc0Njg1RDJBMDk5 MzA5NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2NTJiZjljLTYzNGItNDBiOS1h YzBjLWE4N2I0N2Q1OWY5MS8wLzMxMzAzMzJlMzEyZTM1MzAyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTM0MzIzMzM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnATIwDQYJKoZIhvcN AQELBQADggEBAAOdrV8t4iQKUZMpczhaAypAyootEWYkODwvdhpDebSV5zWR485O y7zCCr4bf9jerJHQLMzfF7bZL4ObL0LSBDZgIzHuDtx1M8eW/FQxrINcATJGY/jm UKomn8JTLiuVd65jf3lKsPSmwAp4W0sWvK1JGkPr5qcGnxCqFnUgxZLib2btNZeQ g9sv6NDJv/dcAQunVPIuzZZeakwSHmMBn84rgEamE6QUfR8eX8Aw8jatN48lje5Q NaKJC3kAQBuvMUVFkZDbAvpUQAVtEupaJxfErR1f0wI01NYDRYZK4tZaqKXbdXC9 A59o2YfYBgaduBbvn8LgAvyfZWAWHo8ViRI= -----END CERTIFICATE-----Generated at Mon Oct 20 18:01:40 2025 by rpki-client