$ rpki-client -vvf repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/3130332e312e35312e302f32342d3234203d3e20313432333532.roa File: 3130332e312e35312e302f32342d3234203d3e20313432333532.roa (raw, json) Hash identifier: CD4KlQzH2eJhKNwTfYMuI96gq5Df2JYdd7khju1XQoY= Subject key identifier: A7:9A:89:C8:1A:9B:C3:CB:C4:4B:20:36:51:0B:21:DD:6E:E4:09:06 Certificate issuer: /CN=B48345F7F9FB4F14FFFE8BC5B74685D2A0993094 Certificate serial: 29D3298417791562AD33431B4D2CB656D0DF5691 Authority key identifier: B4:83:45:F7:F9:FB:4F:14:FF:FE:8B:C5:B7:46:85:D2:A0:99:30:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/3130332e312e35312e302f32342d3234203d3e20313432333532.roa Signing time: Tue 30 Sep 2025 09:00:58 +0000 ROA not before: Tue 30 Sep 2025 08:55:58 +0000 ROA not after: Tue 29 Sep 2026 09:00:58 +0000 asID: 142352 IP address blocks: 103.1.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.crl rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d3:29:84:17:79:15:62:ad:33:43:1b:4d:2c:b6:56:d0:df:56:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B48345F7F9FB4F14FFFE8BC5B74685D2A0993094 Validity Not Before: Sep 30 08:55:58 2025 GMT Not After : Sep 29 09:00:58 2026 GMT Subject: CN=A79A89C81A9BC3CBC44B2036510B21DD6EE40906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d9:67:5c:fd:bb:77:fb:a6:14:58:ea:dc:63: 72:a1:6c:2b:d8:8f:7a:1f:23:47:21:8b:cb:1d:a3: 51:46:05:8e:36:03:99:a6:c5:14:2b:a6:a5:8c:ad: f4:4b:5c:42:c7:d7:5c:f3:01:ac:27:7a:0d:69:5c: 06:e8:c7:2e:58:5f:6e:bd:73:68:29:87:f0:2b:c1: 7c:c7:4a:59:5d:2d:c3:2d:4e:19:5a:64:11:57:4b: 55:4b:a3:9d:d2:47:c0:f7:0d:65:b8:fd:26:f8:16: f6:a2:cf:a7:d1:49:65:71:18:a7:63:e1:92:6b:a9: af:40:91:e7:9d:c6:4b:85:76:5f:07:29:69:d9:d5: 6b:a3:c4:bc:85:de:77:38:43:d2:c3:c4:98:3f:26: af:64:22:c1:c2:2c:a7:ae:c4:2a:67:90:91:ca:b4: 35:75:76:e6:ca:5a:d3:91:8c:c8:2a:5f:ef:2d:17: 09:c3:67:4f:dc:c8:e9:be:54:71:14:e6:67:37:fc: b2:61:86:c2:f5:24:cb:ef:d3:df:1e:e8:73:04:f0: 79:f3:44:42:18:aa:5a:34:cc:c9:9c:d6:04:61:e4: 50:c2:f3:b1:87:0b:48:fd:6a:57:08:c6:75:19:dd: 09:2c:b3:16:ec:54:f5:c0:d1:f8:60:69:05:7d:d2: 5b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9A:89:C8:1A:9B:C3:CB:C4:4B:20:36:51:0B:21:DD:6E:E4:09:06 X509v3 Authority Key Identifier: keyid:B4:83:45:F7:F9:FB:4F:14:FF:FE:8B:C5:B7:46:85:D2:A0:99:30:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B48345F7F9FB4F14FFFE8BC5B74685D2A0993094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/3130332e312e35312e302f32342d3234203d3e20313432333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.1.51.0/24 Signature Algorithm: sha256WithRSAEncryption aa:40:6f:75:36:e4:19:18:a5:ba:be:79:e2:b1:58:29:c9:d0: 13:22:4d:df:23:f8:0d:1e:05:f2:b7:19:f2:4f:cb:e6:a8:08: 83:af:1e:af:13:1a:fe:cc:a8:59:e9:1c:32:cc:17:a9:ba:76: c2:c5:da:80:05:31:64:c6:0c:80:13:8d:86:d3:a7:60:69:4d: 9b:94:f3:41:e0:e7:a6:c8:9a:73:f5:cd:18:1f:2c:9f:a7:a5: f6:9e:86:45:92:9d:1b:8d:41:51:e5:84:46:0b:98:6a:5d:ea: 40:4c:e5:af:f1:25:9e:b6:bd:aa:53:cf:e4:fc:1f:9a:cf:00: 15:1d:ed:7b:6e:22:b8:5e:ec:63:79:98:64:05:40:61:cb:cd: aa:26:0d:f5:37:10:60:64:46:a9:35:6e:ff:3c:d7:e8:64:e4: 1e:8a:a8:06:f7:36:40:6a:2f:98:38:78:d6:1d:ea:ef:5f:2b: c4:f4:50:3f:97:e3:28:65:29:2e:ca:64:88:aa:e0:a0:11:29: d9:bb:38:d7:85:fd:09:48:b7:97:de:11:fe:e7:e4:a9:a1:ac: f8:db:f5:35:86:65:fe:80:06:1d:b1:c3:be:dc:e2:12:49:a1: 7b:be:be:76:e9:c7:d6:56:e7:80:0f:ff:1b:25:53:5a:11:7f: d3:da:f8:d3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKdMphBd5FWKtM0MbTSy2VtDfVpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ4MzQ1RjdGOUZCNEYxNEZGRkU4QkM1Qjc0Njg1RDJB MDk5MzA5NDAeFw0yNTA5MzAwODU1NThaFw0yNjA5MjkwOTAwNThaMDMxMTAvBgNV BAMTKEE3OUE4OUM4MUE5QkMzQ0JDNDRCMjAzNjUxMEIyMURENkVFNDA5MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe2Wdc/bt3+6YUWOrcY3KhbCvY j3ofI0chi8sdo1FGBY42A5mmxRQrpqWMrfRLXELH11zzAawneg1pXAboxy5YX269 c2gph/ArwXzHSlldLcMtThlaZBFXS1VLo53SR8D3DWW4/Sb4Fvaiz6fRSWVxGKdj 4ZJrqa9AkeedxkuFdl8HKWnZ1WujxLyF3nc4Q9LDxJg/Jq9kIsHCLKeuxCpnkJHK tDV1dubKWtORjMgqX+8tFwnDZ0/cyOm+VHEU5mc3/LJhhsL1JMvv098e6HME8Hnz REIYqlo0zMmc1gRh5FDC87GHC0j9alcIxnUZ3QkssxbsVPXA0fhgaQV90lunAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUp5qJyBqbw8vESyA2UQsh3W7kCQYwHwYDVR0j BBgwFoAUtINF9/n7TxT//ovFt0aF0qCZMJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjUyYmY5Yy02MzRiLTQwYjktYWMwYy1hODdiNDdkNTlmOTEvMC9CNDgzNDVGN0Y5 RkI0RjE0RkZGRThCQzVCNzQ2ODVEMkEwOTkzMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQ4MzQ1RjdGOUZCNEYxNEZGRkU4QkM1Qjc0Njg1RDJBMDk5 MzA5NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2NTJiZjljLTYzNGItNDBiOS1h YzBjLWE4N2I0N2Q1OWY5MS8wLzMxMzAzMzJlMzEyZTM1MzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM0MzIzMzM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnATMwDQYJKoZIhvcN AQELBQADggEBAKpAb3U25BkYpbq+eeKxWCnJ0BMiTd8j+A0eBfK3GfJPy+aoCIOv Hq8TGv7MqFnpHDLMF6m6dsLF2oAFMWTGDIATjYbTp2BpTZuU80Hg56bImnP1zRgf LJ+npfaehkWSnRuNQVHlhEYLmGpd6kBM5a/xJZ62vapTz+T8H5rPABUd7XtuIrhe 7GN5mGQFQGHLzaomDfU3EGBkRqk1bv881+hk5B6KqAb3NkBqL5g4eNYd6u9fK8T0 UD+X4yhlKS7KZIiq4KARKdm7ONeF/QlIt5feEf7n5KmhrPjb9TWGZf6ABh2xw77c 4hJJoXu+vnbpx9ZW54AP/xslU1oRf9Pa+NM= -----END CERTIFICATE-----Generated at Mon Oct 20 18:01:16 2025 by rpki-client