$ rpki-client -vvf repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa File: 3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa (raw, json) Hash identifier: OaYN9F7Ro7W56q+ls2T1VHXeadTTjgnnYsVEGgZUhRE= Subject key identifier: 58:95:29:83:EE:4F:16:F1:2B:CE:E3:91:E9:BA:6C:6C:7B:6E:DB:94 Certificate issuer: /CN=13697C4A24DCE77089F778CD506D620711B4472B Certificate serial: 18FF357DA2243305E4753C0B8646C0BBD18749C0 Authority key identifier: 13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa Signing time: Wed 15 Oct 2025 12:15:41 +0000 ROA not before: Wed 15 Oct 2025 12:10:41 +0000 ROA not after: Wed 14 Oct 2026 12:15:41 +0000 asID: 140396 IP address blocks: 103.161.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ff:35:7d:a2:24:33:05:e4:75:3c:0b:86:46:c0:bb:d1:87:49:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13697C4A24DCE77089F778CD506D620711B4472B Validity Not Before: Oct 15 12:10:41 2025 GMT Not After : Oct 14 12:15:41 2026 GMT Subject: CN=58952983EE4F16F12BCEE391E9BA6C6C7B6EDB94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:29:c9:93:19:0d:f9:98:23:e0:5c:4f:c6:2a: 8f:f3:a2:54:50:b6:75:1a:56:ac:b6:03:f7:a1:98: 94:3f:96:a2:c5:37:4c:d4:ad:99:c2:45:bf:be:88: 7e:fe:25:cf:37:21:c9:bc:7b:a1:8a:7c:8a:8b:43: 03:71:02:eb:3f:24:71:b5:af:b7:b7:59:fe:1d:e4: 51:35:5e:23:45:55:4f:8e:dd:97:05:69:1c:75:0d: 20:bc:62:c6:c5:6e:53:9a:e4:66:b1:94:f7:21:85: b9:79:81:9f:56:d3:37:7a:5b:1f:31:11:3a:ab:75: 72:d7:4e:6f:04:22:1f:02:84:4e:f4:14:04:9d:67: 49:6f:86:cc:3b:f4:91:45:b0:20:a5:01:62:d8:71: e2:a1:df:a5:04:b0:f2:2e:35:f2:fb:13:a2:3f:8e: 28:28:e8:57:97:ad:51:02:66:3d:c0:dd:bf:85:e9: db:79:df:2c:bd:d4:56:5a:c4:f8:69:af:73:58:9a: 4f:49:84:c9:6a:35:cc:27:ce:f4:e4:54:2d:b7:29: bd:2a:18:dd:02:c9:63:da:b2:d3:13:01:63:e3:da: fc:ac:de:b3:33:e5:68:3b:32:61:81:35:ea:bf:bc: fb:fe:3f:85:93:39:51:c7:a5:11:10:a4:85:4d:dc: c0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:95:29:83:EE:4F:16:F1:2B:CE:E3:91:E9:BA:6C:6C:7B:6E:DB:94 X509v3 Authority Key Identifier: keyid:13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e20313430333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.117.0/24 Signature Algorithm: sha256WithRSAEncryption 89:f0:f4:b7:39:74:bc:6a:20:a6:b3:6f:ca:cd:e1:be:c4:0c: 5c:db:dc:63:e3:4a:ca:8b:70:97:1f:f5:50:45:24:05:05:17: 3b:75:37:ef:b1:7d:b0:8f:35:83:fa:05:80:95:d1:b1:9d:a5: 22:ed:1f:2e:2d:22:6c:31:d0:3f:a9:a1:86:5e:d5:8b:a0:d1: fb:52:66:16:73:80:9c:9b:74:b1:a3:d6:25:03:d4:a1:60:0c: 2e:2b:c1:72:54:d7:9a:74:a9:d1:cb:0e:68:e9:ff:b4:fc:43: b3:77:c7:3e:cc:6b:7a:79:97:bf:c2:66:95:d6:5e:7f:ac:a9: aa:0b:dc:cf:e8:81:af:62:77:71:2c:05:95:84:2f:42:69:95: cf:98:76:99:f6:de:6d:4a:3c:6e:d2:50:8e:d0:5c:4c:d1:dc: 91:35:81:2e:4f:4d:62:62:34:74:c7:d2:5f:35:fd:69:d8:82: a3:5e:09:62:42:d0:b5:70:c0:b4:56:88:1e:ac:e2:49:9f:54: b0:c1:46:ba:5a:cc:2a:0d:74:84:e4:72:93:ec:af:8b:67:32: aa:62:db:e3:83:60:9c:39:f6:c2:44:f0:6d:5d:71:fe:28:bf: 34:ac:71:31:e2:c6:4b:83:63:8f:2b:32:87:8f:04:f2:88:5d: f8:c6:b9:a5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGP81faIkMwXkdTwLhkbAu9GHScAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM2OTdDNEEyNERDRTc3MDg5Rjc3OENENTA2RDYyMDcx MUI0NDcyQjAeFw0yNTEwMTUxMjEwNDFaFw0yNjEwMTQxMjE1NDFaMDMxMTAvBgNV BAMTKDU4OTUyOTgzRUU0RjE2RjEyQkNFRTM5MUU5QkE2QzZDN0I2RURCOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxKcmTGQ35mCPgXE/GKo/zolRQ tnUaVqy2A/ehmJQ/lqLFN0zUrZnCRb++iH7+Jc83Icm8e6GKfIqLQwNxAus/JHG1 r7e3Wf4d5FE1XiNFVU+O3ZcFaRx1DSC8YsbFblOa5GaxlPchhbl5gZ9W0zd6Wx8x ETqrdXLXTm8EIh8ChE70FASdZ0lvhsw79JFFsCClAWLYceKh36UEsPIuNfL7E6I/ jigo6FeXrVECZj3A3b+F6dt53yy91FZaxPhpr3NYmk9JhMlqNcwnzvTkVC23Kb0q GN0CyWPastMTAWPj2vys3rMz5Wg7MmGBNeq/vPv+P4WTOVHHpREQpIVN3MCvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWJUpg+5PFvErzuOR6bpsbHtu25QwHwYDVR0j BBgwFoAUE2l8SiTc53CJ93jNUG1iBxG0RyswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzM1MDdmMy1mOGMwLTQxMGItYjE5ZS01N2U0OGJmMzIzMDUvMC8xMzY5N0M0QTI0 RENFNzcwODlGNzc4Q0Q1MDZENjIwNzExQjQ0NzJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM2OTdDNEEyNERDRTc3MDg5Rjc3OENENTA2RDYyMDcxMUI0 NDcyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MzUwN2YzLWY4YzAtNDEwYi1i MTllLTU3ZTQ4YmYzMjMwNS8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoXUwDQYJ KoZIhvcNAQELBQADggEBAInw9Lc5dLxqIKazb8rN4b7EDFzb3GPjSsqLcJcf9VBF JAUFFzt1N++xfbCPNYP6BYCV0bGdpSLtHy4tImwx0D+poYZe1Yug0ftSZhZzgJyb dLGj1iUD1KFgDC4rwXJU15p0qdHLDmjp/7T8Q7N3xz7Ma3p5l7/CZpXWXn+sqaoL 3M/oga9id3EsBZWEL0Jplc+Ydpn23m1KPG7SUI7QXEzR3JE1gS5PTWJiNHTH0l81 /WnYgqNeCWJC0LVwwLRWiB6s4kmfVLDBRrpazCoNdITkcpPsr4tnMqpi2+ODYJw5 9sJE8G1dcf4ovzSscTHixkuDY48rMoePBPKIXfjGuaU= -----END CERTIFICATE-----Generated at Mon Oct 20 12:47:46 2025 by rpki-client