$ rpki-client -vvf repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e203538333738.roa File: 3130332e3136312e3131372e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: cgQmKFRKJxdktyV9rczfIpoHQDdH6UPgKR9KvlttEAM= Subject key identifier: 9D:ED:23:C0:A5:B8:13:D4:39:A4:FF:BA:9B:42:53:A6:66:CA:D1:03 Certificate issuer: /CN=13697C4A24DCE77089F778CD506D620711B4472B Certificate serial: 48DE15408B19EFA78F3AE2E709F27457687224BF Authority key identifier: 13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e203538333738.roa Signing time: Sat 18 Oct 2025 15:00:00 +0000 ROA not before: Sat 18 Oct 2025 14:55:00 +0000 ROA not after: Sat 17 Oct 2026 15:00:00 +0000 asID: 58378 IP address blocks: 103.161.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:de:15:40:8b:19:ef:a7:8f:3a:e2:e7:09:f2:74:57:68:72:24:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13697C4A24DCE77089F778CD506D620711B4472B Validity Not Before: Oct 18 14:55:00 2025 GMT Not After : Oct 17 15:00:00 2026 GMT Subject: CN=9DED23C0A5B813D439A4FFBA9B4253A666CAD103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:59:92:46:60:30:a0:0f:7e:d8:bd:aa:de: 90:69:77:ac:c5:d9:2a:cd:bb:e7:1c:de:7a:e6:82: cf:e3:4a:4f:16:b7:9d:b5:7a:41:dd:83:4f:8e:5d: 4b:6d:bc:c3:af:7a:f5:6c:5a:e9:85:a3:94:e8:af: f6:8f:13:93:e5:73:28:86:5f:bf:be:1f:8b:30:9a: dc:35:8c:c7:5a:6c:b1:1f:76:0a:0f:88:92:87:fa: db:05:64:b0:60:55:10:c7:cc:fb:68:ba:c1:bd:27: b1:5f:68:24:a9:8f:01:6c:76:13:59:7e:75:29:65: 10:0a:31:4e:a0:b5:3c:f0:81:62:72:f7:f8:c2:f7: 28:40:35:9d:9e:17:b5:46:f3:a5:6c:ba:78:f6:5c: 37:e5:ab:9e:d0:60:2c:96:8e:ba:87:37:2c:fe:68: 69:c1:7f:49:53:24:0e:c1:ce:80:9c:56:6a:e6:46: 63:2a:54:a0:d9:78:ca:73:bc:38:8d:96:57:2c:89: 65:71:8c:c0:fa:d5:4b:2b:d1:bc:d9:c9:f0:42:b3: 02:64:c3:08:29:80:5e:16:17:ce:38:93:b6:70:36: 76:f2:7c:33:0c:d1:f7:3c:35:c5:ce:d5:e4:97:57: 22:60:b7:9a:0d:e1:24:ad:22:85:5e:a8:9b:8b:70: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:ED:23:C0:A5:B8:13:D4:39:A4:FF:BA:9B:42:53:A6:66:CA:D1:03 X509v3 Authority Key Identifier: keyid:13:69:7C:4A:24:DC:E7:70:89:F7:78:CD:50:6D:62:07:11:B4:47:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/13697C4A24DCE77089F778CD506D620711B4472B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13697C4A24DCE77089F778CD506D620711B4472B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b73507f3-f8c0-410b-b19e-57e48bf32305/0/3130332e3136312e3131372e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.117.0/24 Signature Algorithm: sha256WithRSAEncryption 16:5b:d0:a7:68:93:0e:0d:5d:af:d3:ed:88:15:8d:11:8b:ab: 14:e8:dc:e6:78:9f:73:7f:e9:e1:6e:f2:89:95:d9:c2:a5:ad: 5d:3c:60:5e:09:23:02:86:8b:25:d7:c9:ef:70:2e:c8:81:e6: cb:82:06:b0:6d:b0:cf:91:8f:ed:2d:ab:3a:96:a7:77:52:13: 71:09:d6:56:5b:a6:af:63:a4:18:2f:c1:6a:25:95:5c:5f:76: 44:f3:39:82:81:d5:54:da:40:0e:71:62:b8:58:4e:95:45:d1: 4b:bb:e3:37:2b:ae:db:4d:9e:1b:91:11:d5:f6:af:e1:63:e3: b6:ff:31:a2:d3:35:52:54:09:77:a2:a3:07:52:bb:78:e5:f5: 64:c7:74:0f:9e:29:0a:db:b3:d1:b4:37:61:78:b8:c5:ae:11: 4c:17:ef:04:fb:e3:ad:25:97:e9:59:be:37:0d:7b:a2:76:56: c6:a6:c7:96:94:05:23:cf:14:ab:36:21:4f:47:e8:65:6e:84: fc:5b:62:10:da:26:63:62:8c:0d:99:36:98:6a:86:ed:21:11: be:5b:ed:dc:22:f2:34:89:85:da:b3:09:9c:1b:b8:10:99:3e: e1:f3:e5:99:4b:70:e7:00:86:2e:d9:3f:a2:a3:de:57:3b:98: 0c:56:cf:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSN4VQIsZ76ePOuLnCfJ0V2hyJL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM2OTdDNEEyNERDRTc3MDg5Rjc3OENENTA2RDYyMDcx MUI0NDcyQjAeFw0yNTEwMTgxNDU1MDBaFw0yNjEwMTcxNTAwMDBaMDMxMTAvBgNV BAMTKDlERUQyM0MwQTVCODEzRDQzOUE0RkZCQTlCNDI1M0E2NjZDQUQxMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvzVmSRmAwoA9+2L2q3pBpd6zF 2SrNu+cc3nrmgs/jSk8Wt521ekHdg0+OXUttvMOvevVsWumFo5Tor/aPE5PlcyiG X7++H4swmtw1jMdabLEfdgoPiJKH+tsFZLBgVRDHzPtousG9J7FfaCSpjwFsdhNZ fnUpZRAKMU6gtTzwgWJy9/jC9yhANZ2eF7VG86Vsunj2XDflq57QYCyWjrqHNyz+ aGnBf0lTJA7BzoCcVmrmRmMqVKDZeMpzvDiNllcsiWVxjMD61Usr0bzZyfBCswJk wwgpgF4WF844k7ZwNnbyfDMM0fc8NcXO1eSXVyJgt5oN4SStIoVeqJuLcEHZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUne0jwKW4E9Q5pP+6m0JTpmbK0QMwHwYDVR0j BBgwFoAUE2l8SiTc53CJ93jNUG1iBxG0RyswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzM1MDdmMy1mOGMwLTQxMGItYjE5ZS01N2U0OGJmMzIzMDUvMC8xMzY5N0M0QTI0 RENFNzcwODlGNzc4Q0Q1MDZENjIwNzExQjQ0NzJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM2OTdDNEEyNERDRTc3MDg5Rjc3OENENTA2RDYyMDcxMUI0 NDcyQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MzUwN2YzLWY4YzAtNDEwYi1i MTllLTU3ZTQ4YmYzMjMwNS8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6F1MA0GCSqG SIb3DQEBCwUAA4IBAQAWW9CnaJMODV2v0+2IFY0Ri6sU6NzmeJ9zf+nhbvKJldnC pa1dPGBeCSMChosl18nvcC7IgebLggawbbDPkY/tLas6lqd3UhNxCdZWW6avY6QY L8FqJZVcX3ZE8zmCgdVU2kAOcWK4WE6VRdFLu+M3K67bTZ4bkRHV9q/hY+O2/zGi 0zVSVAl3oqMHUrt45fVkx3QPnikK27PRtDdheLjFrhFMF+8E++OtJZfpWb43DXui dlbGpseWlAUjzxSrNiFPR+hlboT8W2IQ2iZjYowNmTaYaobtIRG+W+3cIvI0iYXa swmcG7gQmT7h8+WZS3DnAIYu2T+io95XO5gMVs8R -----END CERTIFICATE-----Generated at Mon Oct 20 15:54:46 2025 by rpki-client