$ rpki-client -vvf repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa File: 3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa (raw, json) Hash identifier: T+TvJ8L62bCZqFmpIphffr8c4LXSlLo4atPH9poDMJ0= Subject key identifier: AC:ED:11:AB:8D:91:BF:7D:DA:AC:A9:F2:DB:83:67:42:29:8D:41:B5 Certificate issuer: /CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Certificate serial: 1C7EEF37A1162E8EA421CBE8F8BE432208D8D222 Authority key identifier: 3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa Signing time: Wed 01 Oct 2025 06:00:00 +0000 ROA not before: Wed 01 Oct 2025 05:55:00 +0000 ROA not after: Wed 30 Sep 2026 06:00:00 +0000 asID: 141645 IP address blocks: 103.162.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 15:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7e:ef:37:a1:16:2e:8e:a4:21:cb:e8:f8:be:43:22:08:d8:d2:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Validity Not Before: Oct 1 05:55:00 2025 GMT Not After : Sep 30 06:00:00 2026 GMT Subject: CN=ACED11AB8D91BF7DDAACA9F2DB836742298D41B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:35:ca:02:2f:87:53:c7:69:f1:6e:3a:b9:27: ed:3b:85:f2:60:d6:66:c1:7e:a8:32:bd:b8:1f:fd: d9:54:fe:f0:49:be:70:1f:77:c3:58:cb:64:b9:1d: 62:a1:3e:7b:9b:0e:19:b5:94:b2:91:91:c5:d9:a4: 6c:c1:38:1c:58:e3:ef:d8:0c:fd:4a:16:ad:64:07: 0d:41:34:08:f3:a5:77:07:6b:53:14:6d:b0:80:2a: 76:fe:bd:a3:08:13:ac:cf:78:ed:ab:91:3e:5b:56: 25:fa:bb:86:de:80:72:67:d3:4e:ef:d1:27:9f:cd: d7:b8:13:37:a9:7a:5a:97:e0:0f:a1:02:cd:45:39: 49:5e:f1:3f:30:bf:9e:a1:2d:a3:0b:58:a6:60:58: 2f:ba:80:fb:2b:0f:3a:2c:38:a8:b1:0c:ee:df:f6: 32:fd:d4:ac:d2:f6:49:0a:55:74:47:dd:21:da:e2: 0e:69:1d:6a:7f:af:ae:0e:3e:54:78:d6:31:86:b5: f4:0a:5b:45:7c:90:8b:8e:5b:4c:ea:a2:c8:64:75: d0:a7:5e:89:1c:4c:90:c4:66:84:b0:cb:a7:e9:42: c2:cf:49:db:33:46:86:1d:7a:85:34:e5:d4:5a:94: 6a:c6:e8:44:e7:8b:e7:34:ea:ed:64:6a:71:bb:11: de:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:ED:11:AB:8D:91:BF:7D:DA:AC:A9:F2:DB:83:67:42:29:8D:41:B5 X509v3 Authority Key Identifier: keyid:3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3136322e35342e302f32342d3234203d3e20313431363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.54.0/24 Signature Algorithm: sha256WithRSAEncryption b7:1c:fc:f8:8e:b1:8c:4f:25:b0:1b:e8:6c:67:49:a8:53:c5: ed:89:a8:0d:e4:5a:90:6c:c1:be:65:7e:eb:0e:a5:13:7c:89: e8:d8:1d:43:4a:ff:5c:80:63:6a:9d:46:b4:90:32:53:63:50: c7:2d:50:3d:56:72:a5:a8:ed:de:78:38:e5:10:53:4a:ce:68: 8b:f5:58:72:2e:b4:5b:cd:8e:d9:50:bb:d4:3b:c9:b6:92:e2: c3:23:0f:ff:1e:6e:bf:46:ab:3a:06:58:2e:7a:c9:7a:a1:6a: 15:aa:a0:7e:a1:83:94:fd:0b:19:ad:58:d1:bd:cf:63:33:47: 98:9a:28:7f:19:d2:c0:a4:8d:e8:09:89:e3:07:f1:93:31:bb: cf:56:5c:ea:14:19:7d:f9:93:50:a1:38:7d:e4:67:3a:2b:ec: 64:c1:18:39:5c:dd:00:26:38:00:9b:fe:a7:d3:d1:42:74:00: 14:35:07:e1:68:51:2e:00:61:e6:83:44:63:4c:43:af:53:57: 7b:46:97:40:73:4d:5f:dd:9f:ed:9c:57:d8:86:c4:e4:5b:7e: 3d:9e:d5:3f:a3:96:0e:de:18:87:a9:a9:09:05:83:20:55:33: b8:4e:f5:81:e4:70:b0:b2:ab:83:94:6a:b2:41:22:7e:dd:ab: 7d:3a:a3:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHH7vN6EWLo6kIcvo+L5DIgjY0iIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U3ODgwMzc5MjQzNjlBQTNCOEU1MkE1ODU3ODA0QkU1 RDI4NUZBMjAeFw0yNTEwMDEwNTU1MDBaFw0yNjA5MzAwNjAwMDBaMDMxMTAvBgNV BAMTKEFDRUQxMUFCOEQ5MUJGN0REQUFDQTlGMkRCODM2NzQyMjk4RDQxQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjNcoCL4dTx2nxbjq5J+07hfJg 1mbBfqgyvbgf/dlU/vBJvnAfd8NYy2S5HWKhPnubDhm1lLKRkcXZpGzBOBxY4+/Y DP1KFq1kBw1BNAjzpXcHa1MUbbCAKnb+vaMIE6zPeO2rkT5bViX6u4begHJn007v 0Sefzde4EzepelqX4A+hAs1FOUle8T8wv56hLaMLWKZgWC+6gPsrDzosOKixDO7f 9jL91KzS9kkKVXRH3SHa4g5pHWp/r64OPlR41jGGtfQKW0V8kIuOW0zqoshkddCn XokcTJDEZoSwy6fpQsLPSdszRoYdeoU05dRalGrG6ETni+c06u1kanG7Ed5dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrO0Rq42Rv33arKny24NnQimNQbUwHwYDVR0j BBgwFoAUPniAN5JDaao7jlKlhXgEvl0oX6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODUzYWZkZC0yZTA5LTQ3NzMtOGJlNC02ZmQwZWU5MGIwNDAvMC8zRTc4ODAzNzky NDM2OUFBM0I4RTUyQTU4NTc4MDRCRTVEMjg1RkEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U3ODgwMzc5MjQzNjlBQTNCOEU1MkE1ODU3ODA0QkU1RDI4 NUZBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTNhZmRkLTJlMDktNDc3My04 YmU0LTZmZDBlZTkwYjA0MC8wLzMxMzAzMzJlMzEzNjMyMmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6I2MA0GCSqG SIb3DQEBCwUAA4IBAQC3HPz4jrGMTyWwG+hsZ0moU8XtiagN5FqQbMG+ZX7rDqUT fIno2B1DSv9cgGNqnUa0kDJTY1DHLVA9VnKlqO3eeDjlEFNKzmiL9VhyLrRbzY7Z ULvUO8m2kuLDIw//Hm6/Rqs6Blguesl6oWoVqqB+oYOU/QsZrVjRvc9jM0eYmih/ GdLApI3oCYnjB/GTMbvPVlzqFBl9+ZNQoTh95Gc6K+xkwRg5XN0AJjgAm/6n09FC dAAUNQfhaFEuAGHmg0RjTEOvU1d7RpdAc01f3Z/tnFfYhsTkW349ntU/o5YO3hiH qakJBYMgVTO4TvWB5HCwsquDlGqyQSJ+3at9OqOe -----END CERTIFICATE-----Generated at Mon Oct 20 18:03:27 2025 by rpki-client