$ rpki-client -vvf repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa File: 3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa (raw, json) Hash identifier: ilhPhYMwxjxcNC74Yon3xYNd0uQUNUNF+7YCYR6VBOw= Subject key identifier: 04:1C:91:8B:F8:21:27:F9:4F:58:78:A5:8D:A1:D1:C1:00:72:7A:8A Certificate issuer: /CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Certificate serial: 7BC07B801323871C9E2C950DC46D916EE2979D46 Authority key identifier: 3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa Signing time: Wed 01 Oct 2025 06:00:00 +0000 ROA not before: Wed 01 Oct 2025 05:55:00 +0000 ROA not after: Wed 30 Sep 2026 06:00:00 +0000 asID: 141645 IP address blocks: 103.179.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 15:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c0:7b:80:13:23:87:1c:9e:2c:95:0d:c4:6d:91:6e:e2:97:9d:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E788037924369AA3B8E52A5857804BE5D285FA2 Validity Not Before: Oct 1 05:55:00 2025 GMT Not After : Sep 30 06:00:00 2026 GMT Subject: CN=041C918BF82127F94F5878A58DA1D1C100727A8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:da:7e:e4:16:ad:a3:3c:5c:62:9f:3a:55: c6:ab:3f:de:58:e6:bb:36:da:73:48:61:d5:e4:06: 94:21:1f:75:62:fd:81:21:71:bc:29:fe:3e:07:9c: a1:87:5c:0b:18:74:6c:4b:b7:93:05:d5:43:dc:be: 66:8e:d5:08:ad:f5:1c:1f:0e:48:c0:a6:cc:6b:ad: c4:2e:48:5a:c4:c4:3f:f4:01:37:2f:63:05:d1:8a: 1c:99:5c:4d:35:97:42:a4:46:9d:bc:1f:e4:41:00: ca:0c:c0:ed:9d:01:3a:5b:fe:c4:64:ac:de:ff:c4: ca:b3:8a:05:bc:24:eb:8a:01:a1:5a:7b:6f:b9:85: cc:1d:24:6d:0a:95:a4:05:13:cd:b2:e5:8d:48:88: b6:94:2c:cf:0d:4a:04:ba:a6:94:5c:24:0c:74:ce: a6:03:89:b7:b3:d3:6c:a5:2c:60:68:3b:c0:c0:87: d4:96:6d:2f:18:25:91:99:f7:a8:84:f4:0e:1a:8f: bc:ec:bb:37:d7:8e:8b:19:40:17:af:a4:fc:82:70: fc:1d:8a:93:cb:1a:23:cb:f3:18:55:89:cb:37:d7: 65:b2:c6:e1:67:ce:a6:62:e8:3f:ef:4e:7d:98:ce: 31:7a:24:97:bb:a8:c2:a6:06:51:5c:72:68:43:32: d9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1C:91:8B:F8:21:27:F9:4F:58:78:A5:8D:A1:D1:C1:00:72:7A:8A X509v3 Authority Key Identifier: keyid:3E:78:80:37:92:43:69:AA:3B:8E:52:A5:85:78:04:BE:5D:28:5F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3E788037924369AA3B8E52A5857804BE5D285FA2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E788037924369AA3B8E52A5857804BE5D285FA2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b853afdd-2e09-4773-8be4-6fd0ee90b040/0/3130332e3137392e3131372e302f32342d3234203d3e20313431363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.117.0/24 Signature Algorithm: sha256WithRSAEncryption 83:0b:82:df:68:b4:08:23:fc:df:97:0f:40:5c:7a:a3:63:7b: 73:74:6d:72:6c:40:da:93:60:a5:50:1b:48:9e:ed:80:27:05: 73:b1:2c:7c:c2:fc:27:9b:09:4f:dc:16:73:2a:21:cb:ee:1d: 8b:5c:b0:0f:62:05:1e:0e:db:32:2a:1a:0c:b2:bb:4b:0e:22: 07:cf:a2:9d:ef:fd:73:34:be:5f:8f:a6:d2:f4:c2:cf:19:30: b4:9f:22:3e:ae:e0:e8:49:cd:b3:c6:1b:36:ba:1f:98:f1:3c: 40:91:d9:90:fd:35:c8:21:69:cd:7a:23:7c:8d:0d:6b:71:f4: 7f:23:72:2f:c0:53:8e:f6:35:6d:4a:4d:2c:3a:9e:07:16:ab: f4:24:2f:a5:2b:b1:b5:52:03:35:63:5e:f9:3d:40:47:77:59: f8:8e:8f:91:e6:89:7b:fc:bf:f5:dd:77:21:c7:f3:ce:6a:8e: 31:92:9a:93:a1:37:8d:63:48:1e:7f:9f:50:13:bf:cf:ee:78: bc:0b:ef:8c:91:a3:b1:50:49:17:15:8c:d0:52:5d:c9:b4:db: 48:22:fb:f0:09:82:45:8e:f5:98:15:48:f7:68:7b:46:1c:9e: fe:a5:54:33:3b:a1:35:f6:0f:eb:8c:bc:c5:04:d7:9a:60:e5: 52:ca:86:a2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe8B7gBMjhxyeLJUNxG2RbuKXnUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U3ODgwMzc5MjQzNjlBQTNCOEU1MkE1ODU3ODA0QkU1 RDI4NUZBMjAeFw0yNTEwMDEwNTU1MDBaFw0yNjA5MzAwNjAwMDBaMDMxMTAvBgNV BAMTKDA0MUM5MThCRjgyMTI3Rjk0RjU4NzhBNThEQTFEMUMxMDA3MjdBOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFRtp+5BatozxcYp86VcarP95Y 5rs22nNIYdXkBpQhH3Vi/YEhcbwp/j4HnKGHXAsYdGxLt5MF1UPcvmaO1Qit9Rwf DkjApsxrrcQuSFrExD/0ATcvYwXRihyZXE01l0KkRp28H+RBAMoMwO2dATpb/sRk rN7/xMqzigW8JOuKAaFae2+5hcwdJG0KlaQFE82y5Y1IiLaULM8NSgS6ppRcJAx0 zqYDibez02ylLGBoO8DAh9SWbS8YJZGZ96iE9A4aj7zsuzfXjosZQBevpPyCcPwd ipPLGiPL8xhVics312WyxuFnzqZi6D/vTn2YzjF6JJe7qMKmBlFccmhDMtk5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBByRi/ghJ/lPWHiljaHRwQByeoowHwYDVR0j BBgwFoAUPniAN5JDaao7jlKlhXgEvl0oX6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODUzYWZkZC0yZTA5LTQ3NzMtOGJlNC02ZmQwZWU5MGIwNDAvMC8zRTc4ODAzNzky NDM2OUFBM0I4RTUyQTU4NTc4MDRCRTVEMjg1RkEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U3ODgwMzc5MjQzNjlBQTNCOEU1MkE1ODU3ODA0QkU1RDI4 NUZBMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTNhZmRkLTJlMDktNDc3My04 YmU0LTZmZDBlZTkwYjA0MC8wLzMxMzAzMzJlMzEzNzM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABns3UwDQYJ KoZIhvcNAQELBQADggEBAIMLgt9otAgj/N+XD0BceqNje3N0bXJsQNqTYKVQG0ie 7YAnBXOxLHzC/CebCU/cFnMqIcvuHYtcsA9iBR4O2zIqGgyyu0sOIgfPop3v/XM0 vl+PptL0ws8ZMLSfIj6u4OhJzbPGGza6H5jxPECR2ZD9Ncghac16I3yNDWtx9H8j ci/AU472NW1KTSw6ngcWq/QkL6UrsbVSAzVjXvk9QEd3WfiOj5HmiXv8v/XddyHH 885qjjGSmpOhN41jSB5/n1ATv8/ueLwL74yRo7FQSRcVjNBSXcm020gi+/AJgkWO 9ZgVSPdoe0Ycnv6lVDM7oTX2D+uMvMUE15pg5VLKhqI= -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:57 2025 by rpki-client