$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3130332e342e332e302f32342d3234203d3e203138303539.roa File: 3130332e342e332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: vMgDw1qwfbGVUxpW2JFi5Z6lc79MBgc6WMYR1wxC7T8= Subject key identifier: 14:13:CE:AF:13:FC:4E:56:23:BA:55:1F:2E:C7:E6:9A:F9:70:1F:94 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 553D3F33986AE33E6CFDD75FF663EEEEF5C4353D Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3130332e342e332e302f32342d3234203d3e203138303539.roa Signing time: Fri 26 Sep 2025 03:00:01 +0000 ROA not before: Fri 26 Sep 2025 02:55:01 +0000 ROA not after: Fri 25 Sep 2026 03:00:01 +0000 asID: 18059 IP address blocks: 103.4.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:3d:3f:33:98:6a:e3:3e:6c:fd:d7:5f:f6:63:ee:ee:f5:c4:35:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Sep 26 02:55:01 2025 GMT Not After : Sep 25 03:00:01 2026 GMT Subject: CN=1413CEAF13FC4E5623BA551F2EC7E69AF9701F94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f0:3d:22:18:a9:86:f9:c8:60:28:38:71:2e: cd:5e:b0:72:88:f4:c2:02:9d:79:05:89:d0:56:a6: 28:dc:b2:09:ad:5e:23:02:0c:25:15:e4:53:5f:21: f7:93:1f:eb:78:b5:c9:c3:b7:e4:4a:7c:1c:4d:c3: 61:a5:e2:0f:dc:01:03:fc:d2:05:12:3f:83:ba:19: 80:19:e8:23:92:30:1f:b8:8a:5e:05:df:e9:ec:97: ed:e1:e2:be:91:13:9f:2f:51:43:52:86:d1:8d:b7: 32:c1:98:57:62:d4:c0:42:42:ac:58:4e:11:ac:d3: ef:01:ad:90:12:da:6b:5a:48:5c:db:f0:17:fc:db: 5b:1c:84:57:0b:be:75:18:c9:44:7b:6e:c4:05:14: 07:ab:1b:4d:02:8c:f3:48:99:99:92:b7:b8:48:5d: 36:3a:7c:34:74:e0:54:45:51:49:d0:79:c8:ae:77: 34:26:0b:53:b4:55:95:b2:61:8a:ff:05:1e:0f:be: a2:84:d6:0e:a6:cc:0c:31:aa:18:81:d4:54:c6:24: 08:14:e0:b4:88:0f:01:65:6c:f8:1f:f7:d4:ef:47: 23:7f:3a:07:8a:c4:90:00:a2:51:f8:04:72:43:25: 24:26:75:04:94:b4:7e:b5:05:ee:9a:25:e3:da:b1: 50:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:13:CE:AF:13:FC:4E:56:23:BA:55:1F:2E:C7:E6:9A:F9:70:1F:94 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3130332e342e332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.3.0/24 Signature Algorithm: sha256WithRSAEncryption 44:47:70:85:72:3f:aa:6e:3f:ee:ed:91:ea:2b:b3:fb:06:ca: e9:69:c1:ba:a1:49:4c:c9:7f:45:13:3a:7b:63:fb:f5:ee:98: fb:b5:cc:54:7c:ee:50:ae:32:da:b1:0b:fa:fe:f1:4c:6d:1c: 7f:ce:d0:72:c5:12:e1:ff:d3:f9:1f:76:03:b3:1f:7c:5c:50: 8d:ef:8b:c4:34:28:ce:86:e9:16:44:4e:62:48:d6:e5:50:53: db:9b:6d:c3:89:7d:7b:db:24:83:f5:a4:da:9d:be:44:67:4f: 38:6e:1c:63:7d:c4:88:55:9b:3d:ce:a7:6d:27:37:2a:ea:b1: e6:1f:3a:80:ee:0b:a3:3b:f7:3c:2f:1b:e4:aa:5c:bd:be:85: c9:3a:79:71:b3:cd:aa:4f:7d:af:71:60:2a:29:bb:d2:45:11: 9f:46:26:ea:3d:ae:95:7b:39:a2:61:26:e4:aa:15:48:1f:54: 28:f0:67:8a:26:79:5b:9f:9c:b8:2a:29:46:b2:3b:f3:4f:a1: 18:4e:d2:16:0c:10:c8:ab:ed:7f:8d:98:95:e1:06:3e:88:7e: 3f:6f:cc:b8:62:42:f1:02:87:7a:0c:db:ad:a8:b5:dd:10:79: c7:15:53:9f:0e:09:8e:2c:27:14:1a:a1:24:5d:16:c0:d4:a8: fd:4d:1f:f3 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUVT0/M5hq4z5s/ddf9mPu7vXENT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTA5MjYwMjU1MDFaFw0yNjA5MjUwMzAwMDFaMDMxMTAvBgNV BAMTKDE0MTNDRUFGMTNGQzRFNTYyM0JBNTUxRjJFQzdFNjlBRjk3MDFGOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc8D0iGKmG+chgKDhxLs1esHKI 9MICnXkFidBWpijcsgmtXiMCDCUV5FNfIfeTH+t4tcnDt+RKfBxNw2Gl4g/cAQP8 0gUSP4O6GYAZ6COSMB+4il4F3+nsl+3h4r6RE58vUUNShtGNtzLBmFdi1MBCQqxY ThGs0+8BrZAS2mtaSFzb8Bf821schFcLvnUYyUR7bsQFFAerG00CjPNImZmSt7hI XTY6fDR04FRFUUnQeciudzQmC1O0VZWyYYr/BR4PvqKE1g6mzAwxqhiB1FTGJAgU 4LSIDwFlbPgf99TvRyN/OgeKxJAAolH4BHJDJSQmdQSUtH61Be6aJePasVDRAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUFBPOrxP8TlYjulUfLsfmmvlwH5QwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzI4MzY3NjMtMTJiNi00ZDhmLWFk MGItNGNkNWI2MTk1OWVmLzAvMzEzMDMzMmUzNDJlMzMyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwQDMA0GCSqGSIb3DQEBCwUA A4IBAQBER3CFcj+qbj/u7ZHqK7P7BsrpacG6oUlMyX9FEzp7Y/v17pj7tcxUfO5Q rjLasQv6/vFMbRx/ztByxRLh/9P5H3YDsx98XFCN74vENCjOhukWRE5iSNblUFPb m23DiX172ySD9aTanb5EZ084bhxjfcSIVZs9zqdtJzcq6rHmHzqA7gujO/c8Lxvk qly9voXJOnlxs82qT32vcWAqKbvSRRGfRibqPa6VezmiYSbkqhVIH1Qo8GeKJnlb n5y4KilGsjvzT6EYTtIWDBDIq+1/jZiV4QY+iH4/b8y4YkLxAod6DNutqLXdEHnH FVOfDgmOLCcUGqEkXRbA1Kj9TR/z -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:42 2025 by rpki-client