$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32332d3233203d3e203436303233.roa File: 3130332e3130362e37362e302f32332d3233203d3e203436303233.roa (raw, json) Hash identifier: NaHe5YrxTvb1T+B86yAscpluwifFSNcBhISUAGBKlIw= Subject key identifier: 80:F4:42:17:DA:7D:E9:3D:B9:37:84:D4:04:7A:C4:29:4C:47:68:4A Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 13D0EBD00914EFC8B52C387100C610C1496ACF2F Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32332d3233203d3e203436303233.roa Signing time: Tue 07 Oct 2025 09:00:00 +0000 ROA not before: Tue 07 Oct 2025 08:55:00 +0000 ROA not after: Tue 06 Oct 2026 09:00:00 +0000 asID: 46023 IP address blocks: 103.106.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d0:eb:d0:09:14:ef:c8:b5:2c:38:71:00:c6:10:c1:49:6a:cf:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Oct 7 08:55:00 2025 GMT Not After : Oct 6 09:00:00 2026 GMT Subject: CN=80F44217DA7DE93DB93784D4047AC4294C47684A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6a:9e:4e:12:b3:50:0e:af:97:75:17:b3:53: 88:04:1f:87:d6:85:91:46:a6:ec:d4:27:b0:8d:fd: b0:f1:20:b9:4a:b6:91:6c:ec:53:ef:82:8e:43:2c: 83:79:ae:6a:42:00:24:84:47:45:77:2b:10:7d:47: 9a:b5:e9:c6:1f:e1:db:24:cf:e7:5f:fa:b9:c4:a0: 77:3c:9a:29:2c:44:e1:80:50:b3:af:03:73:f5:14: 99:3b:a7:53:13:32:dd:5d:f4:01:c9:c3:bb:c1:fa: ae:ed:f2:0b:e5:26:ac:1f:bf:8d:8f:7d:59:b8:b9: 14:77:be:69:c4:1a:1d:e4:6b:56:d0:b8:f0:af:6d: ed:34:ac:5b:9d:ad:af:a3:31:41:cf:b4:2c:47:9e: 73:5c:03:c8:c3:7c:ef:08:42:b1:74:4b:5f:43:d1: 83:33:74:a0:8b:9c:c8:4d:3b:08:f1:0d:cb:74:99: 39:57:88:80:32:35:5e:86:92:51:7f:e0:99:30:a6: 02:cc:16:41:d4:46:da:9d:a2:ff:76:dd:be:85:9d: 74:28:c0:b9:50:65:e2:ac:f7:57:b5:cf:18:cf:7d: 59:36:54:1c:05:14:23:48:cb:56:1e:28:c7:f2:c8: 5f:8f:da:6a:75:3e:23:bd:50:96:cc:a1:17:b2:56: 0f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F4:42:17:DA:7D:E9:3D:B9:37:84:D4:04:7A:C4:29:4C:47:68:4A X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32332d3233203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.76.0/23 Signature Algorithm: sha256WithRSAEncryption 20:bd:e0:61:11:4b:e2:e1:54:5b:12:d0:33:a5:30:b6:f8:8e: be:61:d3:4f:4a:5b:13:51:7a:f9:3c:14:48:30:f0:cf:e0:8d: 18:01:2a:8c:10:96:ad:a0:59:13:3e:76:71:9b:52:a8:9a:e0: 4b:d0:ba:1a:17:c1:cc:f0:c0:51:68:cf:ab:b5:12:42:bd:8e: 64:5a:18:a1:7e:52:fb:97:7f:b7:d1:2e:a6:6c:ec:16:9b:b4: d4:11:77:ce:3b:a5:c8:25:20:4f:73:44:bd:be:21:92:4f:b7: 9a:15:cf:99:b0:3d:1b:30:73:2a:cf:bd:f3:86:cd:53:b7:8b: 57:17:15:ff:fd:f5:ad:a6:0b:b0:5a:b7:ac:0f:70:7b:0a:b6: b4:60:3a:40:a1:66:b4:3e:f2:40:fb:0e:af:99:cc:e6:54:e4: ff:4f:e4:be:12:d9:4e:83:d0:00:ac:e4:d0:6d:1e:6e:53:5f: e7:96:d8:9f:2a:c4:03:7c:06:a5:aa:0e:52:78:e4:dc:1e:95: 3b:7c:1f:a4:3f:ea:8f:4d:f1:89:fe:75:0a:0a:ca:9b:20:ac: 53:76:cd:86:9b:bb:27:f7:8f:0e:b3:a5:04:d6:f1:a1:f7:1c: 2a:5d:b4:40:9e:82:d6:f7:19:ad:09:5b:00:43:c1:67:7b:40: f3:55:39:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE9Dr0AkU78i1LDhxAMYQwUlqzy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNTEwMDcwODU1MDBaFw0yNjEwMDYwOTAwMDBaMDMxMTAvBgNV BAMTKDgwRjQ0MjE3REE3REU5M0RCOTM3ODRENDA0N0FDNDI5NEM0NzY4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXap5OErNQDq+XdRezU4gEH4fW hZFGpuzUJ7CN/bDxILlKtpFs7FPvgo5DLIN5rmpCACSER0V3KxB9R5q16cYf4dsk z+df+rnEoHc8miksROGAULOvA3P1FJk7p1MTMt1d9AHJw7vB+q7t8gvlJqwfv42P fVm4uRR3vmnEGh3ka1bQuPCvbe00rFudra+jMUHPtCxHnnNcA8jDfO8IQrF0S19D 0YMzdKCLnMhNOwjxDct0mTlXiIAyNV6GklF/4JkwpgLMFkHURtqdov923b6FnXQo wLlQZeKs91e1zxjPfVk2VBwFFCNIy1YeKMfyyF+P2mp1PiO9UJbMoReyVg/pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgPRCF9p96T25N4TUBHrEKUxHaEowHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZGQ2MTM1LTU0OGMtNDg4MS1h Zjc4LTkzYWY5ZjJhMjUxNi8wLzMxMzAzMzJlMzEzMDM2MmUzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdqTDANBgkqhkiG 9w0BAQsFAAOCAQEAIL3gYRFL4uFUWxLQM6UwtviOvmHTT0pbE1F6+TwUSDDwz+CN GAEqjBCWraBZEz52cZtSqJrgS9C6GhfBzPDAUWjPq7USQr2OZFoYoX5S+5d/t9Eu pmzsFpu01BF3zjulyCUgT3NEvb4hkk+3mhXPmbA9GzBzKs+984bNU7eLVxcV//31 raYLsFq3rA9wewq2tGA6QKFmtD7yQPsOr5nM5lTk/0/kvhLZToPQAKzk0G0eblNf 55bYnyrEA3wGpaoOUnjk3B6VO3wfpD/qj03xif51CgrKmyCsU3bNhpu7J/ePDrOl BNbxofccKl20QJ6C1vcZrQlbAEPBZ3tA81U58Q== -----END CERTIFICATE-----Generated at Mon Oct 20 20:55:12 2025 by rpki-client