$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32342d3234203d3e203436303233.roa File: 3130332e3130362e37362e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: +PmFbdoieOm1HYaiDNoJSgRpm6MfVAVtuXNpglouU7g= Subject key identifier: 96:64:72:0E:D6:A8:51:58:B4:E8:06:A9:80:71:94:F9:34:56:B2:74 Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 3F4E798B55430926CE620F39C3E77D3A7D3B3AEA Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32342d3234203d3e203436303233.roa Signing time: Tue 07 Oct 2025 09:00:00 +0000 ROA not before: Tue 07 Oct 2025 08:55:00 +0000 ROA not after: Tue 06 Oct 2026 09:00:00 +0000 asID: 46023 IP address blocks: 103.106.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:4e:79:8b:55:43:09:26:ce:62:0f:39:c3:e7:7d:3a:7d:3b:3a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Oct 7 08:55:00 2025 GMT Not After : Oct 6 09:00:00 2026 GMT Subject: CN=9664720ED6A85158B4E806A9807194F93456B274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:54:25:74:f5:dd:d9:fd:ff:5c:64:78:6b:d8: 11:36:27:09:49:09:87:22:f8:18:69:1b:bc:14:14: ba:9a:f4:26:91:e5:db:88:8e:61:70:8f:ee:73:37: 7a:68:1e:15:97:ad:b9:e9:52:12:40:3c:64:76:d0: b1:99:e1:05:a4:4b:15:bf:a5:9b:8d:8d:8e:0c:02: c4:91:9f:d7:ad:23:67:df:65:a7:5b:c9:36:9c:93: a8:7a:20:24:a7:18:9f:d7:43:2e:da:78:a9:97:e6: 93:3a:73:f4:a9:74:d5:dd:ce:d6:b7:fa:85:b4:16: 95:17:aa:e7:9a:7d:48:1d:63:d2:2b:83:8d:92:c0: cf:aa:65:8d:d3:d0:4a:86:44:6a:a9:cc:fc:fd:d9: b4:06:b8:45:f0:a1:ef:88:f2:61:09:4d:a6:05:bf: 15:5d:fa:8c:7b:5b:12:70:50:52:f4:84:eb:58:88: d6:2a:e1:c8:00:f2:7b:10:3b:a8:2b:81:c4:e2:c2: 62:2f:f9:1d:8d:e0:68:2f:6c:98:7c:36:68:bc:fd: 55:6f:db:92:13:1c:cd:54:a6:98:a5:8a:44:55:30: cd:b0:18:9d:d8:ae:c2:40:cd:fc:e4:71:46:3a:66: 0f:46:00:33:bc:40:6f:b9:47:38:0d:38:ea:f5:8b: ea:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:64:72:0E:D6:A8:51:58:B4:E8:06:A9:80:71:94:F9:34:56:B2:74 X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.76.0/24 Signature Algorithm: sha256WithRSAEncryption 90:d6:ac:f0:84:0d:b9:79:c3:35:04:ad:74:e2:55:69:8d:02: d6:4d:4f:7c:14:e5:a2:82:39:fa:9b:03:82:7e:b6:6b:fb:5c: 94:04:11:c0:9a:ef:b3:0b:ca:06:53:61:0d:61:31:91:7d:93: 2b:14:17:fb:b3:80:6f:c4:89:0a:7d:66:9f:b7:a7:73:0c:b4: 4e:6a:a0:91:ec:6d:4d:ea:10:eb:ce:3d:5a:1d:f7:65:30:da: 9f:3f:8f:11:55:77:41:34:84:6a:49:52:38:ce:1d:f0:05:6c: 8c:14:cf:e4:14:0a:e4:b0:f5:42:80:3b:65:9a:73:fa:4d:d1: dc:7b:82:7a:38:4d:df:fe:72:61:9a:26:ce:cb:7b:da:d5:3f: 78:a6:bc:c1:41:47:e6:cb:f0:90:2d:bf:3c:d8:6e:f0:ed:91: d8:95:09:4e:f6:ac:ad:89:ca:cc:0a:f3:b7:4f:ee:da:87:60: 73:9e:9a:7c:60:68:88:fc:dd:2e:84:7e:87:cc:83:49:17:65: 8c:b9:cb:c5:84:ce:60:e8:fc:ea:79:10:08:bc:6b:a9:4b:2c: 0a:10:67:e0:04:f4:e4:be:26:d5:9d:6a:f2:7b:46:11:ad:a7: 05:e9:6e:48:c1:39:66:48:6f:13:aa:d6:5c:79:42:ee:be:ea: cb:a9:62:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP055i1VDCSbOYg85w+d9On07OuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNTEwMDcwODU1MDBaFw0yNjEwMDYwOTAwMDBaMDMxMTAvBgNV BAMTKDk2NjQ3MjBFRDZBODUxNThCNEU4MDZBOTgwNzE5NEY5MzQ1NkIyNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFVCV09d3Z/f9cZHhr2BE2JwlJ CYci+BhpG7wUFLqa9CaR5duIjmFwj+5zN3poHhWXrbnpUhJAPGR20LGZ4QWkSxW/ pZuNjY4MAsSRn9etI2ffZadbyTack6h6ICSnGJ/XQy7aeKmX5pM6c/SpdNXdzta3 +oW0FpUXqueafUgdY9Irg42SwM+qZY3T0EqGRGqpzPz92bQGuEXwoe+I8mEJTaYF vxVd+ox7WxJwUFL0hOtYiNYq4cgA8nsQO6grgcTiwmIv+R2N4GgvbJh8Nmi8/VVv 25ITHM1UppilikRVMM2wGJ3YrsJAzfzkcUY6Zg9GADO8QG+5RzgNOOr1i+pNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlmRyDtaoUVi06AapgHGU+TRWsnQwHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZGQ2MTM1LTU0OGMtNDg4MS1h Zjc4LTkzYWY5ZjJhMjUxNi8wLzMxMzAzMzJlMzEzMDM2MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdqTDANBgkqhkiG 9w0BAQsFAAOCAQEAkNas8IQNuXnDNQStdOJVaY0C1k1PfBTlooI5+psDgn62a/tc lAQRwJrvswvKBlNhDWExkX2TKxQX+7OAb8SJCn1mn7encwy0TmqgkextTeoQ6849 Wh33ZTDanz+PEVV3QTSEaklSOM4d8AVsjBTP5BQK5LD1QoA7ZZpz+k3R3HuCejhN 3/5yYZomzst72tU/eKa8wUFH5svwkC2/PNhu8O2R2JUJTvasrYnKzArzt0/u2odg c56afGBoiPzdLoR+h8yDSRdljLnLxYTOYOj86nkQCLxrqUssChBn4AT05L4m1Z1q 8ntGEa2nBeluSME5ZkhvE6rWXHlC7r7qy6liVg== -----END CERTIFICATE-----Generated at Mon Oct 20 20:53:33 2025 by rpki-client