$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37372e302f32342d3234203d3e203436303233.roa File: 3130332e3130362e37372e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: CbiBxaX9ddBH1o7nomW/iHw3KqeexSYJrX7KRnYKypE= Subject key identifier: DB:12:5A:28:B9:3E:3E:B9:DD:FC:51:C8:77:63:A0:C1:93:E6:1E:BF Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 7111D5A53A9B9589F3F7125F891EB040ED4265C3 Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37372e302f32342d3234203d3e203436303233.roa Signing time: Tue 07 Oct 2025 09:00:00 +0000 ROA not before: Tue 07 Oct 2025 08:55:00 +0000 ROA not after: Tue 06 Oct 2026 09:00:00 +0000 asID: 46023 IP address blocks: 103.106.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:11:d5:a5:3a:9b:95:89:f3:f7:12:5f:89:1e:b0:40:ed:42:65:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Oct 7 08:55:00 2025 GMT Not After : Oct 6 09:00:00 2026 GMT Subject: CN=DB125A28B93E3EB9DDFC51C87763A0C193E61EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c7:89:3d:3f:9a:c4:b3:89:47:bb:04:2f:3c: 43:a3:50:b3:52:a2:38:28:d4:7e:f1:fe:2f:22:9c: 09:a2:de:90:1d:23:0f:df:40:21:24:0c:85:cd:28: 89:d1:4e:b8:9e:7b:18:7d:98:da:b4:b0:99:37:70: ea:41:88:90:0d:d6:be:4a:74:03:92:ff:38:8d:47: 97:4d:4f:0a:5f:2b:0a:dc:33:c1:17:b1:8f:08:6c: 0d:d0:56:97:fe:40:1c:a2:7e:24:92:b5:a4:ba:f0: f0:59:8b:77:ad:e6:47:56:c9:60:cc:d1:54:6c:d4: 51:e8:5b:47:d3:e1:8b:59:23:35:5d:b7:38:0a:89: e2:3a:d6:97:14:24:69:af:12:2f:3c:f5:e2:4f:99: 2f:e1:6f:f3:89:98:26:2b:3f:ff:92:11:be:dd:4f: b1:9a:fc:59:6f:10:56:de:67:79:15:a1:e0:be:f7: d4:9a:bf:f2:9c:cc:f5:25:1a:11:90:62:22:1d:1e: cb:10:2c:49:33:50:59:33:3f:03:21:da:67:c0:86: 8c:16:ff:64:eb:1f:04:0c:81:32:10:01:01:35:4d: b5:81:52:e0:4a:f1:d3:f8:4a:84:79:76:06:90:b0: b0:c1:cb:49:45:4c:11:ec:af:89:7a:cb:18:65:97: 5c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:12:5A:28:B9:3E:3E:B9:DD:FC:51:C8:77:63:A0:C1:93:E6:1E:BF X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37372e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.77.0/24 Signature Algorithm: sha256WithRSAEncryption 41:52:63:52:0b:ef:f9:6e:dd:e5:7a:f1:3b:71:da:b2:ce:38: 46:30:93:ab:45:c2:7b:b9:f2:17:62:c4:bf:14:4b:d7:69:d9: d2:fb:a0:13:2d:bf:14:6b:ce:06:12:54:bf:ed:d4:bb:c9:d9: 38:d5:52:f8:d0:14:dd:01:29:62:82:96:0e:10:e1:0b:66:0e: b3:cb:39:9a:9c:88:57:60:89:e9:25:94:b0:d6:71:f2:4d:a4: 00:de:ba:0f:a2:6c:e6:d1:9a:48:3c:00:fd:ed:61:49:68:d2: ac:34:4a:e4:1a:75:a2:0b:df:dd:81:e9:c0:da:05:39:23:78: 54:46:0a:b1:fa:ad:ed:68:82:43:e7:59:01:a5:c7:89:d7:dc: 5c:d4:95:cf:fc:d7:f7:2b:dd:6a:dd:f5:9e:08:44:bb:dc:50: c4:35:a3:52:fd:e9:72:84:1e:e8:bc:e2:3d:95:ac:94:e9:0f: 77:e0:9b:c3:68:0f:61:45:94:93:0f:d1:af:bb:6f:13:19:ad: e7:9d:4e:1c:05:9d:17:06:cf:49:dd:69:fc:f5:e7:74:d7:65: 73:73:83:d1:ce:1e:84:89:46:34:6f:44:6a:bf:7b:71:93:1d: 23:43:16:c8:58:48:31:49:12:da:66:f1:d2:a9:5a:84:3b:4d: 73:3d:69:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcRHVpTqblYnz9xJfiR6wQO1CZcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNTEwMDcwODU1MDBaFw0yNjEwMDYwOTAwMDBaMDMxMTAvBgNV BAMTKERCMTI1QTI4QjkzRTNFQjlEREZDNTFDODc3NjNBMEMxOTNFNjFFQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcx4k9P5rEs4lHuwQvPEOjULNS ojgo1H7x/i8inAmi3pAdIw/fQCEkDIXNKInRTrieexh9mNq0sJk3cOpBiJAN1r5K dAOS/ziNR5dNTwpfKwrcM8EXsY8IbA3QVpf+QByifiSStaS68PBZi3et5kdWyWDM 0VRs1FHoW0fT4YtZIzVdtzgKieI61pcUJGmvEi889eJPmS/hb/OJmCYrP/+SEb7d T7Ga/FlvEFbeZ3kVoeC+99Sav/KczPUlGhGQYiIdHssQLEkzUFkzPwMh2mfAhowW /2TrHwQMgTIQAQE1TbWBUuBK8dP4SoR5dgaQsLDBy0lFTBHsr4l6yxhll1xBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2xJaKLk+Prnd/FHId2OgwZPmHr8wHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZGQ2MTM1LTU0OGMtNDg4MS1h Zjc4LTkzYWY5ZjJhMjUxNi8wLzMxMzAzMzJlMzEzMDM2MmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdqTTANBgkqhkiG 9w0BAQsFAAOCAQEAQVJjUgvv+W7d5XrxO3Hass44RjCTq0XCe7nyF2LEvxRL12nZ 0vugEy2/FGvOBhJUv+3Uu8nZONVS+NAU3QEpYoKWDhDhC2YOs8s5mpyIV2CJ6SWU sNZx8k2kAN66D6Js5tGaSDwA/e1hSWjSrDRK5Bp1ogvf3YHpwNoFOSN4VEYKsfqt 7WiCQ+dZAaXHidfcXNSVz/zX9yvdat31nghEu9xQxDWjUv3pcoQe6LziPZWslOkP d+Cbw2gPYUWUkw/Rr7tvExmt551OHAWdFwbPSd1p/PXndNdlc3OD0c4ehIlGNG9E ar97cZMdI0MWyFhIMUkS2mbx0qlahDtNcz1piA== -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:56 2025 by rpki-client