$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37382e302f32332d3233203d3e203436303233.roa File: 3130332e3130362e37382e302f32332d3233203d3e203436303233.roa (raw, json) Hash identifier: WYN4mrwjKunsGp4uZVpUx9nBxwBDSeavyWVXTw8bEXE= Subject key identifier: B0:CC:A6:C8:CE:EA:25:90:EC:94:4B:DB:D1:02:04:EF:05:A2:EE:B3 Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 6E4A4068211592796D22777DF64518F2CABA8ADE Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37382e302f32332d3233203d3e203436303233.roa Signing time: Tue 07 Oct 2025 09:00:01 +0000 ROA not before: Tue 07 Oct 2025 08:55:01 +0000 ROA not after: Tue 06 Oct 2026 09:00:01 +0000 asID: 46023 IP address blocks: 103.106.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4a:40:68:21:15:92:79:6d:22:77:7d:f6:45:18:f2:ca:ba:8a:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Oct 7 08:55:01 2025 GMT Not After : Oct 6 09:00:01 2026 GMT Subject: CN=B0CCA6C8CEEA2590EC944BDBD10204EF05A2EEB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a4:ea:94:88:c0:57:57:6c:55:0e:1a:00:6b: 26:af:9c:ed:f6:62:3c:0b:ed:62:d4:bd:87:66:50: f6:e6:b9:b5:66:ae:b2:31:73:b7:70:d0:3a:76:e3: 9b:73:3a:9e:ff:49:24:59:34:54:63:2c:1c:60:fd: cc:21:b0:51:98:f7:19:66:47:c3:56:ce:96:e4:62: 28:8c:29:b9:54:f1:23:22:44:18:c8:7d:e2:ca:d8: bc:57:59:cc:75:01:e6:25:d3:01:ee:46:4e:a2:b7: 9d:58:eb:b7:74:54:1b:7b:bb:c6:65:8f:66:50:60: 2e:8f:27:b0:e3:e8:3c:68:0c:f3:50:80:e9:64:e6: 5d:e0:3d:59:91:e3:de:47:2b:6f:f2:fc:58:0e:7a: 44:16:bb:34:43:5b:2a:76:d8:94:5d:99:06:44:07: d5:24:cb:57:55:19:1c:2b:ee:04:46:d0:02:06:3b: 96:90:ff:44:13:af:2e:cb:7d:e7:00:64:7e:95:0c: ed:69:ea:02:c8:b3:7d:f4:18:2a:23:5d:de:01:0d: 51:da:b9:a7:82:f0:70:46:b7:35:34:dc:25:5b:f4: 34:91:48:ef:c5:e2:ec:99:b9:23:0f:ce:f4:48:ca: 1e:d7:6d:8b:b9:48:6f:c3:7e:5a:1d:02:4b:5c:3a: 70:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CC:A6:C8:CE:EA:25:90:EC:94:4B:DB:D1:02:04:EF:05:A2:EE:B3 X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37382e302f32332d3233203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.78.0/23 Signature Algorithm: sha256WithRSAEncryption 65:5a:ac:90:e2:9d:e8:ab:88:c0:34:41:77:0e:dd:04:9d:c1: ae:e9:a5:bb:9e:7c:b0:ce:3d:c5:6c:bd:78:ae:b7:89:5f:60: 28:23:8e:f0:19:74:14:37:10:9a:21:75:8d:ab:f4:0a:fd:bd: ef:22:e9:29:c3:5c:3b:f5:77:4b:ec:19:b8:65:1f:d4:5d:6e: df:6a:7f:40:be:6f:75:e3:b8:89:4d:9e:37:9c:c7:04:cd:e5: 49:ad:0e:fa:25:93:1d:bb:10:ba:e1:35:f5:c5:95:83:00:a9: fa:18:be:dd:5d:02:34:bb:ab:c9:a0:81:1f:b6:d6:6c:a0:50: 71:57:8b:0b:9d:3b:8b:b9:72:f8:c2:23:6f:85:ba:ee:f7:e8: db:3a:53:cf:88:12:aa:bb:1a:d5:68:d2:74:e5:8e:58:ee:c7: ff:ae:7a:ae:b6:d6:dd:2a:e8:8b:0c:37:c2:7e:39:54:af:26: 9c:bc:e9:41:e5:d4:2e:ed:f6:97:ff:7f:c2:b6:40:c6:56:4d: 5c:ea:5f:91:bb:f6:34:1d:5a:57:f6:d3:60:6d:fe:08:ae:8e: 62:bc:e5:03:71:53:d0:76:1d:c0:3b:0e:55:f8:e8:b9:1c:cb: b3:6e:0b:3b:72:c6:20:ee:40:b0:31:fd:b7:9b:42:56:34:d8: b6:d7:4e:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbkpAaCEVknltInd99kUY8sq6it4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNTEwMDcwODU1MDFaFw0yNjEwMDYwOTAwMDFaMDMxMTAvBgNV BAMTKEIwQ0NBNkM4Q0VFQTI1OTBFQzk0NEJEQkQxMDIwNEVGMDVBMkVFQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgpOqUiMBXV2xVDhoAayavnO32 YjwL7WLUvYdmUPbmubVmrrIxc7dw0Dp245tzOp7/SSRZNFRjLBxg/cwhsFGY9xlm R8NWzpbkYiiMKblU8SMiRBjIfeLK2LxXWcx1AeYl0wHuRk6it51Y67d0VBt7u8Zl j2ZQYC6PJ7Dj6DxoDPNQgOlk5l3gPVmR495HK2/y/FgOekQWuzRDWyp22JRdmQZE B9Uky1dVGRwr7gRG0AIGO5aQ/0QTry7LfecAZH6VDO1p6gLIs330GCojXd4BDVHa uaeC8HBGtzU03CVb9DSRSO/F4uyZuSMPzvRIyh7XbYu5SG/DflodAktcOnBlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsMymyM7qJZDslEvb0QIE7wWi7rMwHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZGQ2MTM1LTU0OGMtNDg4MS1h Zjc4LTkzYWY5ZjJhMjUxNi8wLzMxMzAzMzJlMzEzMDM2MmUzNzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdqTjANBgkqhkiG 9w0BAQsFAAOCAQEAZVqskOKd6KuIwDRBdw7dBJ3Brumlu558sM49xWy9eK63iV9g KCOO8Bl0FDcQmiF1jav0Cv297yLpKcNcO/V3S+wZuGUf1F1u32p/QL5vdeO4iU2e N5zHBM3lSa0O+iWTHbsQuuE19cWVgwCp+hi+3V0CNLuryaCBH7bWbKBQcVeLC507 i7ly+MIjb4W67vfo2zpTz4gSqrsa1WjSdOWOWO7H/656rrbW3Sroiww3wn45VK8m nLzpQeXULu32l/9/wrZAxlZNXOpfkbv2NB1aV/bTYG3+CK6OYrzlA3FT0HYdwDsO VfjouRzLs24LO3LGIO5AsDH9t5tCVjTYttdOWA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:54:42 2025 by rpki-client