$ rpki-client -vvf repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa File: 3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: 3qk3I2sPJGrqwIZSGGvefDpSgj0jalLHjTWubW6XWCI= Subject key identifier: 0F:C6:2C:CD:FE:1D:F0:A3:47:24:59:FA:18:EC:ED:55:6A:84:36:D8 Certificate issuer: /CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981 Certificate serial: 09845EE4FC6912F32B8BEC54964BB71CC951495B Authority key identifier: BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa Signing time: Thu 16 Oct 2025 11:02:57 +0000 ROA not before: Thu 16 Oct 2025 10:57:57 +0000 ROA not after: Thu 15 Oct 2026 11:02:57 +0000 asID: 136052 IP address blocks: 103.146.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:84:5e:e4:fc:69:12:f3:2b:8b:ec:54:96:4b:b7:1c:c9:51:49:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981 Validity Not Before: Oct 16 10:57:57 2025 GMT Not After : Oct 15 11:02:57 2026 GMT Subject: CN=0FC62CCDFE1DF0A3472459FA18ECED556A8436D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:55:bf:27:1a:4c:5a:6b:07:45:1b:bd:ea:05: cf:6d:1a:a3:40:50:c6:55:d8:53:87:0c:2f:fb:2a: 6b:05:a5:e8:e3:6c:31:16:be:42:45:9c:59:96:24: c8:77:62:cc:b7:5f:27:5f:4b:02:53:4d:f2:4a:db: 07:0c:17:c6:23:b5:cb:c6:23:0e:57:b3:3c:7f:02: 7e:2c:04:e5:5a:06:42:fc:9b:36:23:d9:c3:74:5c: 9f:30:31:f3:2c:1e:ee:9e:93:4c:01:71:9c:e8:59: ff:fb:c9:32:4e:c1:5a:3c:6b:ee:c2:77:e6:4b:42: 25:b6:21:5f:86:d3:14:08:c0:61:25:1f:9f:39:17: b1:2c:9c:ac:db:eb:38:63:05:64:3d:3f:6b:f7:6e: 47:d7:2d:0f:65:52:b7:db:34:4b:5c:2a:12:d2:65: 7b:80:6a:7c:d0:87:11:6a:a9:49:18:53:0d:21:1d: 56:65:d8:a3:71:8c:e7:65:fa:b9:9a:90:f7:42:5d: ca:04:39:e6:31:7b:84:b1:91:1a:3a:5f:78:39:f6: fb:c7:07:2c:37:d9:f9:db:e1:9e:94:cc:8d:51:25: 1f:cb:9e:5c:b6:c7:a5:5c:93:45:57:0e:cf:3b:6e: 6a:86:e3:80:d1:ed:bc:15:f4:ce:32:ed:28:a9:64: fa:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C6:2C:CD:FE:1D:F0:A3:47:24:59:FA:18:EC:ED:55:6A:84:36:D8 X509v3 Authority Key Identifier: keyid:BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.202.0/23 Signature Algorithm: sha256WithRSAEncryption 70:88:73:dd:db:98:86:32:eb:40:c3:83:49:26:0c:6c:3f:46: fe:6e:d5:fb:5a:e8:00:8b:b7:38:f0:41:e5:6e:23:b7:92:81: 07:50:54:e2:ec:a2:75:d1:0c:97:91:a4:59:1c:ff:4c:25:0e: c1:cc:56:fa:e3:06:da:93:b3:dc:7c:be:9c:b4:a1:2d:90:df: 1f:dd:2e:d1:1e:b0:47:5b:e2:65:b2:a2:b9:5d:ac:e2:65:c3: 38:6a:de:a0:ab:21:6f:bc:27:0f:3b:5c:84:75:e6:bb:f2:ff: 07:29:63:3f:50:98:09:c8:3b:d5:a7:ff:f9:8f:d3:98:8b:17: c7:89:c4:5f:e0:69:1b:9e:28:13:c0:4c:c0:9d:93:39:4c:7f: f7:16:e1:ec:27:15:45:92:74:6b:8d:19:ae:13:b6:30:eb:a3: db:fa:81:57:f5:6d:91:63:d6:5d:17:d1:de:20:c0:9d:8d:d5: de:0c:e1:ff:70:52:dc:38:e1:35:9a:15:8d:b8:73:66:ca:ef: 6c:e7:27:72:4c:3a:26:bb:4b:c7:16:73:5e:08:ae:21:6b:63: 79:e5:01:2c:68:b5:7f:8c:93:04:62:37:df:9f:f8:09:c0:92: 54:6d:ff:b5:38:09:b8:a8:8c:2c:59:5c:a7:e6:35:9e:20:5e: 8e:54:d1:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCYRe5PxpEvMri+xUlku3HMlRSVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2OUYxM0QyQ0VEQzVGMzQ4Q0VBMUMxQkJGNkUxREMy NEIxRDk4MTAeFw0yNTEwMTYxMDU3NTdaFw0yNjEwMTUxMTAyNTdaMDMxMTAvBgNV BAMTKDBGQzYyQ0NERkUxREYwQTM0NzI0NTlGQTE4RUNFRDU1NkE4NDM2RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgVb8nGkxaawdFG73qBc9tGqNA UMZV2FOHDC/7KmsFpejjbDEWvkJFnFmWJMh3Ysy3XydfSwJTTfJK2wcMF8YjtcvG Iw5Xszx/An4sBOVaBkL8mzYj2cN0XJ8wMfMsHu6ek0wBcZzoWf/7yTJOwVo8a+7C d+ZLQiW2IV+G0xQIwGElH585F7EsnKzb6zhjBWQ9P2v3bkfXLQ9lUrfbNEtcKhLS ZXuAanzQhxFqqUkYUw0hHVZl2KNxjOdl+rmakPdCXcoEOeYxe4SxkRo6X3g59vvH Byw32fnb4Z6UzI1RJR/Lnly2x6Vck0VXDs87bmqG44DR7bwV9M4y7SipZPpVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUD8Yszf4d8KNHJFn6GOztVWqENtgwHwYDVR0j BBgwFoAUu2nxPSztxfNIzqHBu/bh3CSx2YEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGU4ZmY0OS1mNzBhLTRiNmYtYWFlNi04Yzc3NzY5YzVkZWUvMC9CQjY5RjEzRDJD RURDNUYzNDhDRUExQzFCQkY2RTFEQzI0QjFEOTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI2OUYxM0QyQ0VEQzVGMzQ4Q0VBMUMxQkJGNkUxREMyNEIx RDk4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZThmZjQ5LWY3MGEtNGI2Zi1h YWU2LThjNzc3NjljNWRlZS8wLzMxMzAzMzJlMzEzNDM2MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnksowDQYJ KoZIhvcNAQELBQADggEBAHCIc93bmIYy60DDg0kmDGw/Rv5u1fta6ACLtzjwQeVu I7eSgQdQVOLsonXRDJeRpFkc/0wlDsHMVvrjBtqTs9x8vpy0oS2Q3x/dLtEesEdb 4mWyorldrOJlwzhq3qCrIW+8Jw87XIR15rvy/wcpYz9QmAnIO9Wn//mP05iLF8eJ xF/gaRueKBPATMCdkzlMf/cW4ewnFUWSdGuNGa4TtjDro9v6gVf1bZFj1l0X0d4g wJ2N1d4M4f9wUtw44TWaFY24c2bK72znJ3JMOia7S8cWc14IriFrY3nlASxotX+M kwRiN9+f+AnAklRt/7U4CbiojCxZXKfmNZ4gXo5U0UM= -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:57 2025 by rpki-client