$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e3235342e3132362e302f32332d3234203d3e203535363533.roa File: 3130332e3235342e3132362e302f32332d3234203d3e203535363533.roa (raw, json) Hash identifier: 9BxarKCax6xXzwA7sCkwW9bstNPy4ZEaa9LRlsVppIQ= Subject key identifier: D2:B2:14:A8:75:29:D3:87:9A:7E:D4:C8:21:E7:04:A0:F4:85:53:ED Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 5818024A3514FD411FB6FC71D7A477AEEF994F87 Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e3235342e3132362e302f32332d3234203d3e203535363533.roa Signing time: Fri 27 Jun 2025 00:00:01 +0000 ROA not before: Thu 26 Jun 2025 23:55:01 +0000 ROA not after: Fri 26 Jun 2026 00:00:01 +0000 asID: 55653 IP address blocks: 103.254.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:18:02:4a:35:14:fd:41:1f:b6:fc:71:d7:a4:77:ae:ef:99:4f:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jun 26 23:55:01 2025 GMT Not After : Jun 26 00:00:01 2026 GMT Subject: CN=D2B214A87529D3879A7ED4C821E704A0F48553ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7b:6e:1c:70:c1:0f:b4:84:69:2f:e3:27:c9: b8:8a:aa:4e:59:ad:82:6e:af:4c:a3:4b:db:d9:df: cf:19:15:ea:ff:f4:4b:97:fd:3e:a1:64:4d:6e:fb: f5:35:5c:ac:de:d5:41:80:52:b6:e5:03:b4:fb:7d: cb:11:c9:e1:13:e3:52:0b:27:da:89:6e:bf:3c:0f: e0:ff:55:57:fa:76:ba:72:de:5d:f1:d9:34:04:d5: 2f:b0:19:06:bd:c3:66:cd:6d:bf:84:d1:ce:fc:4a: e6:2b:7c:f7:5c:27:4c:27:85:45:49:f0:44:f3:9e: 47:bb:3c:b5:ed:c6:dd:4a:71:3a:0e:98:38:2c:78: e4:d0:35:59:3b:5f:10:62:72:ca:b1:ed:a5:e9:80: 15:72:a0:1c:cf:e2:54:bd:3a:94:b5:21:25:b1:7e: 78:3e:db:f0:44:e4:ca:28:23:51:30:07:b1:2c:37: 1a:ce:79:11:da:5d:76:24:ef:1d:7b:a5:25:9d:89: 68:d0:0d:64:d0:e3:ff:2d:fe:a5:6e:f5:84:3c:62: c6:84:ee:e9:f7:ac:a1:0c:31:d1:09:a3:53:37:1c: 8c:cf:43:15:e9:94:22:2d:83:eb:7d:a3:2e:83:82: ef:73:49:1f:db:16:94:f2:91:b2:93:d7:64:72:63: ed:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B2:14:A8:75:29:D3:87:9A:7E:D4:C8:21:E7:04:A0:F4:85:53:ED X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e3235342e3132362e302f32332d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.126.0/23 Signature Algorithm: sha256WithRSAEncryption a6:38:03:d9:2a:78:05:74:23:50:9d:47:5d:93:69:9e:61:86: e9:52:02:2d:de:8a:dc:c6:b9:31:ab:ad:4d:bd:a1:bd:7a:0d: b5:21:d4:66:ab:f6:a3:4d:44:78:5c:3d:7d:e1:9c:ae:e9:65: a0:e4:48:88:28:84:d6:e3:cd:2c:9c:4b:2d:f3:1d:f9:7c:de: ca:34:0f:01:cc:76:c0:f5:51:b1:bb:9d:88:78:9a:2d:e0:91: 9a:12:f4:47:3e:57:2c:e8:d0:59:37:ee:42:95:26:83:f9:78: 77:78:f3:7c:16:cf:0a:ce:b1:b6:1f:f0:39:2e:ae:6d:fb:a8: aa:54:a6:c5:b4:20:06:fd:f4:39:72:6c:04:b9:a1:4a:2c:77: 73:d3:5c:27:76:c5:37:68:40:9b:86:35:3d:a4:27:12:0b:3c: 0f:14:18:6b:26:54:de:27:1c:7f:be:a0:94:77:c4:07:a1:6f: 32:4c:f7:eb:b0:9a:e0:a4:c6:de:8b:c8:de:28:1e:37:ab:30: 18:b9:bf:da:1f:c8:b0:6d:75:c7:dc:f5:b5:69:89:b4:bd:9e: 50:e3:90:1c:c5:4b:e4:b5:4b:ed:fc:0a:02:50:30:ef:2f:d0: b2:56:0d:ae:c2:e5:73:8a:fa:78:b5:b3:ba:c8:79:29:5a:70: 4f:f9:11:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWBgCSjUU/UEftvxx16R3ru+ZT4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNTA2MjYyMzU1MDFaFw0yNjA2MjYwMDAwMDFaMDMxMTAvBgNV BAMTKEQyQjIxNEE4NzUyOUQzODc5QTdFRDRDODIxRTcwNEEwRjQ4NTUzRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDre24ccMEPtIRpL+MnybiKqk5Z rYJur0yjS9vZ388ZFer/9EuX/T6hZE1u+/U1XKze1UGAUrblA7T7fcsRyeET41IL J9qJbr88D+D/VVf6drpy3l3x2TQE1S+wGQa9w2bNbb+E0c78SuYrfPdcJ0wnhUVJ 8ETznke7PLXtxt1KcToOmDgseOTQNVk7XxBicsqx7aXpgBVyoBzP4lS9OpS1ISWx fng+2/BE5MooI1EwB7EsNxrOeRHaXXYk7x17pSWdiWjQDWTQ4/8t/qVu9YQ8YsaE 7un3rKEMMdEJo1M3HIzPQxXplCItg+t9oy6Dgu9zSR/bFpTykbKT12RyY+0PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0rIUqHUp04eaftTIIecEoPSFU+0wHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMxMzAzMzJlMzIzNTM0MmUzMTMyMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM1MzYzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/5+MA0GCSqG SIb3DQEBCwUAA4IBAQCmOAPZKngFdCNQnUddk2meYYbpUgIt3orcxrkxq61NvaG9 eg21IdRmq/ajTUR4XD194Zyu6WWg5EiIKITW480snEst8x35fN7KNA8BzHbA9VGx u52IeJot4JGaEvRHPlcs6NBZN+5ClSaD+Xh3ePN8Fs8KzrG2H/A5Lq5t+6iqVKbF tCAG/fQ5cmwEuaFKLHdz01wndsU3aECbhjU9pCcSCzwPFBhrJlTeJxx/vqCUd8QH oW8yTPfrsJrgpMbei8jeKB43qzAYub/aH8iwbXXH3PW1aYm0vZ5Q45AcxUvktUvt /AoCUDDvL9CyVg2uwuVzivp4tbO6yHkpWnBP+RE5 -----END CERTIFICATE-----Generated at Mon Oct 20 21:21:12 2025 by rpki-client