$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa File: 3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa (raw, json) Hash identifier: sDgjE8ymqlBE9cw/ir42Gp3BLLczy7m3TqUyfVT9fkU= Subject key identifier: 05:D2:8F:EE:D3:2D:AD:67:B5:1D:A5:1B:8B:97:78:4C:25:4A:FD:B7 Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 112716F3C0CFA76CFEC66995722C3F072EA76DE3 Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa Signing time: Thu 11 Sep 2025 02:00:00 +0000 ROA not before: Thu 11 Sep 2025 01:55:00 +0000 ROA not after: Thu 10 Sep 2026 02:00:00 +0000 asID: 149736 IP address blocks: 103.188.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:27:16:f3:c0:cf:a7:6c:fe:c6:69:95:72:2c:3f:07:2e:a7:6d:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Sep 11 01:55:00 2025 GMT Not After : Sep 10 02:00:00 2026 GMT Subject: CN=05D28FEED32DAD67B51DA51B8B97784C254AFDB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:8a:12:3a:2e:e4:4a:c7:05:26:67:65:55: 9c:9d:9f:61:ec:7f:ff:9f:50:70:6c:43:3b:cf:c9: bc:16:99:64:da:8c:09:e6:00:3a:d7:6c:35:0a:ba: b1:e7:25:28:19:92:90:e7:b7:93:6a:5b:d6:4d:f1: d5:84:3c:c1:20:d9:8b:0b:b5:57:dd:c5:bd:41:24: 1e:29:b1:5c:23:7a:40:16:4e:c4:2a:1c:68:66:eb: f2:c9:4f:15:f0:2f:48:21:92:fe:d4:98:98:62:78: 08:45:09:01:ad:ab:4f:ba:c0:bc:a8:e8:48:dd:79: 99:8e:11:c1:7f:2b:a1:d7:0c:b5:c8:5c:53:bc:79: e3:63:d3:eb:6b:66:4d:59:cc:07:56:9d:e0:b3:e0: bf:1d:c9:9a:ab:cb:ae:50:fc:a8:da:0b:43:b2:c3: 39:1f:28:b4:f3:9e:d4:61:49:50:49:69:f9:50:7d: 4f:55:68:1c:ba:42:88:60:db:be:52:37:20:20:5d: 66:a5:9b:a7:81:8f:35:2f:81:64:2b:6b:a3:3d:07: 80:8c:ca:41:e2:89:77:95:7a:37:01:bd:96:c8:34: eb:6d:b1:29:58:45:c4:37:28:80:dc:78:e2:7b:bf: f0:48:e0:d1:4c:a9:22:b7:e5:4f:ff:2c:59:f2:a4: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D2:8F:EE:D3:2D:AD:67:B5:1D:A5:1B:8B:97:78:4C:25:4A:FD:B7 X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.173.0/24 Signature Algorithm: sha256WithRSAEncryption 78:46:ac:18:d8:d4:06:2d:61:b6:9e:84:84:d5:21:58:92:9d: 1e:e6:c8:8a:54:24:e4:9c:1f:bd:c9:65:c5:6a:87:bf:bf:09: 73:e2:32:c2:d4:ab:85:10:f5:6d:c1:05:20:66:4e:15:e9:58: 29:5b:1d:c7:05:cf:9b:5a:33:16:27:0e:88:4e:42:a2:72:a0: 13:ba:b3:a9:f8:7a:e4:94:17:af:92:b5:b2:d2:0b:4d:b2:a5: da:6a:22:8d:2d:70:21:40:0a:df:6d:61:12:e9:d6:f8:0b:58: 71:a2:1a:e3:17:71:89:16:2a:ed:d4:12:df:a2:2e:20:bc:e9: 3d:ae:c7:a1:ce:75:ce:e4:e8:66:ac:20:07:3d:12:a8:c3:1f: e1:fe:2a:19:11:4b:77:02:30:a7:24:b2:74:bf:25:c5:b5:0d: 37:a3:df:07:7e:cd:c9:0c:d3:90:44:df:d3:c5:cc:36:15:92: c3:9e:5c:47:21:6c:4e:79:e7:11:b7:32:e2:24:ca:90:d3:46: 34:1a:fc:e9:77:9d:61:0b:d6:43:5b:c1:5a:22:7d:c3:07:80: b7:87:b8:cb:9a:99:52:d2:6d:3b:c7:4a:58:f6:32:06:7a:bf: d2:67:bf:ca:79:7c:04:95:fb:87:a7:39:17:32:44:d3:97:b4: c1:bf:58:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEScW88DPp2z+xmmVciw/By6nbeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNTA5MTEwMTU1MDBaFw0yNjA5MTAwMjAwMDBaMDMxMTAvBgNV BAMTKDA1RDI4RkVFRDMyREFENjdCNTFEQTUxQjhCOTc3ODRDMjU0QUZEQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC28ooSOi7kSscFJmdlVZydn2Hs f/+fUHBsQzvPybwWmWTajAnmADrXbDUKurHnJSgZkpDnt5NqW9ZN8dWEPMEg2YsL tVfdxb1BJB4psVwjekAWTsQqHGhm6/LJTxXwL0ghkv7UmJhieAhFCQGtq0+6wLyo 6EjdeZmOEcF/K6HXDLXIXFO8eeNj0+trZk1ZzAdWneCz4L8dyZqry65Q/KjaC0Oy wzkfKLTzntRhSVBJaflQfU9VaBy6Qohg275SNyAgXWalm6eBjzUvgWQra6M9B4CM ykHiiXeVejcBvZbINOttsSlYRcQ3KIDceOJ7v/BI4NFMqSK35U//LFnypMhJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBdKP7tMtrWe1HaUbi5d4TCVK/bcwHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMxMzAzMzJlMzEzODM4MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvK0wDQYJ KoZIhvcNAQELBQADggEBAHhGrBjY1AYtYbaehITVIViSnR7myIpUJOScH73JZcVq h7+/CXPiMsLUq4UQ9W3BBSBmThXpWClbHccFz5taMxYnDohOQqJyoBO6s6n4euSU F6+StbLSC02ypdpqIo0tcCFACt9tYRLp1vgLWHGiGuMXcYkWKu3UEt+iLiC86T2u x6HOdc7k6GasIAc9EqjDH+H+KhkRS3cCMKcksnS/JcW1DTej3wd+zckM05BE39PF zDYVksOeXEchbE555xG3MuIkypDTRjQa/Ol3nWEL1kNbwVoifcMHgLeHuMuamVLS bTvHSlj2MgZ6v9Jnv8p5fASV+4enORcyRNOXtMG/WMA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:54:22 2025 by rpki-client