$ rpki-client -vvf repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132382e302f32342d3234203d3e20313339343333.roa File: 3130332e3134342e3132382e302f32342d3234203d3e20313339343333.roa (raw, json) Hash identifier: DWfEMEPWxsUozNiwbgr8ihU7QhgizyAKxGEXUL32Nzc= Subject key identifier: B7:7A:91:88:73:3A:05:4C:03:6F:08:F8:25:E7:4F:B2:37:F4:8A:DA Certificate issuer: /CN=0D800491C03BFB579D58FFC7A24CAA8710845A9C Certificate serial: 7909DE3C9FC69B376A59853CF230D999C0B8CC13 Authority key identifier: 0D:80:04:91:C0:3B:FB:57:9D:58:FF:C7:A2:4C:AA:87:10:84:5A:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132382e302f32342d3234203d3e20313339343333.roa Signing time: Wed 17 Sep 2025 11:00:00 +0000 ROA not before: Wed 17 Sep 2025 10:55:00 +0000 ROA not after: Wed 16 Sep 2026 11:00:00 +0000 asID: 139433 IP address blocks: 103.144.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.crl rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 18:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:09:de:3c:9f:c6:9b:37:6a:59:85:3c:f2:30:d9:99:c0:b8:cc:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D800491C03BFB579D58FFC7A24CAA8710845A9C Validity Not Before: Sep 17 10:55:00 2025 GMT Not After : Sep 16 11:00:00 2026 GMT Subject: CN=B77A9188733A054C036F08F825E74FB237F48ADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:42:80:17:91:18:59:dc:b3:c8:5e:51:72:69: 0b:52:76:51:e9:2f:21:2f:9d:91:b7:22:d7:aa:d5: 81:f1:08:97:93:9f:30:a3:2d:00:aa:46:36:90:40: 70:6f:89:0c:7f:86:ad:36:ff:d5:ef:59:d0:dc:36: c3:d3:c1:3b:83:44:ab:78:ab:a6:cf:7b:83:1c:b5: 68:28:7f:37:5b:e3:bc:ae:ee:5a:34:83:99:8c:db: ad:19:57:39:39:c2:35:19:6c:ae:ad:c2:9f:b6:f5: 9d:38:62:46:fe:cb:cf:11:f4:2a:ae:0a:7c:0b:55: b1:da:26:0a:68:be:da:20:83:47:7b:46:d6:5f:51: 23:07:4f:35:48:c7:7c:8e:68:dd:0c:e3:52:50:31: de:f9:a8:bb:82:f8:04:eb:cc:b8:80:8b:8d:d2:0a: 64:41:4a:6a:d8:38:0f:ea:95:98:66:df:4a:b7:88: 19:7e:aa:cd:c3:2c:51:36:63:2c:d8:5c:5c:b8:2d: b2:bd:38:01:50:45:3f:32:01:61:58:2f:a7:ba:d7: 55:4e:58:9c:d4:50:d8:4c:98:84:d5:28:da:cd:c3: 36:8e:11:3b:7c:7d:33:bc:c2:8e:14:de:9b:09:7a: f2:8a:b5:b6:52:78:a8:36:57:9e:29:cf:55:e4:14: 25:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7A:91:88:73:3A:05:4C:03:6F:08:F8:25:E7:4F:B2:37:F4:8A:DA X509v3 Authority Key Identifier: keyid:0D:80:04:91:C0:3B:FB:57:9D:58:FF:C7:A2:4C:AA:87:10:84:5A:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132382e302f32342d3234203d3e20313339343333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:d7:d6:91:8a:6c:be:03:81:95:b0:40:cd:b9:5e:e0:c4:e9: 9a:05:e9:66:38:c8:91:ad:4a:e0:a2:e4:79:d2:3c:5a:b4:d8: 71:b6:24:6c:6e:cf:f9:cf:54:7d:c3:31:74:f4:82:b2:d1:3f: 60:34:99:74:76:0f:5f:09:79:46:d4:44:ac:5e:01:3c:ec:9d: 8e:44:0c:8a:05:d8:9c:95:f9:5d:0f:45:2f:21:a8:e4:31:08: 46:7c:01:be:5f:c6:4c:48:b7:cb:70:2d:40:69:e9:57:bd:55: 5f:c8:53:3d:a5:25:df:d8:61:80:89:21:4c:4a:91:8f:e9:f5: 72:35:f1:6a:a4:66:00:7b:36:7a:86:7a:5b:3e:f0:7e:63:a2: d1:7f:d7:5b:ea:58:5d:7b:be:0d:71:4d:a9:1c:a1:03:13:81: 36:fa:cd:a1:ef:8d:f3:51:bf:6a:fe:a9:88:40:d1:d0:13:d9: 07:69:c0:3f:78:80:00:ec:79:a5:13:4e:f3:aa:51:e5:8b:b2: 5f:e1:4c:c6:23:49:38:79:ce:29:83:59:a4:f4:ae:e8:d0:4e: 8b:bc:69:66:42:6d:bc:ee:40:6c:32:73:2d:b6:68:bc:33:19: 7c:5c:d3:c9:b0:81:44:8f:86:06:00:f6:92:49:32:23:d6:41: c7:0c:57:2b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeQnePJ/GmzdqWYU88jDZmcC4zBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ4MDA0OTFDMDNCRkI1NzlENThGRkM3QTI0Q0FBODcx MDg0NUE5QzAeFw0yNTA5MTcxMDU1MDBaFw0yNjA5MTYxMTAwMDBaMDMxMTAvBgNV BAMTKEI3N0E5MTg4NzMzQTA1NEMwMzZGMDhGODI1RTc0RkIyMzdGNDhBREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbQoAXkRhZ3LPIXlFyaQtSdlHp LyEvnZG3Iteq1YHxCJeTnzCjLQCqRjaQQHBviQx/hq02/9XvWdDcNsPTwTuDRKt4 q6bPe4MctWgofzdb47yu7lo0g5mM260ZVzk5wjUZbK6twp+29Z04Ykb+y88R9Cqu CnwLVbHaJgpovtogg0d7RtZfUSMHTzVIx3yOaN0M41JQMd75qLuC+ATrzLiAi43S CmRBSmrYOA/qlZhm30q3iBl+qs3DLFE2YyzYXFy4LbK9OAFQRT8yAWFYL6e611VO WJzUUNhMmITVKNrNwzaOETt8fTO8wo4U3psJevKKtbZSeKg2V54pz1XkFCUvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUt3qRiHM6BUwDbwj4JedPsjf0itowHwYDVR0j BBgwFoAUDYAEkcA7+1edWP/HokyqhxCEWpwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTk2ZjQ1OC1jZTVlLTQxYTItYTIzMi05OTY0ZjQ5ODhhMDYvMC8wRDgwMDQ5MUMw M0JGQjU3OUQ1OEZGQzdBMjRDQUE4NzEwODQ1QTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ4MDA0OTFDMDNCRkI1NzlENThGRkM3QTI0Q0FBODcxMDg0 NUE5Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOTZmNDU4LWNlNWUtNDFhMi1h MjMyLTk5NjRmNDk4OGEwNi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkIAwDQYJ KoZIhvcNAQELBQADggEBAAvX1pGKbL4DgZWwQM25XuDE6ZoF6WY4yJGtSuCi5HnS PFq02HG2JGxuz/nPVH3DMXT0grLRP2A0mXR2D18JeUbURKxeATzsnY5EDIoF2JyV +V0PRS8hqOQxCEZ8Ab5fxkxIt8twLUBp6Ve9VV/IUz2lJd/YYYCJIUxKkY/p9XI1 8WqkZgB7NnqGels+8H5jotF/11vqWF17vg1xTakcoQMTgTb6zaHvjfNRv2r+qYhA 0dAT2QdpwD94gADseaUTTvOqUeWLsl/hTMYjSTh5zimDWaT0rujQTou8aWZCbbzu QGwycy22aLwzGXxc08mwgUSPhgYA9pJJMiPWQccMVys= -----END CERTIFICATE-----Generated at Mon Oct 20 12:40:13 2025 by rpki-client