$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa File: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (raw, json) Hash identifier: lR/hW+eaZsPiXrhVudMo+pOinjFXG0anTiMBOASqmGk= Subject key identifier: 6F:F2:3F:9D:F3:E4:B3:7E:1F:B4:9C:77:0A:02:AD:83:77:EB:C4:85 Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 58F97EC894634F77F1C5C82C6EF8EC716F4AEA6E Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa Signing time: Sun 21 Sep 2025 05:00:02 +0000 ROA not before: Sun 21 Sep 2025 04:55:02 +0000 ROA not after: Sun 20 Sep 2026 05:00:02 +0000 asID: 142399 IP address blocks: 103.171.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f9:7e:c8:94:63:4f:77:f1:c5:c8:2c:6e:f8:ec:71:6f:4a:ea:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: Sep 21 04:55:02 2025 GMT Not After : Sep 20 05:00:02 2026 GMT Subject: CN=6FF23F9DF3E4B37E1FB49C770A02AD8377EBC485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f5:15:32:20:21:ab:b1:07:84:84:46:c0:d2: ef:e8:ca:0e:b1:a7:94:2e:30:4c:44:fa:fa:52:90: 82:1b:99:74:1b:32:1b:26:b8:ff:4a:01:b5:48:91: 2a:c1:c7:8e:e2:af:76:46:ad:a6:2e:f6:3f:84:9c: 40:5d:10:47:a3:30:45:e9:79:5e:e1:a7:4c:c4:5b: 73:32:18:6b:a9:2e:d6:ab:5a:d2:46:8d:1b:05:b1: b3:a5:ce:53:8c:9d:c8:ab:05:5a:a4:b3:02:e1:0a: 3f:84:f2:c6:07:b4:24:f1:18:f0:d4:38:81:89:25: 6e:55:d9:7f:66:eb:39:58:d1:d3:1d:58:7b:5e:6c: 22:25:02:41:c9:a1:36:10:7e:ab:95:9d:43:7d:4b: 43:c9:9b:21:9e:c1:77:9e:92:17:3a:6f:54:46:4b: 52:e9:cd:68:8d:6e:6b:f2:39:3e:d6:ed:f6:af:0e: 37:dc:6c:c4:e4:81:ea:3f:1d:3c:3f:f4:83:62:8b: d7:0c:f9:c5:60:d4:43:2a:0a:a1:29:bc:20:13:4a: 0c:24:62:4f:a7:ba:0d:a6:52:79:2a:fe:2a:2a:d3: 2e:e8:24:f2:12:6c:d0:27:c7:5c:a0:df:96:c4:ef: bf:30:f7:b9:61:b7:32:cd:db:27:3e:c5:04:f1:50: bb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F2:3F:9D:F3:E4:B3:7E:1F:B4:9C:77:0A:02:AD:83:77:EB:C4:85 X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.254.0/24 Signature Algorithm: sha256WithRSAEncryption 21:58:b3:81:85:23:39:9d:19:7f:d8:ad:69:49:e8:78:55:25: 8b:8e:3f:6c:d4:f8:60:bf:5a:95:b6:48:cc:2f:70:23:5e:aa: b6:d4:b3:08:34:d8:27:c9:44:02:22:c8:42:93:14:19:e6:9e: b0:43:00:16:63:60:10:38:4b:ab:c2:e1:9a:cb:88:7e:d1:8a: 9d:5e:d2:0e:d6:fe:a9:d0:67:72:b1:e1:2a:1d:7a:77:fc:eb: a3:5a:b1:cc:4f:bd:05:35:18:7f:45:9b:41:f8:8e:3e:f6:ef: 41:e5:57:05:d7:08:62:76:31:81:cc:57:8f:10:9f:de:51:6f: a7:71:98:11:3e:97:4c:6c:8e:b7:10:1b:ca:32:79:5b:5f:d7: 5a:ba:85:88:30:8d:fe:57:c6:31:46:3d:21:4f:96:ad:e0:ec: 0d:cf:bc:4e:50:c0:65:f2:0b:84:09:8f:83:e2:05:c7:10:87: 59:9b:92:c4:a1:d2:9a:81:59:8b:55:be:38:8c:7b:cd:cf:36: 5e:d6:da:30:ef:b5:e4:c1:c5:c3:5e:2f:1d:94:57:c3:20:7d: 60:9c:0b:99:41:38:6b:a3:02:f8:81:9e:64:f4:5c:6a:84:e5: d0:1c:f2:c3:e9:6d:44:2f:1b:36:cd:46:9d:ea:67:0a:9e:a5: 82:d6:30:e5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWPl+yJRjT3fxxcgsbvjscW9K6m4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNTA5MjEwNDU1MDJaFw0yNjA5MjAwNTAwMDJaMDMxMTAvBgNV BAMTKDZGRjIzRjlERjNFNEIzN0UxRkI0OUM3NzBBMDJBRDgzNzdFQkM0ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp9RUyICGrsQeEhEbA0u/oyg6x p5QuMExE+vpSkIIbmXQbMhsmuP9KAbVIkSrBx47ir3ZGraYu9j+EnEBdEEejMEXp eV7hp0zEW3MyGGupLtarWtJGjRsFsbOlzlOMncirBVqkswLhCj+E8sYHtCTxGPDU OIGJJW5V2X9m6zlY0dMdWHtebCIlAkHJoTYQfquVnUN9S0PJmyGewXeekhc6b1RG S1LpzWiNbmvyOT7W7favDjfcbMTkgeo/HTw/9INii9cM+cVg1EMqCqEpvCATSgwk Yk+nug2mUnkq/ioq0y7oJPISbNAnx1yg35bE778w97lhtzLN2yc+xQTxULt3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUb/I/nfPks34ftJx3CgKtg3frxIUwHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiMDFjOTY3LTk5ZDAtNGMyMS05 NjQyLTg3YWRhNjcxNTVjOC8wLzMxMzAzMzJlMzEzNzMxMmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq/4wDQYJ KoZIhvcNAQELBQADggEBACFYs4GFIzmdGX/YrWlJ6HhVJYuOP2zU+GC/WpW2SMwv cCNeqrbUswg02CfJRAIiyEKTFBnmnrBDABZjYBA4S6vC4ZrLiH7Rip1e0g7W/qnQ Z3Kx4Sodenf866NascxPvQU1GH9Fm0H4jj7270HlVwXXCGJ2MYHMV48Qn95Rb6dx mBE+l0xsjrcQG8oyeVtf11q6hYgwjf5XxjFGPSFPlq3g7A3PvE5QwGXyC4QJj4Pi BccQh1mbksSh0pqBWYtVvjiMe83PNl7W2jDvteTBxcNeLx2UV8MgfWCcC5lBOGuj AviBnmT0XGqE5dAc8sPpbUQvGzbNRp3qZwqepYLWMOU= -----END CERTIFICATE-----Generated at Mon Oct 20 18:54:01 2025 by rpki-client