$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa File: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (raw, json) Hash identifier: HSGQJXythRbZW0WejIr3eu8cpvINsUXbBgpQ3Hdpzbo= Subject key identifier: B8:F0:C0:7A:8F:33:EA:8A:ED:B9:F0:DA:0B:65:34:4F:BA:40:2D:EC Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 6BFB8B4E281CFAA607C8CD47B13A434F406BC8A5 Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa Signing time: Sun 21 Sep 2025 05:00:02 +0000 ROA not before: Sun 21 Sep 2025 04:55:02 +0000 ROA not after: Sun 20 Sep 2026 05:00:02 +0000 asID: 142399 IP address blocks: 103.171.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:fb:8b:4e:28:1c:fa:a6:07:c8:cd:47:b1:3a:43:4f:40:6b:c8:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: Sep 21 04:55:02 2025 GMT Not After : Sep 20 05:00:02 2026 GMT Subject: CN=B8F0C07A8F33EA8AEDB9F0DA0B65344FBA402DEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ef:e1:33:9a:56:fc:79:86:6e:fc:26:5f:50: 08:51:97:34:e5:be:e7:c7:f0:6e:e2:ef:59:fa:27: 5f:2e:a1:4e:8b:eb:6e:b0:de:08:2c:c3:11:19:14: fc:74:76:93:5c:8d:b3:8c:0d:1d:da:39:36:63:c1: 64:16:4c:5b:93:27:85:95:ab:08:3f:da:ca:67:db: f9:95:9e:e4:fc:db:13:68:6b:de:88:3a:37:c5:e3: 5a:d9:8f:a0:de:09:5c:0f:0e:10:87:f8:45:79:f4: 4a:e4:21:61:97:51:bd:fa:d1:73:2d:1a:a2:fd:49: 76:13:dc:c1:1d:8f:7c:84:68:dc:12:85:b5:54:67: d4:f2:69:dc:33:f4:ca:d3:7f:30:e8:12:b4:39:08: e2:89:54:55:a5:56:89:7a:f1:f6:78:a6:fb:9f:be: b4:15:1b:29:8e:36:af:45:93:a8:87:1d:9d:65:87: 5e:b6:80:4c:04:36:54:06:72:3f:e5:9e:fb:2f:a2: c8:5c:3a:8a:34:4f:89:58:8f:ad:90:5d:ca:b2:c6: a0:04:4b:60:83:96:e2:69:87:70:fa:84:43:4b:9e: ed:cb:44:67:73:66:71:42:48:1d:69:4d:3e:7f:79: 03:13:16:71:12:df:85:fe:27:12:16:b3:aa:cb:4e: 09:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F0:C0:7A:8F:33:EA:8A:ED:B9:F0:DA:0B:65:34:4F:BA:40:2D:EC X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.255.0/24 Signature Algorithm: sha256WithRSAEncryption 82:0b:f0:64:72:a4:4e:87:e6:0e:38:c2:41:2e:2f:d7:e6:82: 2b:46:7e:36:da:a3:ec:60:68:71:e4:e3:d9:64:84:13:15:4a: f7:c5:de:8f:4b:cc:e3:b3:45:eb:b8:6c:7f:25:e9:49:7b:f6: 3a:c4:eb:86:bc:e0:de:32:42:76:c1:87:9b:ee:11:99:e1:a6: 38:5b:b4:48:fc:73:d0:72:fc:91:53:4e:5f:97:26:b2:c8:6c: 67:04:63:89:fb:a8:7f:e1:72:93:44:8b:54:27:2e:87:dc:9a: 9e:43:10:20:4c:c0:f7:a6:97:db:8c:54:6f:ea:54:df:8f:58: b4:5a:b0:20:a9:98:ee:20:1f:d5:ea:95:4b:7f:ea:6c:8e:21: 73:82:72:cc:4f:5a:c2:e4:da:15:6e:c7:2f:6d:48:f8:c2:e9: c0:02:48:ef:0a:96:58:c9:1a:91:62:d2:82:74:91:2c:9c:34: da:01:2b:a8:66:91:fd:2b:99:ee:67:9d:90:51:dc:c7:2f:51: 2e:e6:b3:db:46:62:97:88:cd:db:8f:99:da:81:1a:9c:66:ad: 02:82:7a:cc:d8:67:0b:08:c2:95:e1:87:c9:2d:8c:77:65:3a: 6f:4e:43:3e:db:a9:f6:61:2b:66:04:ef:c6:54:c8:07:2e:0c: ca:40:a7:b9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa/uLTigc+qYHyM1HsTpDT0BryKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNTA5MjEwNDU1MDJaFw0yNjA5MjAwNTAwMDJaMDMxMTAvBgNV BAMTKEI4RjBDMDdBOEYzM0VBOEFFREI5RjBEQTBCNjUzNDRGQkE0MDJERUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw7+Ezmlb8eYZu/CZfUAhRlzTl vufH8G7i71n6J18uoU6L626w3ggswxEZFPx0dpNcjbOMDR3aOTZjwWQWTFuTJ4WV qwg/2spn2/mVnuT82xNoa96IOjfF41rZj6DeCVwPDhCH+EV59ErkIWGXUb360XMt GqL9SXYT3MEdj3yEaNwShbVUZ9Tyadwz9MrTfzDoErQ5COKJVFWlVol68fZ4pvuf vrQVGymONq9Fk6iHHZ1lh162gEwENlQGcj/lnvsvoshcOoo0T4lYj62QXcqyxqAE S2CDluJph3D6hENLnu3LRGdzZnFCSB1pTT5/eQMTFnES34X+JxIWs6rLTgmhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuPDAeo8z6ortufDaC2U0T7pALewwHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiMDFjOTY3LTk5ZDAtNGMyMS05 NjQyLTg3YWRhNjcxNTVjOC8wLzMxMzAzMzJlMzEzNzMxMmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq/8wDQYJ KoZIhvcNAQELBQADggEBAIIL8GRypE6H5g44wkEuL9fmgitGfjbao+xgaHHk49lk hBMVSvfF3o9LzOOzReu4bH8l6Ul79jrE64a84N4yQnbBh5vuEZnhpjhbtEj8c9By /JFTTl+XJrLIbGcEY4n7qH/hcpNEi1QnLofcmp5DECBMwPeml9uMVG/qVN+PWLRa sCCpmO4gH9XqlUt/6myOIXOCcsxPWsLk2hVuxy9tSPjC6cACSO8KlljJGpFi0oJ0 kSycNNoBK6hmkf0rme5nnZBR3McvUS7ms9tGYpeIzduPmdqBGpxmrQKCeszYZwsI wpXhh8ktjHdlOm9OQz7bqfZhK2YE78ZUyAcuDMpAp7k= -----END CERTIFICATE-----Generated at Mon Oct 20 18:53:13 2025 by rpki-client