$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131362e302f32332d3233203d3e20313336383230.roa File: 3130332e39382e3131362e302f32332d3233203d3e20313336383230.roa (raw, json) Hash identifier: 5WMxfKjZT65hcUd7WB/JBj/IGlOrVSKyagiTEPB+Bbc= Subject key identifier: 7B:3A:AA:D7:13:70:4F:D0:E7:64:5C:A8:EC:7B:FB:03:F7:90:B1:21 Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 6446650736CA375295243E8B923E8DC63078D113 Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131362e302f32332d3233203d3e20313336383230.roa Signing time: Wed 17 Sep 2025 09:09:00 +0000 ROA not before: Wed 17 Sep 2025 09:04:00 +0000 ROA not after: Wed 16 Sep 2026 09:09:00 +0000 asID: 136820 IP address blocks: 103.98.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:46:65:07:36:ca:37:52:95:24:3e:8b:92:3e:8d:c6:30:78:d1:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: Sep 17 09:04:00 2025 GMT Not After : Sep 16 09:09:00 2026 GMT Subject: CN=7B3AAAD713704FD0E7645CA8EC7BFB03F790B121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:21:3d:88:d0:17:65:12:fc:74:9c:59:b9: 53:c6:51:23:2b:63:44:c0:1e:03:65:c9:31:74:e0: 49:6e:b3:b5:c6:76:88:46:93:e3:91:45:45:6b:6a: 8f:46:4d:4a:24:39:07:2b:97:39:79:dd:1b:a3:a4: 54:76:8c:e5:c1:09:96:12:1f:6b:54:c4:04:5f:c7: a6:c8:7d:31:80:51:37:eb:9a:1d:73:c6:e1:7a:bb: e1:d9:28:87:69:10:c1:74:bb:97:95:ca:24:ec:39: fb:11:5c:a5:e7:cf:a4:b9:c6:45:88:16:1d:a7:f1: e5:d6:e2:dd:93:86:5e:05:6f:aa:6f:3b:8d:00:8f: d6:3f:15:fb:4a:31:0e:1c:ef:4e:af:c0:ee:80:85: 0a:e9:22:f7:a2:e3:8f:23:54:5b:44:49:9d:e1:89: b3:72:07:3c:8f:d3:85:2d:58:c4:56:05:80:f3:af: cd:be:34:83:44:89:5b:3d:04:72:ac:36:c7:f5:d4: ce:f1:a9:02:70:87:86:26:18:f6:f6:05:ae:e2:15: 2d:99:0f:08:e2:38:07:7d:3f:0c:41:85:8a:d6:3b: 05:b1:c9:a9:24:99:5f:12:c8:6e:b7:8e:6c:58:7b: 25:80:f3:c9:18:54:a5:e0:22:91:b5:6d:b9:f8:21: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3A:AA:D7:13:70:4F:D0:E7:64:5C:A8:EC:7B:FB:03:F7:90:B1:21 X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131362e302f32332d3233203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.116.0/23 Signature Algorithm: sha256WithRSAEncryption 49:5e:3a:6b:ce:d0:ba:af:33:f1:14:38:bc:95:a3:04:83:fd: 39:8d:eb:d3:77:91:a5:8a:7a:50:37:cc:2f:a7:67:f2:50:f0: 05:11:94:7f:24:83:0e:ba:b4:99:3e:21:3e:bc:de:6d:5b:a6: 05:c5:2b:8a:bd:e9:74:aa:15:5d:cd:75:61:ef:15:3d:c1:21: 40:e7:c2:a0:78:34:b7:c0:06:05:28:ab:ee:c0:c3:94:6f:12: e4:37:0a:ec:07:91:63:ad:ba:41:1a:8c:f2:c3:38:69:56:92: ff:61:fd:f2:d2:9f:10:90:46:16:99:95:19:6f:60:a5:76:56: 2d:3b:06:6b:a0:58:fb:00:9d:1c:3a:6b:6d:46:d5:c5:ce:e0: 06:0d:f5:96:b0:27:c7:00:4a:d5:e0:5c:a6:b4:68:73:e4:f1: 1b:a1:a0:f1:b2:ae:84:7e:0a:ab:66:0a:27:ba:5b:05:0e:e2: c1:9d:fc:29:33:0f:1a:8c:9a:30:c6:a5:16:2f:60:a9:d3:a2: 41:07:b9:0a:f7:a1:39:9a:9f:36:32:bc:b5:29:28:f5:50:ae: ca:16:de:7b:22:20:38:8f:cc:02:a8:6c:c2:0e:b1:47:64:79: eb:6b:5e:3f:79:02:09:38:7e:17:64:44:2e:61:c5:04:7f:8b: 18:9a:1b:d3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZEZlBzbKN1KVJD6Lkj6NxjB40RMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNTA5MTcwOTA0MDBaFw0yNjA5MTYwOTA5MDBaMDMxMTAvBgNV BAMTKDdCM0FBQUQ3MTM3MDRGRDBFNzY0NUNBOEVDN0JGQjAzRjc5MEIxMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/SE9iNAXZRL8dJxZuVPGUSMr Y0TAHgNlyTF04Elus7XGdohGk+ORRUVrao9GTUokOQcrlzl53RujpFR2jOXBCZYS H2tUxARfx6bIfTGAUTfrmh1zxuF6u+HZKIdpEMF0u5eVyiTsOfsRXKXnz6S5xkWI Fh2n8eXW4t2Thl4Fb6pvO40Aj9Y/FftKMQ4c706vwO6AhQrpIvei448jVFtESZ3h ibNyBzyP04UtWMRWBYDzr82+NINEiVs9BHKsNsf11M7xqQJwh4YmGPb2Ba7iFS2Z DwjiOAd9PwxBhYrWOwWxyakkmV8SyG63jmxYeyWA88kYVKXgIpG1bbn4Ice3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUezqq1xNwT9DnZFyo7Hv7A/eQsSEwHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2J0MA0GCSqG SIb3DQEBCwUAA4IBAQBJXjprztC6rzPxFDi8laMEg/05jevTd5GlinpQN8wvp2fy UPAFEZR/JIMOurSZPiE+vN5tW6YFxSuKvel0qhVdzXVh7xU9wSFA58KgeDS3wAYF KKvuwMOUbxLkNwrsB5FjrbpBGozywzhpVpL/Yf3y0p8QkEYWmZUZb2CldlYtOwZr oFj7AJ0cOmttRtXFzuAGDfWWsCfHAErV4FymtGhz5PEboaDxsq6EfgqrZgonulsF DuLBnfwpMw8ajJowxqUWL2Cp06JBB7kK96E5mp82Mry1KSj1UK7KFt57IiA4j8wC qGzCDrFHZHnra14/eQIJOH4XZEQuYcUEf4sYmhvT -----END CERTIFICATE-----Generated at Tue Oct 21 01:28:53 2025 by rpki-client