$ rpki-client -vvf repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231372e302f32342d3234203d3e203338373538.roa File: 3130332e3133312e3231372e302f32342d3234203d3e203338373538.roa (raw, json) Hash identifier: Nlbwhvq6RNX8tKRWUBvBeTEEQD1O0jz0pdRla10hmjk= Subject key identifier: 3C:0E:D9:78:D4:42:CE:96:FA:7E:B8:79:3D:B8:1F:6E:4C:0F:18:A5 Certificate issuer: /CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Certificate serial: 38966671F12D003FB1CC7C0BD5DB2034417262CE Authority key identifier: 49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231372e302f32342d3234203d3e203338373538.roa Signing time: Thu 18 Sep 2025 11:01:07 +0000 ROA not before: Thu 18 Sep 2025 10:56:07 +0000 ROA not after: Thu 17 Sep 2026 11:01:07 +0000 asID: 38758 IP address blocks: 103.131.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:96:66:71:f1:2d:00:3f:b1:cc:7c:0b:d5:db:20:34:41:72:62:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Validity Not Before: Sep 18 10:56:07 2025 GMT Not After : Sep 17 11:01:07 2026 GMT Subject: CN=3C0ED978D442CE96FA7EB8793DB81F6E4C0F18A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4e:94:4c:65:0d:ae:b1:b0:f1:74:ff:ec:e7: e7:0d:0f:2b:1b:1e:87:af:10:54:3b:84:89:b2:b3: 2e:86:0c:3c:56:42:da:32:4d:7c:c8:f3:ac:a2:90: b5:9f:db:4d:5d:0e:94:e1:c4:55:f5:c4:9b:24:16: 65:67:f1:40:10:d3:37:e1:32:aa:08:05:4c:e1:04: ea:3c:24:50:82:ba:36:43:0f:37:e3:00:fd:b6:e6: a7:04:5e:be:0e:6b:e3:39:b4:f8:47:d7:5b:93:60: 43:c6:a4:e5:73:82:26:1c:cf:13:9b:e5:be:d1:7c: 34:9f:a2:ac:34:c9:7a:b2:ee:ad:d1:af:62:3f:93: af:5e:2f:6e:19:2c:7d:0a:f1:41:b4:a3:f7:1a:f1: 92:7a:6c:4d:a8:3c:93:4f:c6:c8:9b:b2:d3:bd:7a: 5a:5e:0b:28:9c:a6:8a:77:f5:bc:24:20:70:36:53: 45:48:49:5e:59:e6:fc:1f:ee:da:89:b5:e8:ec:b4: 18:d6:e2:9f:89:4d:ec:8b:86:1b:9d:e8:8b:4b:cc: 1a:29:8b:db:0a:c3:4c:cf:0a:2d:a2:e0:54:e6:59: b2:f5:1f:f7:ee:9b:e4:68:6e:cc:c7:67:b5:66:cd: 4b:e2:9f:d0:6f:e4:a7:76:e2:c5:f8:84:26:cd:7d: 23:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0E:D9:78:D4:42:CE:96:FA:7E:B8:79:3D:B8:1F:6E:4C:0F:18:A5 X509v3 Authority Key Identifier: keyid:49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231372e302f32342d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.217.0/24 Signature Algorithm: sha256WithRSAEncryption 88:70:a4:d8:3b:06:e3:0d:06:3a:8a:a2:09:b8:45:03:ee:54: e3:3f:02:b6:9a:4d:a4:6f:5e:a9:23:b5:c0:85:f9:eb:ad:1d: 08:17:22:fa:2b:67:ab:3e:a4:e1:3e:a9:00:1b:5a:14:ea:e0: 8e:81:0f:a1:e1:43:b7:59:e6:ef:cf:35:5c:f9:f1:31:6f:c4: 61:a4:4f:f0:48:34:4f:1e:b8:6b:95:06:d7:d4:a0:54:22:59: e5:47:9f:0a:ed:b2:3a:ab:2e:74:c4:fb:43:05:2f:bf:11:aa: 76:31:80:c6:19:8c:b3:49:1f:54:28:c5:17:13:3f:31:50:f0: c3:1a:00:35:bc:28:43:22:1c:83:38:84:22:39:28:10:7a:96: ae:ff:ad:35:ce:c8:a1:de:3f:91:02:77:5e:ec:01:2a:1e:d3: 1f:47:bf:c5:50:55:8a:98:4d:44:2c:bb:30:ae:36:64:07:c5: 1f:ac:6e:88:86:0a:a4:71:f9:1f:4c:52:d7:2e:2d:e1:87:b9: cb:ab:3f:3d:d5:9b:5f:80:84:5e:fe:09:e2:3b:f9:19:c0:67: 03:48:94:77:90:f1:3b:4a:58:1d:f5:86:1a:01:42:dc:bc:fa: 10:13:54:ba:ac:58:98:30:7d:0f:20:92:cf:6c:57:e0:8b:b1: b9:26:26:c4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOJZmcfEtAD+xzHwL1dsgNEFyYs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4 MTc0OEE3MTAeFw0yNTA5MTgxMDU2MDdaFw0yNjA5MTcxMTAxMDdaMDMxMTAvBgNV BAMTKDNDMEVEOTc4RDQ0MkNFOTZGQTdFQjg3OTNEQjgxRjZFNEMwRjE4QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsTpRMZQ2usbDxdP/s5+cNDysb HoevEFQ7hImysy6GDDxWQtoyTXzI86yikLWf201dDpThxFX1xJskFmVn8UAQ0zfh MqoIBUzhBOo8JFCCujZDDzfjAP225qcEXr4Oa+M5tPhH11uTYEPGpOVzgiYczxOb 5b7RfDSfoqw0yXqy7q3Rr2I/k69eL24ZLH0K8UG0o/ca8ZJ6bE2oPJNPxsibstO9 elpeCyicpop39bwkIHA2U0VISV5Z5vwf7tqJtejstBjW4p+JTeyLhhud6ItLzBop i9sKw0zPCi2i4FTmWbL1H/fum+RobszHZ7VmzUvin9Bv5Kd24sX4hCbNfSN5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPA7ZeNRCzpb6frh5PbgfbkwPGKUwHwYDVR0j BBgwFoAUSeEuXN1XsuNDpWDKaBbJPIF0inEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTUzZWRhYi00YTNkLTQ0ZTQtOGQ5Ni02MjVhMWMyMDM3OGQvMC80OUUxMkU1Q0RE NTdCMkUzNDNBNTYwQ0E2ODE2QzkzQzgxNzQ4QTcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4MTc0 OEE3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NTNlZGFiLTRhM2QtNDRlNC04 ZDk2LTYyNWExYzIwMzc4ZC8wLzMxMzAzMzJlMzEzMzMxMmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4PZMA0GCSqG SIb3DQEBCwUAA4IBAQCIcKTYOwbjDQY6iqIJuEUD7lTjPwK2mk2kb16pI7XAhfnr rR0IFyL6K2erPqThPqkAG1oU6uCOgQ+h4UO3WebvzzVc+fExb8RhpE/wSDRPHrhr lQbX1KBUIlnlR58K7bI6qy50xPtDBS+/Eap2MYDGGYyzSR9UKMUXEz8xUPDDGgA1 vChDIhyDOIQiOSgQepau/601zsih3j+RAnde7AEqHtMfR7/FUFWKmE1ELLswrjZk B8UfrG6IhgqkcfkfTFLXLi3hh7nLqz891ZtfgIRe/gniO/kZwGcDSJR3kPE7Slgd 9YYaAULcvPoQE1S6rFiYMH0PIJLPbFfgi7G5JibE -----END CERTIFICATE-----Generated at Mon Oct 20 09:29:18 2025 by rpki-client