$ rpki-client -vvf repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa File: 3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa (raw, json) Hash identifier: lErVtCJlJ99qdLyNM63Qc8dGtmVES+Gq6hMVSb2l3Bw= Subject key identifier: D6:CC:D9:97:0E:F9:99:75:C2:56:A9:55:31:CF:7C:A4:11:ED:44:26 Certificate issuer: /CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Certificate serial: 7E4CD44DE26486307DD75F90A342E55CA1B156AE Authority key identifier: 49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa Signing time: Thu 18 Sep 2025 11:01:08 +0000 ROA not before: Thu 18 Sep 2025 10:56:08 +0000 ROA not after: Thu 17 Sep 2026 11:01:08 +0000 asID: 38758 IP address blocks: 103.131.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:4c:d4:4d:e2:64:86:30:7d:d7:5f:90:a3:42:e5:5c:a1:b1:56:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Validity Not Before: Sep 18 10:56:08 2025 GMT Not After : Sep 17 11:01:08 2026 GMT Subject: CN=D6CCD9970EF99975C256A95531CF7CA411ED4426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:9e:e7:4b:b2:88:63:12:08:5c:7d:8b:b3: f1:fb:d7:26:48:d9:28:15:fb:56:be:9d:38:23:49: 18:b3:ff:a1:6f:98:9b:07:60:77:12:a3:a4:9c:b7: b3:60:b9:eb:e7:0c:c2:ff:6d:3a:8c:8a:1c:60:95: a3:e4:4b:eb:13:2c:4a:4b:f3:7c:ed:98:34:b4:d6: 95:51:17:6c:b7:6a:f5:e6:37:65:88:d3:4a:cb:60: c5:84:4a:51:25:65:78:f4:0e:85:10:a7:2b:8b:73: 29:64:91:31:63:c6:a2:77:eb:9d:c1:11:56:9f:9d: e6:aa:60:4b:c3:5a:4c:13:86:61:fe:99:11:d8:a6: 2f:f0:d3:51:a2:17:fa:7f:81:06:46:7f:6d:37:5e: f5:11:38:50:02:c0:61:34:28:a6:9f:79:19:c0:2b: f3:e0:29:71:9f:fe:35:9d:8e:0d:a3:ba:9e:90:93: df:a2:ce:9c:46:97:f5:0e:98:3d:18:d4:f5:7e:46: 0c:46:86:ab:01:0f:74:46:17:5d:83:85:e7:1b:ed: e8:f5:26:3a:28:a6:27:61:d6:cd:99:05:49:a5:e1: b4:b0:ff:63:81:93:b9:bc:35:51:51:b8:34:8f:2e: 1a:25:7b:8d:bf:b7:2e:04:e2:21:9c:42:8d:74:89: e1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:CC:D9:97:0E:F9:99:75:C2:56:A9:55:31:CF:7C:A4:11:ED:44:26 X509v3 Authority Key Identifier: keyid:49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.219.0/24 Signature Algorithm: sha256WithRSAEncryption 96:e7:71:f5:41:40:64:3c:d2:0e:be:30:66:fe:72:09:7e:d4: a6:46:0d:2f:03:4d:85:fa:c9:32:a5:89:49:85:b2:cf:1e:fb: 55:2e:d1:97:8f:2b:05:62:86:27:61:a1:02:9b:a9:0d:99:fd: b3:5a:6f:43:f3:7f:2f:02:69:18:d7:00:95:a9:7b:df:d4:be: e4:b0:51:4a:35:b5:5f:29:aa:10:47:c9:76:a4:19:e2:d1:24: 89:0e:4a:e5:f9:4e:a1:6b:23:c6:d5:32:df:b0:06:4a:97:c0: 93:ec:e3:de:98:8d:25:3d:5f:19:64:6c:8d:b8:94:1d:64:2c: f9:e4:ca:2f:44:55:cc:c7:8f:bb:d9:da:b0:74:25:82:23:8a: 68:97:f8:2c:fe:99:df:a2:ad:3f:a7:9a:92:ff:f1:6e:14:99: b8:3d:70:43:d3:bc:4b:d6:49:e9:65:ba:b6:35:9a:c9:44:66: 95:78:4d:74:40:1d:77:28:43:8d:29:4c:12:8a:f5:18:8f:94: ee:0e:da:c0:4d:a4:93:48:65:8b:a2:4c:25:17:dc:25:c4:b1: 10:ba:58:97:a0:f8:3a:80:57:1c:19:97:c2:eb:81:68:ff:e9: 6a:98:1b:e6:05:14:03:6f:45:b7:a5:39:1c:65:19:16:fa:90: 53:6c:cd:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfkzUTeJkhjB911+Qo0LlXKGxVq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4 MTc0OEE3MTAeFw0yNTA5MTgxMDU2MDhaFw0yNjA5MTcxMTAxMDhaMDMxMTAvBgNV BAMTKEQ2Q0NEOTk3MEVGOTk5NzVDMjU2QTk1NTMxQ0Y3Q0E0MTFFRDQ0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKcJ7nS7KIYxIIXH2Ls/H71yZI 2SgV+1a+nTgjSRiz/6FvmJsHYHcSo6Sct7NguevnDML/bTqMihxglaPkS+sTLEpL 83ztmDS01pVRF2y3avXmN2WI00rLYMWESlElZXj0DoUQpyuLcylkkTFjxqJ3653B EVafneaqYEvDWkwThmH+mRHYpi/w01GiF/p/gQZGf203XvUROFACwGE0KKafeRnA K/PgKXGf/jWdjg2jup6Qk9+izpxGl/UOmD0Y1PV+RgxGhqsBD3RGF12Dhecb7ej1 Jjoopidh1s2ZBUml4bSw/2OBk7m8NVFRuDSPLhole42/ty4E4iGcQo10ieFJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1szZlw75mXXCVqlVMc98pBHtRCYwHwYDVR0j BBgwFoAUSeEuXN1XsuNDpWDKaBbJPIF0inEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTUzZWRhYi00YTNkLTQ0ZTQtOGQ5Ni02MjVhMWMyMDM3OGQvMC80OUUxMkU1Q0RE NTdCMkUzNDNBNTYwQ0E2ODE2QzkzQzgxNzQ4QTcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4MTc0 OEE3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NTNlZGFiLTRhM2QtNDRlNC04 ZDk2LTYyNWExYzIwMzc4ZC8wLzMxMzAzMzJlMzEzMzMxMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4PbMA0GCSqG SIb3DQEBCwUAA4IBAQCW53H1QUBkPNIOvjBm/nIJftSmRg0vA02F+skypYlJhbLP HvtVLtGXjysFYoYnYaECm6kNmf2zWm9D838vAmkY1wCVqXvf1L7ksFFKNbVfKaoQ R8l2pBni0SSJDkrl+U6hayPG1TLfsAZKl8CT7OPemI0lPV8ZZGyNuJQdZCz55Mov RFXMx4+72dqwdCWCI4pol/gs/pnfoq0/p5qS//FuFJm4PXBD07xL1knpZbq2NZrJ RGaVeE10QB13KEONKUwSivUYj5TuDtrATaSTSGWLokwlF9wlxLEQuliXoPg6gFcc GZfC64Fo/+lqmBvmBRQDb0W3pTkcZRkW+pBTbM2p -----END CERTIFICATE-----Generated at Mon Oct 20 09:28:28 2025 by rpki-client