$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230352e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230352e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: whajeEl8nBFK1Hik+aj8CuI5z46PiprE6Zt+K1qGkcA= Subject key identifier: 17:29:21:09:47:71:26:88:3D:DF:A3:E8:19:CC:20:AD:B2:62:4D:67 Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 45E71B419D8972AE6990DC47FFF62C7CC45B6B8B Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230352e302f32342d3234203d3e203538333937.roa Signing time: Fri 10 Oct 2025 22:00:01 +0000 ROA not before: Fri 10 Oct 2025 21:55:01 +0000 ROA not after: Fri 09 Oct 2026 22:00:01 +0000 asID: 58397 IP address blocks: 103.41.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e7:1b:41:9d:89:72:ae:69:90:dc:47:ff:f6:2c:7c:c4:5b:6b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Oct 10 21:55:01 2025 GMT Not After : Oct 9 22:00:01 2026 GMT Subject: CN=17292109477126883DDFA3E819CC20ADB2624D67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:18:b7:6d:91:77:2c:fd:4e:4b:e7:6b:ca:0f: b1:e0:d7:a7:6d:72:9b:e1:6e:20:8a:79:6a:cd:7f: dc:bd:5e:a4:4b:0f:f4:39:17:2b:95:fa:f5:cf:1e: 2a:7b:89:03:0a:7c:40:c7:51:8c:ba:3e:fd:eb:17: 3b:c2:f9:ba:18:06:62:2b:70:72:12:b9:7b:2a:c1: dc:32:e8:85:08:eb:63:ef:87:15:47:db:e3:90:64: 86:aa:ce:5a:de:7d:ab:49:58:89:e1:8e:ee:f5:52: 84:be:20:fe:6b:73:ab:22:1d:1d:2e:0c:ff:85:ab: cf:b4:0f:e8:92:33:4c:93:d4:86:c7:13:24:fc:db: f3:1c:f1:fe:59:c3:34:64:3d:11:97:d0:b2:f3:58: fe:74:16:62:aa:6b:7e:98:6a:5a:20:e9:bd:84:dc: 39:57:37:ce:95:f9:d3:0c:f7:62:09:3b:f2:3d:ad: 11:6c:fc:80:30:fd:05:94:92:21:2d:98:44:0c:11: 16:a0:08:fe:85:56:e2:3f:77:3d:72:ee:1d:97:84: ab:36:12:a3:4d:f8:d0:97:8b:71:c7:e2:3f:01:ef: 5f:f8:39:9e:29:38:46:d5:8f:6d:0e:71:b6:32:59: 54:d6:8b:e8:78:15:4b:4b:14:dc:69:8d:98:69:7f: db:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:29:21:09:47:71:26:88:3D:DF:A3:E8:19:CC:20:AD:B2:62:4D:67 X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230352e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.205.0/24 Signature Algorithm: sha256WithRSAEncryption 87:0f:c8:69:ae:e4:1b:ff:09:de:09:f7:92:08:5e:7f:0f:df: 83:04:ba:c0:64:62:43:d2:21:69:d2:ad:b7:cb:bb:ad:4c:a7: a2:12:b7:19:3d:fc:fc:cb:68:40:c8:fb:5d:78:95:5b:5e:0e: be:29:c5:e3:9f:14:82:d6:13:67:bc:ca:f9:ee:92:3f:dc:77: aa:e8:75:be:af:d0:b7:4e:67:c0:1b:b3:28:f4:b6:28:3f:bd: 21:16:c7:ca:a3:bc:dc:04:20:0f:42:24:cf:c9:55:35:d4:3e: 52:5a:d8:44:44:36:6a:c1:53:c0:2e:a2:96:15:77:8b:d9:3c: 33:6a:ff:ae:22:c8:44:a0:3f:8f:df:8f:a1:55:b4:fb:8d:e4: d2:85:85:36:da:06:97:50:b8:97:e0:fe:14:37:b7:05:b9:9f: 16:5f:3a:96:4c:8f:e8:ab:59:1d:20:01:c3:db:96:32:4a:fc: 68:85:d1:08:6d:e6:ee:ac:91:0e:8b:db:a4:11:87:bb:ca:a1: c4:38:04:39:b7:1f:ba:f1:82:ca:6e:9b:a7:04:f7:91:4d:72: 90:0d:34:d1:dd:a7:2f:c4:6d:c0:85:6d:1d:dc:00:0a:2f:7a: 6d:18:37:ec:c5:08:0a:7a:f2:db:39:7b:79:8e:68:c0:35:5f: 0a:e8:5d:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURecbQZ2Jcq5pkNxH//YsfMRba4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yNTEwMTAyMTU1MDFaFw0yNjEwMDkyMjAwMDFaMDMxMTAvBgNV BAMTKDE3MjkyMTA5NDc3MTI2ODgzRERGQTNFODE5Q0MyMEFEQjI2MjRENjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBGLdtkXcs/U5L52vKD7Hg16dt cpvhbiCKeWrNf9y9XqRLD/Q5FyuV+vXPHip7iQMKfEDHUYy6Pv3rFzvC+boYBmIr cHISuXsqwdwy6IUI62PvhxVH2+OQZIaqzlrefatJWInhju71UoS+IP5rc6siHR0u DP+Fq8+0D+iSM0yT1IbHEyT82/Mc8f5ZwzRkPRGX0LLzWP50FmKqa36Yalog6b2E 3DlXN86V+dMM92IJO/I9rRFs/IAw/QWUkiEtmEQMERagCP6FVuI/dz1y7h2XhKs2 EqNN+NCXi3HH4j8B71/4OZ4pOEbVj20OcbYyWVTWi+h4FUtLFNxpjZhpf9tZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFykhCUdxJog936PoGcwgrbJiTWcwHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzTANBgkqhkiG 9w0BAQsFAAOCAQEAhw/Iaa7kG/8J3gn3kghefw/fgwS6wGRiQ9IhadKtt8u7rUyn ohK3GT38/MtoQMj7XXiVW14OvinF458UgtYTZ7zK+e6SP9x3quh1vq/Qt05nwBuz KPS2KD+9IRbHyqO83AQgD0Ikz8lVNdQ+UlrYREQ2asFTwC6ilhV3i9k8M2r/riLI RKA/j9+PoVW0+43k0oWFNtoGl1C4l+D+FDe3BbmfFl86lkyP6KtZHSABw9uWMkr8 aIXRCG3m7qyRDovbpBGHu8qhxDgEObcfuvGCym6bpwT3kU1ykA000d2nL8RtwIVt HdwACi96bRg37MUICnry2zl7eY5owDVfCuhdhg== -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:12 2025 by rpki-client