$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230362e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230362e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: TlAHfis9k9OhMBttiZq0mSci/rJTU64geHe3MFRXMno= Subject key identifier: 59:E5:13:7C:58:7F:8D:BA:A1:4E:71:A2:9A:D5:9C:DD:D2:FE:14:BB Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 170B0208D013814D2AE8F9456BE37824DA948CB3 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230362e302f32342d3234203d3e203538333937.roa Signing time: Fri 10 Oct 2025 23:00:01 +0000 ROA not before: Fri 10 Oct 2025 22:55:01 +0000 ROA not after: Fri 09 Oct 2026 23:00:01 +0000 asID: 58397 IP address blocks: 103.41.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:0b:02:08:d0:13:81:4d:2a:e8:f9:45:6b:e3:78:24:da:94:8c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Oct 10 22:55:01 2025 GMT Not After : Oct 9 23:00:01 2026 GMT Subject: CN=59E5137C587F8DBAA14E71A29AD59CDDD2FE14BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ea:1f:51:d9:c4:6d:63:50:e0:a5:b8:f4:f0: 4c:dd:12:f6:74:01:13:ab:dd:c8:17:0b:26:9f:4e: 66:ca:8e:a3:ec:29:f2:3b:28:e5:87:cc:ef:7b:cf: 39:65:dc:ec:2e:9b:a8:96:62:23:58:e8:00:cd:e9: 3d:f9:6d:01:a9:0c:71:01:d9:bb:68:9e:da:83:27: bd:3a:ce:f4:a9:b8:e4:d1:dc:30:d5:48:a6:6c:3b: b2:80:58:78:ea:ad:17:32:00:c2:9e:74:e3:c6:4e: d9:0a:94:6a:b0:f7:ce:4d:f3:4a:f3:44:41:94:6c: 6e:c2:45:41:93:71:f1:de:16:a3:a2:42:35:da:a5: d2:d9:71:16:eb:3d:85:c0:4e:0a:dc:e0:b2:b3:91: 7f:4f:72:76:75:99:07:92:f5:a1:94:9f:d6:06:eb: 7d:6c:ff:8f:b4:45:88:b6:02:51:0d:98:70:8e:9d: 25:3d:73:b9:c3:3f:2d:7b:1c:50:9b:f8:4c:e7:60: 99:1f:0f:51:5d:87:7a:ee:27:3d:03:7a:a2:5f:c4: a3:1e:39:82:91:20:8f:55:2d:ad:4c:f3:02:ba:11: 92:9d:24:7e:55:93:a2:c0:32:ff:6a:53:cb:20:3f: 9b:cc:1b:ae:00:f8:9c:69:fb:60:df:cd:07:fc:9e: fe:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E5:13:7C:58:7F:8D:BA:A1:4E:71:A2:9A:D5:9C:DD:D2:FE:14:BB X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230362e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.206.0/24 Signature Algorithm: sha256WithRSAEncryption 13:f1:1e:8a:ca:f4:01:3b:63:fd:2b:f5:57:89:d4:4d:dd:2f: 96:0e:4d:cf:8d:9d:90:d6:b1:7f:6f:ee:c7:b4:51:12:2f:3d: 69:81:0c:0a:ab:1c:e0:c5:02:7e:da:4a:09:bc:7a:8b:ed:0b: 99:92:e9:3a:5b:51:ca:a5:ad:10:9f:89:b0:e0:0a:1a:99:76: 2b:a9:07:4a:fc:2b:85:6f:a0:a6:06:67:5e:91:05:bd:f9:12: 3f:b9:cf:7c:64:12:2b:bf:dc:b4:d0:7d:6e:b9:88:48:60:95: 9e:6c:59:b9:e1:6d:7f:8c:1d:12:ef:8d:95:9f:84:8f:25:9b: 50:be:c4:3d:5f:18:de:cf:ef:fe:2c:59:00:00:b3:5b:f4:36: b7:84:32:88:b0:71:c4:fd:1e:85:1f:74:ef:9d:6b:59:40:c9: b3:dd:48:17:7c:6d:e6:08:0b:12:ae:b8:75:9a:5a:ee:d9:21: 50:4e:70:1e:cd:6e:4b:db:b4:de:03:0f:ff:76:c5:f7:c1:eb: 9f:b6:e4:a2:70:21:67:98:c4:47:8e:ad:c8:c7:2e:2c:3b:0f: d5:6b:4d:1a:95:45:04:9a:69:d6:07:7f:53:2e:90:23:b0:57: e1:d8:ea:63:d4:23:f9:e4:ba:dd:6d:68:2a:9f:b3:3a:a9:ad: 72:e5:88:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFwsCCNATgU0q6PlFa+N4JNqUjLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yNTEwMTAyMjU1MDFaFw0yNjEwMDkyMzAwMDFaMDMxMTAvBgNV BAMTKDU5RTUxMzdDNTg3RjhEQkFBMTRFNzFBMjlBRDU5Q0RERDJGRTE0QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh6h9R2cRtY1Dgpbj08EzdEvZ0 AROr3cgXCyafTmbKjqPsKfI7KOWHzO97zzll3Owum6iWYiNY6ADN6T35bQGpDHEB 2btontqDJ706zvSpuOTR3DDVSKZsO7KAWHjqrRcyAMKedOPGTtkKlGqw985N80rz REGUbG7CRUGTcfHeFqOiQjXapdLZcRbrPYXATgrc4LKzkX9PcnZ1mQeS9aGUn9YG 631s/4+0RYi2AlENmHCOnSU9c7nDPy17HFCb+EznYJkfD1Fdh3ruJz0DeqJfxKMe OYKRII9VLa1M8wK6EZKdJH5Vk6LAMv9qU8sgP5vMG64A+Jxp+2DfzQf8nv7xAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWeUTfFh/jbqhTnGimtWc3dL+FLswHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzjANBgkqhkiG 9w0BAQsFAAOCAQEAE/Eeisr0ATtj/Sv1V4nUTd0vlg5Nz42dkNaxf2/ux7RREi89 aYEMCqsc4MUCftpKCbx6i+0LmZLpOltRyqWtEJ+JsOAKGpl2K6kHSvwrhW+gpgZn XpEFvfkSP7nPfGQSK7/ctNB9brmISGCVnmxZueFtf4wdEu+NlZ+EjyWbUL7EPV8Y 3s/v/ixZAACzW/Q2t4QyiLBxxP0ehR90751rWUDJs91IF3xt5ggLEq64dZpa7tkh UE5wHs1uS9u03gMP/3bF98Hrn7bkonAhZ5jER46tyMcuLDsP1WtNGpVFBJpp1gd/ Uy6QI7BX4djqY9Qj+eS63W1oKp+zOqmtcuWI2Q== -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:12 2025 by rpki-client