$ rpki-client -vvf repo-rpki.idnic.net/repo/dfc30c71-df2d-4fc7-b435-7511df287a6b/0/3130332e3231302e322e302f32332d3233203d3e20313530393935.roa File: 3130332e3231302e322e302f32332d3233203d3e20313530393935.roa (raw, json) Hash identifier: xzpAdAN4PgqY0zHFsI//uf025PaXef+Zn07c2kacwac= Subject key identifier: 86:DC:9B:E8:ED:6F:67:5C:C1:BC:B2:12:80:48:92:16:30:BB:C2:07 Certificate issuer: /CN=C619643EEB518333DAE2A79933BEB1320C89CA87 Certificate serial: 3D37ED596025B7BD82CD1C310DBA19816914594C Authority key identifier: C6:19:64:3E:EB:51:83:33:DA:E2:A7:99:33:BE:B1:32:0C:89:CA:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C619643EEB518333DAE2A79933BEB1320C89CA87.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfc30c71-df2d-4fc7-b435-7511df287a6b/0/3130332e3231302e322e302f32332d3233203d3e20313530393935.roa Signing time: Tue 23 Sep 2025 19:00:01 +0000 ROA not before: Tue 23 Sep 2025 18:55:01 +0000 ROA not after: Tue 22 Sep 2026 19:00:01 +0000 asID: 150995 IP address blocks: 103.210.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfc30c71-df2d-4fc7-b435-7511df287a6b/0/C619643EEB518333DAE2A79933BEB1320C89CA87.crl rsync://repo-rpki.idnic.net/repo/dfc30c71-df2d-4fc7-b435-7511df287a6b/0/C619643EEB518333DAE2A79933BEB1320C89CA87.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C619643EEB518333DAE2A79933BEB1320C89CA87.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 10:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:37:ed:59:60:25:b7:bd:82:cd:1c:31:0d:ba:19:81:69:14:59:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C619643EEB518333DAE2A79933BEB1320C89CA87 Validity Not Before: Sep 23 18:55:01 2025 GMT Not After : Sep 22 19:00:01 2026 GMT Subject: CN=86DC9BE8ED6F675CC1BCB2128048921630BBC207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:28:c3:b7:86:db:0c:92:c8:6b:94:5e:96:22: b9:04:0f:62:d2:a7:34:00:37:da:49:8c:74:a6:7c: be:2f:a8:ef:a6:d1:6e:03:99:15:cb:3a:79:e9:ee: 89:de:d4:63:68:39:1d:4e:46:84:ae:05:d4:1a:01: 29:74:e3:46:1f:e7:c8:41:13:2b:99:cc:56:aa:c6: ac:45:e9:41:15:8d:7c:83:32:73:f4:c8:0f:5a:05: b2:b2:bc:0d:ec:b7:00:e7:9d:e1:5c:7e:6d:27:db: 99:ef:d7:42:92:95:b5:30:84:43:65:da:b8:82:9d: 2b:9f:66:45:29:7b:6b:19:53:49:e1:31:1a:50:88: 5b:78:4a:54:6b:b0:69:65:20:09:67:13:c5:af:b1: aa:f1:44:40:3a:84:2b:97:55:c5:43:2c:fc:41:06: cf:a4:fe:fe:cc:8f:be:bc:4e:fd:19:2d:48:89:b5: 0d:65:97:44:b5:93:59:6a:48:89:c2:ef:b1:a4:25: ab:80:7b:d9:13:d6:51:91:ae:45:01:a1:bd:23:a7: bf:7a:1a:17:c2:d3:22:e0:ad:30:9c:f3:13:a4:eb: 34:52:c2:a3:56:9a:9c:30:72:5d:11:8f:be:cd:f6: 93:88:a5:d4:3b:28:3c:31:97:d7:62:53:e9:78:17: 8b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DC:9B:E8:ED:6F:67:5C:C1:BC:B2:12:80:48:92:16:30:BB:C2:07 X509v3 Authority Key Identifier: keyid:C6:19:64:3E:EB:51:83:33:DA:E2:A7:99:33:BE:B1:32:0C:89:CA:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfc30c71-df2d-4fc7-b435-7511df287a6b/0/C619643EEB518333DAE2A79933BEB1320C89CA87.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C619643EEB518333DAE2A79933BEB1320C89CA87.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfc30c71-df2d-4fc7-b435-7511df287a6b/0/3130332e3231302e322e302f32332d3233203d3e20313530393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.2.0/23 Signature Algorithm: sha256WithRSAEncryption 51:66:dc:6b:d5:d3:2d:ef:74:48:ae:95:f0:5e:95:12:12:d6: d4:97:9b:91:d8:9d:62:9b:60:56:50:f2:d0:35:c6:ff:0e:f3: 70:07:d7:16:0a:d1:e4:cf:a0:71:be:1f:59:8f:c9:8a:77:c8: 72:70:64:7e:0d:9e:d1:d8:00:51:b4:10:2b:15:9f:12:ba:69: 54:dd:7a:a2:ff:dc:d3:dc:5e:f8:a6:b1:2c:3a:fa:8d:43:f9: 5b:45:c1:82:e3:97:5d:e0:76:39:dc:8d:9a:75:dc:36:d0:ef: 08:ac:ad:a6:d1:05:f9:6e:21:8d:d1:37:63:ae:9c:6c:a2:58: e4:26:d7:55:a3:33:4f:83:22:11:9d:39:95:f8:8e:ff:bc:34: d2:ed:61:92:37:ef:17:87:66:32:d3:36:a1:5b:70:3f:ff:48: d1:df:c6:e8:4c:a6:5c:5d:dd:43:08:3a:97:05:35:d6:58:55: 66:4a:bd:a7:c4:16:14:b0:bc:f8:42:8d:c8:62:ce:d7:ba:8c: 90:78:60:90:0a:a9:22:18:b9:f3:44:0a:69:c3:53:d2:2b:91: e3:98:e0:f9:88:41:10:0b:ea:ef:17:77:ff:cb:62:03:3e:6a: b9:42:c5:41:64:67:2e:39:e5:49:e3:79:47:fd:eb:54:37:dc: a7:32:26:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPTftWWAlt72CzRwxDboZgWkUWUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYxOTY0M0VFQjUxODMzM0RBRTJBNzk5MzNCRUIxMzIw Qzg5Q0E4NzAeFw0yNTA5MjMxODU1MDFaFw0yNjA5MjIxOTAwMDFaMDMxMTAvBgNV BAMTKDg2REM5QkU4RUQ2RjY3NUNDMUJDQjIxMjgwNDg5MjE2MzBCQkMyMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+KMO3htsMkshrlF6WIrkED2LS pzQAN9pJjHSmfL4vqO+m0W4DmRXLOnnp7one1GNoOR1ORoSuBdQaASl040Yf58hB EyuZzFaqxqxF6UEVjXyDMnP0yA9aBbKyvA3stwDnneFcfm0n25nv10KSlbUwhENl 2riCnSufZkUpe2sZU0nhMRpQiFt4SlRrsGllIAlnE8WvsarxREA6hCuXVcVDLPxB Bs+k/v7Mj768Tv0ZLUiJtQ1ll0S1k1lqSInC77GkJauAe9kT1lGRrkUBob0jp796 GhfC0yLgrTCc8xOk6zRSwqNWmpwwcl0Rj77N9pOIpdQ7KDwxl9diU+l4F4sjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhtyb6O1vZ1zBvLISgEiSFjC7wgcwHwYDVR0j BBgwFoAUxhlkPutRgzPa4qeZM76xMgyJyocwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmMzMGM3MS1kZjJkLTRmYzctYjQzNS03NTExZGYyODdhNmIvMC9DNjE5NjQzRUVC NTE4MzMzREFFMkE3OTkzM0JFQjEzMjBDODlDQTg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYxOTY0M0VFQjUxODMzM0RBRTJBNzk5MzNCRUIxMzIwQzg5 Q0E4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYzMwYzcxLWRmMmQtNGZjNy1i NDM1LTc1MTFkZjI4N2E2Yi8wLzMxMzAzMzJlMzIzMTMwMmUzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfSAjANBgkqhkiG 9w0BAQsFAAOCAQEAUWbca9XTLe90SK6V8F6VEhLW1JebkdidYptgVlDy0DXG/w7z cAfXFgrR5M+gcb4fWY/JinfIcnBkfg2e0dgAUbQQKxWfErppVN16ov/c09xe+Kax LDr6jUP5W0XBguOXXeB2OdyNmnXcNtDvCKytptEF+W4hjdE3Y66cbKJY5CbXVaMz T4MiEZ05lfiO/7w00u1hkjfvF4dmMtM2oVtwP/9I0d/G6EymXF3dQwg6lwU11lhV Zkq9p8QWFLC8+EKNyGLO17qMkHhgkAqpIhi580QKacNT0iuR45jg+YhBEAvq7xd3 /8tiAz5quULFQWRnLjnlSeN5R/3rVDfcpzImnA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:07:21 2025 by rpki-client