$ rpki-client -vvf repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32322e302f32342d3234203d3e20313530353537.roa File: 3130332e39352e32322e302f32342d3234203d3e20313530353537.roa (raw, json) Hash identifier: Lmf9Da9j85YcfNYeEFfKaXIaWC1krFrSr92XELTEqhs= Subject key identifier: 07:C5:B9:D6:F3:30:B1:B4:FF:51:C5:ED:7F:AD:98:CC:18:15:44:D3 Certificate issuer: /CN=B70CD666995822F32C04E09AFF01B2D4CBAA9910 Certificate serial: 0D9AE9E59441653619A795FB679631CE75E02FFE Authority key identifier: B7:0C:D6:66:99:58:22:F3:2C:04:E0:9A:FF:01:B2:D4:CB:AA:99:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70CD666995822F32C04E09AFF01B2D4CBAA9910.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32322e302f32342d3234203d3e20313530353537.roa Signing time: Tue 16 Sep 2025 16:00:01 +0000 ROA not before: Tue 16 Sep 2025 15:55:01 +0000 ROA not after: Tue 15 Sep 2026 16:00:01 +0000 asID: 150557 IP address blocks: 103.95.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/B70CD666995822F32C04E09AFF01B2D4CBAA9910.crl rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/B70CD666995822F32C04E09AFF01B2D4CBAA9910.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70CD666995822F32C04E09AFF01B2D4CBAA9910.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 08:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9a:e9:e5:94:41:65:36:19:a7:95:fb:67:96:31:ce:75:e0:2f:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B70CD666995822F32C04E09AFF01B2D4CBAA9910 Validity Not Before: Sep 16 15:55:01 2025 GMT Not After : Sep 15 16:00:01 2026 GMT Subject: CN=07C5B9D6F330B1B4FF51C5ED7FAD98CC181544D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c2:b1:3b:64:19:2e:d7:5d:69:6d:73:03:ba: ed:6d:73:6f:d1:e5:a5:7f:9d:af:3d:da:eb:f2:31: 05:a3:91:27:8c:1e:db:21:37:1a:d9:04:e6:e0:f4: 85:40:ea:ce:cd:48:c8:87:f1:a8:ee:f6:b6:93:34: 2d:62:5e:bd:6b:53:47:aa:2f:e5:02:2f:e0:f8:79: 8a:5a:fe:2e:d7:c0:a3:8c:16:f3:f2:90:12:2f:f3: 21:32:96:6f:b1:ca:d1:dc:24:85:cb:1e:2d:35:49: 0b:49:d8:6e:3c:d5:82:e3:3c:7f:6b:6c:46:b8:1f: 30:78:6d:72:41:7a:cd:16:4e:f1:51:5c:8f:93:8b: 06:63:97:39:65:c2:b5:93:48:fa:6d:31:60:6c:90: 8d:a8:dc:4f:c7:da:75:bf:79:d4:3b:f2:06:ec:7c: 90:80:de:a9:e9:ed:bf:c5:9e:28:2a:44:6a:7f:b7: 3f:9d:55:b0:84:b3:0d:df:4a:96:12:ba:28:96:e1: 65:1f:58:1c:53:28:c3:c0:de:92:18:2e:2b:33:3d: 82:08:26:66:f6:9f:2f:11:35:51:c6:e6:a2:16:17: f2:ff:35:ca:9a:6a:66:0a:10:8c:43:70:93:a4:3f: 0a:b4:c5:39:54:d4:95:c7:00:62:7a:a6:38:e4:e0: 01:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C5:B9:D6:F3:30:B1:B4:FF:51:C5:ED:7F:AD:98:CC:18:15:44:D3 X509v3 Authority Key Identifier: keyid:B7:0C:D6:66:99:58:22:F3:2C:04:E0:9A:FF:01:B2:D4:CB:AA:99:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/B70CD666995822F32C04E09AFF01B2D4CBAA9910.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70CD666995822F32C04E09AFF01B2D4CBAA9910.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32322e302f32342d3234203d3e20313530353537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.22.0/24 Signature Algorithm: sha256WithRSAEncryption ed:72:d0:65:29:c3:00:cb:8d:1d:9b:b2:4c:ba:5b:7d:f0:0f: ae:7e:cb:91:41:bc:3e:fc:42:2c:d2:f1:86:f6:80:a5:ed:ab: b2:6d:95:7c:d9:18:a0:19:fb:d2:86:1f:79:bb:c3:73:90:ec: dc:7d:be:4e:68:20:a9:8f:0f:c9:d1:5c:6c:c5:44:54:ac:24: 96:f7:bf:04:ae:03:6f:8b:3c:74:39:59:45:a5:c4:1f:f0:71: c4:58:50:d2:3a:7c:87:d5:d9:b9:76:93:98:73:28:6d:1c:48: 23:ed:69:9b:c7:0f:a2:c4:ec:99:18:72:c5:b2:58:80:f5:20: 9d:cb:ad:8a:a3:42:71:5e:e7:d5:f9:42:b2:4c:6a:d3:e6:14: b2:b2:90:05:df:30:5d:4c:c2:ff:ce:fe:e9:88:59:56:6d:1e: 61:c7:4c:f7:c1:19:e4:72:1f:1c:51:35:b3:d2:a2:88:cf:13: 32:31:35:f0:43:29:42:be:64:a0:ad:2e:07:77:db:72:ac:10: 9c:4b:8a:ae:3b:fa:6b:8c:f6:2d:05:f9:04:53:2c:9f:f1:cf: 3c:bb:18:45:b1:ec:64:9a:f2:f3:50:94:b8:5b:ee:f9:f9:d0: 1b:46:04:19:b0:72:ab:76:52:92:f2:cd:72:23:04:6d:98:40: 61:aa:52:0e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDZrp5ZRBZTYZp5X7Z5YxznXgL/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcwQ0Q2NjY5OTU4MjJGMzJDMDRFMDlBRkYwMUIyRDRD QkFBOTkxMDAeFw0yNTA5MTYxNTU1MDFaFw0yNjA5MTUxNjAwMDFaMDMxMTAvBgNV BAMTKDA3QzVCOUQ2RjMzMEIxQjRGRjUxQzVFRDdGQUQ5OENDMTgxNTQ0RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjwrE7ZBku111pbXMDuu1tc2/R 5aV/na892uvyMQWjkSeMHtshNxrZBObg9IVA6s7NSMiH8aju9raTNC1iXr1rU0eq L+UCL+D4eYpa/i7XwKOMFvPykBIv8yEylm+xytHcJIXLHi01SQtJ2G481YLjPH9r bEa4HzB4bXJBes0WTvFRXI+TiwZjlzllwrWTSPptMWBskI2o3E/H2nW/edQ78gbs fJCA3qnp7b/FnigqRGp/tz+dVbCEsw3fSpYSuiiW4WUfWBxTKMPA3pIYLiszPYII Jmb2ny8RNVHG5qIWF/L/NcqaamYKEIxDcJOkPwq0xTlU1JXHAGJ6pjjk4AGnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUB8W51vMwsbT/UcXtf62YzBgVRNMwHwYDVR0j BBgwFoAUtwzWZplYIvMsBOCa/wGy1MuqmRAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmQ0Zjg2OS00ZGI2LTRiMGEtYWFiNi1jZGU0N2I0NDdkNzcvMC9CNzBDRDY2Njk5 NTgyMkYzMkMwNEUwOUFGRjAxQjJENENCQUE5OTEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcwQ0Q2NjY5OTU4MjJGMzJDMDRFMDlBRkYwMUIyRDRDQkFB OTkxMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZDRmODY5LTRkYjYtNGIwYS1h YWI2LWNkZTQ3YjQ0N2Q3Ny8wLzMxMzAzMzJlMzkzNTJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzUzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdfFjANBgkqhkiG 9w0BAQsFAAOCAQEA7XLQZSnDAMuNHZuyTLpbffAPrn7LkUG8PvxCLNLxhvaApe2r sm2VfNkYoBn70oYfebvDc5Ds3H2+TmggqY8PydFcbMVEVKwklve/BK4Db4s8dDlZ RaXEH/BxxFhQ0jp8h9XZuXaTmHMobRxII+1pm8cPosTsmRhyxbJYgPUgncutiqNC cV7n1flCskxq0+YUsrKQBd8wXUzC/87+6YhZVm0eYcdM98EZ5HIfHFE1s9KiiM8T MjE18EMpQr5koK0uB3fbcqwQnEuKrjv6a4z2LQX5BFMsn/HPPLsYRbHsZJry81CU uFvu+fnQG0YEGbByq3ZSkvLNciMEbZhAYapSDg== -----END CERTIFICATE-----Generated at Mon Oct 20 18:08:26 2025 by rpki-client