$ rpki-client -vvf repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa File: 3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: PoHfbIWBTAgg6GV0EgVNoxxVcZmuQWnVjc1te2yrEhM= Subject key identifier: 1B:C6:6D:2D:D5:3D:34:2D:AB:7A:38:DE:D3:C6:C8:DA:84:8C:9C:21 Certificate issuer: /CN=D807B5A7716CB56D036EDE4CE994632C0D3A2501 Certificate serial: 671417D4AB4552A696714CB671682B42A57CCE76 Authority key identifier: D8:07:B5:A7:71:6C:B5:6D:03:6E:DE:4C:E9:94:63:2C:0D:3A:25:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D807B5A7716CB56D036EDE4CE994632C0D3A2501.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa Signing time: Mon 20 Oct 2025 07:00:00 +0000 ROA not before: Mon 20 Oct 2025 06:55:00 +0000 ROA not after: Mon 19 Oct 2026 07:00:00 +0000 asID: 142366 IP address blocks: 103.191.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/D807B5A7716CB56D036EDE4CE994632C0D3A2501.crl rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/D807B5A7716CB56D036EDE4CE994632C0D3A2501.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D807B5A7716CB56D036EDE4CE994632C0D3A2501.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:14:17:d4:ab:45:52:a6:96:71:4c:b6:71:68:2b:42:a5:7c:ce:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D807B5A7716CB56D036EDE4CE994632C0D3A2501 Validity Not Before: Oct 20 06:55:00 2025 GMT Not After : Oct 19 07:00:00 2026 GMT Subject: CN=1BC66D2DD53D342DAB7A38DED3C6C8DA848C9C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:81:1a:91:d6:4d:a6:7d:dd:d6:6d:e3:95:f8: 89:fc:8c:29:37:1b:65:ed:5a:41:a6:34:3f:6c:e8: e9:92:f1:8f:b7:b3:40:45:e9:8a:38:b7:a6:4d:3a: 0b:34:61:26:7f:48:60:61:b6:ab:dc:da:da:5a:3a: 98:02:79:cd:6d:6a:66:54:4c:4b:06:71:6b:ff:40: f6:34:97:65:03:e3:72:08:14:f1:bc:33:8f:cf:ee: af:ac:cd:8b:9d:91:ea:8f:e5:d9:83:dc:7b:db:c3: 76:a3:1f:be:14:5a:75:a7:67:1d:ba:de:fa:0e:21: 5d:5b:5a:53:6a:03:1c:0c:f7:6c:48:38:14:10:a3: cf:f2:67:28:58:bb:2e:96:0d:18:3a:c2:13:b3:51: 00:db:30:9d:02:66:30:22:1e:67:f1:26:80:b1:e8: 56:f4:55:5f:67:de:ac:04:72:9c:21:02:d0:2f:1d: fb:fa:50:83:6d:46:e6:9c:38:eb:50:61:b2:be:25: 71:ef:bf:78:42:2e:91:f7:48:db:5d:6e:0b:bf:b1: bd:c4:88:ad:06:d4:35:97:59:61:96:2f:1c:7d:c9: b8:3b:06:6f:e4:0e:23:64:0b:d0:3f:22:27:e2:12: ec:31:95:da:44:ca:e0:c7:43:5f:df:1a:1d:08:4d: 2c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C6:6D:2D:D5:3D:34:2D:AB:7A:38:DE:D3:C6:C8:DA:84:8C:9C:21 X509v3 Authority Key Identifier: keyid:D8:07:B5:A7:71:6C:B5:6D:03:6E:DE:4C:E9:94:63:2C:0D:3A:25:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/D807B5A7716CB56D036EDE4CE994632C0D3A2501.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D807B5A7716CB56D036EDE4CE994632C0D3A2501.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.200.0/24 Signature Algorithm: sha256WithRSAEncryption 63:10:97:f9:8f:6d:85:72:42:87:80:06:2f:a8:5d:9a:7d:6b: d7:7f:fd:46:0d:18:2f:ed:8d:fc:10:00:07:84:9c:2e:3c:61: d2:f1:45:b3:62:0a:38:37:de:63:15:4c:05:4d:4f:48:b6:54: f2:18:40:00:4c:b2:29:85:e2:0a:b7:75:c9:7a:80:58:47:a1: 83:3d:62:20:cc:1a:09:22:e6:fb:2c:42:5f:50:ff:3c:8f:b2: c4:db:e6:17:78:d5:57:3d:78:e9:c8:c2:53:c1:8a:9c:cf:12: 3a:1f:e0:c9:d5:1d:0a:39:52:e3:69:6e:2f:8d:9e:65:d7:68: 85:25:b0:a2:04:8c:0c:20:c2:0c:8b:77:db:ee:12:b1:2d:f6: 75:60:3b:71:13:28:45:19:ae:08:2e:78:2d:c5:38:16:f0:ed: 66:91:58:d0:3c:db:d1:af:8a:20:f5:a3:fd:14:bc:0f:6d:83: 8f:34:ca:f5:fc:6e:26:77:28:7d:8f:cf:5b:d5:42:fe:1c:5f: c2:c2:12:7a:cf:d4:04:e0:58:71:ce:ba:36:c7:40:2b:c5:d8: 7f:4c:91:17:d8:1a:44:98:68:bd:d6:60:71:48:fe:40:47:a3: 57:c3:fc:e5:26:bf:6f:23:c6:16:0b:0f:23:d5:31:9a:2b:cb: dc:03:03:46 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZxQX1KtFUqaWcUy2cWgrQqV8znYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDgwN0I1QTc3MTZDQjU2RDAzNkVERTRDRTk5NDYzMkMw RDNBMjUwMTAeFw0yNTEwMjAwNjU1MDBaFw0yNjEwMTkwNzAwMDBaMDMxMTAvBgNV BAMTKDFCQzY2RDJERDUzRDM0MkRBQjdBMzhERUQzQzZDOERBODQ4QzlDMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDegRqR1k2mfd3WbeOV+In8jCk3 G2XtWkGmND9s6OmS8Y+3s0BF6Yo4t6ZNOgs0YSZ/SGBhtqvc2tpaOpgCec1tamZU TEsGcWv/QPY0l2UD43IIFPG8M4/P7q+szYudkeqP5dmD3Hvbw3ajH74UWnWnZx26 3voOIV1bWlNqAxwM92xIOBQQo8/yZyhYuy6WDRg6whOzUQDbMJ0CZjAiHmfxJoCx 6Fb0VV9n3qwEcpwhAtAvHfv6UINtRuacOOtQYbK+JXHvv3hCLpH3SNtdbgu/sb3E iK0G1DWXWWGWLxx9ybg7Bm/kDiNkC9A/IifiEuwxldpEyuDHQ1/fGh0ITSzjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUG8ZtLdU9NC2rejje08bI2oSMnCEwHwYDVR0j BBgwFoAU2Ae1p3FstW0Dbt5M6ZRjLA06JQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDNlNzFmZS1hZDMzLTRkMTItODcyMC00MzE0M2ZmMDFkYmYvMC9EODA3QjVBNzcx NkNCNTZEMDM2RURFNENFOTk0NjMyQzBEM0EyNTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDgwN0I1QTc3MTZDQjU2RDAzNkVERTRDRTk5NDYzMkMwRDNB MjUwMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwM2U3MWZlLWFkMzMtNGQxMi04 NzIwLTQzMTQzZmYwMWRiZi8wLzMxMzAzMzJlMzEzOTMxMmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv8gwDQYJ KoZIhvcNAQELBQADggEBAGMQl/mPbYVyQoeABi+oXZp9a9d//UYNGC/tjfwQAAeE nC48YdLxRbNiCjg33mMVTAVNT0i2VPIYQABMsimF4gq3dcl6gFhHoYM9YiDMGgki 5vssQl9Q/zyPssTb5hd41Vc9eOnIwlPBipzPEjof4MnVHQo5UuNpbi+NnmXXaIUl sKIEjAwgwgyLd9vuErEt9nVgO3ETKEUZrggueC3FOBbw7WaRWNA829GviiD1o/0U vA9tg480yvX8biZ3KH2Pz1vVQv4cX8LCEnrP1ATgWHHOujbHQCvF2H9MkRfYGkSY aL3WYHFI/kBHo1fD/OUmv28jxhYLDyPVMZory9wDA0Y= -----END CERTIFICATE-----Generated at Mon Oct 20 13:24:52 2025 by rpki-client