$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa File: 3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa (raw, json) Hash identifier: Zz17TQa2NJzEsR1WGPakO7j3yFYvZxiFyfeaOkhhBlE= Subject key identifier: 1B:B6:A3:B0:8B:6D:81:41:41:F4:6D:33:A7:59:1D:33:3E:8A:E4:A2 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 09760382E73D1B3CBF88E3B7972CE52D94FB1FA7 Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa Signing time: Fri 17 Oct 2025 11:00:01 +0000 ROA not before: Fri 17 Oct 2025 10:55:01 +0000 ROA not after: Fri 16 Oct 2026 11:00:01 +0000 asID: 138087 IP address blocks: 103.125.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 20:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:76:03:82:e7:3d:1b:3c:bf:88:e3:b7:97:2c:e5:2d:94:fb:1f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Oct 17 10:55:01 2025 GMT Not After : Oct 16 11:00:01 2026 GMT Subject: CN=1BB6A3B08B6D814141F46D33A7591D333E8AE4A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9e:6c:ce:f8:22:13:a6:d1:2e:b5:5e:b4:8c: 60:75:0f:3f:82:cc:e3:4a:89:8c:8b:a6:03:a6:70: 4a:52:98:9c:05:a9:1d:80:bb:8c:f4:cb:ff:28:2d: bf:15:0b:5e:6c:95:ff:2d:b9:87:1d:04:62:b0:98: 8d:25:35:6b:07:90:dd:1b:f4:0f:60:b6:dc:5c:ca: 33:06:9f:c9:7e:aa:f8:3a:e7:d1:fd:7c:f5:37:24: 1f:08:1f:e1:5c:07:80:67:bc:b1:63:80:e0:75:67: 33:6e:cf:c0:b9:92:87:a0:d8:f2:c5:9a:f7:41:92: ce:3b:e4:8f:45:fe:f7:f0:83:17:8d:d4:93:84:ae: 6f:6d:d0:f3:68:89:e1:dc:85:db:3b:bd:d3:6e:cc: e4:3f:e0:7e:f2:41:7b:0b:09:94:c0:ef:ed:ba:f4: c3:f9:73:17:4c:7b:a9:c4:5e:b3:87:a3:ea:54:0d: 85:6f:34:c0:5e:6a:7f:03:5a:b0:c1:7a:9a:2e:ac: bf:56:f7:55:6c:fa:de:5d:89:70:68:55:fe:34:1f: b9:5b:f8:66:7f:c1:38:99:09:b6:4c:87:d2:d1:42: fa:8b:45:7a:65:d5:6c:49:30:08:e8:95:ba:d6:df: 6b:e4:6a:43:5a:95:c6:8e:73:21:db:71:43:96:73: 90:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B6:A3:B0:8B:6D:81:41:41:F4:6D:33:A7:59:1D:33:3E:8A:E4:A2 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.17.0/24 Signature Algorithm: sha256WithRSAEncryption c6:93:b6:d5:70:36:22:ff:fb:18:78:7f:89:9f:2d:cf:d9:ea: db:a4:3c:4c:08:bf:51:b2:10:e9:d8:04:41:ca:91:23:e3:25: b9:38:70:d9:38:0f:f0:13:3f:7e:49:77:20:dd:ef:31:4b:70: bb:5e:a3:08:84:3f:39:7e:53:0d:16:ca:3e:23:9f:71:03:b2: 8b:19:25:a5:72:5c:0f:b0:97:b4:b6:6f:51:9f:2d:4c:af:65: 06:1b:37:00:d8:1b:d9:49:a7:ee:a7:88:81:a6:1d:78:e5:a2: 28:0d:87:83:8d:b0:f7:4a:44:89:5e:3b:48:4c:6d:6c:f8:28: 84:ec:1f:e6:ec:d0:09:8c:fd:f1:70:db:48:62:c2:b1:91:a1: 94:c4:5d:88:33:ce:52:c5:37:47:d5:63:2e:74:70:fa:f4:82: 2a:e1:cf:5f:d0:56:bb:1f:d9:12:16:38:8e:59:d4:68:db:88: 1c:6d:e6:b4:4a:6e:29:bf:90:78:12:37:b4:c4:c0:57:38:a7: 58:bc:77:39:c6:a5:f3:8c:3a:bc:a3:a5:da:39:3d:56:4b:25: b9:02:ca:72:45:97:c4:59:61:d2:54:4d:2c:97:a9:fd:ad:c1: e6:ed:38:af:2a:d9:68:d9:1c:dd:b8:1c:48:70:a2:4d:3c:4e: 0c:90:46:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCXYDguc9Gzy/iOO3lyzlLZT7H6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNTEwMTcxMDU1MDFaFw0yNjEwMTYxMTAwMDFaMDMxMTAvBgNV BAMTKDFCQjZBM0IwOEI2RDgxNDE0MUY0NkQzM0E3NTkxRDMzM0U4QUU0QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjnmzO+CITptEutV60jGB1Dz+C zONKiYyLpgOmcEpSmJwFqR2Au4z0y/8oLb8VC15slf8tuYcdBGKwmI0lNWsHkN0b 9A9gttxcyjMGn8l+qvg659H9fPU3JB8IH+FcB4BnvLFjgOB1ZzNuz8C5koeg2PLF mvdBks475I9F/vfwgxeN1JOErm9t0PNoieHchds7vdNuzOQ/4H7yQXsLCZTA7+26 9MP5cxdMe6nEXrOHo+pUDYVvNMBean8DWrDBepourL9W91Vs+t5diXBoVf40H7lb +GZ/wTiZCbZMh9LRQvqLRXpl1WxJMAjolbrW32vkakNalcaOcyHbcUOWc5DtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG7ajsIttgUFB9G0zp1kdMz6K5KIwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30RMA0GCSqG SIb3DQEBCwUAA4IBAQDGk7bVcDYi//sYeH+Jny3P2erbpDxMCL9RshDp2ARBypEj 4yW5OHDZOA/wEz9+SXcg3e8xS3C7XqMIhD85flMNFso+I59xA7KLGSWlclwPsJe0 tm9Rny1Mr2UGGzcA2BvZSafup4iBph145aIoDYeDjbD3SkSJXjtITG1s+CiE7B/m 7NAJjP3xcNtIYsKxkaGUxF2IM85SxTdH1WMudHD69IIq4c9f0Fa7H9kSFjiOWdRo 24gcbea0Sm4pv5B4Eje0xMBXOKdYvHc5xqXzjDq8o6XaOT1WSyW5AspyRZfEWWHS VE0sl6n9rcHm7TivKtlo2RzduBxIcKJNPE4MkEZX -----END CERTIFICATE-----Generated at Mon Oct 20 18:53:48 2025 by rpki-client