$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa File: 3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa (raw, json) Hash identifier: csPdkdJcUUCAtCT9DXQEOSSDc2dcYO076Q+UqLNYO0k= Subject key identifier: 9A:01:E8:19:B6:85:D8:CF:37:B2:1E:62:EE:DC:6E:7E:93:AD:B4:07 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 7D28B98125FEC56CAC13EA5D6F74047D6C3AD117 Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa Signing time: Fri 17 Oct 2025 11:00:01 +0000 ROA not before: Fri 17 Oct 2025 10:55:01 +0000 ROA not after: Fri 16 Oct 2026 11:00:01 +0000 asID: 138087 IP address blocks: 103.125.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 20:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:28:b9:81:25:fe:c5:6c:ac:13:ea:5d:6f:74:04:7d:6c:3a:d1:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Oct 17 10:55:01 2025 GMT Not After : Oct 16 11:00:01 2026 GMT Subject: CN=9A01E819B685D8CF37B21E62EEDC6E7E93ADB407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c1:e2:31:c9:05:f0:08:30:fc:82:6c:66:51: 4b:57:4d:ec:a2:24:82:1a:ea:73:1f:01:e4:d6:1f: 20:84:75:8e:d1:b8:ed:a3:f1:26:23:cf:6f:aa:9d: 60:5f:06:a0:7a:f5:b6:e5:a9:b0:40:8f:23:aa:96: 29:3f:df:60:c0:cd:ba:fa:31:f6:04:70:e2:c3:87: be:1e:03:e9:b4:4b:45:8b:64:70:f2:b3:db:04:e4: 83:12:a8:f9:1c:34:60:f3:3b:75:d0:20:22:d2:2b: 68:f4:aa:64:90:7d:7e:1e:4c:5d:fe:02:bc:bb:f3: fd:bd:ae:ac:1a:83:36:33:7b:e3:c4:ea:c7:63:6c: d2:57:82:74:7c:25:d5:e1:b2:0f:eb:cf:9c:97:65: 91:02:0b:2a:88:2f:85:39:ca:3e:1c:b6:25:a4:7c: 91:e9:8c:c3:bf:ce:18:e8:01:c2:bd:73:9a:71:b1: 92:79:3c:17:93:93:3f:0c:ba:e3:74:47:d6:cd:db: c6:08:a9:63:be:5b:90:26:e6:47:03:f4:12:6d:a8: e5:ab:2d:a6:31:a2:0d:1d:03:d0:11:94:6d:94:5e: 0f:ce:b9:2d:d9:f4:4d:a5:40:80:f0:d9:4d:36:6a: 9d:22:c3:3d:e7:de:1e:e6:37:d1:36:29:74:98:b0: b6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:01:E8:19:B6:85:D8:CF:37:B2:1E:62:EE:DC:6E:7E:93:AD:B4:07 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.18.0/24 Signature Algorithm: sha256WithRSAEncryption c7:b7:4a:21:e8:76:aa:6e:c5:21:aa:29:f0:b5:0d:cd:80:ea: 50:6b:12:3f:44:61:27:d9:eb:5d:9a:87:5a:fc:d3:aa:58:e7: f2:7d:b9:05:a6:89:70:08:89:e4:72:63:20:ad:0c:60:de:f3: 2f:83:ee:7b:a0:a1:b5:06:47:82:a0:8f:af:fb:89:83:5a:a9: e6:94:6d:ac:46:d4:8b:62:bb:4e:3b:cc:98:d6:38:91:b5:7e: 3e:89:11:54:90:56:e2:0f:22:fe:8b:42:43:15:51:f1:a9:b3: 5f:2a:80:34:d8:11:04:ed:55:90:89:13:17:35:eb:4e:e0:72: a9:bd:f6:d8:cb:6f:73:85:06:1c:6e:79:3c:ab:ec:7b:6b:1f: 74:95:49:21:14:50:11:7f:2b:8f:4c:8d:6e:1a:38:ea:21:70: 98:61:6c:23:f3:53:71:55:26:e4:2e:49:28:08:8c:70:ac:12: 75:be:1e:af:52:d2:ab:b1:da:a0:fa:3a:be:fe:af:69:f8:f7: ec:67:b6:e7:32:e4:55:2d:56:13:60:5a:ce:34:58:1c:f6:70: 8b:7c:82:95:9b:ac:db:f3:27:dc:5b:97:0e:45:79:a0:94:b9: e4:7f:db:08:d6:94:3d:dc:97:3f:2c:ef:39:7d:20:48:23:91: 8d:cc:45:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfSi5gSX+xWysE+pdb3QEfWw60RcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNTEwMTcxMDU1MDFaFw0yNjEwMTYxMTAwMDFaMDMxMTAvBgNV BAMTKDlBMDFFODE5QjY4NUQ4Q0YzN0IyMUU2MkVFREM2RTdFOTNBREI0MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpweIxyQXwCDD8gmxmUUtXTeyi JIIa6nMfAeTWHyCEdY7RuO2j8SYjz2+qnWBfBqB69bblqbBAjyOqlik/32DAzbr6 MfYEcOLDh74eA+m0S0WLZHDys9sE5IMSqPkcNGDzO3XQICLSK2j0qmSQfX4eTF3+ Ary78/29rqwagzYze+PE6sdjbNJXgnR8JdXhsg/rz5yXZZECCyqIL4U5yj4ctiWk fJHpjMO/zhjoAcK9c5pxsZJ5PBeTkz8MuuN0R9bN28YIqWO+W5Am5kcD9BJtqOWr LaYxog0dA9ARlG2UXg/OuS3Z9E2lQIDw2U02ap0iwz3n3h7mN9E2KXSYsLY3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmgHoGbaF2M83sh5i7txufpOttAcwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30SMA0GCSqG SIb3DQEBCwUAA4IBAQDHt0oh6HaqbsUhqinwtQ3NgOpQaxI/RGEn2etdmoda/NOq WOfyfbkFpolwCInkcmMgrQxg3vMvg+57oKG1BkeCoI+v+4mDWqnmlG2sRtSLYrtO O8yY1jiRtX4+iRFUkFbiDyL+i0JDFVHxqbNfKoA02BEE7VWQiRMXNetO4HKpvfbY y29zhQYcbnk8q+x7ax90lUkhFFARfyuPTI1uGjjqIXCYYWwj81NxVSbkLkkoCIxw rBJ1vh6vUtKrsdqg+jq+/q9p+PfsZ7bnMuRVLVYTYFrONFgc9nCLfIKVm6zb8yfc W5cORXmglLnkf9sI1pQ93Jc/LO85fSBII5GNzEV0 -----END CERTIFICATE-----Generated at Mon Oct 20 18:53:11 2025 by rpki-client