$ rpki-client -vvf repo-rpki.idnic.net/repo/e78a8b39-3ae3-4de7-9366-21f9ea04325a/0/3130332e3234392e3232362e302f32342d3234203d3e20313531353236.roa File: 3130332e3234392e3232362e302f32342d3234203d3e20313531353236.roa (raw, json) Hash identifier: 0NLsga2/g7s+EizQykHVB3FIXfa2PQbybGIhJhV4p2k= Subject key identifier: 07:1A:B7:BB:85:91:30:D8:EF:98:24:4B:57:B9:3C:DA:02:C9:D9:E8 Certificate issuer: /CN=DA6C3D4156C05B74E3B5C049F798B00DC6342B70 Certificate serial: 5208456CAC01EA9F0BDC4268883CC21511CE534B Authority key identifier: DA:6C:3D:41:56:C0:5B:74:E3:B5:C0:49:F7:98:B0:0D:C6:34:2B:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA6C3D4156C05B74E3B5C049F798B00DC6342B70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e78a8b39-3ae3-4de7-9366-21f9ea04325a/0/3130332e3234392e3232362e302f32342d3234203d3e20313531353236.roa Signing time: Thu 16 Oct 2025 06:00:00 +0000 ROA not before: Thu 16 Oct 2025 05:55:00 +0000 ROA not after: Thu 15 Oct 2026 06:00:00 +0000 asID: 151526 IP address blocks: 103.249.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e78a8b39-3ae3-4de7-9366-21f9ea04325a/0/DA6C3D4156C05B74E3B5C049F798B00DC6342B70.crl rsync://repo-rpki.idnic.net/repo/e78a8b39-3ae3-4de7-9366-21f9ea04325a/0/DA6C3D4156C05B74E3B5C049F798B00DC6342B70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA6C3D4156C05B74E3B5C049F798B00DC6342B70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:08:45:6c:ac:01:ea:9f:0b:dc:42:68:88:3c:c2:15:11:ce:53:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA6C3D4156C05B74E3B5C049F798B00DC6342B70 Validity Not Before: Oct 16 05:55:00 2025 GMT Not After : Oct 15 06:00:00 2026 GMT Subject: CN=071AB7BB859130D8EF98244B57B93CDA02C9D9E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1d:54:a6:d7:d9:a1:bc:db:53:74:57:7e:30: 07:20:c8:b0:17:7b:41:ea:98:79:c1:41:7f:90:37: 41:c5:90:88:c2:84:38:02:a1:7d:bd:fb:d5:14:ea: 49:ed:31:e8:f4:01:d3:24:21:19:5d:a7:e4:93:b1: 50:9d:2e:38:04:9a:a8:4e:45:e0:33:6d:22:4b:af: 56:64:b3:e5:cd:8b:63:20:58:8b:f3:78:a7:00:29: c6:89:08:1c:89:b4:4e:ee:78:01:ce:8a:13:19:61: e3:91:00:40:9b:f5:87:d8:0f:f9:db:8d:c7:72:e7: 06:6d:8d:5a:5f:e7:24:40:fb:98:86:ca:11:f3:a9: 6f:69:1a:d8:f4:14:7d:82:a5:70:b3:55:5a:70:e4: ae:44:81:fe:fd:e4:16:e4:07:61:9e:d9:64:04:54: d7:0a:1b:8d:28:73:7d:d9:fd:e0:26:ac:d4:f0:d4: 3b:75:e7:89:36:7c:2c:c3:5c:ab:2f:6d:f6:c5:f2: 4d:96:05:dc:86:18:f7:b2:24:37:72:1c:65:1b:6f: a6:d8:c7:1e:b3:66:ce:33:61:3d:51:cd:ed:8f:7f: 77:91:b3:f7:a8:02:9b:dc:21:3f:03:41:98:ac:93: ce:23:b1:1a:2c:59:77:29:89:0d:ad:7a:91:b0:5e: 19:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1A:B7:BB:85:91:30:D8:EF:98:24:4B:57:B9:3C:DA:02:C9:D9:E8 X509v3 Authority Key Identifier: keyid:DA:6C:3D:41:56:C0:5B:74:E3:B5:C0:49:F7:98:B0:0D:C6:34:2B:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e78a8b39-3ae3-4de7-9366-21f9ea04325a/0/DA6C3D4156C05B74E3B5C049F798B00DC6342B70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA6C3D4156C05B74E3B5C049F798B00DC6342B70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e78a8b39-3ae3-4de7-9366-21f9ea04325a/0/3130332e3234392e3232362e302f32342d3234203d3e20313531353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.249.226.0/24 Signature Algorithm: sha256WithRSAEncryption 46:5b:94:da:75:0e:e2:b0:e6:d9:de:fc:d4:34:c5:d2:ee:9d: 9e:82:03:e5:36:7e:59:bd:82:c9:e2:b4:e8:8a:62:45:97:5d: ba:ad:e4:63:fd:51:2b:f0:83:4b:07:e5:16:ea:cc:88:a4:fb: f3:30:46:4a:b0:1b:d2:61:b9:a9:01:15:1b:f3:42:9b:ab:63: 94:9e:8f:ed:1f:b6:c0:74:e2:fc:fc:1b:f3:53:ac:d3:88:c6: d0:76:7e:10:d3:63:54:a3:4f:81:9a:06:77:87:3d:4a:89:54: c2:3a:38:3f:d6:31:38:67:72:c4:d9:cf:93:1a:fa:bb:b0:2d: 7a:df:ba:12:f2:aa:9d:8e:09:03:3a:47:e7:42:8d:0d:e3:03: 22:52:d1:4a:da:83:99:0e:d4:94:b8:b7:2f:74:27:ba:ad:81: 3a:55:47:5d:f3:c3:e4:34:42:3f:9a:7d:b4:e3:be:99:27:7e: 00:0f:8f:24:4c:ae:f3:b4:96:f1:34:c1:4a:f2:22:76:17:10: be:ec:dc:0a:aa:36:60:56:84:8b:37:1e:5a:00:e4:61:c9:08: 17:23:a0:c2:e8:5a:57:b8:f0:57:65:76:23:b5:82:10:73:11: d5:4a:8c:3b:0a:05:0e:51:bf:95:72:d2:a5:20:1f:c7:5b:f6: a9:7c:dd:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUghFbKwB6p8L3EJoiDzCFRHOU0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE2QzNENDE1NkMwNUI3NEUzQjVDMDQ5Rjc5OEIwMERD NjM0MkI3MDAeFw0yNTEwMTYwNTU1MDBaFw0yNjEwMTUwNjAwMDBaMDMxMTAvBgNV BAMTKDA3MUFCN0JCODU5MTMwRDhFRjk4MjQ0QjU3QjkzQ0RBMDJDOUQ5RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvHVSm19mhvNtTdFd+MAcgyLAX e0HqmHnBQX+QN0HFkIjChDgCoX29+9UU6kntMej0AdMkIRldp+STsVCdLjgEmqhO ReAzbSJLr1Zks+XNi2MgWIvzeKcAKcaJCByJtE7ueAHOihMZYeORAECb9YfYD/nb jcdy5wZtjVpf5yRA+5iGyhHzqW9pGtj0FH2CpXCzVVpw5K5Egf795BbkB2Ge2WQE VNcKG40oc33Z/eAmrNTw1Dt154k2fCzDXKsvbfbF8k2WBdyGGPeyJDdyHGUbb6bY xx6zZs4zYT1Rze2Pf3eRs/eoApvcIT8DQZisk84jsRosWXcpiQ2tepGwXhk9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBxq3u4WRMNjvmCRLV7k82gLJ2egwHwYDVR0j BBgwFoAU2mw9QVbAW3TjtcBJ95iwDcY0K3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NzhhOGIzOS0zYWUzLTRkZTctOTM2Ni0yMWY5ZWEwNDMyNWEvMC9EQTZDM0Q0MTU2 QzA1Qjc0RTNCNUMwNDlGNzk4QjAwREM2MzQyQjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE2QzNENDE1NkMwNUI3NEUzQjVDMDQ5Rjc5OEIwMERDNjM0 MkI3MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3OGE4YjM5LTNhZTMtNGRlNy05 MzY2LTIxZjllYTA0MzI1YS8wLzMxMzAzMzJlMzIzNDM5MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+eIwDQYJ KoZIhvcNAQELBQADggEBAEZblNp1DuKw5tne/NQ0xdLunZ6CA+U2flm9gsnitOiK YkWXXbqt5GP9USvwg0sH5RbqzIik+/MwRkqwG9JhuakBFRvzQpurY5Sej+0ftsB0 4vz8G/NTrNOIxtB2fhDTY1SjT4GaBneHPUqJVMI6OD/WMThncsTZz5Ma+ruwLXrf uhLyqp2OCQM6R+dCjQ3jAyJS0Urag5kO1JS4ty90J7qtgTpVR13zw+Q0Qj+afbTj vpknfgAPjyRMrvO0lvE0wUryInYXEL7s3AqqNmBWhIs3HloA5GHJCBcjoMLoWle4 8FdldiO1ghBzEdVKjDsKBQ5Rv5Vy0qUgH8db9ql83bA= -----END CERTIFICATE-----Generated at Mon Oct 20 23:09:49 2025 by rpki-client