$ rpki-client -vvf repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa File: 3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa (raw, json) Hash identifier: 12t3q8UKsyUaN7ZPmQ7oKlNAYfCglRtEXGNPube8E5U= Subject key identifier: 43:E4:B9:15:3C:A2:1C:14:A8:F1:E4:B6:C6:79:4E:F5:B1:69:31:65 Certificate issuer: /CN=F38108E73D42C7F20A648CA9193FBFB8EFE0EC27 Certificate serial: 1E61BC619257CE0B87BF144AE05564973D2733A3 Authority key identifier: F3:81:08:E7:3D:42:C7:F2:0A:64:8C:A9:19:3F:BF:B8:EF:E0:EC:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa Signing time: Fri 12 Sep 2025 10:01:44 +0000 ROA not before: Fri 12 Sep 2025 09:56:44 +0000 ROA not after: Fri 11 Sep 2026 10:01:44 +0000 asID: 150281 IP address blocks: 103.97.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.crl rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:61:bc:61:92:57:ce:0b:87:bf:14:4a:e0:55:64:97:3d:27:33:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38108E73D42C7F20A648CA9193FBFB8EFE0EC27 Validity Not Before: Sep 12 09:56:44 2025 GMT Not After : Sep 11 10:01:44 2026 GMT Subject: CN=43E4B9153CA21C14A8F1E4B6C6794EF5B1693165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:57:c1:3b:3b:71:0c:e7:9e:ed:19:b5:90: 79:0b:0d:f7:6b:df:af:d9:1a:7f:ff:67:83:72:56: 78:b5:60:5a:1b:a4:4e:7a:7f:0e:b9:0b:e4:4c:61: e5:51:dc:3f:93:cf:9b:75:fa:99:b3:20:b9:22:79: ff:04:50:39:3e:40:bf:1c:93:2e:0c:54:8f:26:fc: 5f:3e:30:89:52:a2:0c:35:fe:b3:da:07:ae:2a:90: 58:d0:08:83:82:27:08:3b:bb:10:6c:fd:42:f7:8f: e3:bf:f1:6d:09:dc:d3:d7:e2:fd:d1:1d:db:0e:af: 2f:24:01:18:c2:46:47:41:d9:f0:16:e3:45:3b:79: 54:7d:a3:d1:3c:64:fd:29:54:f3:ae:9b:50:22:f0: e5:af:8b:30:2a:f8:b8:c2:7a:ee:ab:0b:40:1c:cd: 3b:86:7d:b7:48:85:cf:76:04:4f:35:8c:3f:e9:e1: 08:32:56:c9:98:22:b4:c8:c8:59:02:61:f0:20:0b: fa:d0:6c:3c:1b:d3:aa:c1:a8:73:2b:dc:56:c6:8d: b9:94:ed:a5:67:49:e6:ab:c1:44:5d:3b:2b:b4:91: a5:6a:a8:51:99:9a:66:f2:60:39:13:13:6f:90:e3: c8:44:15:3c:54:c0:fa:2d:bf:a7:08:e8:60:a0:63: 4b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E4:B9:15:3C:A2:1C:14:A8:F1:E4:B6:C6:79:4E:F5:B1:69:31:65 X509v3 Authority Key Identifier: keyid:F3:81:08:E7:3D:42:C7:F2:0A:64:8C:A9:19:3F:BF:B8:EF:E0:EC:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/3130332e39372e3233312e302f32342d3234203d3e20313530323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.231.0/24 Signature Algorithm: sha256WithRSAEncryption 42:77:3a:ff:31:74:f0:69:d2:55:de:f0:4c:60:bc:98:cf:1b: f6:76:1e:a9:80:fe:b8:12:a8:eb:16:d6:4a:91:d4:4f:a5:ce: eb:d5:8d:e1:c8:25:a6:65:08:d0:f8:ed:16:e5:b8:cf:49:1f: 33:15:2a:a4:87:8d:66:38:35:03:10:b9:a6:87:d4:4f:e3:96: bf:2f:95:9f:00:6f:70:9e:c9:f4:de:9e:f5:4f:f1:50:b7:80: d3:4a:16:d9:87:0d:eb:75:c8:cc:eb:5c:b1:ad:ab:6d:dc:2f: 5a:a1:79:0e:f0:a2:c2:aa:48:98:80:a8:6a:a5:bb:3c:ad:34: 8a:a6:70:5e:4d:ac:21:3c:bd:27:fb:44:c7:cf:f2:21:1f:b7: ec:9c:7b:6d:f6:67:a7:9d:64:72:cf:93:e7:65:5c:ba:09:73: f6:51:ae:8f:8a:85:96:a7:a1:09:cf:4e:78:8c:a3:1a:03:16: 00:9f:af:59:96:a6:cb:45:c1:42:a2:0e:95:1a:58:b2:2c:04: 0c:62:93:b3:b6:da:79:0c:25:33:50:7b:8c:c5:df:07:94:75: 2d:12:07:6d:29:3e:b6:6f:d9:ed:42:5b:d6:d3:a3:89:0b:13: 8d:dc:5a:33:db:db:ed:d3:ba:01:91:69:63:7e:1e:9f:45:54: 96:ab:1f:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHmG8YZJXzguHvxRK4FVklz0nM6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4MTA4RTczRDQyQzdGMjBBNjQ4Q0E5MTkzRkJGQjhF RkUwRUMyNzAeFw0yNTA5MTIwOTU2NDRaFw0yNjA5MTExMDAxNDRaMDMxMTAvBgNV BAMTKDQzRTRCOTE1M0NBMjFDMTRBOEYxRTRCNkM2Nzk0RUY1QjE2OTMxNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCr1fBOztxDOee7Rm1kHkLDfdr 36/ZGn//Z4NyVni1YFobpE56fw65C+RMYeVR3D+Tz5t1+pmzILkief8EUDk+QL8c ky4MVI8m/F8+MIlSogw1/rPaB64qkFjQCIOCJwg7uxBs/UL3j+O/8W0J3NPX4v3R HdsOry8kARjCRkdB2fAW40U7eVR9o9E8ZP0pVPOum1Ai8OWvizAq+LjCeu6rC0Ac zTuGfbdIhc92BE81jD/p4QgyVsmYIrTIyFkCYfAgC/rQbDwb06rBqHMr3FbGjbmU 7aVnSearwURdOyu0kaVqqFGZmmbyYDkTE2+Q48hEFTxUwPotv6cI6GCgY0uZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ+S5FTyiHBSo8eS2xnlO9bFpMWUwHwYDVR0j BBgwFoAU84EI5z1Cx/IKZIypGT+/uO/g7CcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MjM5ZmRjYi1jNDE3LTRmM2YtYjFjOS03ZTM2OWNkZTIxZmQvMC9GMzgxMDhFNzNE NDJDN0YyMEE2NDhDQTkxOTNGQkZCOEVGRTBFQzI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4MTA4RTczRDQyQzdGMjBBNjQ4Q0E5MTkzRkJGQjhFRkUw RUMyNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyMzlmZGNiLWM0MTctNGYzZi1i MWM5LTdlMzY5Y2RlMjFmZC8wLzMxMzAzMzJlMzkzNzJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2HnMA0GCSqG SIb3DQEBCwUAA4IBAQBCdzr/MXTwadJV3vBMYLyYzxv2dh6pgP64EqjrFtZKkdRP pc7r1Y3hyCWmZQjQ+O0W5bjPSR8zFSqkh41mODUDELmmh9RP45a/L5WfAG9wnsn0 3p71T/FQt4DTShbZhw3rdcjM61yxratt3C9aoXkO8KLCqkiYgKhqpbs8rTSKpnBe TawhPL0n+0THz/IhH7fsnHtt9mennWRyz5PnZVy6CXP2Ua6PioWWp6EJz054jKMa AxYAn69ZlqbLRcFCog6VGliyLAQMYpOzttp5DCUzUHuMxd8HlHUtEgdtKT62b9nt QlvW06OJCxON3Foz29vt07oBkWljfh6fRVSWqx++ -----END CERTIFICATE-----Generated at Tue Oct 21 09:54:23 2025 by rpki-client