$ rpki-client -vvf repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa File: 3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa (raw, json) Hash identifier: DvNJ8H1CJLvMIn5Y34NSV0YQmp6wM1aq7OtPFufJmPg= Subject key identifier: 60:C1:5D:02:88:75:18:70:36:8B:C3:31:08:24:8F:11:CA:DC:B0:58 Certificate issuer: /CN=358F4D417A1317CB220BBDC982D7F35D1540D51A Certificate serial: 565D8516268DA62A99D2BD1D38A25EE66219432F Authority key identifier: 35:8F:4D:41:7A:13:17:CB:22:0B:BD:C9:82:D7:F3:5D:15:40:D5:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/358F4D417A1317CB220BBDC982D7F35D1540D51A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa Signing time: Wed 15 Oct 2025 06:01:10 +0000 ROA not before: Wed 15 Oct 2025 05:56:10 +0000 ROA not after: Wed 14 Oct 2026 06:01:10 +0000 asID: 141107 IP address blocks: 103.210.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/358F4D417A1317CB220BBDC982D7F35D1540D51A.crl rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/358F4D417A1317CB220BBDC982D7F35D1540D51A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/358F4D417A1317CB220BBDC982D7F35D1540D51A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:5d:85:16:26:8d:a6:2a:99:d2:bd:1d:38:a2:5e:e6:62:19:43:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=358F4D417A1317CB220BBDC982D7F35D1540D51A Validity Not Before: Oct 15 05:56:10 2025 GMT Not After : Oct 14 06:01:10 2026 GMT Subject: CN=60C15D0288751870368BC33108248F11CADCB058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:86:e4:d4:ba:85:fe:05:05:00:d2:e5:9d:6f: 9d:3e:d9:e1:3d:67:87:75:0a:c0:2e:5a:32:f4:4d: 66:9d:02:0a:fb:fe:d2:f1:03:42:04:22:c9:7a:2b: d7:ab:b2:da:0c:c6:45:2e:ec:fd:37:d8:43:65:30: 08:b5:b0:ab:c5:7b:b8:34:19:a7:0c:6c:a1:15:1e: 06:36:5c:23:37:a9:8d:b8:cd:82:80:ec:19:b7:ec: 7f:83:88:f7:f4:88:a9:c0:ac:2e:55:01:3f:f2:48: 6b:4b:37:6f:bd:07:e6:e3:2a:ae:7b:14:5f:db:e6: 43:fa:dd:26:06:e0:9c:2f:94:98:2a:7a:6d:3d:5f: 94:87:53:9c:95:bf:84:f5:e9:8c:a5:ba:97:ca:2d: ba:b5:f4:17:1f:a6:91:9e:a6:ff:0a:4f:78:96:5b: 1f:f5:4c:72:eb:61:42:db:28:81:87:d1:7a:3b:cd: 45:f1:cf:6f:8a:c4:b7:0e:f3:35:a6:bf:02:af:b4: ea:b7:60:d3:31:e1:bd:fb:22:54:30:bd:78:e9:38: 31:32:26:03:a1:8c:45:be:fd:05:b5:c3:7d:f1:9a: ca:f4:82:4c:72:c2:00:d1:dd:f4:c0:91:f5:b5:79: 89:e9:95:ad:ef:6a:d8:c3:12:ee:48:39:b3:b6:1d: 17:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C1:5D:02:88:75:18:70:36:8B:C3:31:08:24:8F:11:CA:DC:B0:58 X509v3 Authority Key Identifier: keyid:35:8F:4D:41:7A:13:17:CB:22:0B:BD:C9:82:D7:F3:5D:15:40:D5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/358F4D417A1317CB220BBDC982D7F35D1540D51A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/358F4D417A1317CB220BBDC982D7F35D1540D51A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f438c195-494a-46a2-b93c-8e15668f05b2/0/3130332e3231302e36382e302f32332d3234203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.68.0/23 Signature Algorithm: sha256WithRSAEncryption 19:fb:e9:42:5b:30:aa:a6:2e:b1:a9:c3:d6:0f:61:85:04:22: 90:fd:93:6e:0a:29:87:08:25:37:05:e6:07:5c:b3:31:aa:fe: e6:8c:bb:a2:97:33:8b:a7:13:b6:87:e1:45:6a:f5:b3:eb:3d: 57:0f:10:d5:de:94:a6:0b:15:91:4d:da:51:a5:42:e5:04:80: a4:62:cd:89:b6:37:63:d8:ae:2d:85:a5:ae:28:2b:c1:08:54: 27:db:24:8f:41:08:af:3c:3b:ef:a2:d9:80:65:10:85:8d:c3: 66:90:5f:ac:8e:92:b6:69:f8:87:05:eb:f1:38:03:c2:75:ef: 8e:46:d6:b1:71:b9:13:e3:86:4f:89:71:b0:f4:4a:07:f2:5a: 29:00:00:34:ed:b7:68:17:98:0b:dc:8f:94:84:4a:38:41:92: aa:b2:66:81:34:02:eb:29:5e:c9:32:ea:51:38:23:9b:07:08: cf:b3:08:3e:6f:ed:9d:94:e6:bb:df:4d:a4:94:2b:e5:e9:24: 95:53:13:72:68:33:3a:ad:5b:f4:10:95:96:59:a6:c5:19:88: b0:a2:34:11:ca:46:12:85:99:c3:72:0b:e8:9c:8a:f0:60:55: 64:17:ed:61:e8:e3:36:12:be:25:c3:7a:da:30:76:77:17:e0: a7:86:8b:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVl2FFiaNpiqZ0r0dOKJe5mIZQy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU4RjRENDE3QTEzMTdDQjIyMEJCREM5ODJEN0YzNUQx NTQwRDUxQTAeFw0yNTEwMTUwNTU2MTBaFw0yNjEwMTQwNjAxMTBaMDMxMTAvBgNV BAMTKDYwQzE1RDAyODg3NTE4NzAzNjhCQzMzMTA4MjQ4RjExQ0FEQ0IwNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIhuTUuoX+BQUA0uWdb50+2eE9 Z4d1CsAuWjL0TWadAgr7/tLxA0IEIsl6K9erstoMxkUu7P032ENlMAi1sKvFe7g0 GacMbKEVHgY2XCM3qY24zYKA7Bm37H+DiPf0iKnArC5VAT/ySGtLN2+9B+bjKq57 FF/b5kP63SYG4JwvlJgqem09X5SHU5yVv4T16YylupfKLbq19BcfppGepv8KT3iW Wx/1THLrYULbKIGH0Xo7zUXxz2+KxLcO8zWmvwKvtOq3YNMx4b37IlQwvXjpODEy JgOhjEW+/QW1w33xmsr0gkxywgDR3fTAkfW1eYnpla3vatjDEu5IObO2HRfxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYMFdAoh1GHA2i8MxCCSPEcrcsFgwHwYDVR0j BBgwFoAUNY9NQXoTF8siC73JgtfzXRVA1RowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NDM4YzE5NS00OTRhLTQ2YTItYjkzYy04ZTE1NjY4ZjA1YjIvMC8zNThGNEQ0MTdB MTMxN0NCMjIwQkJEQzk4MkQ3RjM1RDE1NDBENTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU4RjRENDE3QTEzMTdDQjIyMEJCREM5ODJEN0YzNUQxNTQw RDUxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y0MzhjMTk1LTQ5NGEtNDZhMi1i OTNjLThlMTU2NjhmMDViMi8wLzMxMzAzMzJlMzIzMTMwMmUzNjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9JEMA0GCSqG SIb3DQEBCwUAA4IBAQAZ++lCWzCqpi6xqcPWD2GFBCKQ/ZNuCimHCCU3BeYHXLMx qv7mjLuilzOLpxO2h+FFavWz6z1XDxDV3pSmCxWRTdpRpULlBICkYs2Jtjdj2K4t haWuKCvBCFQn2ySPQQivPDvvotmAZRCFjcNmkF+sjpK2afiHBevxOAPCde+ORtax cbkT44ZPiXGw9EoH8lopAAA07bdoF5gL3I+UhEo4QZKqsmaBNALrKV7JMupROCOb BwjPswg+b+2dlOa7302klCvl6SSVUxNyaDM6rVv0EJWWWabFGYiwojQRykYShZnD cgvonIrwYFVkF+1h6OM2Er4lw3raMHZ3F+Cnhot+ -----END CERTIFICATE-----Generated at Tue Oct 21 04:35:01 2025 by rpki-client