$ rpki-client -vvf repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa File: 3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa (raw, json) Hash identifier: VSwmKbWt2mj/4Xnvw/p95KrSyYtbtzdvXf2hu0E4abA= Subject key identifier: 25:05:CF:21:35:29:7D:1C:DF:14:55:A5:33:9A:DD:7F:B6:00:7E:B6 Certificate issuer: /CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC Certificate serial: 67A10267B35AFFEA7325DE6EF0A66F088C8CC2C0 Authority key identifier: 2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa Signing time: Sun 28 Sep 2025 04:00:01 +0000 ROA not before: Sun 28 Sep 2025 03:55:01 +0000 ROA not after: Sun 27 Sep 2026 04:00:01 +0000 asID: 142381 IP address blocks: 103.172.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a1:02:67:b3:5a:ff:ea:73:25:de:6e:f0:a6:6f:08:8c:8c:c2:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC Validity Not Before: Sep 28 03:55:01 2025 GMT Not After : Sep 27 04:00:01 2026 GMT Subject: CN=2505CF2135297D1CDF1455A5339ADD7FB6007EB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:42:55:a4:e5:c7:18:63:60:f7:29:7e:9c:45: c3:61:40:e5:c7:7a:5d:b6:42:43:fa:b9:5e:b6:eb: e3:70:ef:be:86:a0:a5:fa:c8:47:f8:f9:92:4d:8f: 7d:65:ef:db:7d:97:64:e7:0b:c8:6c:84:1d:7a:b9: eb:d4:4a:3e:06:45:a6:14:11:6c:30:4b:d4:62:56: 84:51:c6:2f:a1:1f:95:91:86:ea:50:6b:34:1d:a7: 3f:cf:b2:e0:60:12:d9:43:0d:c1:69:d3:f0:56:3d: 00:d5:ef:55:eb:33:ed:e5:80:41:9f:70:4a:e0:a7: 52:d6:36:9f:75:14:df:fe:68:41:5d:d2:a2:70:73: 55:b5:41:2e:73:d8:68:35:ba:97:9c:1c:1d:07:10: b0:0c:81:76:f6:04:fa:49:ef:e2:45:3d:61:ec:26: 12:7e:35:24:76:39:4f:3d:c6:95:31:aa:fc:89:ac: ab:fd:d5:85:eb:03:49:01:84:98:d4:be:b6:8b:80: 94:68:6b:3c:c9:72:de:44:8b:3d:7f:84:ff:73:61: 0e:96:a2:f2:22:bd:69:f3:fc:56:ee:22:a9:25:d6: e0:62:0f:f8:a2:5f:4d:27:5c:3d:8e:6f:4d:0c:bc: 60:2c:5a:c2:56:45:a7:03:78:21:32:7d:a6:d3:fa: 20:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:05:CF:21:35:29:7D:1C:DF:14:55:A5:33:9A:DD:7F:B6:00:7E:B6 X509v3 Authority Key Identifier: keyid:2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.17.0/24 Signature Algorithm: sha256WithRSAEncryption 48:5e:31:8d:ac:08:aa:74:2f:c4:c9:f2:f6:ab:c5:d7:a2:85: f7:9f:b3:4c:02:fb:7b:72:a3:ed:41:9a:47:34:78:43:ec:e9: 95:ab:2c:83:05:5a:89:ac:53:13:d0:04:af:62:64:88:c5:1a: 79:95:be:25:b2:b9:61:a8:d2:36:55:50:dc:79:a9:9a:cd:cf: f8:80:72:f9:b3:0b:24:bf:72:80:1c:c2:5d:35:ea:4e:ea:f3: 15:16:27:63:b7:08:36:3a:71:5c:f6:4f:f3:3a:72:73:bf:dc: f4:87:58:bb:dd:00:35:95:b8:93:45:92:bc:51:d4:4d:de:48: f7:c1:5c:d6:c9:e2:87:ae:2b:e1:ca:75:56:ad:c6:e7:8c:13: d9:91:be:e4:04:82:c4:c6:8f:3b:12:d5:c4:9b:81:1e:f0:fc: 8f:65:8f:aa:3e:89:a2:12:87:75:fe:4c:ea:18:b0:5a:b4:83: ec:9f:7f:a6:a7:56:4c:2c:a2:40:34:80:42:7f:51:8c:6f:99: 95:09:05:3b:d5:7b:4c:b0:49:18:62:32:65:3f:20:ea:79:11: af:25:53:3e:bb:b5:4d:01:93:6e:fa:4d:4a:24:7b:37:b8:a1: 2c:3e:ac:95:87:a7:37:0e:84:29:d9:69:49:3e:09:eb:24:00: 78:33:67:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ6ECZ7Na/+pzJd5u8KZvCIyMwsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIxNTMwQUQyMEFDMUYyRjdGMkVBMkVCQUFFNzA3RDBF MTI4QTFEQzAeFw0yNTA5MjgwMzU1MDFaFw0yNjA5MjcwNDAwMDFaMDMxMTAvBgNV BAMTKDI1MDVDRjIxMzUyOTdEMUNERjE0NTVBNTMzOUFERDdGQjYwMDdFQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWQlWk5ccYY2D3KX6cRcNhQOXH el22QkP6uV626+Nw776GoKX6yEf4+ZJNj31l79t9l2TnC8hshB16uevUSj4GRaYU EWwwS9RiVoRRxi+hH5WRhupQazQdpz/PsuBgEtlDDcFp0/BWPQDV71XrM+3lgEGf cErgp1LWNp91FN/+aEFd0qJwc1W1QS5z2Gg1upecHB0HELAMgXb2BPpJ7+JFPWHs JhJ+NSR2OU89xpUxqvyJrKv91YXrA0kBhJjUvraLgJRoazzJct5Eiz1/hP9zYQ6W ovIivWnz/FbuIqkl1uBiD/iiX00nXD2Ob00MvGAsWsJWRacDeCEyfabT+iBXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJQXPITUpfRzfFFWlM5rdf7YAfrYwHwYDVR0j BBgwFoAUKxUwrSCsHy9/LqLrqucH0OEoodwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NjY4ODU0YS0zZjI0LTQwYjEtODBjZC1lNjM2YWE3ZThiMWMvMC8yQjE1MzBBRDIw QUMxRjJGN0YyRUEyRUJBQUU3MDdEMEUxMjhBMURDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIxNTMwQUQyMEFDMUYyRjdGMkVBMkVCQUFFNzA3RDBFMTI4 QTFEQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2Njg4NTRhLTNmMjQtNDBiMS04 MGNkLWU2MzZhYTdlOGIxYy8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wRMA0GCSqG SIb3DQEBCwUAA4IBAQBIXjGNrAiqdC/EyfL2q8XXooX3n7NMAvt7cqPtQZpHNHhD 7OmVqyyDBVqJrFMT0ASvYmSIxRp5lb4lsrlhqNI2VVDceamazc/4gHL5swskv3KA HMJdNepO6vMVFidjtwg2OnFc9k/zOnJzv9z0h1i73QA1lbiTRZK8UdRN3kj3wVzW yeKHrivhynVWrcbnjBPZkb7kBILExo87EtXEm4Ee8PyPZY+qPomiEod1/kzqGLBa tIPsn3+mp1ZMLKJANIBCf1GMb5mVCQU71XtMsEkYYjJlPyDqeRGvJVM+u7VNAZNu +k1KJHs3uKEsPqyVh6c3DoQp2WlJPgnrJAB4M2dY -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:37 2025 by rpki-client