$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa File: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (raw, json) Hash identifier: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM= Subject key identifier: B3:CE:0C:11:81:9B:E0:2B:FB:C1:7F:CF:0D:E3:35:9F:E0:AE:77:0E Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 1B1EAE6FE6DC861E5A17796D73467BDBD8B99D05 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa Signing time: Mon 02 Jun 2025 02:03:09 +0000 ROA not before: Mon 02 Jun 2025 01:58:09 +0000 ROA not after: Mon 01 Jun 2026 02:03:09 +0000 asID: 45305 IP address blocks: 103.28.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 19:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1e:ae:6f:e6:dc:86:1e:5a:17:79:6d:73:46:7b:db:d8:b9:9d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jun 2 01:58:09 2025 GMT Not After : Jun 1 02:03:09 2026 GMT Subject: CN=B3CE0C11819BE02BFBC17FCF0DE3359FE0AE770E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:7c:d5:e1:f3:1a:f8:fe:e0:01:b8:76:aa: f1:94:1e:b6:17:e1:2e:00:46:58:27:f2:d7:a2:7c: 23:8a:1c:f6:aa:2b:1e:27:0c:16:d5:11:ed:8e:14: 6d:18:1b:3f:9f:de:0a:8e:d8:e9:bf:78:b1:c1:80: 0f:da:8b:c6:a8:cd:a0:4e:d9:bd:78:56:bf:e9:28: 15:96:17:1a:32:d1:24:ea:43:1c:f4:00:a1:fc:d9: ce:25:10:3e:b5:9a:df:9d:1c:d3:c2:90:3b:33:72: 63:44:75:20:0a:17:6c:e8:d8:43:28:d4:c2:e4:42: 6d:97:b6:1a:77:84:42:95:80:b0:df:7b:22:48:49: 57:00:9d:a6:56:f7:c0:cb:a0:80:af:2a:1f:6d:24: 10:28:9e:b7:92:43:ec:2f:1d:89:26:49:e8:78:a9: 9e:31:f8:25:56:c2:a1:98:14:50:61:c9:4a:7e:09: e4:89:1e:9b:1d:00:0a:06:7c:26:0d:e5:22:23:c5: c7:b3:9e:59:5a:34:0f:cb:14:e9:5b:9a:90:92:4b: fe:78:a0:66:6b:cd:7b:fe:d1:46:65:49:0c:52:98: 32:da:fc:ef:ed:61:ae:ed:0a:75:16:57:ab:14:39: c7:bb:54:1a:c8:c6:0d:df:47:13:47:4e:37:d5:83: 41:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CE:0C:11:81:9B:E0:2B:FB:C1:7F:CF:0D:E3:35:9F:E0:AE:77:0E X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.112.0/22 Signature Algorithm: sha256WithRSAEncryption 22:66:68:6d:54:86:d7:1d:a4:c4:fa:cc:34:63:a1:d8:ca:7c: 4d:d2:cd:bb:1c:1d:c3:3f:5d:ae:0e:26:11:46:de:a8:52:cd: 9a:f9:30:dc:84:cd:de:f4:8a:d7:7c:3d:2e:fc:68:fd:07:d3: 7b:d4:56:cd:ca:09:0d:82:64:15:e9:a7:28:96:bd:d8:36:4f: 6e:68:7a:bd:7f:a3:82:a1:ce:69:e1:b0:d4:75:f4:44:6e:1e: d9:19:f2:05:ad:f6:3e:c0:2f:d1:05:f7:aa:91:11:99:26:36: 2e:b1:04:d5:75:5a:55:61:ba:70:18:b0:20:04:2d:f9:74:d3: 68:31:56:5c:0e:3e:73:24:96:63:f5:02:1e:b3:c5:d5:9a:3a: 97:37:c7:8e:cf:b7:0f:2f:01:41:61:1b:d7:37:9f:09:1d:04: 0f:51:30:0f:82:31:f8:46:b3:f0:27:cf:34:98:93:92:c4:86: 31:c0:3f:cb:f3:29:37:cf:fc:e6:58:63:da:55:f1:5b:5e:0d: d8:33:62:83:b8:6c:56:2e:72:7b:1d:c7:56:1e:ac:f6:d0:4d: d1:4d:d1:98:13:4c:34:49:7f:d3:de:cd:b6:eb:09:8c:7a:8d: ad:f4:43:a6:7b:f5:b5:44:6f:29:07:a0:d6:62:33:b6:15:f8: 9d:39:b2:65 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGx6ub+bchh5aF3ltc0Z729i5nQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA2MDIwMTU4MDlaFw0yNjA2MDEwMjAzMDlaMDMxMTAvBgNV BAMTKEIzQ0UwQzExODE5QkUwMkJGQkMxN0ZDRjBERTMzNTlGRTBBRTc3MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKk3zV4fMa+P7gAbh2qvGUHrYX 4S4ARlgn8teifCOKHPaqKx4nDBbVEe2OFG0YGz+f3gqO2Om/eLHBgA/ai8aozaBO 2b14Vr/pKBWWFxoy0STqQxz0AKH82c4lED61mt+dHNPCkDszcmNEdSAKF2zo2EMo 1MLkQm2Xthp3hEKVgLDfeyJISVcAnaZW98DLoICvKh9tJBAonreSQ+wvHYkmSeh4 qZ4x+CVWwqGYFFBhyUp+CeSJHpsdAAoGfCYN5SIjxceznllaNA/LFOlbmpCSS/54 oGZrzXv+0UZlSQxSmDLa/O/tYa7tCnUWV6sUOce7VBrIxg3fRxNHTjfVg0ERAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUs84MEYGb4Cv7wX/PDeM1n+Cudw4wHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzAzMzJlMzIzODJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcccDANBgkqhkiG 9w0BAQsFAAOCAQEAImZobVSG1x2kxPrMNGOh2Mp8TdLNuxwdwz9drg4mEUbeqFLN mvkw3ITN3vSK13w9Lvxo/QfTe9RWzcoJDYJkFemnKJa92DZPbmh6vX+jgqHOaeGw 1HX0RG4e2RnyBa32PsAv0QX3qpERmSY2LrEE1XVaVWG6cBiwIAQt+XTTaDFWXA4+ cySWY/UCHrPF1Zo6lzfHjs+3Dy8BQWEb1zefCR0ED1EwD4Ix+Eaz8CfPNJiTksSG McA/y/MpN8/85lhj2lXxW14N2DNig7hsVi5yex3HVh6s9tBN0U3RmBNMNEl/097N tusJjHqNrfRDpnv1tURvKQeg1mIzthX4nTmyZQ== -----END CERTIFICATE-----Generated at Wed Nov 5 20:45:09 2025 by rpki-client