$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e203435333035.roa File: 3130332e3130302e3138302e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: FyAvBZY6W2L1HwVaWtdBn1JjIwyZj/UZUwMR3y/jc5Q= Subject key identifier: A9:51:72:66:E2:AC:53:BD:3A:3B:3B:52:CE:7C:26:1C:16:9A:D3:15 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 0478AEB35C6582DAAFD2852EAAA108584DFD58D3 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e203435333035.roa Signing time: Wed 12 Nov 2025 02:21:36 +0000 ROA not before: Wed 12 Nov 2025 02:16:36 +0000 ROA not after: Wed 11 Nov 2026 02:21:36 +0000 asID: 45305 IP address blocks: 103.100.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Nov 2025 00:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:78:ae:b3:5c:65:82:da:af:d2:85:2e:aa:a1:08:58:4d:fd:58:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Nov 12 02:16:36 2025 GMT Not After : Nov 11 02:21:36 2026 GMT Subject: CN=A9517266E2AC53BD3A3B3B52CE7C261C169AD315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:5a:31:3b:ad:c3:a3:7e:13:ee:a5:47:30: 8b:7b:4b:70:b9:7a:12:db:d8:df:93:4d:ba:34:0a: 85:86:75:46:3f:8b:3e:66:9d:06:7f:2e:ff:d7:07: b2:ea:59:e3:07:30:ce:f5:a6:ad:52:1f:f7:c0:68: 98:73:98:0b:45:79:05:35:e3:f2:d0:b9:b1:f6:0a: cc:6a:b1:64:87:70:0a:4e:6b:eb:b6:6b:17:d0:54: 60:b1:16:0c:4c:6a:4e:c6:f5:90:2d:5f:72:59:7c: 33:dc:7f:9e:e9:ac:bf:02:a4:21:a6:6b:67:1b:96: 59:d2:12:58:2c:f3:16:55:91:c3:00:16:4b:4b:ac: 03:b3:21:29:85:bf:b1:e9:f6:c7:53:17:b4:3f:d9: 65:07:e2:cc:dd:cd:7c:60:66:12:5d:17:33:90:e8: 36:4e:d7:a5:0d:54:34:ca:23:5e:0d:52:af:7e:97: 03:f5:a1:49:b8:7e:06:4c:14:8b:b1:3e:30:cd:ee: 81:bc:6b:bb:5c:67:ed:56:c9:8a:f6:a4:c9:34:82: fd:e3:89:48:e1:51:5a:aa:93:e4:af:d1:c5:2a:c4: e3:0c:5f:e0:ee:f5:8c:5a:f9:b8:c0:ac:28:21:ab: 23:cd:20:38:be:06:e3:29:32:04:9a:5f:61:15:3e: e4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:51:72:66:E2:AC:53:BD:3A:3B:3B:52:CE:7C:26:1C:16:9A:D3:15 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.180.0/24 Signature Algorithm: sha256WithRSAEncryption 54:19:c6:85:29:3a:1a:92:24:0d:98:9c:c7:1f:07:ca:a9:19: f7:56:8c:fc:85:c4:a6:2e:50:db:ea:9e:6b:c0:f7:9d:22:1f: e4:76:8f:13:33:e7:a4:f9:f8:a6:f7:34:ef:2c:68:be:b2:c1: 9e:c8:f6:5b:d5:33:39:b8:50:3b:3d:b9:dd:f7:89:a4:c0:fa: 2e:28:42:e5:ba:a5:fc:6b:3f:73:65:93:58:9f:d2:7c:2b:bb: e2:28:3a:59:3e:81:ca:bb:09:e0:09:0d:1b:1f:24:a7:7f:57: 11:f4:d3:61:3d:5e:82:90:e3:6f:c6:54:af:8f:79:b8:3d:84: 15:65:30:72:ce:df:52:89:82:53:ea:09:99:ca:da:c3:84:2c: df:46:21:b8:19:a3:6e:9b:f2:74:6a:cb:a7:6d:46:94:39:61: 44:40:d4:b5:b6:fb:ed:c9:1f:f2:56:eb:dc:51:de:99:d0:04: 7f:14:73:aa:a7:b8:ca:40:96:9a:6b:82:1c:52:72:98:10:60: 78:5e:03:d3:f1:ff:53:17:50:28:b6:83:21:cd:d0:a4:af:f3: 68:11:f2:ef:25:a1:d3:27:e6:8d:b0:81:7f:cf:73:33:5e:1e: 23:f9:f7:b8:1e:85:80:9d:f6:3f:8e:51:ea:31:7b:b9:6d:97: 50:28:7b:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBHius1xlgtqv0oUuqqEIWE39WNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNTExMTIwMjE2MzZaFw0yNjExMTEwMjIxMzZaMDMxMTAvBgNV BAMTKEE5NTE3MjY2RTJBQzUzQkQzQTNCM0I1MkNFN0MyNjFDMTY5QUQzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnr1oxO63Do34T7qVHMIt7S3C5 ehLb2N+TTbo0CoWGdUY/iz5mnQZ/Lv/XB7LqWeMHMM71pq1SH/fAaJhzmAtFeQU1 4/LQubH2CsxqsWSHcApOa+u2axfQVGCxFgxMak7G9ZAtX3JZfDPcf57prL8CpCGm a2cbllnSElgs8xZVkcMAFktLrAOzISmFv7Hp9sdTF7Q/2WUH4szdzXxgZhJdFzOQ 6DZO16UNVDTKI14NUq9+lwP1oUm4fgZMFIuxPjDN7oG8a7tcZ+1WyYr2pMk0gv3j iUjhUVqqk+Sv0cUqxOMMX+Du9Yxa+bjArCghqyPNIDi+BuMpMgSaX2EVPuTlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqVFyZuKsU706OztSznwmHBaa0xUwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2S0MA0GCSqG SIb3DQEBCwUAA4IBAQBUGcaFKToakiQNmJzHHwfKqRn3Voz8hcSmLlDb6p5rwPed Ih/kdo8TM+ek+fim9zTvLGi+ssGeyPZb1TM5uFA7Pbnd94mkwPouKELluqX8az9z ZZNYn9J8K7viKDpZPoHKuwngCQ0bHySnf1cR9NNhPV6CkONvxlSvj3m4PYQVZTBy zt9SiYJT6gmZytrDhCzfRiG4GaNum/J0asunbUaUOWFEQNS1tvvtyR/yVuvcUd6Z 0AR/FHOqp7jKQJaaa4IcUnKYEGB4XgPT8f9TF1AotoMhzdCkr/NoEfLvJaHTJ+aN sIF/z3MzXh4j+fe4HoWAnfY/jlHqMXu5bZdQKHtH -----END CERTIFICATE-----Generated at Mon Nov 17 10:10:02 2025 by rpki-client