$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa File: 3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa (raw, json) Hash identifier: YOGZVl1pxBeHfHLB3kw7JsNB/ueNC1i2F+bIqbAKZQY= Subject key identifier: 70:9C:5F:14:C3:3C:0A:AB:3D:96:1E:E6:07:97:24:0E:76:89:39:19 Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 2562A1B838F9FF1A53805F7ABBC01A953BE668F4 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa Signing time: Thu 04 Sep 2025 14:00:02 +0000 ROA not before: Thu 04 Sep 2025 13:55:02 +0000 ROA not after: Thu 03 Sep 2026 14:00:02 +0000 asID: 151586 IP address blocks: 103.119.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 10:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:62:a1:b8:38:f9:ff:1a:53:80:5f:7a:bb:c0:1a:95:3b:e6:68:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Sep 4 13:55:02 2025 GMT Not After : Sep 3 14:00:02 2026 GMT Subject: CN=709C5F14C33C0AAB3D961EE60797240E76893919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b0:c5:59:e7:51:5f:ae:e3:66:7c:20:de:d6: ec:3c:54:d2:95:66:48:30:e9:a9:45:2c:6e:1b:a2: e3:32:06:1d:b4:45:20:71:3b:f6:a4:80:2e:04:52: ef:1a:e8:30:d6:8b:9b:28:17:9e:0e:4f:c7:9c:04: 75:ff:47:e5:1f:18:ea:45:e1:f1:42:53:8c:9b:33: e3:e5:ff:1f:77:47:ed:72:f7:96:a4:01:ae:b1:ec: e3:f4:f0:b0:38:72:87:28:63:fc:1c:0c:7a:8f:8f: f8:3a:33:b3:ae:6c:96:62:a0:3a:e8:9e:e6:23:ac: 03:a4:39:d8:35:1f:c3:15:d2:0d:f9:f4:0b:68:79: a9:97:5d:31:d6:ae:3b:30:06:f3:66:92:d5:90:09: 04:55:9a:b7:4e:7e:af:43:ab:2b:6a:8f:37:65:7f: 10:1b:5d:b3:cd:78:28:35:af:eb:1a:cc:82:b4:13: a7:c6:06:df:9b:68:5f:da:bc:18:1b:be:1c:2e:2f: 31:0c:01:60:07:29:6c:4d:20:9f:a1:7d:0e:bd:46: b6:c8:61:42:0d:56:ca:da:95:af:8b:3d:3b:e8:d5: 37:66:ad:15:57:4d:64:22:72:79:11:a3:5c:a6:f2: ca:ea:2b:bf:a0:9f:47:e5:5f:ee:4a:2c:9d:11:aa: 1f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9C:5F:14:C3:3C:0A:AB:3D:96:1E:E6:07:97:24:0E:76:89:39:19 X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.236.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:d5:42:50:d7:fa:32:1b:c0:d0:09:dd:16:6d:8a:ba:31:3b: 7d:95:1d:ae:72:4d:8d:38:14:7b:3b:38:17:f8:5d:f3:fa:3d: 87:4c:a6:f1:fb:0d:eb:09:8b:a4:77:d9:42:67:e8:be:6a:4f: 05:0a:d8:9f:bb:f9:92:15:b7:6d:22:20:0e:6a:af:b0:e5:5b: 76:60:28:d8:68:92:03:8e:96:62:54:4e:29:4a:da:41:26:36: d2:c8:67:26:5c:79:06:b0:c4:79:b8:92:1e:72:02:ba:8c:62: 5b:04:b8:10:b6:14:72:83:e3:9d:d3:a3:92:6e:83:02:ca:e4: bd:4c:67:cc:44:8d:34:b4:1e:12:04:88:fc:ba:4e:07:a2:38: a2:92:f0:cc:18:79:b2:23:c5:57:2e:75:a8:62:a0:f1:62:aa: e3:c5:5a:7a:67:1b:f2:9d:2b:b0:ab:1a:df:8d:8a:db:58:4d: c6:28:9e:df:d8:31:6e:9d:b5:3c:75:bb:df:aa:7e:50:38:12: 06:ab:8f:ca:86:b6:74:38:3f:00:52:cf:c6:b9:fb:a7:be:fb: 0d:b2:ef:98:05:93:f7:d8:50:9b:9d:b6:67:02:df:f2:17:12: da:ba:82:14:af:10:22:b3:d5:4e:7c:61:04:78:32:8c:ad:6c: 21:36:e9:5d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJWKhuDj5/xpTgF96u8AalTvmaPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNTA5MDQxMzU1MDJaFw0yNjA5MDMxNDAwMDJaMDMxMTAvBgNV BAMTKDcwOUM1RjE0QzMzQzBBQUIzRDk2MUVFNjA3OTcyNDBFNzY4OTM5MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLsMVZ51FfruNmfCDe1uw8VNKV Zkgw6alFLG4bouMyBh20RSBxO/akgC4EUu8a6DDWi5soF54OT8ecBHX/R+UfGOpF 4fFCU4ybM+Pl/x93R+1y95akAa6x7OP08LA4cocoY/wcDHqPj/g6M7OubJZioDro nuYjrAOkOdg1H8MV0g359AtoeamXXTHWrjswBvNmktWQCQRVmrdOfq9Dqytqjzdl fxAbXbPNeCg1r+sazIK0E6fGBt+baF/avBgbvhwuLzEMAWAHKWxNIJ+hfQ69RrbI YUINVsrala+LPTvo1TdmrRVXTWQicnkRo1ym8srqK7+gn0flX+5KLJ0Rqh/fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcJxfFMM8Cqs9lh7mB5ckDnaJORkwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnd+wwDQYJ KoZIhvcNAQELBQADggEBAG7VQlDX+jIbwNAJ3RZtiroxO32VHa5yTY04FHs7OBf4 XfP6PYdMpvH7DesJi6R32UJn6L5qTwUK2J+7+ZIVt20iIA5qr7DlW3ZgKNhokgOO lmJUTilK2kEmNtLIZyZceQawxHm4kh5yArqMYlsEuBC2FHKD453To5JugwLK5L1M Z8xEjTS0HhIEiPy6TgeiOKKS8MwYebIjxVcudahioPFiquPFWnpnG/KdK7CrGt+N ittYTcYont/YMW6dtTx1u9+qflA4Egarj8qGtnQ4PwBSz8a5+6e++w2y75gFk/fY UJudtmcC3/IXEtq6ghSvECKz1U58YQR4MoytbCE26V0= -----END CERTIFICATE-----Generated at Sun Oct 19 20:46:19 2025 by rpki-client