$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa File: 3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa (raw, json) Hash identifier: AGikL5mf3R6SUcLntlNendJ/c7wVC1wVAVxWd0F74Ys= Subject key identifier: 5B:43:D3:75:AB:8E:29:A5:DE:36:6D:2B:03:5D:BF:A1:DE:65:96:87 Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 56F4FFC8B6748DF25EC90A53F1CD2DE65FE68592 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa Signing time: Thu 04 Sep 2025 14:00:02 +0000 ROA not before: Thu 04 Sep 2025 13:55:02 +0000 ROA not after: Thu 03 Sep 2026 14:00:02 +0000 asID: 151586 IP address blocks: 103.119.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 10:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f4:ff:c8:b6:74:8d:f2:5e:c9:0a:53:f1:cd:2d:e6:5f:e6:85:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Sep 4 13:55:02 2025 GMT Not After : Sep 3 14:00:02 2026 GMT Subject: CN=5B43D375AB8E29A5DE366D2B035DBFA1DE659687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:af:fe:c6:81:f8:5f:b1:6a:c0:97:83:4c: ea:d0:13:5c:74:86:a8:d6:b9:19:53:e7:9f:f6:cd: 43:02:fd:52:17:28:4e:6f:a8:63:42:b4:fb:33:b4: 4f:da:67:de:28:6a:a0:e6:74:d2:7b:db:5f:2f:f0: 61:92:57:c8:f6:87:ef:29:d6:5f:04:6c:81:be:a4: 33:f2:ea:a4:79:89:23:f3:40:16:e3:e8:e5:db:af: aa:58:f5:d4:c0:20:82:42:10:36:1b:56:b3:65:55: 08:68:2f:69:98:95:48:2b:83:01:1a:dd:91:39:0c: 34:00:80:e6:74:11:d5:a4:45:d3:91:4c:88:7a:89: 4c:65:8e:6c:f3:e8:e0:44:71:32:76:0e:05:d2:31: d4:37:22:0c:d1:d5:0b:bd:ee:8e:95:ad:e4:0c:61: 4b:4c:01:28:7d:3e:3c:c7:d9:ba:3c:61:fc:3a:04: 4c:c1:31:63:65:35:5f:40:bd:d7:f7:7f:da:8f:5c: 93:3e:e1:67:d5:17:23:7e:5d:56:5d:f1:71:84:bf: fa:11:47:7e:2f:bf:0b:62:56:da:14:ca:bd:37:88: b1:ff:22:e7:f2:28:08:ae:ec:e0:6e:92:dc:2a:21: d5:ea:d6:ab:57:b5:cb:b0:7b:55:49:27:df:8f:c4: 75:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:43:D3:75:AB:8E:29:A5:DE:36:6D:2B:03:5D:BF:A1:DE:65:96:87 X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.236.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:f0:9b:95:9a:2f:f1:8d:50:ac:75:e5:39:79:21:5e:24:67: e7:69:7c:b2:fe:42:76:21:ed:e0:ab:5f:94:f6:46:11:3d:39: f1:83:57:c6:5d:07:65:d1:23:e4:f2:a3:9b:97:5a:1f:14:65: 1b:fa:10:1f:45:cc:d6:02:24:d2:36:3d:66:83:0a:0c:d1:fd: fd:a9:f5:91:5f:32:3b:a9:0c:14:49:f8:8c:ff:41:c8:79:18: 69:99:e8:b5:57:ab:88:1d:42:1b:43:74:2d:3e:c8:88:f7:33: ca:19:fd:f8:a0:fc:68:74:42:ae:af:9c:86:84:f5:7c:f3:b7: e9:c8:3d:a1:1a:88:4e:bb:3e:8d:9e:ef:1a:0b:4d:78:9d:6d: 9a:43:e1:9f:d9:ce:28:66:34:0b:36:12:c9:00:ae:d9:e6:c0: 5f:ec:8f:01:ee:7c:70:15:fa:b0:f7:da:c6:9b:3a:9b:c8:98: 10:54:b7:fe:2a:6e:68:fe:1c:0f:29:71:f9:25:30:54:4a:a4: e5:1b:1a:98:73:cc:7f:33:a9:97:ca:8c:d1:63:4d:b9:6f:0d: 21:cb:41:a6:4e:e8:75:ad:18:c0:94:37:b0:92:97:1b:12:18: 4e:4d:9c:89:ba:bb:c9:80:6a:7a:d0:b6:a2:d5:6a:9c:09:45: 75:0c:38:99 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVvT/yLZ0jfJeyQpT8c0t5l/mhZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNTA5MDQxMzU1MDJaFw0yNjA5MDMxNDAwMDJaMDMxMTAvBgNV BAMTKDVCNDNEMzc1QUI4RTI5QTVERTM2NkQyQjAzNURCRkExREU2NTk2ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+iK/+xoH4X7FqwJeDTOrQE1x0 hqjWuRlT55/2zUMC/VIXKE5vqGNCtPsztE/aZ94oaqDmdNJ7218v8GGSV8j2h+8p 1l8EbIG+pDPy6qR5iSPzQBbj6OXbr6pY9dTAIIJCEDYbVrNlVQhoL2mYlUgrgwEa 3ZE5DDQAgOZ0EdWkRdORTIh6iUxljmzz6OBEcTJ2DgXSMdQ3IgzR1Qu97o6VreQM YUtMASh9PjzH2bo8Yfw6BEzBMWNlNV9Avdf3f9qPXJM+4WfVFyN+XVZd8XGEv/oR R34vvwtiVtoUyr03iLH/IufyKAiu7OBuktwqIdXq1qtXtcuwe1VJJ9+PxHWlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUW0PTdauOKaXeNm0rA12/od5llocwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd+wwDQYJ KoZIhvcNAQELBQADggEBAJ3wm5WaL/GNUKx15Tl5IV4kZ+dpfLL+QnYh7eCrX5T2 RhE9OfGDV8ZdB2XRI+Tyo5uXWh8UZRv6EB9FzNYCJNI2PWaDCgzR/f2p9ZFfMjup DBRJ+Iz/Qch5GGmZ6LVXq4gdQhtDdC0+yIj3M8oZ/fig/Gh0Qq6vnIaE9Xzzt+nI PaEaiE67Po2e7xoLTXidbZpD4Z/ZzihmNAs2EskArtnmwF/sjwHufHAV+rD32sab OpvImBBUt/4qbmj+HA8pcfklMFRKpOUbGphzzH8zqZfKjNFjTblvDSHLQaZO6HWt GMCUN7CSlxsSGE5NnIm6u8mAanrQtqLVapwJRXUMOJk= -----END CERTIFICATE-----Generated at Sun Oct 19 20:54:38 2025 by rpki-client