$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa File: 3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa (raw, json) Hash identifier: 0CJAWZ02vSckzRoE57ZpZjjAeFM8kHecSgDHcs3TTPQ= Subject key identifier: A9:68:36:41:0A:10:8E:27:9F:CB:5E:42:A6:94:50:4F:5E:69:5C:7E Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 724AB26FBBEF8D7224A3742CA3235F77DBC0E271 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa Signing time: Thu 04 Sep 2025 14:00:02 +0000 ROA not before: Thu 04 Sep 2025 13:55:02 +0000 ROA not after: Thu 03 Sep 2026 14:00:02 +0000 asID: 151586 IP address blocks: 103.119.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 10:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:4a:b2:6f:bb:ef:8d:72:24:a3:74:2c:a3:23:5f:77:db:c0:e2:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Sep 4 13:55:02 2025 GMT Not After : Sep 3 14:00:02 2026 GMT Subject: CN=A96836410A108E279FCB5E42A694504F5E695C7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fe:6d:59:b6:fc:6b:89:df:ab:42:d7:07:2b: 74:dc:dc:42:cc:72:56:33:fb:e9:70:08:3d:b5:ba: 2a:97:8f:b7:b0:40:3e:e2:a3:3e:ef:74:05:b0:3e: 76:9f:fd:79:70:eb:4c:0f:ed:90:18:23:81:71:68: 29:a5:8c:ea:00:2c:9b:70:9f:f5:b6:fd:e1:3f:f1: 36:ba:5b:35:ce:d5:70:68:cc:b3:c5:56:39:19:9d: d9:f5:a5:3a:76:d7:e3:76:24:7c:f2:36:94:99:92: ce:76:d8:20:89:22:94:6c:95:70:57:18:77:b9:be: 58:6c:53:a2:32:94:67:40:a3:8e:2b:99:d9:8f:c4: 02:67:00:ac:24:7a:0e:96:ec:08:f1:aa:40:b7:e2: 28:e6:40:47:82:c6:1c:76:73:fc:10:8a:5d:11:b5: 3d:12:c4:3c:41:a2:6f:8f:dc:a0:d2:79:ba:40:c2: 70:c0:14:59:6c:86:2b:99:2e:0f:b8:f5:86:16:fa: 72:95:99:d1:81:e5:15:a5:65:43:a1:28:96:28:b2: 2d:63:d6:77:cc:53:bb:4a:90:ec:52:28:09:72:d3: 07:04:6b:43:d6:e4:42:f2:95:ab:7f:ac:ca:4d:4c: c6:b6:09:1a:c6:89:de:87:67:eb:35:2e:4f:b4:7f: a0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:68:36:41:0A:10:8E:27:9F:CB:5E:42:A6:94:50:4F:5E:69:5C:7E X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.237.0/24 Signature Algorithm: sha256WithRSAEncryption 54:be:42:71:6b:d8:a9:cb:53:44:58:c4:b0:cf:cf:c7:9d:6b: 2b:dc:be:ea:3b:e4:94:a1:ee:3c:b6:ba:2b:4f:b1:e9:03:9b: f7:b5:1d:57:d1:af:51:d1:7f:eb:0c:d0:43:7a:71:f2:c2:74: a2:b2:04:b1:6c:28:32:54:22:3d:63:f7:44:33:7b:4e:c1:49: 23:51:ff:ef:4b:6e:cc:22:a0:0d:9c:ff:bc:cc:fa:47:bb:96: db:70:86:13:63:26:54:e5:6c:c9:3b:9a:7f:fc:3a:be:6a:b2: b9:4e:81:17:cf:7a:98:23:be:d0:60:89:6f:4e:b1:cb:61:99: f5:c7:61:96:32:b6:84:e1:36:b3:5d:8b:93:12:66:27:d6:1e: dd:e9:3b:68:14:fc:e5:b4:81:34:bb:aa:87:a8:e1:6e:54:2a: 77:9d:89:3b:c9:71:e1:48:97:1e:33:93:14:c3:9c:c5:f5:b2: 52:b8:a2:0b:84:f7:c2:4b:60:bb:2d:3d:64:c5:0d:a5:6a:05: b3:4a:cf:be:6f:fe:69:5e:11:30:ee:d0:ce:05:59:c7:e6:dc: 1a:66:33:59:a0:0a:cc:2c:3b:c5:b8:c1:7a:a7:f0:06:39:0b: f0:79:9e:ee:e1:96:76:84:46:c7:c4:85:5f:22:e8:99:57:19: a7:b0:9a:f9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUckqyb7vvjXIko3QsoyNfd9vA4nEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNTA5MDQxMzU1MDJaFw0yNjA5MDMxNDAwMDJaMDMxMTAvBgNV BAMTKEE5NjgzNjQxMEExMDhFMjc5RkNCNUU0MkE2OTQ1MDRGNUU2OTVDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK/m1Ztvxrid+rQtcHK3Tc3ELM clYz++lwCD21uiqXj7ewQD7ioz7vdAWwPnaf/Xlw60wP7ZAYI4FxaCmljOoALJtw n/W2/eE/8Ta6WzXO1XBozLPFVjkZndn1pTp21+N2JHzyNpSZks522CCJIpRslXBX GHe5vlhsU6IylGdAo44rmdmPxAJnAKwkeg6W7AjxqkC34ijmQEeCxhx2c/wQil0R tT0SxDxBom+P3KDSebpAwnDAFFlshiuZLg+49YYW+nKVmdGB5RWlZUOhKJYosi1j 1nfMU7tKkOxSKAly0wcEa0PW5ELylat/rMpNTMa2CRrGid6HZ+s1Lk+0f6ARAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqWg2QQoQjiefy15CppRQT15pXH4wHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd+0wDQYJ KoZIhvcNAQELBQADggEBAFS+QnFr2KnLU0RYxLDPz8edayvcvuo75JSh7jy2uitP sekDm/e1HVfRr1HRf+sM0EN6cfLCdKKyBLFsKDJUIj1j90Qze07BSSNR/+9Lbswi oA2c/7zM+ke7lttwhhNjJlTlbMk7mn/8Or5qsrlOgRfPepgjvtBgiW9OscthmfXH YZYytoThNrNdi5MSZifWHt3pO2gU/OW0gTS7qoeo4W5UKnediTvJceFIlx4zkxTD nMX1slK4oguE98JLYLstPWTFDaVqBbNKz75v/mleETDu0M4FWcfm3BpmM1mgCsws O8W4wXqn8AY5C/B5nu7hlnaERsfEhV8i6JlXGaewmvk= -----END CERTIFICATE-----Generated at Sun Oct 19 20:51:49 2025 by rpki-client