$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa File: 3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa (raw, json) Hash identifier: 8Vv5VC5lHskbGpjOq0r7bl7lFeNfDlBP9NjEDxxuRz8= Subject key identifier: D4:66:AE:CD:43:B9:B9:99:EB:81:CC:23:E9:F0:44:71:E6:A9:43:68 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 0408AE9B1FAB8AC66FD4BC8BBE722FA0B394D5AC Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa Signing time: Sat 25 Oct 2025 08:16:08 +0000 ROA not before: Sat 25 Oct 2025 08:11:08 +0000 ROA not after: Sat 24 Oct 2026 08:16:08 +0000 asID: 137330 IP address blocks: 103.112.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:08:ae:9b:1f:ab:8a:c6:6f:d4:bc:8b:be:72:2f:a0:b3:94:d5:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Oct 25 08:11:08 2025 GMT Not After : Oct 24 08:16:08 2026 GMT Subject: CN=D466AECD43B9B999EB81CC23E9F04471E6A94368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1e:ed:1f:2f:0b:c1:b3:09:70:ae:63:2c:f5: 37:c4:87:ff:ff:43:9e:ff:e8:48:c2:f3:b7:65:e9: e2:b2:ff:7b:ed:a3:42:bc:8d:4a:5a:f6:a2:5d:c9: d0:7e:ad:df:9a:1d:ef:89:e6:95:b1:65:15:9a:e8: 93:61:16:8b:56:b7:e3:3e:11:46:8b:fc:cb:97:11: 02:af:f8:70:2e:02:8e:8b:3d:90:82:0e:e7:01:1d: 97:b0:5a:0e:f1:b9:9f:bd:fb:0e:72:e4:7b:5c:a1: 3b:81:6b:c1:45:ae:d6:cb:b2:52:bb:ab:76:e8:e8: 59:12:dd:ff:9c:59:97:ff:92:6f:0c:4b:ec:84:f2: a2:b1:b0:70:e6:f5:58:ef:f3:bd:ec:30:d6:28:95: ce:e6:1a:6f:04:f5:7f:bd:53:6e:3e:0e:bd:52:b8: ba:89:7e:21:e5:b0:bc:0e:6a:e1:ee:ec:ea:69:39: 01:f6:7b:6b:50:17:3c:21:1b:ad:17:dd:2e:93:57: c8:f7:0c:e7:40:76:fe:cc:f3:3e:f4:81:57:19:be: 4d:ba:bc:b4:0f:0f:81:e0:9f:ae:7a:d2:65:9b:d5: 74:d4:52:73:a0:d2:6f:60:73:7c:d4:24:3b:dc:fe: 42:5a:f2:e2:8e:f9:17:aa:84:6e:06:cb:4d:9f:4e: 70:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:66:AE:CD:43:B9:B9:99:EB:81:CC:23:E9:F0:44:71:E6:A9:43:68 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.139.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:95:f6:34:3a:43:01:ad:b6:50:d1:80:05:33:0b:c9:be:a0: 0d:67:cd:aa:76:ea:96:12:78:8c:13:e5:e2:5f:cb:91:58:33: 47:ba:ea:53:8d:9a:2b:04:66:6d:7c:e5:ab:0a:e7:61:2b:2f: 7b:ca:fe:b6:f3:68:32:9e:48:08:d2:6e:25:74:c5:eb:a5:db: af:37:ac:c1:c4:34:b6:55:17:0b:b3:95:f5:59:e8:94:d5:73: 1e:54:8b:29:06:13:fd:fc:fe:fe:59:3e:45:dd:47:e8:80:cd: f8:13:ff:bb:69:5e:a4:59:7b:6b:ca:0f:2d:e7:6c:1d:8c:a7: e6:4f:ec:ee:bd:72:df:3f:cd:f1:c9:19:ba:59:54:9a:d1:1a: 8c:ad:ca:5f:0f:92:87:5b:8b:14:ec:d6:f3:2e:53:f9:69:8c: df:9b:24:b8:f7:13:b5:8a:b2:11:94:64:4e:ae:4b:45:65:fc: ec:b3:c2:86:fb:26:05:de:50:9f:b2:cc:b9:f7:db:2d:15:6d: f6:73:f8:1e:9a:cb:33:6e:93:bb:64:e3:23:d2:95:26:4e:42: bf:f1:02:75:4d:4d:c1:51:e6:b7:d3:68:4d:76:93:97:77:be: 79:89:00:f1:3a:b6:e0:bf:bc:5f:d1:02:c0:62:86:f0:07:1b: cd:5c:89:47 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBAiumx+risZv1LyLvnIvoLOU1awwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTEwMjUwODExMDhaFw0yNjEwMjQwODE2MDhaMDMxMTAvBgNV BAMTKEQ0NjZBRUNENDNCOUI5OTlFQjgxQ0MyM0U5RjA0NDcxRTZBOTQzNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRHu0fLwvBswlwrmMs9TfEh/// Q57/6EjC87dl6eKy/3vto0K8jUpa9qJdydB+rd+aHe+J5pWxZRWa6JNhFotWt+M+ EUaL/MuXEQKv+HAuAo6LPZCCDucBHZewWg7xuZ+9+w5y5HtcoTuBa8FFrtbLslK7 q3bo6FkS3f+cWZf/km8MS+yE8qKxsHDm9Vjv873sMNYolc7mGm8E9X+9U24+Dr1S uLqJfiHlsLwOauHu7OppOQH2e2tQFzwhG60X3S6TV8j3DOdAdv7M8z70gVcZvk26 vLQPD4Hgn6560mWb1XTUUnOg0m9gc3zUJDvc/kJa8uKO+ReqhG4Gy02fTnC9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1GauzUO5uZnrgcwj6fBEceapQ2gwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIswDQYJ KoZIhvcNAQELBQADggEBAE+V9jQ6QwGttlDRgAUzC8m+oA1nzap26pYSeIwT5eJf y5FYM0e66lONmisEZm185asK52ErL3vK/rbzaDKeSAjSbiV0xeul2683rMHENLZV FwuzlfVZ6JTVcx5UiykGE/38/v5ZPkXdR+iAzfgT/7tpXqRZe2vKDy3nbB2Mp+ZP 7O69ct8/zfHJGbpZVJrRGoytyl8PkodbixTs1vMuU/lpjN+bJLj3E7WKshGUZE6u S0Vl/Oyzwob7JgXeUJ+yzLn32y0VbfZz+B6ayzNuk7tk4yPSlSZOQr/xAnVNTcFR 5rfTaE12k5d3vnmJAPE6tuC/vF/RAsBihvAHG81ciUc= -----END CERTIFICATE-----Generated at Mon Nov 3 17:51:38 2025 by rpki-client