$ rpki-client -vvf repo-rpki.idnic.net/repo/13d80643-d5e9-41af-94df-6d94fbf46487/0/3130332e3130302e39392e302f32342d3234203d3e20313336383338.roa File: 3130332e3130302e39392e302f32342d3234203d3e20313336383338.roa (raw, json) Hash identifier: VcKH5MJv0PsbSw/ylAqkYnvN7oEA35OAIpUTZqe2tts= Subject key identifier: 38:6A:A1:A4:E8:8E:E4:E7:12:45:97:60:E9:49:A1:47:6A:BB:B1:14 Certificate issuer: /CN=104563E8068F3AE19631B1F43A5C9A47466100AC Certificate serial: 0DDFC7F308AC8BC95B72AF69ED3F41DE53173307 Authority key identifier: 10:45:63:E8:06:8F:3A:E1:96:31:B1:F4:3A:5C:9A:47:46:61:00:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104563E8068F3AE19631B1F43A5C9A47466100AC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/13d80643-d5e9-41af-94df-6d94fbf46487/0/3130332e3130302e39392e302f32342d3234203d3e20313336383338.roa Signing time: Mon 15 Sep 2025 11:00:01 +0000 ROA not before: Mon 15 Sep 2025 10:55:01 +0000 ROA not after: Mon 14 Sep 2026 11:00:01 +0000 asID: 136838 IP address blocks: 103.100.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/13d80643-d5e9-41af-94df-6d94fbf46487/0/104563E8068F3AE19631B1F43A5C9A47466100AC.crl rsync://repo-rpki.idnic.net/repo/13d80643-d5e9-41af-94df-6d94fbf46487/0/104563E8068F3AE19631B1F43A5C9A47466100AC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104563E8068F3AE19631B1F43A5C9A47466100AC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 23:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:df:c7:f3:08:ac:8b:c9:5b:72:af:69:ed:3f:41:de:53:17:33:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=104563E8068F3AE19631B1F43A5C9A47466100AC Validity Not Before: Sep 15 10:55:01 2025 GMT Not After : Sep 14 11:00:01 2026 GMT Subject: CN=386AA1A4E88EE4E712459760E949A1476ABBB114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b7:37:28:38:b0:b9:e9:0f:83:67:e6:e6:2e: 39:e9:38:0b:82:f4:10:8c:0e:56:ed:1b:fd:ef:c2: cd:8c:ee:c7:54:dc:bc:44:9a:88:b1:de:9f:2b:3d: e9:76:c5:02:89:41:b0:e4:04:ba:3a:a9:21:d4:d6: ac:b8:78:f8:05:ab:7d:dd:98:72:37:cb:f1:55:8a: 45:b0:57:30:0c:42:82:70:9a:6c:b6:2a:49:22:28: 9d:46:2a:54:59:7b:90:18:1f:9f:0a:7d:1b:7d:fc: d9:71:9b:53:67:0a:84:78:dc:fd:20:2d:19:6a:2c: a9:a8:06:0a:83:19:78:50:12:44:2a:25:9b:37:d2: 86:75:78:78:b7:aa:24:88:ae:2d:f7:a9:f2:45:d8: ac:27:8c:e8:e4:36:99:ee:52:02:03:50:21:b5:31: 74:7e:ea:3a:3d:f5:66:aa:27:94:51:07:83:0e:63: 33:ba:9d:56:19:ff:02:f4:4b:f8:38:bd:2a:cc:ee: 6e:f2:23:a3:41:8c:24:8c:7b:ed:0f:b3:08:17:fc: a0:b4:14:cc:3f:99:dc:20:e4:29:e9:fa:6c:cf:a3: 29:26:17:52:3c:1a:d0:78:19:85:e8:5f:75:f8:21: 1c:d6:36:85:3b:b2:b2:d6:9b:2c:2f:1a:15:99:f7: 0e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6A:A1:A4:E8:8E:E4:E7:12:45:97:60:E9:49:A1:47:6A:BB:B1:14 X509v3 Authority Key Identifier: keyid:10:45:63:E8:06:8F:3A:E1:96:31:B1:F4:3A:5C:9A:47:46:61:00:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/13d80643-d5e9-41af-94df-6d94fbf46487/0/104563E8068F3AE19631B1F43A5C9A47466100AC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104563E8068F3AE19631B1F43A5C9A47466100AC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/13d80643-d5e9-41af-94df-6d94fbf46487/0/3130332e3130302e39392e302f32342d3234203d3e20313336383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.99.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:a4:eb:3b:e3:0b:79:1c:d4:37:c7:57:75:ee:db:68:c7:49: dc:cf:7d:fe:8a:68:0b:e4:00:a8:ef:47:b9:1a:c0:d4:78:48: 36:17:02:f9:1d:36:a6:45:7e:67:50:db:3b:55:ee:0e:21:17: 6d:c0:33:32:40:ff:1e:c1:12:35:29:1f:64:57:3f:12:5d:7b: da:04:98:93:96:4b:66:97:79:33:1c:09:a2:df:45:cc:3a:0e: 9c:0a:d4:08:77:e3:91:1c:34:8d:35:4f:7a:fa:d8:69:67:44: 9d:4c:c0:28:7b:e2:3d:3b:04:c8:9e:38:c9:f3:ed:fd:13:27: 3b:d1:d4:2c:25:1c:c6:f0:fa:75:da:e0:9a:af:ab:df:92:4d: db:f2:84:d0:7b:3b:f8:4b:9d:b5:f6:5b:73:35:53:46:36:87: 7a:4a:36:9c:68:a2:83:dd:25:e8:47:bf:11:68:fa:de:29:eb: cd:54:6f:83:ab:7a:ec:c2:d2:80:b1:a4:5b:72:ef:72:85:fe: f1:4d:17:d2:70:0d:c3:78:1b:ee:65:02:9a:0a:8c:33:4a:76: fb:a3:ac:c2:8f:fa:89:92:42:5b:9d:25:1e:2a:20:e5:58:2b: cb:13:ac:0c:a7:f5:eb:0f:37:72:d4:c4:2f:27:0b:e9:9d:55: d8:48:e6:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDd/H8wisi8lbcq9p7T9B3lMXMwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA0NTYzRTgwNjhGM0FFMTk2MzFCMUY0M0E1QzlBNDc0 NjYxMDBBQzAeFw0yNTA5MTUxMDU1MDFaFw0yNjA5MTQxMTAwMDFaMDMxMTAvBgNV BAMTKDM4NkFBMUE0RTg4RUU0RTcxMjQ1OTc2MEU5NDlBMTQ3NkFCQkIxMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqtzcoOLC56Q+DZ+bmLjnpOAuC 9BCMDlbtG/3vws2M7sdU3LxEmoix3p8rPel2xQKJQbDkBLo6qSHU1qy4ePgFq33d mHI3y/FVikWwVzAMQoJwmmy2KkkiKJ1GKlRZe5AYH58KfRt9/Nlxm1NnCoR43P0g LRlqLKmoBgqDGXhQEkQqJZs30oZ1eHi3qiSIri33qfJF2KwnjOjkNpnuUgIDUCG1 MXR+6jo99WaqJ5RRB4MOYzO6nVYZ/wL0S/g4vSrM7m7yI6NBjCSMe+0PswgX/KC0 FMw/mdwg5Cnp+mzPoykmF1I8GtB4GYXoX3X4IRzWNoU7srLWmywvGhWZ9w59AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOGqhpOiO5OcSRZdg6UmhR2q7sRQwHwYDVR0j BBgwFoAUEEVj6AaPOuGWMbH0OlyaR0ZhAKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x M2Q4MDY0My1kNWU5LTQxYWYtOTRkZi02ZDk0ZmJmNDY0ODcvMC8xMDQ1NjNFODA2 OEYzQUUxOTYzMUIxRjQzQTVDOUE0NzQ2NjEwMEFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA0NTYzRTgwNjhGM0FFMTk2MzFCMUY0M0E1QzlBNDc0NjYx MDBBQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzZDgwNjQzLWQ1ZTktNDFhZi05 NGRmLTZkOTRmYmY0NjQ4Ny8wLzMxMzAzMzJlMzEzMDMwMmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2RjMA0GCSqG SIb3DQEBCwUAA4IBAQCfpOs74wt5HNQ3x1d17ttox0ncz33+imgL5ACo70e5GsDU eEg2FwL5HTamRX5nUNs7Ve4OIRdtwDMyQP8ewRI1KR9kVz8SXXvaBJiTlktml3kz HAmi30XMOg6cCtQId+ORHDSNNU96+thpZ0SdTMAoe+I9OwTInjjJ8+39Eyc70dQs JRzG8Pp12uCar6vfkk3b8oTQezv4S5219ltzNVNGNod6SjacaKKD3SXoR78RaPre KevNVG+Dq3rswtKAsaRbcu9yhf7xTRfScA3DeBvuZQKaCowzSnb7o6zCj/qJkkJb nSUeKiDlWCvLE6wMp/XrDzdy1MQvJwvpnVXYSOYn -----END CERTIFICATE-----Generated at Fri Sep 19 16:05:53 2025 by rpki-client