$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa File: 3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa (raw, json) Hash identifier: PjhwIz9l+vRy5TLqiXRBoCVwL6OIIOTNL//mqDM3w9A= Subject key identifier: 24:4A:D6:9E:5C:B5:25:E9:06:19:23:49:C3:26:65:3A:E0:25:E2:05 Certificate issuer: /CN=5F22D2084F774B68D9DE9763397B5657A96F36CE Certificate serial: 748E6126107F5507D978DB63160545BB9D4FB826 Authority key identifier: 5F:22:D2:08:4F:77:4B:68:D9:DE:97:63:39:7B:56:57:A9:6F:36:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F22D2084F774B68D9DE9763397B5657A96F36CE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa Signing time: Mon 29 Sep 2025 03:55:09 +0000 ROA not before: Mon 29 Sep 2025 03:50:09 +0000 ROA not after: Mon 28 Sep 2026 03:55:09 +0000 asID: 132641 IP address blocks: 103.253.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/5F22D2084F774B68D9DE9763397B5657A96F36CE.crl rsync://repo-rpki.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/5F22D2084F774B68D9DE9763397B5657A96F36CE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F22D2084F774B68D9DE9763397B5657A96F36CE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8e:61:26:10:7f:55:07:d9:78:db:63:16:05:45:bb:9d:4f:b8:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F22D2084F774B68D9DE9763397B5657A96F36CE Validity Not Before: Sep 29 03:50:09 2025 GMT Not After : Sep 28 03:55:09 2026 GMT Subject: CN=244AD69E5CB525E906192349C326653AE025E205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8f:d3:fe:10:77:00:05:05:95:69:94:20:b2: af:1c:ab:d2:be:db:9a:65:84:3f:bc:91:b7:26:1c: 2d:6e:08:ef:d6:50:32:0a:46:48:b6:a7:9e:18:0b: 1b:f0:38:f2:d0:e2:c8:58:b3:31:d6:fe:86:69:2b: 27:1f:9a:95:86:69:9b:ee:e6:92:b8:ae:10:b8:68: f9:21:b2:de:98:89:dc:69:f9:43:6c:f6:18:c9:d3: 98:45:2c:b3:3a:6a:1d:91:93:1e:d0:6c:4a:7c:bf: 01:11:5f:11:ad:6d:d8:ab:38:d2:44:ce:f5:8b:9e: 36:47:0b:93:13:7b:4b:f1:f7:87:2d:45:ad:39:5e: 62:c8:5d:fd:d0:24:5a:3e:ec:1d:df:51:fa:60:88: 57:62:44:34:22:52:97:3a:5b:98:4d:1a:df:bb:8f: b0:08:82:44:75:ab:e5:5f:e1:1f:e4:77:38:64:9a: de:2a:d3:01:ee:3b:0f:d1:40:f7:0b:8d:9f:60:b0: 56:59:e5:13:ec:08:b0:02:3c:2a:01:1a:79:fa:2a: 4a:5a:90:54:b5:27:07:8c:09:3b:31:a6:7a:dc:e7: 89:18:fb:85:ea:1f:8b:64:aa:89:6c:de:27:4a:fb: b3:e0:88:14:e7:1a:2b:04:de:ce:6d:5d:e7:6e:f2: 83:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4A:D6:9E:5C:B5:25:E9:06:19:23:49:C3:26:65:3A:E0:25:E2:05 X509v3 Authority Key Identifier: keyid:5F:22:D2:08:4F:77:4B:68:D9:DE:97:63:39:7B:56:57:A9:6F:36:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/5F22D2084F774B68D9DE9763397B5657A96F36CE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F22D2084F774B68D9DE9763397B5657A96F36CE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab1a790-dced-464a-895d-9035a0cc5f2f/0/3130332e3235332e3131322e302f32322d3234203d3e20313332363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.112.0/22 Signature Algorithm: sha256WithRSAEncryption 07:4b:04:80:05:33:14:71:6a:fa:2b:b1:05:21:44:6a:eb:f2: 54:46:02:3f:84:f9:a7:75:81:ce:4e:57:1f:70:21:5f:80:cc: 3c:b3:07:a9:43:e1:1f:83:e5:dc:bf:9b:82:ef:df:f2:6d:c4: e0:b2:ca:e0:61:96:5f:4c:f4:f1:39:54:e3:1b:03:e9:e9:8b: 9d:78:7b:30:b1:b4:a2:58:46:55:8b:ab:73:de:b5:b8:d0:b7: 80:86:57:59:57:a2:e8:53:4c:fc:21:a6:17:3b:db:a6:be:1e: 2d:21:25:f2:98:6a:8f:f5:3a:42:cc:f8:31:fa:eb:01:8c:0b: b3:6c:36:08:cb:5d:cb:b5:ee:cc:6d:f6:58:d9:cf:09:5e:ef: a5:c1:5f:8c:ce:ee:22:bc:0a:ea:f3:b6:2a:3d:ce:c7:fe:36: ab:1e:27:86:ed:ae:26:64:e2:46:8f:0d:50:63:5b:e7:7b:e9: 72:eb:ba:a1:75:a8:8b:59:f7:52:8e:b6:f5:fe:d2:cc:5b:fd: 48:1b:f9:31:87:d2:06:d0:f3:ac:32:7d:f1:17:9e:76:4a:a4: 38:89:ef:38:81:f1:72:55:ab:03:56:82:7e:a8:70:f4:d3:5c: a5:2f:3f:2f:84:70:16:13:0e:12:4c:5c:34:62:87:ab:4a:08: 7c:d0:ad:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdI5hJhB/VQfZeNtjFgVFu51PuCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYyMkQyMDg0Rjc3NEI2OEQ5REU5NzYzMzk3QjU2NTdB OTZGMzZDRTAeFw0yNTA5MjkwMzUwMDlaFw0yNjA5MjgwMzU1MDlaMDMxMTAvBgNV BAMTKDI0NEFENjlFNUNCNTI1RTkwNjE5MjM0OUMzMjY2NTNBRTAyNUUyMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZj9P+EHcABQWVaZQgsq8cq9K+ 25plhD+8kbcmHC1uCO/WUDIKRki2p54YCxvwOPLQ4shYszHW/oZpKycfmpWGaZvu 5pK4rhC4aPkhst6Yidxp+UNs9hjJ05hFLLM6ah2Rkx7QbEp8vwERXxGtbdirONJE zvWLnjZHC5MTe0vx94ctRa05XmLIXf3QJFo+7B3fUfpgiFdiRDQiUpc6W5hNGt+7 j7AIgkR1q+Vf4R/kdzhkmt4q0wHuOw/RQPcLjZ9gsFZZ5RPsCLACPCoBGnn6Kkpa kFS1JweMCTsxpnrc54kY+4XqH4tkqols3idK+7PgiBTnGisE3s5tXedu8oPVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJErWnly1JekGGSNJwyZlOuAl4gUwHwYDVR0j BBgwFoAUXyLSCE93S2jZ3pdjOXtWV6lvNs4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWIxYTc5MC1kY2VkLTQ2NGEtODk1ZC05MDM1YTBjYzVmMmYvMC81RjIyRDIwODRG Nzc0QjY4RDlERTk3NjMzOTdCNTY1N0E5NkYzNkNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUYyMkQyMDg0Rjc3NEI2OEQ5REU5NzYzMzk3QjU2NTdBOTZG MzZDRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhYjFhNzkwLWRjZWQtNDY0YS04 OTVkLTkwMzVhMGNjNWYyZi8wLzMxMzAzMzJlMzIzNTMzMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/XAwDQYJ KoZIhvcNAQELBQADggEBAAdLBIAFMxRxavorsQUhRGrr8lRGAj+E+ad1gc5OVx9w IV+AzDyzB6lD4R+D5dy/m4Lv3/JtxOCyyuBhll9M9PE5VOMbA+npi514ezCxtKJY RlWLq3PetbjQt4CGV1lXouhTTPwhphc726a+Hi0hJfKYao/1OkLM+DH66wGMC7Ns NgjLXcu17sxt9ljZzwle76XBX4zO7iK8Curztio9zsf+NqseJ4btriZk4kaPDVBj W+d76XLruqF1qItZ91KOtvX+0sxb/Ugb+TGH0gbQ86wyffEXnnZKpDiJ7ziB8XJV qwNWgn6ocPTTXKUvPy+EcBYTDhJMXDRih6tKCHzQrTI= -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:14 2025 by rpki-client