$ rpki-client -vvf repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa File: 3130332e37312e32352e302f32342d3234203d3e20313530323333.roa (raw, json) Hash identifier: 75IsX464I80YzdtDMOG0/64Es8A4yar1LsqWA90nFOo= Subject key identifier: 98:F0:DF:A4:F3:AA:66:B2:59:15:93:62:01:6A:4F:92:78:C2:6F:59 Certificate issuer: /CN=8DA8C02216F0C7D625FEFA7EF659021425920442 Certificate serial: 4F91F07A5F61B3D0EB1AA3558D6A0B259FF64C46 Authority key identifier: 8D:A8:C0:22:16:F0:C7:D6:25:FE:FA:7E:F6:59:02:14:25:92:04:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa Signing time: Mon 08 Sep 2025 05:02:26 +0000 ROA not before: Mon 08 Sep 2025 04:57:26 +0000 ROA not after: Mon 07 Sep 2026 05:02:26 +0000 asID: 150233 IP address blocks: 103.71.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.crl rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 12:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:91:f0:7a:5f:61:b3:d0:eb:1a:a3:55:8d:6a:0b:25:9f:f6:4c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA8C02216F0C7D625FEFA7EF659021425920442 Validity Not Before: Sep 8 04:57:26 2025 GMT Not After : Sep 7 05:02:26 2026 GMT Subject: CN=98F0DFA4F3AA66B259159362016A4F9278C26F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5f:7f:ba:04:25:fe:c0:00:22:4f:b2:7d:1c: 20:86:eb:a1:18:ac:a2:3a:ad:1c:ff:7d:c8:ed:0e: ae:22:f1:96:97:d2:87:c6:49:00:2e:47:4b:16:56: 09:d2:e0:9e:0d:c2:8a:7a:12:82:09:99:02:8a:e7: d8:08:cd:3f:91:94:07:ac:ce:d0:d1:4c:19:64:01: 62:29:47:6e:78:40:fa:b2:a7:7f:1c:e0:c9:2a:2e: 05:f1:ab:95:9f:23:12:1a:7e:45:11:3a:0e:5f:3f: 9d:67:bc:b9:98:20:fe:68:3c:9d:b4:82:47:3e:34: ae:06:62:ae:13:eb:27:e9:54:e9:cb:95:35:e5:f6: 76:6a:9a:1e:2c:97:23:f5:d9:67:41:77:de:c1:f6: b1:2c:21:b6:53:28:ba:c8:55:18:6e:a8:ff:55:10: 95:e4:7a:73:e2:2b:cc:cf:5b:8a:9d:43:fb:48:1c: 2c:5c:e9:2d:ec:56:21:39:6f:fe:8d:2b:f1:a8:f7: e4:a9:22:85:1e:9c:c6:63:75:f5:ea:12:34:3e:dd: 36:74:41:3e:02:05:63:89:6e:5b:ab:2a:ca:34:0a: 5b:16:cf:50:44:28:d8:52:80:7f:fc:11:fd:d3:f3: d9:cc:3b:9f:0f:70:75:f1:9a:17:53:e3:d5:93:0f: 64:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F0:DF:A4:F3:AA:66:B2:59:15:93:62:01:6A:4F:92:78:C2:6F:59 X509v3 Authority Key Identifier: keyid:8D:A8:C0:22:16:F0:C7:D6:25:FE:FA:7E:F6:59:02:14:25:92:04:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.25.0/24 Signature Algorithm: sha256WithRSAEncryption a4:49:12:9c:dc:49:eb:4f:58:72:6d:55:80:af:3f:34:e5:d8: 36:69:3e:b7:87:c1:1f:79:23:4e:2a:d9:de:6b:89:e5:5c:35: e6:02:3c:7a:d8:8d:91:31:de:9e:cc:d1:b3:d0:00:78:56:a1: 04:63:4b:c3:6a:d0:7e:42:b3:b4:95:3d:2c:d4:53:ec:ec:9d: 19:46:d9:e4:8c:56:16:b6:20:7f:49:7f:72:e1:dd:be:ab:55: 8a:51:eb:04:33:e7:1c:ea:95:f5:55:74:97:81:f9:d0:93:62: 5f:e5:86:44:d2:5d:62:c8:2f:d3:34:79:92:0f:7d:bc:8b:ae: 74:78:3e:e1:cb:c3:65:15:a9:66:f4:5a:54:cd:a7:06:d1:6d: 66:e0:e4:4e:19:b5:08:ef:5e:3e:28:63:92:b0:65:2e:f3:02: 58:89:20:e6:7a:1c:b7:d5:ca:33:2b:32:52:4e:5e:af:bf:2c: 7c:2b:13:55:df:62:41:3f:8e:77:62:a3:e6:63:36:5c:7c:83: 3b:34:45:fe:20:6d:c6:a1:2d:51:89:1b:3c:6d:e4:cb:90:7b: 67:d1:9d:5f:7c:2f:54:10:05:57:dd:2f:a2:36:24:62:ee:ac: 27:a9:53:6c:48:68:cf:1c:26:09:1d:56:f7:d7:e2:20:df:04: ff:aa:4f:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT5Hwel9hs9DrGqNVjWoLJZ/2TEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBOEMwMjIxNkYwQzdENjI1RkVGQTdFRjY1OTAyMTQy NTkyMDQ0MjAeFw0yNTA5MDgwNDU3MjZaFw0yNjA5MDcwNTAyMjZaMDMxMTAvBgNV BAMTKDk4RjBERkE0RjNBQTY2QjI1OTE1OTM2MjAxNkE0RjkyNzhDMjZGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8X3+6BCX+wAAiT7J9HCCG66EY rKI6rRz/fcjtDq4i8ZaX0ofGSQAuR0sWVgnS4J4Nwop6EoIJmQKK59gIzT+RlAes ztDRTBlkAWIpR254QPqyp38c4MkqLgXxq5WfIxIafkUROg5fP51nvLmYIP5oPJ20 gkc+NK4GYq4T6yfpVOnLlTXl9nZqmh4slyP12WdBd97B9rEsIbZTKLrIVRhuqP9V EJXkenPiK8zPW4qdQ/tIHCxc6S3sViE5b/6NK/Go9+SpIoUenMZjdfXqEjQ+3TZ0 QT4CBWOJblurKso0ClsWz1BEKNhSgH/8Ef3T89nMO58PcHXxmhdT49WTD2SrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmPDfpPOqZrJZFZNiAWpPknjCb1kwHwYDVR0j BBgwFoAUjajAIhbwx9Yl/vp+9lkCFCWSBEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzg2Y2I1ZC1mMDdkLTQyNmEtOGU1ZS1hNzdhOTc4ZGQyZWUvMC84REE4QzAyMjE2 RjBDN0Q2MjVGRUZBN0VGNjU5MDIxNDI1OTIwNDQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBOEMwMjIxNkYwQzdENjI1RkVGQTdFRjY1OTAyMTQyNTky MDQ0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODZjYjVkLWYwN2QtNDI2YS04 ZTVlLWE3N2E5NzhkZDJlZS8wLzMxMzAzMzJlMzczMTJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdHGTANBgkqhkiG 9w0BAQsFAAOCAQEApEkSnNxJ609Ycm1VgK8/NOXYNmk+t4fBH3kjTirZ3muJ5Vw1 5gI8etiNkTHenszRs9AAeFahBGNLw2rQfkKztJU9LNRT7OydGUbZ5IxWFrYgf0l/ cuHdvqtVilHrBDPnHOqV9VV0l4H50JNiX+WGRNJdYsgv0zR5kg99vIuudHg+4cvD ZRWpZvRaVM2nBtFtZuDkThm1CO9ePihjkrBlLvMCWIkg5noct9XKMysyUk5er78s fCsTVd9iQT+Od2Kj5mM2XHyDOzRF/iBtxqEtUYkbPG3ky5B7Z9GdX3wvVBAFV90v ojYkYu6sJ6lTbEhozxwmCR1W99fiIN8E/6pPqw== -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:24 2025 by rpki-client