$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137362e302f32342d3234203d3e20313332363437.roa File: 3130332e31392e3137362e302f32342d3234203d3e20313332363437.roa (raw, json) Hash identifier: S4kzvu4zbCmfw9stND1YY9BCQd30K/363b7rtm3YUq4= Subject key identifier: 77:72:24:8E:1F:43:10:DB:22:CC:20:5F:42:93:63:8E:07:1E:61:7D Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 29C197A951828187ADE267362BAED4C0212214C2 Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137362e302f32342d3234203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 02:45:19 +0000 ROA not before: Mon 22 Sep 2025 02:40:19 +0000 ROA not after: Mon 21 Sep 2026 02:45:19 +0000 asID: 132647 IP address blocks: 103.19.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c1:97:a9:51:82:81:87:ad:e2:67:36:2b:ae:d4:c0:21:22:14:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 02:40:19 2025 GMT Not After : Sep 21 02:45:19 2026 GMT Subject: CN=7772248E1F4310DB22CC205F4293638E071E617D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:4f:e7:0f:8b:36:f6:e3:83:2a:63:92:45: d8:50:42:03:92:bb:20:11:93:78:1e:c1:7a:35:4b: ac:48:56:67:a0:4a:73:5b:22:cc:5e:db:84:b7:eb: e8:c2:2f:8c:57:e4:ab:64:a2:9c:4a:17:99:ef:8c: 3d:72:74:65:6b:7e:41:7d:b5:41:34:90:12:82:20: f0:8b:1c:15:02:07:39:7f:99:ac:9b:1c:40:9c:03: f5:f8:6e:4d:9f:0a:76:3b:81:b4:67:6d:a6:d4:2f: 62:65:c1:4c:a2:8b:5b:af:89:a0:4e:2d:2e:a8:51: 59:2e:6e:1d:a7:f8:06:00:d4:50:de:dd:3e:90:51: ec:e4:43:b8:d8:68:4f:91:f1:1a:a5:aa:7e:9e:ef: 04:39:dc:eb:4c:12:bb:85:0b:31:8a:97:a3:8d:91: 41:9e:9a:29:78:f3:15:88:9d:21:7e:f7:a8:f5:22: 2d:86:d6:9f:0d:34:bd:bc:26:e0:0c:ac:da:ec:cc: 63:e1:60:02:ee:26:de:fe:97:93:08:9c:af:ec:a6: c4:1f:89:07:df:84:49:b7:94:1e:93:c6:e2:49:7d: 25:a4:fd:2b:5c:d9:7d:6f:c2:07:7b:37:18:d8:cd: 53:fe:d8:2c:8f:82:b6:29:3a:d2:e6:af:e9:4e:9d: 17:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:72:24:8E:1F:43:10:DB:22:CC:20:5F:42:93:63:8E:07:1E:61:7D X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137362e302f32342d3234203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.176.0/24 Signature Algorithm: sha256WithRSAEncryption 57:1c:16:3f:a3:d7:5b:21:80:7f:a4:be:fe:6e:ea:6b:e7:a7: f5:eb:9b:5a:d0:41:35:69:0f:a1:1f:06:d9:ce:97:70:c2:ac: 5c:c7:f0:d2:da:87:81:be:31:e9:fc:f4:2e:ed:ae:47:c8:6c: 82:9a:cb:52:7c:f2:1f:3a:50:ae:c9:21:fc:e1:4f:65:76:80: 36:04:df:d2:c3:fc:85:0e:d9:21:a1:0e:59:71:ee:00:23:98: fc:ec:04:bb:77:45:fa:80:5f:1c:13:2c:6e:d5:86:af:fd:2c: 54:94:c3:ba:21:dd:03:55:a4:97:c5:6e:ef:bc:29:f8:4b:8d: 39:ec:6c:3a:e6:ab:15:a5:09:bf:de:7d:67:a7:6a:28:30:b4: 91:5e:a4:49:b1:d9:7c:dc:e3:ff:de:78:ce:51:b4:1f:99:b8: 94:32:d3:2c:04:67:85:37:27:18:dc:df:8f:6b:2c:87:17:cc: 48:d0:f5:73:d7:9b:23:da:ef:52:c1:8e:69:66:cc:a1:65:99: 1d:b1:92:5b:81:94:6f:8f:dc:27:25:96:db:86:ab:e2:e9:5e: f0:65:f1:45:66:18:d7:d4:a5:cf:68:8d:45:63:cc:14:7c:34: d6:cc:3a:c9:1c:fb:0c:97:66:0a:8e:24:de:6f:39:2c:f5:d5: 00:f9:b3:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKcGXqVGCgYet4mc2K67UwCEiFMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JE RjdEQzFENjAeFw0yNTA5MjIwMjQwMTlaFw0yNjA5MjEwMjQ1MTlaMDMxMTAvBgNV BAMTKDc3NzIyNDhFMUY0MzEwREIyMkNDMjA1RjQyOTM2MzhFMDcxRTYxN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmj0/nD4s29uODKmOSRdhQQgOS uyARk3gewXo1S6xIVmegSnNbIsxe24S36+jCL4xX5KtkopxKF5nvjD1ydGVrfkF9 tUE0kBKCIPCLHBUCBzl/maybHECcA/X4bk2fCnY7gbRnbabUL2JlwUyii1uviaBO LS6oUVkubh2n+AYA1FDe3T6QUezkQ7jYaE+R8Rqlqn6e7wQ53OtMEruFCzGKl6ON kUGemil48xWInSF+96j1Ii2G1p8NNL28JuAMrNrszGPhYALuJt7+l5MInK/spsQf iQffhEm3lB6TxuJJfSWk/Stc2X1vwgd7NxjYzVP+2CyPgrYpOtLmr+lOnRc7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd3Ikjh9DENsizCBfQpNjjgceYX0wHwYDVR0j BBgwFoAU7J2YcqcQ/nE9xiJB1YdwO999wdYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjYxN2Q4Yy1kMTU0LTQ2MWUtYmNjYS1iNjZkMjY3Y2ZmYzcvMC9FQzlEOTg3MkE3 MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RDMUQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JERjdE QzFENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMxMzAzMzJlMzEzOTJlMzEzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxOwMA0GCSqG SIb3DQEBCwUAA4IBAQBXHBY/o9dbIYB/pL7+bupr56f165ta0EE1aQ+hHwbZzpdw wqxcx/DS2oeBvjHp/PQu7a5HyGyCmstSfPIfOlCuySH84U9ldoA2BN/Sw/yFDtkh oQ5Zce4AI5j87AS7d0X6gF8cEyxu1Yav/SxUlMO6Id0DVaSXxW7vvCn4S4057Gw6 5qsVpQm/3n1np2ooMLSRXqRJsdl83OP/3njOUbQfmbiUMtMsBGeFNycY3N+PayyH F8xI0PVz15sj2u9SwY5pZsyhZZkdsZJbgZRvj9wnJZbbhqvi6V7wZfFFZhjX1KXP aI1FY8wUfDTWzDrJHPsMl2YKjiTebzks9dUA+bPv -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:21 2025 by rpki-client