$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137382e302f32342d3234203d3e20313332363437.roa File: 3130332e31392e3137382e302f32342d3234203d3e20313332363437.roa (raw, json) Hash identifier: +54gsDdv0eW3zDbkaD5HbAoyLmCd/qoIOZWo63Fy2oM= Subject key identifier: 78:F1:21:C7:66:9E:04:F1:8C:75:48:06:F4:6A:7D:B4:63:6A:F9:B1 Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 425F837311CC6950F720E612BCC02E1388E4D993 Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137382e302f32342d3234203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 02:45:49 +0000 ROA not before: Mon 22 Sep 2025 02:40:49 +0000 ROA not after: Mon 21 Sep 2026 02:45:49 +0000 asID: 132647 IP address blocks: 103.19.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:5f:83:73:11:cc:69:50:f7:20:e6:12:bc:c0:2e:13:88:e4:d9:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 02:40:49 2025 GMT Not After : Sep 21 02:45:49 2026 GMT Subject: CN=78F121C7669E04F18C754806F46A7DB4636AF9B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b9:15:ed:82:86:5a:db:d9:b9:7c:2d:9f:3c: d4:e0:e1:57:bc:36:5c:27:a7:1f:f9:21:4d:f8:e1: 83:26:c3:f0:06:8b:9a:52:78:67:96:7b:ea:4d:f0: 67:0f:94:75:d9:f1:86:27:f0:ca:c2:8a:93:11:95: f6:d5:29:26:fa:f1:53:02:29:51:61:b8:f7:e8:eb: b6:1b:d8:f1:13:71:67:0b:9b:71:2f:47:49:61:c6: 18:5d:7b:7e:ac:29:1e:6f:c1:de:eb:18:30:66:d3: 9a:45:fe:1a:9d:42:bd:4a:23:e0:8b:bb:e2:b9:40: a6:b3:ad:5f:80:88:a5:4f:79:f1:ac:b3:75:bb:52: 5e:05:43:18:31:51:f4:c7:57:05:c3:3b:2e:98:75: f9:a3:2d:71:7c:27:0d:ae:24:d4:4e:5c:7d:bb:0a: ed:f5:87:c9:61:50:50:95:f7:7d:4b:8b:4b:fd:ad: dd:ff:5f:21:01:8f:b4:c1:00:70:47:47:2a:70:c0: 55:75:79:f4:13:14:6d:b3:41:89:b3:df:c3:0f:26: da:0e:c8:1b:46:af:10:4d:a7:6c:91:a9:b4:1d:2a: 68:2d:94:8a:b6:97:7c:f9:1d:2a:c8:01:04:50:6c: ce:f8:4d:75:b4:52:82:7e:c8:a4:3a:26:52:63:a6: ad:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F1:21:C7:66:9E:04:F1:8C:75:48:06:F4:6A:7D:B4:63:6A:F9:B1 X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/3130332e31392e3137382e302f32342d3234203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.178.0/24 Signature Algorithm: sha256WithRSAEncryption 76:a1:ff:c7:32:36:26:83:5a:aa:dd:40:71:2e:7e:89:91:54: b1:6a:54:dc:8a:08:73:f6:63:1a:db:78:94:7e:6b:af:89:be: af:aa:d3:3b:62:9d:a3:84:8a:de:87:5e:26:76:6b:f0:de:fc: a8:7d:fe:32:79:97:31:02:6e:a3:76:fb:16:69:15:f7:e1:97: 49:f5:7a:4d:db:a7:2d:c6:a3:2e:b6:a9:62:48:6b:2b:78:2a: 35:23:80:f4:bd:eb:23:e2:8f:b1:61:77:0d:47:a7:d8:bc:1f: 38:9b:b6:c1:3d:69:e6:76:48:19:89:71:69:82:3e:ff:0e:c9: 16:b9:a5:7b:b1:cd:8d:40:22:87:71:6d:d8:ea:40:9f:00:15: 42:4b:de:1e:8c:81:c2:c5:b0:6c:db:c3:ba:c3:91:6d:21:37: 97:f5:2b:b0:22:8d:b7:51:87:32:15:9b:fc:18:17:9d:d4:d2: ff:5f:22:14:21:50:7f:fb:00:08:0a:75:8f:ce:df:d7:44:22: 01:d6:49:c4:f7:1d:b6:92:43:aa:5e:65:56:d0:14:a8:ef:7d: 56:c5:f8:73:4d:58:ad:0c:1b:dd:f3:af:ea:b5:75:79:be:10: 2e:e1:c8:1a:ed:08:86:6c:e5:f7:b3:0d:e1:ed:99:71:43:0b: 9a:ab:6c:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQl+DcxHMaVD3IOYSvMAuE4jk2ZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JE RjdEQzFENjAeFw0yNTA5MjIwMjQwNDlaFw0yNjA5MjEwMjQ1NDlaMDMxMTAvBgNV BAMTKDc4RjEyMUM3NjY5RTA0RjE4Qzc1NDgwNkY0NkE3REI0NjM2QUY5QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYuRXtgoZa29m5fC2fPNTg4Ve8 Nlwnpx/5IU344YMmw/AGi5pSeGeWe+pN8GcPlHXZ8YYn8MrCipMRlfbVKSb68VMC KVFhuPfo67Yb2PETcWcLm3EvR0lhxhhde36sKR5vwd7rGDBm05pF/hqdQr1KI+CL u+K5QKazrV+AiKVPefGss3W7Ul4FQxgxUfTHVwXDOy6YdfmjLXF8Jw2uJNROXH27 Cu31h8lhUFCV931Li0v9rd3/XyEBj7TBAHBHRypwwFV1efQTFG2zQYmz38MPJtoO yBtGrxBNp2yRqbQdKmgtlIq2l3z5HSrIAQRQbM74TXW0UoJ+yKQ6JlJjpq0FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUePEhx2aeBPGMdUgG9Gp9tGNq+bEwHwYDVR0j BBgwFoAU7J2YcqcQ/nE9xiJB1YdwO999wdYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjYxN2Q4Yy1kMTU0LTQ2MWUtYmNjYS1iNjZkMjY3Y2ZmYzcvMC9FQzlEOTg3MkE3 MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RDMUQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JERjdE QzFENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMxMzAzMzJlMzEzOTJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxOyMA0GCSqG SIb3DQEBCwUAA4IBAQB2of/HMjYmg1qq3UBxLn6JkVSxalTcighz9mMa23iUfmuv ib6vqtM7Yp2jhIreh14mdmvw3vyoff4yeZcxAm6jdvsWaRX34ZdJ9XpN26ctxqMu tqliSGsreCo1I4D0vesj4o+xYXcNR6fYvB84m7bBPWnmdkgZiXFpgj7/DskWuaV7 sc2NQCKHcW3Y6kCfABVCS94ejIHCxbBs28O6w5FtITeX9SuwIo23UYcyFZv8GBed 1NL/XyIUIVB/+wAICnWPzt/XRCIB1knE9x22kkOqXmVW0BSo731WxfhzTVitDBvd 86/qtXV5vhAu4cga7QiGbOX3sw3h7ZlxQwuaq2yN -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:19 2025 by rpki-client