$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa File: 3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa (raw, json) Hash identifier: RC/WoQjd0AnGJGIfXrYxV2LmADFS4+Z04pTssF1Bamk= Subject key identifier: 93:B2:02:CC:01:F2:4B:69:DB:36:2C:61:E3:8F:79:4A:65:F2:A8:65 Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 7141F66273AD4D93A00408BE5648AC31C5232099 Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa Signing time: Tue 16 Sep 2025 12:00:02 +0000 ROA not before: Tue 16 Sep 2025 11:55:02 +0000 ROA not after: Tue 15 Sep 2026 12:00:02 +0000 asID: 149707 IP address blocks: 103.20.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 04:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:41:f6:62:73:ad:4d:93:a0:04:08:be:56:48:ac:31:c5:23:20:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: Sep 16 11:55:02 2025 GMT Not After : Sep 15 12:00:02 2026 GMT Subject: CN=93B202CC01F24B69DB362C61E38F794A65F2A865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7e:64:a7:5a:38:da:96:17:e3:60:d2:39:f6: 57:48:cb:d8:f3:59:1d:03:b1:97:ca:d9:86:60:6d: 87:64:5d:0b:27:36:01:89:7c:07:9a:48:21:b3:5d: cf:90:ec:85:55:7f:37:1f:b7:b3:da:fb:26:1f:82: e6:d8:f9:c3:4f:12:e4:48:59:75:ff:41:6f:ad:47: 5d:b7:93:9e:07:ba:f8:1d:a9:dc:06:45:b0:f0:25: 76:70:3d:50:8b:a3:31:a6:49:5e:70:ab:6d:26:00: a0:4f:c7:d2:cd:0e:7f:82:a3:9a:52:b2:41:56:87: 3d:be:33:d9:7c:0e:1e:64:72:6b:73:d3:10:24:5b: cc:07:de:f3:a2:11:77:5b:84:54:ca:1c:eb:b6:3c: de:57:47:d4:04:95:b3:52:0b:17:67:91:26:6b:45: 17:ba:1a:10:df:f3:b3:5c:f5:1a:f3:e0:2e:2f:49: df:da:04:ab:54:e2:d2:09:a2:0b:4e:53:b0:d0:71: e6:96:16:6d:7c:a3:17:57:8f:ba:03:50:25:2a:eb: c0:c6:e3:83:dc:42:65:97:82:4e:9b:3f:7e:f9:44: 63:cd:92:66:68:82:4b:69:81:3a:44:9f:6d:54:44: 7d:77:f0:5a:38:12:fc:7a:36:3f:4a:8e:34:2f:79: b7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B2:02:CC:01:F2:4B:69:DB:36:2C:61:E3:8F:79:4A:65:F2:A8:65 X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.108.0/24 Signature Algorithm: sha256WithRSAEncryption 38:d3:34:dc:12:f2:0e:d1:e2:d3:98:8a:7b:e2:35:5e:0d:51: 3b:65:c5:ae:5c:94:36:97:65:20:b8:ef:95:01:22:6e:7d:db: cf:97:2c:bd:d0:86:63:04:b5:bb:c5:ad:d8:bf:ff:0e:2f:1e: bf:9d:97:62:35:68:98:6b:81:59:fc:ed:0d:8b:e6:bf:d7:37: 6e:d3:b3:2c:3d:c9:7a:60:93:49:ae:39:20:7f:71:68:96:50: 9b:c0:20:e6:db:24:de:05:e7:ab:74:ec:c4:70:9a:ef:33:b9: 4f:94:c9:a8:74:eb:c4:1c:ea:cb:e1:f5:e0:f0:ad:70:6d:d7: c4:0f:ba:2a:fe:8e:b0:17:49:75:16:cf:01:0f:a7:e1:b3:30: 6c:e1:9b:7e:64:94:34:a5:fb:b8:32:44:f8:84:72:43:65:71: 09:65:cf:ba:c4:ee:1d:2e:77:07:84:1f:9b:fb:4b:73:97:93: 88:c4:43:9f:cc:02:7f:22:e6:23:12:f8:1c:85:f6:9e:b2:98: c9:2f:20:a0:d2:ae:10:a5:b2:0f:51:45:ad:31:c0:5c:00:42: 4e:74:53:88:d8:34:9c:01:a9:b4:f1:13:db:ae:03:fc:40:dc: 74:74:3e:3c:c5:93:30:7c:e3:6a:0f:c7:57:38:90:54:92:b4: a0:d4:65:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcUH2YnOtTZOgBAi+VkisMcUjIJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yNTA5MTYxMTU1MDJaFw0yNjA5MTUxMjAwMDJaMDMxMTAvBgNV BAMTKDkzQjIwMkNDMDFGMjRCNjlEQjM2MkM2MUUzOEY3OTRBNjVGMkE4NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvfmSnWjjalhfjYNI59ldIy9jz WR0DsZfK2YZgbYdkXQsnNgGJfAeaSCGzXc+Q7IVVfzcft7Pa+yYfgubY+cNPEuRI WXX/QW+tR123k54HuvgdqdwGRbDwJXZwPVCLozGmSV5wq20mAKBPx9LNDn+Co5pS skFWhz2+M9l8Dh5kcmtz0xAkW8wH3vOiEXdbhFTKHOu2PN5XR9QElbNSCxdnkSZr RRe6GhDf87Nc9Rrz4C4vSd/aBKtU4tIJogtOU7DQceaWFm18oxdXj7oDUCUq68DG 44PcQmWXgk6bP375RGPNkmZogktpgTpEn21URH138Fo4Evx6Nj9KjjQvebcbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk7ICzAHyS2nbNixh4495SmXyqGUwHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxRsMA0GCSqG SIb3DQEBCwUAA4IBAQA40zTcEvIO0eLTmIp74jVeDVE7ZcWuXJQ2l2UguO+VASJu fdvPlyy90IZjBLW7xa3Yv/8OLx6/nZdiNWiYa4FZ/O0Ni+a/1zdu07MsPcl6YJNJ rjkgf3FollCbwCDm2yTeBeerdOzEcJrvM7lPlMmodOvEHOrL4fXg8K1wbdfED7oq /o6wF0l1Fs8BD6fhszBs4Zt+ZJQ0pfu4MkT4hHJDZXEJZc+6xO4dLncHhB+b+0tz l5OIxEOfzAJ/IuYjEvgchfaespjJLyCg0q4QpbIPUUWtMcBcAEJOdFOI2DScAam0 8RPbrgP8QNx0dD48xZMwfONqD8dXOJBUkrSg1GUv -----END CERTIFICATE-----Generated at Wed Oct 29 20:31:31 2025 by rpki-client