$ rpki-client -vvf repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa File: 3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa (raw, json) Hash identifier: ioN63y/a6zMhso1bZx+bq+twKG/bpFqGK3I7L7XEk5w= Subject key identifier: BD:7A:69:71:DD:F6:A5:AB:E4:43:D4:DF:78:40:63:F3:16:A1:F5:03 Certificate issuer: /CN=614F5C6E09B1E05A7C0054E62A0CD67BCC61B698 Certificate serial: 3E00C4B06C277AB2FD9D47FD80CAABD8CAC363D5 Authority key identifier: 61:4F:5C:6E:09:B1:E0:5A:7C:00:54:E6:2A:0C:D6:7B:CC:61:B6:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa Signing time: Fri 10 Oct 2025 09:00:00 +0000 ROA not before: Fri 10 Oct 2025 08:55:00 +0000 ROA not after: Fri 09 Oct 2026 09:00:00 +0000 asID: 151585 IP address blocks: 103.204.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.crl rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:00:c4:b0:6c:27:7a:b2:fd:9d:47:fd:80:ca:ab:d8:ca:c3:63:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=614F5C6E09B1E05A7C0054E62A0CD67BCC61B698 Validity Not Before: Oct 10 08:55:00 2025 GMT Not After : Oct 9 09:00:00 2026 GMT Subject: CN=BD7A6971DDF6A5ABE443D4DF784063F316A1F503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8f:86:c0:73:22:34:35:da:fa:41:72:85:db: 93:16:b9:69:90:cd:89:c1:f1:12:57:41:f9:05:d0: 02:a6:f6:4c:14:74:13:1c:db:96:3e:e2:0b:5a:6a: e3:45:30:91:29:8b:52:f4:14:c4:68:c0:16:07:6c: 7d:b8:8e:e4:c7:26:d3:0b:d2:ae:f3:96:c9:ca:57: 98:40:b0:e4:67:ef:fe:90:b6:27:6c:6e:13:b9:c9: d7:88:20:ff:2b:ea:ee:69:83:14:e2:46:00:41:db: 47:2a:63:e7:64:75:29:46:b4:24:27:ef:83:7e:2f: 05:d5:c4:18:8f:4d:a9:16:91:75:7f:bb:9f:c4:52: 6b:b7:9f:8b:61:23:8e:ab:93:67:0a:14:83:0f:f4: 2f:3a:27:d0:77:64:d7:d9:19:a1:a1:92:58:c7:2f: 5c:df:8f:ad:95:17:25:93:08:f4:2a:32:11:1b:a5: 90:7c:61:a7:4c:35:75:7e:43:c6:9f:97:a2:d2:6b: bc:87:be:95:af:e3:1b:9d:2c:e4:ee:a3:86:95:b8: 15:30:38:1d:60:e9:51:d6:b6:4c:92:9d:ef:be:38: fb:18:13:f5:45:4c:97:a6:80:25:91:df:5e:4a:3e: 36:33:95:47:77:ed:93:44:bf:66:a2:78:8a:ea:d2: 33:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7A:69:71:DD:F6:A5:AB:E4:43:D4:DF:78:40:63:F3:16:A1:F5:03 X509v3 Authority Key Identifier: keyid:61:4F:5C:6E:09:B1:E0:5A:7C:00:54:E6:2A:0C:D6:7B:CC:61:B6:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.204.46.0/23 Signature Algorithm: sha256WithRSAEncryption 64:f0:dc:bd:13:54:09:ff:6f:02:56:62:4b:56:7d:3f:22:a3: c3:ad:b3:a1:53:90:46:89:6b:47:e9:d2:fa:3f:34:a9:ad:7c: 87:be:3a:3d:ee:33:1c:3e:60:6d:f3:5c:d4:77:c8:12:b0:04: 7a:51:4c:7a:af:29:2a:d3:07:fd:6b:94:93:ab:9a:0e:bb:d7: 32:9c:aa:8f:50:68:e6:74:a5:77:ed:f6:24:08:1d:ed:ba:a4: 44:2a:1a:0e:91:df:12:d9:08:f9:cc:a1:a9:ad:a1:ae:7e:19: e4:5e:30:00:fd:ad:2d:17:96:7b:85:83:17:75:38:10:3e:88: cf:0e:98:5d:fd:82:a7:ea:df:b4:d5:db:5c:5d:7a:63:72:e0: d6:45:20:b8:30:27:0e:58:6b:fd:35:f6:82:27:7e:45:3d:cf: 32:70:30:9f:a5:6f:9e:c6:10:d0:71:f2:15:8f:e4:2e:3b:5e: 36:6b:7a:5a:20:a1:ae:3c:b9:7f:26:98:bc:7a:7f:f6:c9:ca: 3e:d9:05:73:79:6f:4b:3a:01:7b:e2:7d:ef:2d:a8:24:0a:22: 35:55:8b:46:0b:8a:d3:36:91:30:38:ab:ca:b5:42:22:3e:61: c9:34:22:38:79:93:34:be:3e:90:80:b5:4a:4e:03:0f:3b:12: d5:93:b6:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPgDEsGwnerL9nUf9gMqr2MrDY9UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE0RjVDNkUwOUIxRTA1QTdDMDA1NEU2MkEwQ0Q2N0JD QzYxQjY5ODAeFw0yNTEwMTAwODU1MDBaFw0yNjEwMDkwOTAwMDBaMDMxMTAvBgNV BAMTKEJEN0E2OTcxRERGNkE1QUJFNDQzRDRERjc4NDA2M0YzMTZBMUY1MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1j4bAcyI0Ndr6QXKF25MWuWmQ zYnB8RJXQfkF0AKm9kwUdBMc25Y+4gtaauNFMJEpi1L0FMRowBYHbH24juTHJtML 0q7zlsnKV5hAsORn7/6QtidsbhO5ydeIIP8r6u5pgxTiRgBB20cqY+dkdSlGtCQn 74N+LwXVxBiPTakWkXV/u5/EUmu3n4thI46rk2cKFIMP9C86J9B3ZNfZGaGhkljH L1zfj62VFyWTCPQqMhEbpZB8YadMNXV+Q8afl6LSa7yHvpWv4xudLOTuo4aVuBUw OB1g6VHWtkySne++OPsYE/VFTJemgCWR315KPjYzlUd37ZNEv2aieIrq0jO7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvXppcd32pavkQ9TfeEBj8xah9QMwHwYDVR0j BBgwFoAUYU9cbgmx4Fp8AFTmKgzWe8xhtpgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjYwZTc1OC1mNjViLTQ2OWEtOGExYy1mYjAxOTg0MzQzYjEvMC82MTRGNUM2RTA5 QjFFMDVBN0MwMDU0RTYyQTBDRDY3QkNDNjFCNjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE0RjVDNkUwOUIxRTA1QTdDMDA1NEU2MkEwQ0Q2N0JDQzYx QjY5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NjBlNzU4LWY2NWItNDY5YS04 YTFjLWZiMDE5ODQzNDNiMS8wLzMxMzAzMzJlMzIzMDM0MmUzNDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMxMzUzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ8wuMA0GCSqG SIb3DQEBCwUAA4IBAQBk8Ny9E1QJ/28CVmJLVn0/IqPDrbOhU5BGiWtH6dL6PzSp rXyHvjo97jMcPmBt81zUd8gSsAR6UUx6rykq0wf9a5STq5oOu9cynKqPUGjmdKV3 7fYkCB3tuqREKhoOkd8S2Qj5zKGpraGufhnkXjAA/a0tF5Z7hYMXdTgQPojPDphd /YKn6t+01dtcXXpjcuDWRSC4MCcOWGv9NfaCJ35FPc8ycDCfpW+exhDQcfIVj+Qu O142a3paIKGuPLl/Jpi8en/2yco+2QVzeW9LOgF74n3vLagkCiI1VYtGC4rTNpEw OKvKtUIiPmHJNCI4eZM0vj6QgLVKTgMPOxLVk7Zg -----END CERTIFICATE-----Generated at Sun Oct 19 20:45:44 2025 by rpki-client