$ rpki-client -vvf repo-rpki.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa File: 3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa (raw, json) Hash identifier: hAifdy6n3EEv/s/U7m2QFZ7o/goV8EGLrnmjZEec078= Subject key identifier: 2C:4D:93:A5:5B:D8:F3:31:D8:6C:D0:B7:3B:15:7E:E9:D9:C3:8C:9A Certificate issuer: /CN=C14E4896FB7528EE44295A138CBF1B65D94B02A7 Certificate serial: 1FF90A226F9C50C794EBE550C9658114E42AF09A Authority key identifier: C1:4E:48:96:FB:75:28:EE:44:29:5A:13:8C:BF:1B:65:D9:4B:02:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C14E4896FB7528EE44295A138CBF1B65D94B02A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa Signing time: Fri 21 Mar 2025 08:00:05 +0000 ROA not before: Fri 21 Mar 2025 07:55:05 +0000 ROA not after: Fri 20 Mar 2026 08:00:05 +0000 asID: 58820 IP address blocks: 103.169.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/C14E4896FB7528EE44295A138CBF1B65D94B02A7.crl rsync://repo-rpki.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/C14E4896FB7528EE44295A138CBF1B65D94B02A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C14E4896FB7528EE44295A138CBF1B65D94B02A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 05:54:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f9:0a:22:6f:9c:50:c7:94:eb:e5:50:c9:65:81:14:e4:2a:f0:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C14E4896FB7528EE44295A138CBF1B65D94B02A7 Validity Not Before: Mar 21 07:55:05 2025 GMT Not After : Mar 20 08:00:05 2026 GMT Subject: CN=2C4D93A55BD8F331D86CD0B73B157EE9D9C38C9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:db:b5:cd:c3:8b:83:92:1a:af:fb:cb:fd:53: 14:d9:55:39:92:40:49:dc:e0:71:96:9b:ba:eb:ea: ca:b0:11:47:60:f9:87:16:4c:91:18:67:98:47:4e: 11:e3:ed:29:cb:8d:86:bb:bb:7a:32:12:2f:b0:6c: c2:61:cc:e6:4c:ea:b2:7c:12:cf:e6:ce:c4:4f:f2: 16:0e:6f:fb:57:8a:10:a7:b3:54:9b:00:31:e1:73: a9:18:78:52:4f:d6:23:92:6b:a5:98:f3:23:b9:88: 79:f0:ab:71:fd:f2:d8:40:4b:c5:cf:58:51:bb:6b: e2:7b:67:89:b7:d6:6b:e8:9a:36:73:76:ca:47:78: b0:41:f0:bc:26:88:1f:c1:09:4c:2c:5e:de:ba:b6: ae:57:31:99:59:87:ea:7b:7b:12:57:d1:b3:7d:cd: 3f:a0:31:a3:59:09:3a:9a:8c:26:dc:06:79:80:58: 1f:43:ce:d5:f0:25:29:aa:05:7b:5a:40:2c:8a:90: 22:67:c3:75:91:b9:08:5e:15:db:15:1f:37:5b:bd: 8a:2a:46:9d:ae:00:20:af:cf:d7:ee:36:ff:c4:76: 4c:1f:07:c0:5b:b5:ca:50:5f:bc:d4:e0:7d:3b:87: d6:53:4b:cc:f1:7a:f3:cb:48:a3:5c:16:ac:a9:95: be:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4D:93:A5:5B:D8:F3:31:D8:6C:D0:B7:3B:15:7E:E9:D9:C3:8C:9A X509v3 Authority Key Identifier: keyid:C1:4E:48:96:FB:75:28:EE:44:29:5A:13:8C:BF:1B:65:D9:4B:02:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/C14E4896FB7528EE44295A138CBF1B65D94B02A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C14E4896FB7528EE44295A138CBF1B65D94B02A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ffa0dded-1acf-442d-9659-95aecd8f8ea9/0/3130332e3136392e3231302e302f32332d3234203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.210.0/23 Signature Algorithm: sha256WithRSAEncryption a7:6e:fd:bf:c7:19:d2:78:8a:f8:5e:3e:9c:88:74:33:3e:83: 46:36:ad:46:da:fa:33:3c:ff:65:61:56:88:d2:22:4a:cb:99: fd:22:27:e1:b3:7c:a9:8f:22:64:85:01:c8:de:50:93:43:65: 91:be:c0:d7:0f:a3:5c:fe:6a:8a:0b:65:e7:cb:df:59:d8:9a: ad:4d:58:be:fa:f2:7b:63:8c:76:c7:79:da:66:8f:5b:6b:44: 4b:e8:d0:de:e9:26:e4:af:f7:78:eb:bb:60:af:ad:9f:26:6b: e9:07:2d:99:84:d9:87:24:30:60:f1:8d:4d:26:14:42:47:94: 09:76:57:b0:53:9f:07:2e:2e:ec:e4:f6:a8:6c:0f:93:24:97: 7a:01:b9:5e:42:8f:f5:86:a9:ba:b2:69:37:46:5a:4c:e1:b4: 6c:cb:b5:bd:7c:b3:29:f9:6f:30:75:40:79:4c:d4:65:15:2e: 84:12:42:d0:0b:f6:c8:b7:3c:10:8c:bc:09:87:da:d9:b9:04: ee:83:d2:e0:6e:7e:fe:22:ac:ff:5c:be:ba:7a:9c:96:30:91: ea:40:27:b4:4f:de:51:10:c9:92:18:d4:70:5f:d6:98:34:26: f6:e4:cc:77:a2:ee:1f:ce:17:7d:ab:35:53:a4:77:ae:bc:31: ce:d7:84:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH/kKIm+cUMeU6+VQyWWBFOQq8JowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE0RTQ4OTZGQjc1MjhFRTQ0Mjk1QTEzOENCRjFCNjVE OTRCMDJBNzAeFw0yNTAzMjEwNzU1MDVaFw0yNjAzMjAwODAwMDVaMDMxMTAvBgNV BAMTKDJDNEQ5M0E1NUJEOEYzMzFEODZDRDBCNzNCMTU3RUU5RDlDMzhDOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt27XNw4uDkhqv+8v9UxTZVTmS QEnc4HGWm7rr6sqwEUdg+YcWTJEYZ5hHThHj7SnLjYa7u3oyEi+wbMJhzOZM6rJ8 Es/mzsRP8hYOb/tXihCns1SbADHhc6kYeFJP1iOSa6WY8yO5iHnwq3H98thAS8XP WFG7a+J7Z4m31mvomjZzdspHeLBB8LwmiB/BCUwsXt66tq5XMZlZh+p7exJX0bN9 zT+gMaNZCTqajCbcBnmAWB9DztXwJSmqBXtaQCyKkCJnw3WRuQheFdsVHzdbvYoq Rp2uACCvz9fuNv/EdkwfB8BbtcpQX7zU4H07h9ZTS8zxevPLSKNcFqyplb77AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULE2TpVvY8zHYbNC3OxV+6dnDjJowHwYDVR0j BBgwFoAUwU5Ilvt1KO5EKVoTjL8bZdlLAqcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZmEwZGRlZC0xYWNmLTQ0MmQtOTY1OS05NWFlY2Q4ZjhlYTkvMC9DMTRFNDg5NkZC NzUyOEVFNDQyOTVBMTM4Q0JGMUI2NUQ5NEIwMkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE0RTQ4OTZGQjc1MjhFRTQ0Mjk1QTEzOENCRjFCNjVEOTRC MDJBNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmYTBkZGVkLTFhY2YtNDQyZC05 NjU5LTk1YWVjZDhmOGVhOS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMxMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6nSMA0GCSqG SIb3DQEBCwUAA4IBAQCnbv2/xxnSeIr4Xj6ciHQzPoNGNq1G2vozPP9lYVaI0iJK y5n9Iifhs3ypjyJkhQHI3lCTQ2WRvsDXD6Nc/mqKC2Xny99Z2JqtTVi++vJ7Y4x2 x3naZo9ba0RL6NDe6Sbkr/d467tgr62fJmvpBy2ZhNmHJDBg8Y1NJhRCR5QJdlew U58HLi7s5PaobA+TJJd6AbleQo/1hqm6smk3RlpM4bRsy7W9fLMp+W8wdUB5TNRl FS6EEkLQC/bItzwQjLwJh9rZuQTug9Lgbn7+Iqz/XL66epyWMJHqQCe0T95REMmS GNRwX9aYNCb25Mx3ou4fzhd9qzVTpHeuvDHO14R5 -----END CERTIFICATE-----Generated at Sat Nov 1 15:45:35 2025 by rpki-client