$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313531303433.roa File: 3130332e3131322e3133382e302f32342d3234203d3e20313531303433.roa (raw, json) Hash identifier: k2s+fTciMW1AcHEt1AHKQvUa6LHEm5gF/5id8cjIJ3s= Subject key identifier: A0:E2:49:13:7F:42:1B:1D:89:F7:9F:12:97:60:B1:25:E2:3D:28:10 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 045BD4C684E97D24D1C961AC605721A7903B51A1 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313531303433.roa Signing time: Wed 22 Oct 2025 11:25:32 +0000 ROA not before: Wed 22 Oct 2025 11:20:32 +0000 ROA not after: Wed 21 Oct 2026 11:25:32 +0000 asID: 151043 IP address blocks: 103.112.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:5b:d4:c6:84:e9:7d:24:d1:c9:61:ac:60:57:21:a7:90:3b:51:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Oct 22 11:20:32 2025 GMT Not After : Oct 21 11:25:32 2026 GMT Subject: CN=A0E249137F421B1D89F79F129760B125E23D2810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:90:79:bb:ff:a1:de:87:55:42:87:e6:ec:67: 32:69:23:d9:f2:39:60:86:a4:1c:a9:9d:b1:33:ec: e6:e8:3f:d0:9c:ef:dd:dc:91:f3:f9:42:49:84:a1: 12:a7:10:64:ce:7c:8b:af:6d:30:0f:9e:2e:0f:a0: 57:8b:ff:f3:6c:7b:e2:d7:28:5b:e7:d1:db:df:a2: 32:02:c8:64:68:e1:b8:a4:cb:78:ee:4c:b7:74:53: e0:50:cf:87:70:37:29:6a:5b:d4:9f:ed:6d:b9:58: cf:2d:8e:c7:af:be:2c:52:4e:a4:3c:ab:d1:ec:0a: 69:e9:b1:00:ed:17:6f:f3:7b:73:04:bf:75:ca:e0: d8:9a:50:5a:95:88:f8:30:18:35:74:f0:17:b1:92: 83:c4:45:04:f7:d0:15:d8:77:5c:c1:25:a2:67:89: 92:31:c4:63:40:a8:87:20:18:ae:d8:9d:6c:58:34: fa:aa:f8:d5:80:63:a4:9b:09:86:75:49:d4:89:22: a5:d4:8b:c5:b9:d5:a0:85:d1:83:54:7c:f9:a4:9f: 20:cb:21:fb:7b:32:61:65:ab:b1:1c:31:6b:85:e3: c4:d5:dd:0a:ec:0f:90:a9:dc:df:f6:50:ce:75:d4: d0:2b:8f:60:f0:5f:87:86:e4:d7:bc:61:72:e1:f1: 6a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E2:49:13:7F:42:1B:1D:89:F7:9F:12:97:60:B1:25:E2:3D:28:10 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313531303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.138.0/24 Signature Algorithm: sha256WithRSAEncryption 78:32:b0:d6:d2:28:d4:47:a4:83:91:d3:da:bc:a1:7f:d9:7a: ef:4d:65:40:31:d9:ce:f7:60:e0:1c:7b:1f:8d:05:70:42:8e: 8f:dd:0b:e6:0e:42:96:80:88:73:7c:da:06:e6:9a:9c:d5:d1: 04:61:d6:06:d9:c7:b7:e5:27:cf:77:11:3b:22:c8:09:f9:86: 0b:69:7e:ac:4a:41:1f:0f:4c:2f:dd:fe:ab:b9:8b:81:0f:2e: c2:a5:63:58:4e:32:fe:eb:84:b3:73:4a:6d:63:16:68:09:26: 10:ed:36:cc:b5:5d:27:18:ea:8e:e8:f1:d5:c6:ae:e3:39:34: a0:15:ea:6a:e9:3d:be:b3:94:1c:c3:61:1c:ed:7b:35:4a:b9: c1:b9:a7:36:01:42:c6:f3:a2:ce:8a:c2:18:a3:dc:4b:65:e7: 3f:60:bf:a4:20:98:f0:a9:f0:20:8c:8d:7e:00:16:a1:6f:3e: 30:82:a2:09:08:02:d1:3b:62:d6:48:39:d5:ff:6b:eb:17:13: ea:1f:d1:3e:02:b5:8c:ed:cb:b0:36:ac:30:56:f0:57:fa:b0: dc:ac:b7:ff:44:1e:ba:3f:66:8f:49:ba:75:e2:94:b9:14:f4: b5:a5:6f:d2:93:52:26:1f:ca:f6:32:45:d9:52:3f:bd:13:b0: 73:a8:7e:6c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBFvUxoTpfSTRyWGsYFchp5A7UaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTEwMjIxMTIwMzJaFw0yNjEwMjExMTI1MzJaMDMxMTAvBgNV BAMTKEEwRTI0OTEzN0Y0MjFCMUQ4OUY3OUYxMjk3NjBCMTI1RTIzRDI4MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpkHm7/6Heh1VCh+bsZzJpI9ny OWCGpBypnbEz7OboP9Cc793ckfP5QkmEoRKnEGTOfIuvbTAPni4PoFeL//Nse+LX KFvn0dvfojICyGRo4biky3juTLd0U+BQz4dwNylqW9Sf7W25WM8tjsevvixSTqQ8 q9HsCmnpsQDtF2/ze3MEv3XK4NiaUFqViPgwGDV08BexkoPERQT30BXYd1zBJaJn iZIxxGNAqIcgGK7YnWxYNPqq+NWAY6SbCYZ1SdSJIqXUi8W51aCF0YNUfPmknyDL Ift7MmFlq7EcMWuF48TV3QrsD5Cp3N/2UM511NArj2DwX4eG5Ne8YXLh8WqPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoOJJE39CGx2J958Sl2CxJeI9KBAwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIowDQYJ KoZIhvcNAQELBQADggEBAHgysNbSKNRHpIOR09q8oX/Zeu9NZUAx2c73YOAcex+N BXBCjo/dC+YOQpaAiHN82gbmmpzV0QRh1gbZx7flJ893ETsiyAn5hgtpfqxKQR8P TC/d/qu5i4EPLsKlY1hOMv7rhLNzSm1jFmgJJhDtNsy1XScY6o7o8dXGruM5NKAV 6mrpPb6zlBzDYRztezVKucG5pzYBQsbzos6Kwhij3Etl5z9gv6QgmPCp8CCMjX4A FqFvPjCCogkIAtE7YtZIOdX/a+sXE+of0T4CtYzty7A2rDBW8Ff6sNyst/9EHro/ Zo9JunXilLkU9LWlb9KTUiYfyvYyRdlSP70TsHOofmw= -----END CERTIFICATE-----Generated at Wed Nov 5 16:56:54 2025 by rpki-client