$ rpki-client -vvf repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31322e302f32342d3234203d3e20313533333137.roa File: 3130332e3132352e31322e302f32342d3234203d3e20313533333137.roa (raw, json) Hash identifier: b6fruH9Pkg0tQtl5YFYqPR73UwekDQbIDYYtyH1Ta2c= Subject key identifier: DD:B5:DB:E0:72:F8:10:78:B0:FD:E7:05:20:79:10:4C:FF:81:AB:08 Certificate issuer: /CN=07043FF6B66099F2CBFBBB64672822F3014937E8 Certificate serial: 34074D8F278BFBCF214B54A348B88330A1916CF6 Authority key identifier: 07:04:3F:F6:B6:60:99:F2:CB:FB:BB:64:67:28:22:F3:01:49:37:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31322e302f32342d3234203d3e20313533333137.roa Signing time: Fri 08 Aug 2025 03:01:16 +0000 ROA not before: Fri 08 Aug 2025 02:56:16 +0000 ROA not after: Fri 07 Aug 2026 03:01:16 +0000 asID: 153317 IP address blocks: 103.125.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.crl rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:07:4d:8f:27:8b:fb:cf:21:4b:54:a3:48:b8:83:30:a1:91:6c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07043FF6B66099F2CBFBBB64672822F3014937E8 Validity Not Before: Aug 8 02:56:16 2025 GMT Not After : Aug 7 03:01:16 2026 GMT Subject: CN=DDB5DBE072F81078B0FDE7052079104CFF81AB08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b5:28:b8:ac:14:6b:d5:cf:c0:b9:b6:c7:0b: ef:0e:85:c2:a0:83:a7:f1:a7:af:0b:37:94:b9:97: 84:ec:56:61:d1:69:55:0b:ab:92:04:f3:1b:a7:f6: a6:e4:34:45:43:a7:78:ba:bd:85:76:6b:f9:ec:1f: 4e:a4:62:48:ae:82:f1:c8:b3:58:6a:02:25:a9:39: 9e:42:23:34:f1:ac:ed:df:79:2d:a4:2f:ed:37:b6: 1a:c0:95:f8:f9:ed:d7:55:42:12:37:38:35:d1:c1: 15:66:09:e7:7c:c3:6e:c4:7f:64:33:39:cf:ce:8f: 09:ef:d8:c8:b9:bb:7c:e0:af:69:99:17:23:5a:c7: 4e:ce:6d:6f:b9:3f:a0:c5:a6:b1:90:af:91:9e:dc: cb:56:e2:f1:5e:c8:fe:09:ea:c5:1e:d9:12:e8:f3: 13:c8:d3:79:e0:f1:1a:98:ab:24:4e:ec:bf:59:ef: 8a:9f:07:b0:15:4d:89:79:89:bb:8f:63:de:55:ad: 67:10:8a:cd:aa:17:ce:60:e0:3c:4c:55:df:44:b3: ad:18:13:61:da:a4:43:72:3a:e5:22:4b:76:71:1c: 51:e3:5d:02:f3:ba:62:f1:f8:7d:d0:2a:06:60:85: 90:c9:6d:3b:26:0f:1f:87:cd:24:70:f7:a1:75:92: 37:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B5:DB:E0:72:F8:10:78:B0:FD:E7:05:20:79:10:4C:FF:81:AB:08 X509v3 Authority Key Identifier: keyid:07:04:3F:F6:B6:60:99:F2:CB:FB:BB:64:67:28:22:F3:01:49:37:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31322e302f32342d3234203d3e20313533333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.12.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:f3:a9:35:5b:c4:62:76:0b:b8:0f:27:20:f5:5f:9a:97:d8: 77:24:43:4d:40:1f:03:64:ae:44:ac:be:86:2a:50:8b:ce:d1: c2:94:a6:b5:c5:fc:3f:cf:0f:d6:ef:59:98:2f:be:57:d8:9d: e2:53:c0:c2:12:12:d2:b0:51:ce:77:be:7b:e1:30:99:20:0e: 6e:7b:7c:42:12:63:b3:b1:af:55:b3:e8:30:a0:ef:1f:e3:58: 27:6b:3d:bd:99:a4:66:8c:63:19:ec:3b:b0:c6:ce:da:af:17: c7:ed:80:eb:73:b9:ed:73:5e:bb:c6:f8:22:f8:d6:88:64:a4: e6:29:ce:84:9e:f6:f2:e5:2b:19:20:66:1c:98:f2:81:b6:92: 87:3b:5a:0b:77:dd:c4:68:10:e0:cf:38:59:0c:d0:53:df:83: f3:ad:a4:bb:47:7b:df:8c:88:a8:f2:a0:cc:11:b4:95:ba:f8: a6:3e:f5:2d:cd:b9:ac:7d:6d:ff:f9:ab:d3:36:ce:ab:f4:4d: e0:4d:33:b5:9f:1d:f5:5a:db:d7:72:bc:88:15:6c:1d:2b:cb: 4a:8b:35:a4:e7:3e:0e:75:48:a9:52:87:1b:d4:86:47:a3:b3: d0:a9:84:55:2b:02:a9:9c:9c:be:2f:f0:ec:1b:d1:8f:44:b2: 58:84:df:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNAdNjyeL+88hS1SjSLiDMKGRbPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDcwNDNGRjZCNjYwOTlGMkNCRkJCQjY0NjcyODIyRjMw MTQ5MzdFODAeFw0yNTA4MDgwMjU2MTZaFw0yNjA4MDcwMzAxMTZaMDMxMTAvBgNV BAMTKEREQjVEQkUwNzJGODEwNzhCMEZERTcwNTIwNzkxMDRDRkY4MUFCMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYtSi4rBRr1c/AubbHC+8OhcKg g6fxp68LN5S5l4TsVmHRaVULq5IE8xun9qbkNEVDp3i6vYV2a/nsH06kYkiugvHI s1hqAiWpOZ5CIzTxrO3feS2kL+03thrAlfj57ddVQhI3ODXRwRVmCed8w27Ef2Qz Oc/Ojwnv2Mi5u3zgr2mZFyNax07ObW+5P6DFprGQr5Ge3MtW4vFeyP4J6sUe2RLo 8xPI03ng8RqYqyRO7L9Z74qfB7AVTYl5ibuPY95VrWcQis2qF85g4DxMVd9Es60Y E2HapENyOuUiS3ZxHFHjXQLzumLx+H3QKgZghZDJbTsmDx+HzSRw96F1kjfjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3bXb4HL4EHiw/ecFIHkQTP+BqwgwHwYDVR0j BBgwFoAUBwQ/9rZgmfLL+7tkZygi8wFJN+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzU0YmU5YS05YjVkLTRjNjQtYjRlOC02MWM3NGU5ZWNlZGMvMC8wNzA0M0ZGNkI2 NjA5OUYyQ0JGQkJCNjQ2NzI4MjJGMzAxNDkzN0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDcwNDNGRjZCNjYwOTlGMkNCRkJCQjY0NjcyODIyRjMwMTQ5 MzdFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNTRiZTlhLTliNWQtNGM2NC1i NGU4LTYxYzc0ZTllY2VkYy8wLzMxMzAzMzJlMzEzMjM1MmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30MMA0GCSqG SIb3DQEBCwUAA4IBAQBr86k1W8Ridgu4Dycg9V+al9h3JENNQB8DZK5ErL6GKlCL ztHClKa1xfw/zw/W71mYL75X2J3iU8DCEhLSsFHOd7574TCZIA5ue3xCEmOzsa9V s+gwoO8f41gnaz29maRmjGMZ7Duwxs7arxfH7YDrc7ntc167xvgi+NaIZKTmKc6E nvby5SsZIGYcmPKBtpKHO1oLd93EaBDgzzhZDNBT34PzraS7R3vfjIio8qDMEbSV uvimPvUtzbmsfW3/+avTNs6r9E3gTTO1nx31WtvXcryIFWwdK8tKizWk5z4OdUip Uocb1IZHo7PQqYRVKwKpnJy+L/DsG9GPRLJYhN+l -----END CERTIFICATE-----Generated at Wed Nov 5 01:56:44 2025 by rpki-client