$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa File: 3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: o7ApVtvPOAOCTLd0/Lz1wo7GK0s6MxFv3uDhLWwRX2c= Subject key identifier: FD:F3:8A:E2:57:B2:5B:30:42:8E:FF:DC:B5:98:43:B4:D3:C4:AF:D1 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 28C7DA1A28D103CF76F4169440A8E8F0631FAAAF Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa Signing time: Wed 22 Oct 2025 11:02:27 +0000 ROA not before: Wed 22 Oct 2025 10:57:27 +0000 ROA not after: Wed 21 Oct 2026 11:02:27 +0000 asID: 58487 IP address blocks: 103.253.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 14:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c7:da:1a:28:d1:03:cf:76:f4:16:94:40:a8:e8:f0:63:1f:aa:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Oct 22 10:57:27 2025 GMT Not After : Oct 21 11:02:27 2026 GMT Subject: CN=FDF38AE257B25B30428EFFDCB59843B4D3C4AFD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4f:f0:ea:62:bc:41:6c:1f:18:d6:0e:5c:8d: 22:4a:70:2e:b5:e9:61:9e:bb:42:e8:8c:9e:24:f6: 01:38:b9:24:f9:f9:8a:0d:8a:5b:6f:3e:02:30:0a: f5:ef:99:09:3b:d3:04:e7:67:7c:7c:89:72:6c:e5: 8c:25:17:42:21:a6:13:10:ec:a7:a8:06:a7:37:98: f6:eb:1f:a7:8e:20:4d:d0:e0:39:dc:44:ae:93:d4: ef:f0:fb:a3:82:90:4b:80:dc:62:8b:0c:ea:35:13: 1a:2d:3b:2f:30:f0:0d:98:fb:eb:cb:a0:a8:12:3f: 5c:3d:b9:5a:8f:39:c1:70:ef:76:01:90:fb:16:b8: 9c:39:43:b1:a6:5c:85:e2:dd:bd:5a:99:0a:40:4b: c3:57:96:a1:33:ee:4f:6e:06:37:06:bd:9a:d5:d4: a7:d6:6a:fb:5d:60:0c:e6:2d:36:35:e4:48:b2:1d: 52:62:dd:8a:f4:64:d4:eb:83:3d:e6:df:c0:4b:37: bc:aa:4a:bc:98:1a:cf:2a:e7:fc:50:02:99:d5:e9: d2:2a:34:cf:01:94:e8:e1:ae:09:e9:b4:29:24:7e: 96:b9:ec:75:f5:78:77:7c:cd:f6:2a:07:d9:4c:62: eb:93:25:9c:3c:9c:0d:b3:e2:e0:fd:91:f4:8c:d5: e4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F3:8A:E2:57:B2:5B:30:42:8E:FF:DC:B5:98:43:B4:D3:C4:AF:D1 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/23 Signature Algorithm: sha256WithRSAEncryption 04:cc:6d:b7:a6:aa:d0:08:34:27:4d:53:b5:cd:9e:23:76:ac: e8:69:6e:22:17:25:10:3f:88:1d:b2:ce:a8:fc:71:80:e8:b8: 6f:5f:c4:de:cb:9b:53:a1:42:24:70:ed:cd:27:eb:23:21:bf: 3f:b1:15:fb:b4:47:4e:15:7c:d7:17:0a:86:0e:8d:e3:b0:6e: db:68:f7:e7:84:82:57:eb:cf:d1:3c:1b:35:68:5b:4c:c3:8c: aa:e8:a5:1a:4a:e0:86:fc:11:77:a4:c1:41:14:61:b2:46:f7: ca:9e:83:eb:c6:7f:0a:20:84:7a:aa:74:0a:98:f4:fe:9b:67: 53:82:9a:0b:6a:95:17:e6:4f:2e:76:01:d9:64:23:09:a0:c1: 4a:b3:16:b8:80:dc:a2:dc:9d:08:59:0b:7b:bc:e5:2a:1a:7f: a5:aa:3b:5b:06:fd:70:bd:b7:6f:5a:24:0a:6b:22:5d:31:de: 2a:8f:7c:45:8e:0f:70:35:81:9f:76:11:07:6d:dd:b4:e5:cc: 2e:ab:c5:9a:b2:05:6b:5d:c0:a3:ca:19:5d:a4:18:aa:67:fb: 14:9a:5e:6f:54:ad:16:17:9d:02:66:02:7a:1e:14:0f:1a:fe: 58:8e:69:81:14:92:a4:a2:7b:1e:64:62:0a:37:1f:32:1f:45: f6:65:82:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKMfaGijRA8929BaUQKjo8GMfqq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTEwMjIxMDU3MjdaFw0yNjEwMjExMTAyMjdaMDMxMTAvBgNV BAMTKEZERjM4QUUyNTdCMjVCMzA0MjhFRkZEQ0I1OTg0M0I0RDNDNEFGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaT/DqYrxBbB8Y1g5cjSJKcC61 6WGeu0LojJ4k9gE4uST5+YoNiltvPgIwCvXvmQk70wTnZ3x8iXJs5YwlF0IhphMQ 7KeoBqc3mPbrH6eOIE3Q4DncRK6T1O/w+6OCkEuA3GKLDOo1ExotOy8w8A2Y++vL oKgSP1w9uVqPOcFw73YBkPsWuJw5Q7GmXIXi3b1amQpAS8NXlqEz7k9uBjcGvZrV 1KfWavtdYAzmLTY15EiyHVJi3Yr0ZNTrgz3m38BLN7yqSryYGs8q5/xQApnV6dIq NM8BlOjhrgnptCkkfpa57HX1eHd8zfYqB9lMYuuTJZw8nA2z4uD9kfSM1eRtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/fOK4leyWzBCjv/ctZhDtNPEr9EwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQAEzG23pqrQCDQnTVO1zZ4jdqzoaW4iFyUQP4gdss6o/HGA 6LhvX8Tey5tToUIkcO3NJ+sjIb8/sRX7tEdOFXzXFwqGDo3jsG7baPfnhIJX68/R PBs1aFtMw4yq6KUaSuCG/BF3pMFBFGGyRvfKnoPrxn8KIIR6qnQKmPT+m2dTgpoL apUX5k8udgHZZCMJoMFKsxa4gNyi3J0IWQt7vOUqGn+lqjtbBv1wvbdvWiQKayJd Md4qj3xFjg9wNYGfdhEHbd205cwuq8WasgVrXcCjyhldpBiqZ/sUml5vVK0WF50C ZgJ6HhQPGv5YjmmBFJKkonseZGIKNx8yH0X2ZYKk -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:56 2025 by rpki-client