$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: IvNZ6V8Ddyu+CEYNCxWudlPze+kAreQ3nlxiiuImOGc= Subject key identifier: CE:7B:6F:71:B7:70:51:2A:3B:D5:68:CB:F5:9F:8A:8C:26:D0:AF:72 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 28A82850E4881E2A9869EC080DB671676BEEAC3B Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa Signing time: Wed 22 Oct 2025 09:02:27 +0000 ROA not before: Wed 22 Oct 2025 08:57:27 +0000 ROA not after: Wed 21 Oct 2026 09:02:27 +0000 asID: 58487 IP address blocks: 103.253.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 14:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a8:28:50:e4:88:1e:2a:98:69:ec:08:0d:b6:71:67:6b:ee:ac:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Oct 22 08:57:27 2025 GMT Not After : Oct 21 09:02:27 2026 GMT Subject: CN=CE7B6F71B770512A3BD568CBF59F8A8C26D0AF72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:df:e0:93:25:c6:d1:df:30:6e:e8:3e:58: 88:d2:bb:67:e1:5c:f6:88:72:7a:de:88:07:6b:2a: 2f:92:f2:96:47:b4:05:81:f6:87:43:91:37:db:91: 1c:50:5c:29:27:f8:18:73:56:4f:54:b7:1c:71:a7: 84:7c:47:3e:a8:d8:a2:be:c9:6f:49:75:ad:11:6f: 21:c0:ed:ed:d5:bb:eb:96:b7:df:ba:98:f8:e5:36: 9f:c8:be:e3:b2:d2:1e:b9:b3:7f:f6:c8:e4:c6:93: 29:74:36:f1:f8:5c:8f:fb:92:a7:c4:c2:bb:75:ee: 84:cc:9f:92:b3:c5:d3:fa:c7:8d:8f:41:02:3b:05: dc:94:cd:73:fe:15:f7:79:01:67:2a:8a:f4:c5:ad: 92:3f:a3:64:36:c3:59:9e:94:2d:27:e1:30:6e:13: 8f:ca:b5:ae:f2:6a:f4:53:91:22:6a:15:5e:43:54: b2:b5:80:b3:c8:d3:43:08:07:e7:71:51:ed:e3:ec: 0c:d1:4a:19:e5:9b:fb:fd:f7:b8:b6:af:65:bc:df: f1:55:c5:33:bd:4f:f8:03:b2:bc:f1:aa:ed:3b:33: 3d:a4:03:94:7d:09:da:35:3e:ec:ef:5e:96:28:d6: 84:eb:e6:d0:ab:02:2a:70:c8:69:3e:f0:4f:52:be: e2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7B:6F:71:B7:70:51:2A:3B:D5:68:CB:F5:9F:8A:8C:26:D0:AF:72 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/24 Signature Algorithm: sha256WithRSAEncryption cf:82:bd:30:7a:c7:0c:d5:ab:2a:71:ef:05:58:95:d6:f7:2e: c0:6e:39:0f:8e:99:3b:fa:c9:35:21:6c:4e:5a:d9:ca:00:da: 1d:ca:f1:98:36:31:55:b3:0c:d1:75:b4:9c:61:37:d9:ce:40: 03:00:3b:ea:a8:f0:ba:04:8c:53:0b:91:25:d4:7f:76:a6:b1: b0:0b:91:5d:74:f4:09:38:6b:79:95:8a:68:8e:44:1f:83:9d: b5:68:53:85:fc:ba:f6:66:18:6e:6b:a6:02:37:f9:34:76:67: 8f:91:fe:0b:f3:ac:f5:07:1b:51:2f:4a:56:ba:28:1a:03:28: 45:cf:a7:55:02:f0:e5:2b:f1:69:53:79:c9:df:c1:94:11:f4: 7f:7f:cd:30:3c:56:98:56:52:01:8a:0b:4d:66:a2:78:d2:6e: 50:a2:9a:21:db:ac:64:da:73:c8:11:3e:89:01:6c:80:a8:17: 44:85:69:a2:95:68:41:a0:f6:96:bd:67:1b:46:6c:ec:95:76: 46:5e:73:9c:63:69:ee:d8:af:40:8e:6d:62:89:71:ac:89:66: 5c:e8:da:4d:00:86:3c:14:5b:eb:a8:d3:85:dd:60:d4:8b:2f: 81:0c:00:f6:6b:b5:80:88:b7:ca:6e:8f:6a:a0:df:41:3b:05: a6:37:45:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKKgoUOSIHiqYaewIDbZxZ2vurDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTEwMjIwODU3MjdaFw0yNjEwMjEwOTAyMjdaMDMxMTAvBgNV BAMTKENFN0I2RjcxQjc3MDUxMkEzQkQ1NjhDQkY1OUY4QThDMjZEMEFGNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/t/gkyXG0d8wbug+WIjSu2fh XPaIcnreiAdrKi+S8pZHtAWB9odDkTfbkRxQXCkn+BhzVk9Utxxxp4R8Rz6o2KK+ yW9Jda0RbyHA7e3Vu+uWt9+6mPjlNp/IvuOy0h65s3/2yOTGkyl0NvH4XI/7kqfE wrt17oTMn5KzxdP6x42PQQI7BdyUzXP+Ffd5AWcqivTFrZI/o2Q2w1melC0n4TBu E4/Kta7yavRTkSJqFV5DVLK1gLPI00MIB+dxUe3j7AzRShnlm/v997i2r2W83/FV xTO9T/gDsrzxqu07Mz2kA5R9Cdo1PuzvXpYo1oTr5tCrAipwyGk+8E9SvuLlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzntvcbdwUSo71WjL9Z+KjCbQr3IwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQDPgr0wescM1asqce8FWJXW9y7AbjkPjpk7+sk1IWxOWtnK ANodyvGYNjFVswzRdbScYTfZzkADADvqqPC6BIxTC5El1H92prGwC5FddPQJOGt5 lYpojkQfg521aFOF/Lr2Zhhua6YCN/k0dmePkf4L86z1BxtRL0pWuigaAyhFz6dV AvDlK/FpU3nJ38GUEfR/f80wPFaYVlIBigtNZqJ40m5Qopoh26xk2nPIET6JAWyA qBdEhWmilWhBoPaWvWcbRmzslXZGXnOcY2nu2K9Ajm1iiXGsiWZc6NpNAIY8FFvr qNOF3WDUiy+BDAD2a7WAiLfKbo9qoN9BOwWmN0Xa -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:52 2025 by rpki-client