$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: KtUQ+Vy0WsDAXBhgXWISnS0ZTgIBvyCNqeTmj5sT/vs= Subject key identifier: 36:04:7D:74:EF:70:73:98:46:41:E3:9A:CA:86:32:53:65:BA:31:91 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 12B1C86900F7A92014A015CC704C8AB8D1600333 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa Signing time: Wed 22 Oct 2025 09:02:26 +0000 ROA not before: Wed 22 Oct 2025 08:57:26 +0000 ROA not after: Wed 21 Oct 2026 09:02:26 +0000 asID: 58487 IP address blocks: 103.253.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 14:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b1:c8:69:00:f7:a9:20:14:a0:15:cc:70:4c:8a:b8:d1:60:03:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Oct 22 08:57:26 2025 GMT Not After : Oct 21 09:02:26 2026 GMT Subject: CN=36047D74EF7073984641E39ACA86325365BA3191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f4:8c:60:5e:84:1e:85:a2:2c:51:3e:35:b8: 12:ed:e6:cc:fe:26:46:91:36:5c:d0:3e:aa:f5:1a: 5f:8b:4e:0a:e9:be:5b:4f:07:ae:66:b5:52:6d:50: b6:a3:5f:f5:55:ca:e6:e5:ab:e6:b9:70:e6:77:e3: 2b:a1:34:3b:3e:e1:ca:9f:aa:75:b4:b1:9d:be:6a: 36:65:b4:40:0b:c9:cf:d3:8e:a7:a4:7c:fa:f3:1d: be:3f:7e:f4:25:48:63:1b:12:65:c4:86:f2:0a:67: 54:b6:b9:e1:e3:89:ff:b9:6e:95:05:ba:99:04:09: c0:4d:9d:b1:89:df:bb:86:4f:7f:f8:c4:81:99:c0: ba:9e:b8:c4:8a:36:a5:2d:48:44:69:7e:3d:6f:ae: 6b:99:77:1a:0a:fe:17:a5:d6:a8:c1:da:fe:9a:13: de:6c:10:eb:73:dc:42:21:d0:57:3b:25:27:f5:22: c4:4b:75:ca:6b:e8:c6:5e:74:d3:a2:47:75:60:e9: ca:13:72:cc:47:9d:29:53:0c:fb:91:8e:ea:01:a6: fb:88:80:c9:f2:43:90:01:f8:28:2c:4f:aa:95:45: 13:28:e8:09:5a:ca:6e:ea:85:b8:4c:df:a5:d8:00: 33:8f:13:e6:1a:4f:67:ac:74:ea:53:be:c2:89:ed: a3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:04:7D:74:EF:70:73:98:46:41:E3:9A:CA:86:32:53:65:BA:31:91 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.214.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:dd:c8:38:8d:ce:df:9f:9d:86:f1:63:27:01:50:18:55:40: e6:17:10:c6:15:9d:87:24:6b:d8:30:d8:6e:60:4d:bc:d0:55: 9a:5f:82:8c:06:97:de:b9:47:b3:79:d1:de:09:3c:5c:54:7c: 4c:98:d3:bf:5a:76:76:de:36:10:dd:a4:67:16:b7:eb:66:73: e5:24:c7:33:37:63:11:a3:12:71:05:e1:2a:0c:fc:9e:56:1b: 47:4b:b6:54:fe:ec:36:07:6e:d0:65:de:35:88:ba:ad:0c:32: 1f:7d:96:21:0e:33:27:d8:54:dc:42:a2:c5:19:e5:c6:be:92: 39:1d:78:b8:e7:29:7b:12:7a:19:d8:2d:b3:09:72:3f:7b:04: e3:64:24:0c:6b:d8:2c:2f:52:73:5c:c1:75:36:14:52:d5:1c: 9f:f2:28:98:27:47:24:5b:a4:92:34:05:ec:f1:85:46:6d:28: 95:18:d7:4f:2a:ec:db:e5:05:85:62:2d:9f:dd:8d:fc:df:e9: 3c:48:82:6a:df:e4:53:eb:0a:7c:fa:77:b3:46:ec:8f:33:0d: c6:1b:9d:bb:2a:fe:48:14:6f:66:4c:bf:b1:ee:6e:b5:e1:59: 0b:6e:35:60:99:f5:30:6f:a6:d2:97:0c:ce:c5:1d:d1:3f:ca: fc:8a:d2:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUErHIaQD3qSAUoBXMcEyKuNFgAzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTEwMjIwODU3MjZaFw0yNjEwMjEwOTAyMjZaMDMxMTAvBgNV BAMTKDM2MDQ3RDc0RUY3MDczOTg0NjQxRTM5QUNBODYzMjUzNjVCQTMxOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb9IxgXoQehaIsUT41uBLt5sz+ JkaRNlzQPqr1Gl+LTgrpvltPB65mtVJtULajX/VVyublq+a5cOZ34yuhNDs+4cqf qnW0sZ2+ajZltEALyc/TjqekfPrzHb4/fvQlSGMbEmXEhvIKZ1S2ueHjif+5bpUF upkECcBNnbGJ37uGT3/4xIGZwLqeuMSKNqUtSERpfj1vrmuZdxoK/hel1qjB2v6a E95sEOtz3EIh0Fc7JSf1IsRLdcpr6MZedNOiR3Vg6coTcsxHnSlTDPuRjuoBpvuI gMnyQ5AB+CgsT6qVRRMo6Alaym7qhbhM36XYADOPE+YaT2esdOpTvsKJ7aPfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNgR9dO9wc5hGQeOayoYyU2W6MZEwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3WMA0GCSqG SIb3DQEBCwUAA4IBAQAq3cg4jc7fn52G8WMnAVAYVUDmFxDGFZ2HJGvYMNhuYE28 0FWaX4KMBpfeuUezedHeCTxcVHxMmNO/WnZ23jYQ3aRnFrfrZnPlJMczN2MRoxJx BeEqDPyeVhtHS7ZU/uw2B27QZd41iLqtDDIffZYhDjMn2FTcQqLFGeXGvpI5HXi4 5yl7EnoZ2C2zCXI/ewTjZCQMa9gsL1JzXMF1NhRS1Ryf8iiYJ0ckW6SSNAXs8YVG bSiVGNdPKuzb5QWFYi2f3Y383+k8SIJq3+RT6wp8+nezRuyPMw3GG527Kv5IFG9m TL+x7m614VkLbjVgmfUwb6bSlwzOxR3RP8r8itKx -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:50 2025 by rpki-client