$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: oxLP3gydeJbAUwGuXj4Sn5JUyRAKvD62bKPAEJMwW7U= Subject key identifier: 91:FE:EE:FE:D5:C3:C3:6E:FD:4F:32:35:B0:9C:07:1F:5D:54:D5:9C Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 5BA0E45B1C07A9B2D8540D532F1299A750D5EC64 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa Signing time: Wed 22 Oct 2025 09:02:26 +0000 ROA not before: Wed 22 Oct 2025 08:57:26 +0000 ROA not after: Wed 21 Oct 2026 09:02:26 +0000 asID: 58487 IP address blocks: 103.253.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 14:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a0:e4:5b:1c:07:a9:b2:d8:54:0d:53:2f:12:99:a7:50:d5:ec:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Oct 22 08:57:26 2025 GMT Not After : Oct 21 09:02:26 2026 GMT Subject: CN=91FEEEFED5C3C36EFD4F3235B09C071F5D54D59C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7d:40:7b:3e:27:c2:69:01:c6:ca:e9:34:e3: 35:ae:f2:42:11:1d:10:44:d3:b8:84:82:66:2d:06: 7f:e8:33:84:b5:56:2c:5f:0b:b1:ec:8e:d6:ae:60: 6a:fe:64:4e:08:45:f0:6f:fe:9b:9b:93:51:b2:66: 82:ff:58:4c:08:92:29:29:2e:1e:51:ba:06:d0:7c: 2c:da:ad:af:8d:62:00:53:fd:4d:40:75:1f:52:03: e8:6a:1b:06:9e:d1:e4:b5:c3:94:07:d6:da:17:88: 0b:91:66:9b:53:9b:cd:e3:be:cb:05:55:c0:79:24: 79:05:63:e0:39:16:f9:98:bd:74:de:e2:94:74:f3: 67:9c:f9:07:99:c6:14:62:3e:f8:76:e7:60:e0:da: 45:66:c6:5c:a7:76:aa:c6:a3:b6:b7:2a:d1:44:f6: a3:5a:cc:f9:ca:20:f6:a5:ea:2b:45:d4:bc:6d:09: dd:c8:ef:a2:6b:81:35:0a:a6:42:5c:73:66:78:29: db:e1:b5:e2:d8:57:07:39:b6:1f:81:d7:69:82:69: d5:95:6a:93:b6:ec:fc:bd:2a:f0:2d:ff:98:23:a0: 65:3a:ec:8b:88:0f:90:ff:ad:dd:5e:91:fb:c9:5b: 7e:a2:84:a4:98:6d:41:9b:9c:ba:21:be:bf:7f:e4: f4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FE:EE:FE:D5:C3:C3:6E:FD:4F:32:35:B0:9C:07:1F:5D:54:D5:9C X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.215.0/24 Signature Algorithm: sha256WithRSAEncryption a8:9e:ae:04:02:92:46:fa:d7:42:46:d0:9b:fe:68:1b:c0:ed: e8:87:98:39:c2:33:b3:ea:de:68:66:70:63:bc:e7:2c:4f:cd: 00:ad:b4:e7:0e:ac:69:c0:3a:2b:0e:52:52:b3:4c:5c:eb:a9: aa:28:99:04:de:61:57:d5:12:1d:35:b9:c6:70:48:14:6b:23: 8b:9d:90:0b:ea:5c:ca:46:04:44:2b:6e:59:70:21:c8:2f:49: 6c:32:19:d4:40:f4:a9:ab:d1:6b:a2:f7:1a:82:b2:3b:ad:18: 5f:ce:77:c1:c9:5a:dd:8f:2d:6f:96:cf:ba:ff:62:26:a5:f3: 11:57:be:d3:3c:d4:a4:6d:7d:37:3f:8d:3a:0c:80:41:4b:aa: 23:e7:fe:77:8a:8b:c3:6b:29:86:9a:b4:f7:08:0c:e0:aa:c7: 16:a7:93:90:13:f1:25:58:3e:ae:fa:d1:7a:1c:fc:e2:66:72: ca:35:f7:a8:5a:c4:f3:e0:0e:86:45:4c:3c:cc:2f:99:5e:96: 75:99:60:0e:2d:54:8f:58:af:4d:b4:57:66:0b:9b:e7:c5:8f: bc:df:78:da:11:91:81:28:04:70:b0:ae:ff:9d:b1:a5:a8:cf: 21:5a:b9:78:09:98:06:65:9a:d7:b2:65:bb:23:f4:fe:d6:e5: 27:01:1f:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW6DkWxwHqbLYVA1TLxKZp1DV7GQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNTEwMjIwODU3MjZaFw0yNjEwMjEwOTAyMjZaMDMxMTAvBgNV BAMTKDkxRkVFRUZFRDVDM0MzNkVGRDRGMzIzNUIwOUMwNzFGNUQ1NEQ1OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5fUB7PifCaQHGyuk04zWu8kIR HRBE07iEgmYtBn/oM4S1VixfC7HsjtauYGr+ZE4IRfBv/pubk1GyZoL/WEwIkikp Lh5RugbQfCzara+NYgBT/U1AdR9SA+hqGwae0eS1w5QH1toXiAuRZptTm83jvssF VcB5JHkFY+A5FvmYvXTe4pR082ec+QeZxhRiPvh252Dg2kVmxlyndqrGo7a3KtFE 9qNazPnKIPal6itF1LxtCd3I76JrgTUKpkJcc2Z4KdvhteLYVwc5th+B12mCadWV apO27Py9KvAt/5gjoGU67IuID5D/rd1ekfvJW36ihKSYbUGbnLohvr9/5PQVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkf7u/tXDw279TzI1sJwHH11U1ZwwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3XMA0GCSqG SIb3DQEBCwUAA4IBAQConq4EApJG+tdCRtCb/mgbwO3oh5g5wjOz6t5oZnBjvOcs T80ArbTnDqxpwDorDlJSs0xc66mqKJkE3mFX1RIdNbnGcEgUayOLnZAL6lzKRgRE K25ZcCHIL0lsMhnUQPSpq9FrovcagrI7rRhfznfByVrdjy1vls+6/2ImpfMRV77T PNSkbX03P406DIBBS6oj5/53iovDaymGmrT3CAzgqscWp5OQE/ElWD6u+tF6HPzi ZnLKNfeoWsTz4A6GRUw8zC+ZXpZ1mWAOLVSPWK9NtFdmC5vnxY+833jaEZGBKARw sK7/nbGlqM8hWrl4CZgGZZrXsmW7I/T+1uUnAR/y -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:52 2025 by rpki-client