$ rpki-client -vvf repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa File: 3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa (raw, json) Hash identifier: SapOMMIVothLtXId44y92PXYWgqYBrvZdRlhJ/EEALc= Subject key identifier: 96:0B:79:78:9D:7D:37:E7:6C:8F:37:C8:41:78:4D:D3:4C:19:0A:C9 Certificate issuer: /CN=7FEF6BF53FA3122A0F09CEF4B408E13792A14545 Certificate serial: 7D03E9D47C440D37327B4B5A0EB40013BC26BB64 Authority key identifier: 7F:EF:6B:F5:3F:A3:12:2A:0F:09:CE:F4:B4:08:E1:37:92:A1:45:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer Subject info access: rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa Signing time: Thu 23 Oct 2025 07:00:03 +0000 ROA not before: Thu 23 Oct 2025 06:55:03 +0000 ROA not after: Thu 22 Oct 2026 07:00:03 +0000 asID: 139410 IP address blocks: 103.167.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.crl rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 01:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:03:e9:d4:7c:44:0d:37:32:7b:4b:5a:0e:b4:00:13:bc:26:bb:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FEF6BF53FA3122A0F09CEF4B408E13792A14545 Validity Not Before: Oct 23 06:55:03 2025 GMT Not After : Oct 22 07:00:03 2026 GMT Subject: CN=960B79789D7D37E76C8F37C841784DD34C190AC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5b:0f:e7:0d:2e:53:fe:33:9e:44:4f:30:e3: 9b:bc:fa:35:8e:14:1a:68:a1:6a:d5:1a:3b:ee:19: ab:a6:e8:78:93:99:ec:8d:8b:83:fd:52:e1:a2:cb: ad:45:d7:0c:7e:c5:91:a5:77:67:fd:1b:c8:88:82: a7:2f:d7:a1:c5:17:97:71:9d:db:a3:75:69:34:4b: b1:9c:57:85:eb:b0:f0:fe:98:98:63:e6:c1:93:71: 61:c3:f1:63:1b:da:82:4a:c9:11:d1:61:81:63:1c: 09:c7:29:8d:b0:3e:fe:31:28:03:52:13:2f:b6:5e: 7b:f3:32:86:b1:a0:48:e1:03:68:2c:0e:9c:ec:59: 37:cc:27:eb:21:ca:59:95:b1:f8:1f:83:19:e4:9d: f2:87:49:dc:fd:99:45:cc:66:b1:99:0a:ca:c0:1a: bb:99:1c:0b:b0:5f:c4:2a:24:d1:74:cf:f3:01:3c: ad:60:cb:da:58:cd:ef:bd:66:a6:b7:b3:9d:4b:fa: 17:56:13:90:a5:83:56:3f:2f:2b:ae:af:bd:5a:ee: 38:8e:4f:d6:86:e4:69:22:77:6e:d9:98:49:f2:a3: 18:18:28:4f:8f:60:7c:5f:40:97:d9:2b:86:17:ca: 41:c7:a4:7b:17:c5:d4:f3:fb:5f:1b:3a:e3:8b:ea: 1b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0B:79:78:9D:7D:37:E7:6C:8F:37:C8:41:78:4D:D3:4C:19:0A:C9 X509v3 Authority Key Identifier: keyid:7F:EF:6B:F5:3F:A3:12:2A:0F:09:CE:F4:B4:08:E1:37:92:A1:45:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.104.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:d5:dc:75:df:42:a3:70:62:31:6e:e9:2b:1a:50:5f:fd:10: b8:cc:81:f9:36:d1:95:67:8d:63:0a:49:29:90:f2:94:aa:f2: ea:31:05:31:e9:fb:ad:31:f4:56:a4:91:80:29:fa:b8:76:a5: 11:ec:fd:9f:cf:c3:66:43:09:75:a5:d0:17:a4:a6:da:8c:46: 78:c1:03:4a:1f:35:96:7e:a5:4f:43:78:b6:6c:77:4a:ab:29: 6f:db:57:d2:ff:83:f7:2e:3f:f3:36:91:3c:b6:e6:95:23:ca: 72:5d:26:45:29:e9:c3:ba:54:de:92:a5:09:17:3b:3d:38:ef: 96:f0:e5:ba:b7:17:85:04:93:ee:3f:d7:c2:4e:34:5c:8c:30: 0a:7c:2c:14:b9:63:3a:86:9f:4f:c7:5c:0d:62:06:33:6d:53: e5:73:82:58:a5:28:e2:aa:cc:3c:38:d5:e4:91:dc:0b:67:8f: 27:55:cc:7e:43:cd:46:43:89:dd:d0:d7:45:41:2a:00:50:b1: 66:27:da:13:75:4e:d6:c2:fe:af:55:55:38:8b:00:be:f9:c9: 13:ee:83:91:bf:d7:3d:9d:57:46:d4:eb:bc:60:d9:fc:54:1f: 11:3a:29:66:a7:5e:25:26:37:ea:e0:a2:a3:db:2d:ab:61:87: 2c:be:de:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfQPp1HxEDTcye0taDrQAE7wmu2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZFRjZCRjUzRkEzMTIyQTBGMDlDRUY0QjQwOEUxMzc5 MkExNDU0NTAeFw0yNTEwMjMwNjU1MDNaFw0yNjEwMjIwNzAwMDNaMDMxMTAvBgNV BAMTKDk2MEI3OTc4OUQ3RDM3RTc2QzhGMzdDODQxNzg0REQzNEMxOTBBQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Ww/nDS5T/jOeRE8w45u8+jWO FBpooWrVGjvuGaum6HiTmeyNi4P9UuGiy61F1wx+xZGld2f9G8iIgqcv16HFF5dx ndujdWk0S7GcV4XrsPD+mJhj5sGTcWHD8WMb2oJKyRHRYYFjHAnHKY2wPv4xKANS Ey+2XnvzMoaxoEjhA2gsDpzsWTfMJ+shylmVsfgfgxnknfKHSdz9mUXMZrGZCsrA GruZHAuwX8QqJNF0z/MBPK1gy9pYze+9Zqa3s51L+hdWE5Clg1Y/Lyuur71a7jiO T9aG5Gkid27ZmEnyoxgYKE+PYHxfQJfZK4YXykHHpHsXxdTz+18bOuOL6hsrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlgt5eJ19N+dsjzfIQXhN00wZCskwHwYDVR0j BBgwFoAUf+9r9T+jEioPCc70tAjhN5KhRUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDNlYmFiYi05OTlmLTRmM2UtODRjMS1iZjI3OWJmZTE3ODcvMC83RkVGNkJGNTNG QTMxMjJBMEYwOUNFRjRCNDA4RTEzNzkyQTE0NTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ZFRjZCRjUzRkEzMTIyQTBGMDlDRUY0QjQwOEUxMzc5MkEx NDU0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwM2ViYWJiLTk5OWYtNGYzZS04 NGMxLWJmMjc5YmZlMTc4Ny8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp2gwDQYJ KoZIhvcNAQELBQADggEBAAvV3HXfQqNwYjFu6SsaUF/9ELjMgfk20ZVnjWMKSSmQ 8pSq8uoxBTHp+60x9FakkYAp+rh2pRHs/Z/Pw2ZDCXWl0BekptqMRnjBA0ofNZZ+ pU9DeLZsd0qrKW/bV9L/g/cuP/M2kTy25pUjynJdJkUp6cO6VN6SpQkXOz0475bw 5bq3F4UEk+4/18JONFyMMAp8LBS5YzqGn0/HXA1iBjNtU+VzglilKOKqzDw41eSR 3AtnjydVzH5DzUZDid3Q10VBKgBQsWYn2hN1TtbC/q9VVTiLAL75yRPug5G/1z2d V0bU67xg2fxUHxE6KWanXiUmN+rgoqPbLathhyy+3jk= -----END CERTIFICATE-----Generated at Tue Nov 4 22:22:28 2025 by rpki-client