$ rpki-client -vvf repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa File: 3130332e32302e38342e302f32342d3234203d3e20313530323337.roa (raw, json) Hash identifier: Q4o71jeTV80A1Kcs2rXwd40dCqE8n3Drpr6hWhmrWZg= Subject key identifier: C5:79:25:3D:DC:60:30:C1:30:05:17:8A:73:9A:D2:8D:D4:C1:8A:6D Certificate issuer: /CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0 Certificate serial: 51F210EEC27512C6ABC198DCCA57A838B7F9049A Authority key identifier: BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa Signing time: Thu 30 Oct 2025 19:00:00 +0000 ROA not before: Thu 30 Oct 2025 18:55:00 +0000 ROA not after: Thu 29 Oct 2026 19:00:00 +0000 asID: 150237 IP address blocks: 103.20.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 06:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f2:10:ee:c2:75:12:c6:ab:c1:98:dc:ca:57:a8:38:b7:f9:04:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0 Validity Not Before: Oct 30 18:55:00 2025 GMT Not After : Oct 29 19:00:00 2026 GMT Subject: CN=C579253DDC6030C13005178A739AD28DD4C18A6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:19:fd:b7:8f:e1:3f:f4:90:86:fa:88:6b: ea:c3:6b:b0:1a:5e:50:dc:f0:d1:7a:8a:13:46:eb: 6e:b2:5b:e9:4e:49:a4:77:22:ec:46:90:7e:bb:91: e0:cb:42:7d:50:0f:36:b2:15:55:ae:2b:19:e7:18: be:f6:06:25:e3:cb:a4:42:74:ba:43:62:ce:d1:c6: a3:76:be:f9:32:4c:4a:46:5f:3a:c5:37:77:29:ee: fb:ee:09:06:4a:b9:ad:2b:eb:16:29:7a:cc:f0:ac: ce:29:9f:94:60:19:2e:19:60:6d:f4:8c:61:47:ed: dd:9a:f5:c9:12:80:88:43:74:ac:d4:a8:6b:fe:54: 00:86:e9:ee:87:07:37:c2:41:99:62:cf:f2:30:3f: 44:07:83:a5:87:a8:6c:d2:cd:a4:b9:da:88:a8:ae: fa:ba:9c:4d:94:bc:70:49:1f:b8:b0:33:de:12:47: a3:34:74:0f:cc:87:84:11:6e:80:b9:81:7c:9a:b2: 1e:ff:57:24:26:1e:1b:ee:44:38:0d:e2:9c:66:a1: 0e:f5:15:dd:a9:68:b8:50:13:8e:5e:5e:db:af:8c: a1:9b:ac:66:44:09:31:48:89:30:32:60:f4:75:d9: 0a:96:9d:ca:ff:a1:60:7f:37:c5:33:ce:78:01:97: 69:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:79:25:3D:DC:60:30:C1:30:05:17:8A:73:9A:D2:8D:D4:C1:8A:6D X509v3 Authority Key Identifier: keyid:BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.84.0/24 Signature Algorithm: sha256WithRSAEncryption 34:3d:e0:ae:de:20:c3:45:c7:77:28:78:46:60:30:c3:5c:51: 21:03:05:fd:80:24:50:d8:32:61:01:3f:6c:15:c9:16:60:02: 85:dc:53:b4:e2:de:b4:6d:ef:71:23:c2:0c:74:ea:62:4d:61: 69:86:40:05:d8:c0:83:b9:fe:4b:54:7d:81:27:2c:0c:b5:8f: c5:5b:53:85:a1:26:d9:f0:bd:a7:bf:e0:46:42:9f:10:e8:71: 64:a5:8a:8b:4e:b5:3f:d7:85:b0:5f:77:51:78:b1:1e:c8:96: e0:90:ae:0e:97:17:75:c8:e5:0d:cf:2f:ec:0a:34:92:e3:78: 44:87:94:c8:a8:37:0e:79:99:fc:de:cc:ab:13:77:11:9e:28: 39:58:6b:e7:b4:b4:e8:91:2c:a2:10:44:0e:64:3f:c1:1b:37: 25:dd:93:fe:6a:f8:22:3b:cb:08:90:2b:0a:02:7d:1a:24:79: 56:81:77:73:d0:03:ed:37:db:57:c9:a2:5b:40:58:a9:14:ef: d2:f7:1a:1b:7f:ca:3c:73:64:52:01:9a:71:35:4f:cc:56:ab: 3c:88:bc:33:4f:2e:f9:0c:da:4b:59:c1:4d:53:a1:57:34:0e: 97:6b:eb:a4:8b:bb:83:31:7a:0e:71:c1:bb:b7:f8:9e:a4:b4: 2e:0d:fa:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUfIQ7sJ1EsarwZjcyleoOLf5BJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQwQ0E3QkI3RUUxNDU5N0ExNzFGMUIxRTNFMzEyN0E3 OURGRkZEMDAeFw0yNTEwMzAxODU1MDBaFw0yNjEwMjkxOTAwMDBaMDMxMTAvBgNV BAMTKEM1NzkyNTNEREM2MDMwQzEzMDA1MTc4QTczOUFEMjhERDRDMThBNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwDRn9t4/hP/SQhvqIa+rDa7Aa XlDc8NF6ihNG626yW+lOSaR3IuxGkH67keDLQn1QDzayFVWuKxnnGL72BiXjy6RC dLpDYs7RxqN2vvkyTEpGXzrFN3cp7vvuCQZKua0r6xYpeszwrM4pn5RgGS4ZYG30 jGFH7d2a9ckSgIhDdKzUqGv+VACG6e6HBzfCQZliz/IwP0QHg6WHqGzSzaS52oio rvq6nE2UvHBJH7iwM94SR6M0dA/Mh4QRboC5gXyash7/VyQmHhvuRDgN4pxmoQ71 Fd2paLhQE45eXtuvjKGbrGZECTFIiTAyYPR12QqWncr/oWB/N8UzzngBl2kNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxXklPdxgMMEwBReKc5rSjdTBim0wHwYDVR0j BBgwFoAUvQynu37hRZehcfGx4+MSennf/9AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZDdhNzFiYy1mOTEwLTRiOGMtOWNmZi0wODU3ZDVmMmQzN2YvMC9CRDBDQTdCQjdF RTE0NTk3QTE3MUYxQjFFM0UzMTI3QTc5REZGRkQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQwQ0E3QkI3RUUxNDU5N0ExNzFGMUIxRTNFMzEyN0E3OURG RkZEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkN2E3MWJjLWY5MTAtNGI4Yy05 Y2ZmLTA4NTdkNWYyZDM3Zi8wLzMxMzAzMzJlMzIzMDJlMzgzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUVDANBgkqhkiG 9w0BAQsFAAOCAQEAND3grt4gw0XHdyh4RmAww1xRIQMF/YAkUNgyYQE/bBXJFmAC hdxTtOLetG3vcSPCDHTqYk1haYZABdjAg7n+S1R9gScsDLWPxVtThaEm2fC9p7/g RkKfEOhxZKWKi061P9eFsF93UXixHsiW4JCuDpcXdcjlDc8v7Ao0kuN4RIeUyKg3 DnmZ/N7MqxN3EZ4oOVhr57S06JEsohBEDmQ/wRs3Jd2T/mr4IjvLCJArCgJ9GiR5 VoF3c9AD7TfbV8miW0BYqRTv0vcaG3/KPHNkUgGacTVPzFarPIi8M08u+QzaS1nB TVOhVzQOl2vrpIu7gzF6DnHBu7f4nqS0Lg36YA== -----END CERTIFICATE-----Generated at Tue Nov 4 08:17:51 2025 by rpki-client