$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa File: 3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa (raw, json) Hash identifier: knuIklDPIimRkON042cExQYjdXGcfiWbqkGFha8mOGA= Subject key identifier: 8E:6F:3E:69:CF:3E:87:B7:5E:62:53:A0:85:6D:D5:86:78:8E:7D:07 Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 25114AC72935BB8F1BDAA9EEB45DCDE4C069B8AE Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa Signing time: Mon 03 Nov 2025 10:02:24 +0000 ROA not before: Mon 03 Nov 2025 09:57:24 +0000 ROA not after: Mon 02 Nov 2026 10:02:24 +0000 asID: 132678 IP address blocks: 103.241.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 17:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:11:4a:c7:29:35:bb:8f:1b:da:a9:ee:b4:5d:cd:e4:c0:69:b8:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Nov 3 09:57:24 2025 GMT Not After : Nov 2 10:02:24 2026 GMT Subject: CN=8E6F3E69CF3E87B75E6253A0856DD586788E7D07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:53:ed:b5:7b:c3:4d:6f:67:e1:99:d2:bc: 58:c8:e3:b0:c1:08:88:92:4c:3d:d7:87:bc:9c:91: 52:c9:9e:aa:ae:1c:5f:c8:31:03:c6:49:a5:77:41: 73:d0:b4:62:9e:88:1c:07:73:7c:e6:e5:c8:48:62: c7:ca:b8:30:fc:87:1d:b9:96:f0:07:15:df:b5:d3: a2:4d:a0:ee:e4:8e:70:76:8d:4d:3c:07:3b:36:9f: 57:56:72:dd:52:6d:36:7b:b7:1f:cc:2a:df:9d:3f: 62:19:6e:2f:f8:0d:3e:87:f2:1c:f0:12:74:51:e6: 09:ff:37:6f:15:3d:d1:7d:93:d3:46:da:13:5e:00: d8:12:c7:f3:9d:6a:f8:d1:f4:d3:3b:19:1c:46:f0: 90:c1:37:8b:8e:c9:c6:06:74:01:ec:26:c4:40:56: d0:fb:e9:23:62:26:ec:af:4d:57:1b:ef:3f:99:8d: b1:8f:11:cf:12:6f:31:13:52:a1:8c:4d:fc:cb:f2: 80:5e:6b:95:97:6c:8c:3b:37:ac:d7:72:13:60:7d: 39:00:1f:ba:c0:5d:a9:eb:1e:b1:5f:54:63:7a:6e: f9:87:c2:cb:1a:a6:59:4a:7c:14:ff:5c:2a:78:f2: d9:37:60:d5:97:97:41:2d:15:7c:d6:c2:26:ca:f0: 84:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6F:3E:69:CF:3E:87:B7:5E:62:53:A0:85:6D:D5:86:78:8E:7D:07 X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.207.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:bd:de:94:20:de:f7:d2:9d:53:f1:b9:5d:1d:a9:98:2c:f5: 76:c8:35:0b:87:69:d0:86:17:9c:48:f5:85:ce:18:8e:ce:d1: cf:ad:66:c3:ed:76:39:8d:b2:49:d9:13:93:92:ff:93:8e:48: 3d:f3:5f:9f:93:2c:af:1a:6b:34:72:73:54:50:0e:02:e4:f7: 8f:4d:43:76:58:cf:0b:4c:77:c2:49:12:44:b8:4f:13:54:0f: 9f:ff:62:72:25:a1:d8:92:19:d3:d0:a4:9f:8a:fb:c8:43:50: a7:05:d3:0c:27:2e:76:ca:64:27:64:6c:1a:d3:51:cd:96:2a: e6:e9:79:a2:4b:dc:37:2b:e8:86:7b:40:7e:ed:7c:8e:02:ec: 31:70:0e:1d:bc:65:7e:46:95:7b:4c:f1:27:d3:0f:52:78:02: c3:ae:55:c7:05:99:b0:ee:82:cf:81:82:b7:96:5d:64:18:05: 5a:09:2c:4a:a8:89:11:88:33:1e:56:38:5f:12:ae:53:07:37: 00:49:c5:3e:32:fc:81:c1:4f:f5:e5:0e:9e:2c:89:3c:3c:ca: a8:55:a8:a0:39:e7:cf:3c:0b:fd:0e:80:cb:bb:90:d1:ae:e6: df:45:0c:b2:d1:6f:93:49:1a:95:9f:88:df:10:c1:76:e0:8b: 73:bf:d7:4c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJRFKxyk1u48b2qnutF3N5MBpuK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNTExMDMwOTU3MjRaFw0yNjExMDIxMDAyMjRaMDMxMTAvBgNV BAMTKDhFNkYzRTY5Q0YzRTg3Qjc1RTYyNTNBMDg1NkRENTg2Nzg4RTdEMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBclPttXvDTW9n4ZnSvFjI47DB CIiSTD3Xh7yckVLJnqquHF/IMQPGSaV3QXPQtGKeiBwHc3zm5chIYsfKuDD8hx25 lvAHFd+106JNoO7kjnB2jU08Bzs2n1dWct1SbTZ7tx/MKt+dP2IZbi/4DT6H8hzw EnRR5gn/N28VPdF9k9NG2hNeANgSx/OdavjR9NM7GRxG8JDBN4uOycYGdAHsJsRA VtD76SNiJuyvTVcb7z+ZjbGPEc8SbzETUqGMTfzL8oBea5WXbIw7N6zXchNgfTkA H7rAXanrHrFfVGN6bvmHwssapllKfBT/XCp48tk3YNWXl0EtFXzWwibK8ISLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjm8+ac8+h7deYlOghW3VhniOfQcwHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMxMzAzMzJlMzIzNDMxMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn8c8wDQYJ KoZIhvcNAQELBQADggEBAH293pQg3vfSnVPxuV0dqZgs9XbINQuHadCGF5xI9YXO GI7O0c+tZsPtdjmNsknZE5OS/5OOSD3zX5+TLK8aazRyc1RQDgLk949NQ3ZYzwtM d8JJEkS4TxNUD5//YnIlodiSGdPQpJ+K+8hDUKcF0wwnLnbKZCdkbBrTUc2WKubp eaJL3Dcr6IZ7QH7tfI4C7DFwDh28ZX5GlXtM8SfTD1J4AsOuVccFmbDugs+BgreW XWQYBVoJLEqoiRGIMx5WOF8SrlMHNwBJxT4y/IHBT/XlDp4siTw8yqhVqKA55888 C/0OgMu7kNGu5t9FDLLRb5NJGpWfiN8QwXbgi3O/10w= -----END CERTIFICATE-----Generated at Wed Nov 5 06:12:34 2025 by rpki-client