$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130362e302f32342d3234203d3e2039323531.roa File: 3130332e3235332e3130362e302f32342d3234203d3e2039323531.roa (raw, json) Hash identifier: 76H0qrG4Uy5/8aWW6KHmL8OdUAxhoKIYB8VrEwRt7hA= Subject key identifier: 6D:59:7C:C3:B4:C2:A4:B9:1B:ED:FC:76:21:7C:CA:E9:F6:86:7D:D8 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 7EF82EEF22B70D45820C2CC349C6D970CED3D37E Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130362e302f32342d3234203d3e2039323531.roa Signing time: Tue 28 Oct 2025 12:02:29 +0000 ROA not before: Tue 28 Oct 2025 11:57:29 +0000 ROA not after: Tue 27 Oct 2026 12:02:29 +0000 asID: 9251 IP address blocks: 103.253.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f8:2e:ef:22:b7:0d:45:82:0c:2c:c3:49:c6:d9:70:ce:d3:d3:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Oct 28 11:57:29 2025 GMT Not After : Oct 27 12:02:29 2026 GMT Subject: CN=6D597CC3B4C2A4B91BEDFC76217CCAE9F6867DD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:b2:79:a0:d7:13:a8:0c:62:c7:3d:b6:b0: 58:fd:0b:9b:53:00:b5:49:fa:00:22:60:46:98:a2: c2:52:99:0e:0e:5c:25:cb:8f:08:79:f8:5e:41:bb: e0:3c:53:2b:14:0f:bb:1f:70:6a:30:0a:c7:09:1f: 46:2c:be:b8:ae:8a:a9:90:fb:3f:78:95:76:f0:61: b5:e8:73:56:d1:f4:17:09:4f:f2:b9:b8:ea:e7:33: a4:4c:32:52:23:d3:12:e3:8b:4d:40:91:89:7d:d8: 3b:e7:6e:15:6d:c6:a7:ef:d3:d7:9d:bf:95:57:65: 9a:0e:08:a5:c4:60:5b:5a:bf:dd:1e:53:c5:6a:b1: 4f:c7:50:af:a7:89:f5:43:0e:c5:93:b1:4b:8e:e0: 48:2f:97:d3:1b:07:d9:94:3e:61:93:b6:36:22:58: fa:27:97:6e:2f:7c:53:da:4e:a8:c6:d6:a6:ae:bf: e6:33:7c:aa:38:41:8b:44:5a:fd:89:98:b4:98:49: ae:f4:8d:a6:c5:ca:01:47:7f:58:f3:2d:17:18:72: 98:4d:26:3e:71:ff:79:e9:5e:ea:ee:33:46:b1:45: 79:7c:a4:66:6d:3a:31:4c:3a:9d:25:78:24:ec:26: 14:47:5a:e0:38:98:cc:d4:26:0d:1c:10:b6:5a:4e: 0e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:59:7C:C3:B4:C2:A4:B9:1B:ED:FC:76:21:7C:CA:E9:F6:86:7D:D8 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130362e302f32342d3234203d3e2039323531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.106.0/24 Signature Algorithm: sha256WithRSAEncryption ac:34:d9:d6:7d:b9:0d:4e:ea:7c:1a:f6:c0:60:7d:37:88:90: 53:f9:34:66:44:02:b5:23:63:21:8a:28:f2:b6:f6:81:48:3f: c9:b8:b8:60:47:06:2e:52:4d:32:c1:61:45:10:6d:2a:c2:bc: 5c:15:6b:69:df:b9:53:28:9e:5a:c3:90:cb:cf:6b:f3:ad:d5: a8:6e:84:2c:66:6f:4c:8d:94:f8:91:87:d6:c7:75:a7:29:2c: 6f:70:56:28:fc:ef:ac:25:be:f1:bd:47:5b:8e:4a:22:16:49: 37:c5:06:8f:43:55:bb:6d:b7:a1:b6:db:f0:7c:41:dd:2c:a9: 5f:52:82:a9:87:cb:c3:51:d0:a5:f3:af:2a:04:76:06:ce:1f: ad:22:a1:b3:32:a0:9c:dd:65:83:0f:c5:c8:3f:bb:30:be:37: 49:ae:bd:9f:4c:14:ff:e6:84:18:7d:8d:33:e3:cc:37:d5:3c: 36:1c:a2:88:fd:a1:24:ef:56:65:32:76:b7:6a:2d:91:54:82: 0b:da:69:8f:ab:a4:53:28:34:f7:13:eb:56:24:27:b1:38:ba: 3f:7b:f3:17:87:31:43:cc:74:20:40:9e:1f:b0:53:7c:d7:f6: 3e:e0:75:53:23:4c:c0:85:7b:ed:17:25:99:26:0b:d4:bd:78: cd:8c:4a:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfvgu7yK3DUWCDCzDScbZcM7T034wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTEwMjgxMTU3MjlaFw0yNjEwMjcxMjAyMjlaMDMxMTAvBgNV BAMTKDZENTk3Q0MzQjRDMkE0QjkxQkVERkM3NjIxN0NDQUU5RjY4NjdERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv6LJ5oNcTqAxixz22sFj9C5tT ALVJ+gAiYEaYosJSmQ4OXCXLjwh5+F5Bu+A8UysUD7sfcGowCscJH0YsvriuiqmQ +z94lXbwYbXoc1bR9BcJT/K5uOrnM6RMMlIj0xLji01AkYl92DvnbhVtxqfv09ed v5VXZZoOCKXEYFtav90eU8VqsU/HUK+nifVDDsWTsUuO4Egvl9MbB9mUPmGTtjYi WPonl24vfFPaTqjG1qauv+YzfKo4QYtEWv2JmLSYSa70jabFygFHf1jzLRcYcphN Jj5x/3npXuruM0axRXl8pGZtOjFMOp0leCTsJhRHWuA4mMzUJg0cELZaTg4VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbVl8w7TCpLkb7fx2IXzK6faGfdgwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMxMzAzMzJlMzIzNTMzMmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMyMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf9ajANBgkqhkiG 9w0BAQsFAAOCAQEArDTZ1n25DU7qfBr2wGB9N4iQU/k0ZkQCtSNjIYoo8rb2gUg/ ybi4YEcGLlJNMsFhRRBtKsK8XBVrad+5UyieWsOQy89r863VqG6ELGZvTI2U+JGH 1sd1pyksb3BWKPzvrCW+8b1HW45KIhZJN8UGj0NVu223obbb8HxB3SypX1KCqYfL w1HQpfOvKgR2Bs4frSKhszKgnN1lgw/FyD+7ML43Sa69n0wU/+aEGH2NM+PMN9U8 NhyiiP2hJO9WZTJ2t2otkVSCC9ppj6ukUyg09xPrViQnsTi6P3vzF4cxQ8x0IECe H7BTfNf2PuB1UyNMwIV77RclmSYL1L14zYxK4A== -----END CERTIFICATE-----Generated at Tue Nov 4 19:45:25 2025 by rpki-client