$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa File: 3130332e32382e31342e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: GMDlJkIYSBbaiHdAVmprXvGw9l46ixxNam2eRH2A4Uo= Subject key identifier: BF:EA:E2:90:1D:DD:BD:57:73:50:84:18:32:F1:0C:AE:A1:83:0A:0F Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 07AD6C8C6C8B07B1357C897D82F6D0D6019F83A5 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa Signing time: Wed 22 Oct 2025 12:00:01 +0000 ROA not before: Wed 22 Oct 2025 11:55:01 +0000 ROA not after: Wed 21 Oct 2026 12:00:01 +0000 asID: 58404 IP address blocks: 103.28.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 23:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ad:6c:8c:6c:8b:07:b1:35:7c:89:7d:82:f6:d0:d6:01:9f:83:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Oct 22 11:55:01 2025 GMT Not After : Oct 21 12:00:01 2026 GMT Subject: CN=BFEAE2901DDDBD577350841832F10CAEA1830A0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a0:3f:ac:ef:a3:2c:3e:5c:5c:00:69:bb:c6: e0:b5:0a:83:09:f3:43:56:f4:46:2d:81:bb:7f:5b: 3e:f2:5e:fb:03:ec:b5:72:a4:7e:d6:37:4b:35:dc: f5:45:53:e9:68:3e:b3:bb:3f:34:22:1d:27:49:4d: 0a:c1:73:a2:73:03:f8:32:2c:d2:cc:bd:33:3c:65: b4:c3:41:ca:a2:4b:ee:d3:7d:f5:d8:4b:ba:0a:85: 1b:86:b2:ec:af:8a:f2:2f:93:46:87:56:ca:0d:25: 53:49:06:f6:5f:c2:32:cd:79:4f:7e:a3:b1:a5:0f: 96:f9:14:0a:3b:dd:ac:2c:da:7b:b9:09:87:92:0f: 74:04:ba:dc:39:08:c0:cb:ff:82:47:3d:6d:68:e3: 08:ce:41:5a:60:59:7d:82:bd:df:57:fa:04:ae:24: 58:1b:f7:e9:52:71:93:d4:d9:2c:21:06:8a:28:6c: 0c:a0:2e:c0:2d:c7:8e:f7:dc:8e:5c:03:75:f5:b1: a5:c4:5e:c3:40:68:e7:4b:2c:c0:da:49:55:5d:34: 27:44:a3:af:f9:58:19:6d:fa:9a:fb:53:23:1c:79: a7:7e:bd:af:8d:93:41:20:8a:f0:ea:d8:d1:6e:29: cd:ad:fe:d3:3b:f3:eb:58:8c:6b:9e:ec:63:72:d9: 9c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EA:E2:90:1D:DD:BD:57:73:50:84:18:32:F1:0C:AE:A1:83:0A:0F X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.14.0/23 Signature Algorithm: sha256WithRSAEncryption 55:00:91:f9:cc:5d:75:14:85:9e:39:23:50:de:3b:a5:00:7a: 7e:1c:b2:89:30:27:5d:99:21:2b:07:73:16:66:d6:26:53:25: d6:88:b3:29:50:b2:67:4a:28:4e:22:2b:7f:0c:4e:b0:93:9f: be:d6:33:39:2f:17:87:e7:83:d7:8d:70:34:87:e7:e1:4f:25: fd:26:92:a1:61:a9:61:3f:a8:81:f3:80:27:7f:07:ce:b7:44: 7e:aa:db:a3:5a:ef:d9:93:a6:e9:a1:bf:bd:a3:9c:a7:96:e4: 0b:4d:08:8e:a1:c6:0c:06:a3:a2:ca:c6:d7:c4:bc:4a:35:5f: c1:48:c8:ae:b1:25:6e:0b:93:70:38:5f:11:bd:d6:bb:f6:79: c6:66:14:bd:bd:d3:da:5b:be:32:68:da:8a:53:f5:a2:14:af: 66:26:d0:79:56:88:ef:2d:c5:ea:63:cd:19:b0:d0:a3:4a:d5: 84:fc:67:4b:94:fc:f9:53:a2:5c:99:9b:fe:dd:16:d4:97:61: 23:e4:3e:b3:7d:ff:f3:4e:8b:81:eb:41:7d:75:86:31:bb:f9: 87:4f:76:1f:db:f9:9c:d0:bc:c7:2b:80:1e:d7:04:55:1a:1a: bd:d4:08:a9:00:e9:51:7f:b7:34:90:88:fc:e1:ee:89:d3:65: 08:57:11:ef -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUB61sjGyLB7E1fIl9gvbQ1gGfg6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNTEwMjIxMTU1MDFaFw0yNjEwMjExMjAwMDFaMDMxMTAvBgNV BAMTKEJGRUFFMjkwMUREREJENTc3MzUwODQxODMyRjEwQ0FFQTE4MzBBMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDoD+s76MsPlxcAGm7xuC1CoMJ 80NW9EYtgbt/Wz7yXvsD7LVypH7WN0s13PVFU+loPrO7PzQiHSdJTQrBc6JzA/gy LNLMvTM8ZbTDQcqiS+7TffXYS7oKhRuGsuyvivIvk0aHVsoNJVNJBvZfwjLNeU9+ o7GlD5b5FAo73aws2nu5CYeSD3QEutw5CMDL/4JHPW1o4wjOQVpgWX2Cvd9X+gSu JFgb9+lScZPU2SwhBooobAygLsAtx4733I5cA3X1saXEXsNAaOdLLMDaSVVdNCdE o6/5WBlt+pr7UyMcead+va+Nk0EgivDq2NFuKc2t/tM78+tYjGue7GNy2ZwHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUv+rikB3dvVdzUIQYMvEMrqGDCg8wHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMxMzAzMzJlMzIzODJlMzEzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHA4wDQYJKoZIhvcN AQELBQADggEBAFUAkfnMXXUUhZ45I1DeO6UAen4csokwJ12ZISsHcxZm1iZTJdaI sylQsmdKKE4iK38MTrCTn77WMzkvF4fng9eNcDSH5+FPJf0mkqFhqWE/qIHzgCd/ B863RH6q26Na79mTpumhv72jnKeW5AtNCI6hxgwGo6LKxtfEvEo1X8FIyK6xJW4L k3A4XxG91rv2ecZmFL2909pbvjJo2opT9aIUr2Ym0HlWiO8txepjzRmw0KNK1YT8 Z0uU/PlTolyZm/7dFtSXYSPkPrN9//NOi4HrQX11hjG7+YdPdh/b+ZzQvMcrgB7X BFUaGr3UCKkA6VF/tzSQiPzh7onTZQhXEe8= -----END CERTIFICATE-----Generated at Tue Nov 4 23:38:52 2025 by rpki-client