$ rpki-client -vvf repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa File: 3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa (raw, json) Hash identifier: N0/JO0oaR76f4qC9rQwj7j3uUoZjxf567pjSkSVvNG0= Subject key identifier: 08:89:7D:C7:A4:5E:92:52:78:19:BC:29:90:C3:02:74:B0:FC:1B:3C Certificate issuer: /CN=D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA Certificate serial: 4407D84F871D92A08D8A7D05722CF35EA74FE8AB Authority key identifier: D1:75:BD:C5:A6:41:4C:EB:AB:47:2D:F9:15:9C:BD:32:BC:CF:91:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa Signing time: Mon 03 Nov 2025 06:01:23 +0000 ROA not before: Mon 03 Nov 2025 05:56:23 +0000 ROA not after: Mon 02 Nov 2026 06:01:23 +0000 asID: 150503 IP address blocks: 103.126.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.crl rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 14:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:07:d8:4f:87:1d:92:a0:8d:8a:7d:05:72:2c:f3:5e:a7:4f:e8:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA Validity Not Before: Nov 3 05:56:23 2025 GMT Not After : Nov 2 06:01:23 2026 GMT Subject: CN=08897DC7A45E92527819BC2990C30274B0FC1B3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:61:3a:14:73:36:c3:9e:ed:3e:2b:6c:1f:c6: 01:52:76:06:d5:fd:ff:76:fe:7e:0a:eb:e3:09:9d: 97:08:13:8d:16:7a:a6:90:e7:fa:87:47:d8:fc:76: 77:2a:fe:4f:bc:cd:07:46:78:73:67:bc:74:3b:fa: 87:4e:07:8c:96:60:b8:2b:10:0c:3a:5a:17:e5:4b: fb:5d:a4:37:67:9d:06:79:7b:16:a5:f8:50:87:a9: 9b:10:e6:e2:5b:35:95:ad:ca:3b:99:42:11:82:07: 89:f5:91:80:76:1a:45:04:55:3d:ae:b2:a5:7a:f5: 50:3d:49:4d:67:68:a3:71:77:91:b6:e4:79:19:43: a6:f7:3e:25:f6:fe:d9:ad:d0:30:e2:06:be:01:49: e8:5a:f0:f1:3a:42:7d:fb:fa:7e:04:d3:74:05:c9: d3:3b:44:33:2b:b9:23:69:40:3c:65:38:7a:df:fa: 23:a9:18:ca:92:c1:5b:0b:30:0e:6e:cb:15:f9:ca: d4:03:21:a9:68:ef:87:d3:66:62:76:b9:8e:ef:4e: f7:62:fc:cc:69:9c:a3:04:b6:06:25:62:ec:ee:d8: c7:9c:1a:10:4d:b1:a1:c9:14:bf:66:2c:9d:7b:8a: 7c:04:6d:f0:05:a1:d2:84:73:d6:e4:8f:b7:60:21: c8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:89:7D:C7:A4:5E:92:52:78:19:BC:29:90:C3:02:74:B0:FC:1B:3C X509v3 Authority Key Identifier: keyid:D1:75:BD:C5:A6:41:4C:EB:AB:47:2D:F9:15:9C:BD:32:BC:CF:91:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.238.0/24 Signature Algorithm: sha256WithRSAEncryption d0:85:37:34:40:ca:a9:eb:3e:52:f1:23:c7:21:b4:2a:17:48: b4:08:f2:86:99:01:98:2f:03:87:35:61:69:f5:4b:35:fe:1a: f3:fd:18:e6:29:71:52:4d:f0:f9:b5:a8:12:9a:73:0d:43:fa: 12:72:7d:5f:57:59:0d:7a:4d:1a:c2:ee:53:82:2a:31:c7:53: 0e:fe:ca:b1:94:b2:47:14:99:ac:df:07:80:80:78:99:2e:3c: 0e:8e:39:e1:d6:e9:99:7b:56:09:6c:ac:f0:a4:00:b7:66:8a: f2:48:f5:09:05:05:06:52:4f:42:47:54:32:f5:e7:1d:47:10: c4:b9:a5:99:f9:e6:74:d8:9d:81:88:f6:2c:0c:55:cc:2f:a6: ad:6a:6a:d5:4c:5b:1c:80:91:e2:96:8a:ac:42:fb:16:53:4b: 29:52:ee:da:76:2f:1e:0f:dd:ed:0e:5b:da:aa:3b:f6:4a:c6: a6:ee:c6:e5:b6:59:41:11:25:1c:a0:8d:8b:81:52:3e:6b:7a: 74:a6:41:34:37:7d:08:15:f3:2b:f0:ef:68:e5:97:a4:a9:5f: 74:59:c9:5e:16:d2:f3:72:59:dd:f4:53:bd:9b:ab:9a:c4:7e: 6a:f4:9e:a4:1e:3d:fc:fa:5f:b4:3c:e9:b7:36:61:cb:2d:71: 34:06:6c:b3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURAfYT4cdkqCNin0FcizzXqdP6KswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE3NUJEQzVBNjQxNENFQkFCNDcyREY5MTU5Q0JEMzJC Q0NGOTFFQTAeFw0yNTExMDMwNTU2MjNaFw0yNjExMDIwNjAxMjNaMDMxMTAvBgNV BAMTKDA4ODk3REM3QTQ1RTkyNTI3ODE5QkMyOTkwQzMwMjc0QjBGQzFCM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOYToUczbDnu0+K2wfxgFSdgbV /f92/n4K6+MJnZcIE40WeqaQ5/qHR9j8dncq/k+8zQdGeHNnvHQ7+odOB4yWYLgr EAw6WhflS/tdpDdnnQZ5exal+FCHqZsQ5uJbNZWtyjuZQhGCB4n1kYB2GkUEVT2u sqV69VA9SU1naKNxd5G25HkZQ6b3PiX2/tmt0DDiBr4BSeha8PE6Qn37+n4E03QF ydM7RDMruSNpQDxlOHrf+iOpGMqSwVsLMA5uyxX5ytQDIalo74fTZmJ2uY7vTvdi /MxpnKMEtgYlYuzu2MecGhBNsaHJFL9mLJ17inwEbfAFodKEc9bkj7dgIcitAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCIl9x6ReklJ4GbwpkMMCdLD8GzwwHwYDVR0j BBgwFoAU0XW9xaZBTOurRy35FZy9MrzPkeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjJkNGQ3NC02Mjk1LTQ0OTYtODIzYS0xZThhM2Q1YmJiNmMvMC9EMTc1QkRDNUE2 NDE0Q0VCQUI0NzJERjkxNTlDQkQzMkJDQ0Y5MUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDE3NUJEQzVBNjQxNENFQkFCNDcyREY5MTU5Q0JEMzJCQ0NG OTFFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2MmQ0ZDc0LTYyOTUtNDQ5Ni04 MjNhLTFlOGEzZDViYmI2Yy8wLzMxMzAzMzJlMzEzMjM2MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfu4wDQYJ KoZIhvcNAQELBQADggEBANCFNzRAyqnrPlLxI8chtCoXSLQI8oaZAZgvA4c1YWn1 SzX+GvP9GOYpcVJN8Pm1qBKacw1D+hJyfV9XWQ16TRrC7lOCKjHHUw7+yrGUskcU mazfB4CAeJkuPA6OOeHW6Zl7VglsrPCkALdmivJI9QkFBQZST0JHVDL15x1HEMS5 pZn55nTYnYGI9iwMVcwvpq1qatVMWxyAkeKWiqxC+xZTSylS7tp2Lx4P3e0OW9qq O/ZKxqbuxuW2WUERJRygjYuBUj5renSmQTQ3fQgV8yvw72jll6SpX3RZyV4W0vNy Wd30U72bq5rEfmr0nqQePfz6X7Q86bc2YcstcTQGbLM= -----END CERTIFICATE-----Generated at Tue Nov 4 12:38:17 2025 by rpki-client