$ rpki-client -vvf repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32342d3234203d3e20313336383536.roa File: 3130332e3130322e3131322e302f32342d3234203d3e20313336383536.roa (raw, json) Hash identifier: m2IdeGJ3OKb2fcuJa67Ilt4MBVhM4mrbLE394lS8fh4= Subject key identifier: D8:54:A9:4D:98:62:93:44:31:08:59:6E:97:FA:B5:9D:6D:9B:E3:D5 Certificate issuer: /CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Certificate serial: 0620FB43D6B687D39A8747CD6D003E41A9B43F4C Authority key identifier: A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32342d3234203d3e20313336383536.roa Signing time: Sat 14 Jun 2025 13:02:23 +0000 ROA not before: Sat 14 Jun 2025 12:57:23 +0000 ROA not after: Sat 13 Jun 2026 13:02:23 +0000 asID: 136856 IP address blocks: 103.102.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:20:fb:43:d6:b6:87:d3:9a:87:47:cd:6d:00:3e:41:a9:b4:3f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Validity Not Before: Jun 14 12:57:23 2025 GMT Not After : Jun 13 13:02:23 2026 GMT Subject: CN=D854A94D986293443108596E97FAB59D6D9BE3D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:93:70:0e:73:07:49:52:e7:61:16:f8:3f:63: db:81:d9:68:e8:f9:d6:3c:2d:aa:0a:1a:82:cc:43: 7c:1e:00:3c:f1:bd:65:88:1e:b3:f3:78:5c:7c:c8: 4b:49:e8:20:29:aa:37:58:03:f0:56:04:1c:df:d3: 22:1e:cd:d2:0f:52:7d:a6:e7:03:d9:88:87:73:04: aa:51:6e:46:8c:db:27:61:eb:d4:fd:05:ac:1b:9f: e7:05:da:d4:7a:f0:c9:f7:e0:53:1f:5e:6f:20:6e: 90:74:bb:8b:73:c0:4d:3e:02:d7:00:ff:ee:dd:34: de:00:9d:49:a0:b9:37:4c:1e:3c:7a:c4:fb:58:d5: 95:db:97:66:3a:b4:32:f5:45:ed:c7:f8:ac:68:de: 55:ce:cb:fa:5b:1a:cb:c5:24:85:87:22:f9:f4:41: 5d:84:c5:84:c9:bc:4e:8d:46:2e:94:5a:5d:8c:56: b4:21:2d:41:28:62:8c:e2:31:e1:a5:99:74:99:a0: ae:0f:11:b6:04:e1:1f:6d:de:95:d7:e5:41:b6:8b: b0:55:a5:c7:ed:d5:7f:1e:4a:2b:77:64:6f:4f:c4: 7f:69:27:31:3f:0d:e9:71:6e:f7:f3:d4:a5:aa:39: 92:cb:99:a2:6e:d0:c8:cf:37:53:99:46:0f:e2:73: 79:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:54:A9:4D:98:62:93:44:31:08:59:6E:97:FA:B5:9D:6D:9B:E3:D5 X509v3 Authority Key Identifier: keyid:A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32342d3234203d3e20313336383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.112.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a7:7e:70:34:76:e5:5c:97:f4:0a:5a:0a:59:3e:f0:90:83: 87:7b:d0:e1:59:10:cb:75:63:2a:47:cd:81:d7:ca:54:6e:2e: b1:07:e9:1b:9e:c2:6c:6c:5e:b4:3e:85:dd:32:d2:04:e5:e8: b2:e7:1f:61:05:af:7d:11:c8:58:c6:3e:32:75:6a:c9:88:ec: 7d:c8:5e:06:31:07:e8:a2:0a:99:a3:4f:5e:fa:1d:23:7e:d8: 54:3b:5f:75:9e:0d:0d:1b:96:eb:41:9f:a8:aa:56:51:f7:33: 45:b5:61:52:38:ab:ce:8d:0a:5b:76:06:1b:db:d7:4c:6e:59: fe:99:22:95:30:2b:fe:28:f0:d0:9c:4c:ac:f1:40:05:a4:24: 76:72:9b:58:ee:b0:c0:b5:77:24:25:20:53:ef:80:f7:2f:e5: 40:00:eb:b2:b9:84:93:3b:68:2f:ad:85:c5:f5:74:77:48:09: 52:4e:b0:4a:74:a4:8f:e3:7e:ed:26:f7:74:e8:ee:b1:a8:21: 0a:17:f0:71:47:f0:7c:2a:14:90:13:4e:62:55:02:0b:a1:42: ab:87:a4:14:25:17:9a:87:cb:95:1e:a1:a9:78:14:36:87:98: 16:a1:e6:fb:f6:0a:49:f1:05:ec:32:e7:dc:d9:69:b7:18:ba: 5d:9d:66:2d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBiD7Q9a2h9Oah0fNbQA+Qam0P0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2Njgw MjdEMUI2MzAeFw0yNTA2MTQxMjU3MjNaFw0yNjA2MTMxMzAyMjNaMDMxMTAvBgNV BAMTKEQ4NTRBOTREOTg2MjkzNDQzMTA4NTk2RTk3RkFCNTlENkQ5QkUzRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvk3AOcwdJUudhFvg/Y9uB2Wjo +dY8LaoKGoLMQ3weADzxvWWIHrPzeFx8yEtJ6CApqjdYA/BWBBzf0yIezdIPUn2m 5wPZiIdzBKpRbkaM2ydh69T9Bawbn+cF2tR68Mn34FMfXm8gbpB0u4tzwE0+AtcA /+7dNN4AnUmguTdMHjx6xPtY1ZXbl2Y6tDL1Re3H+Kxo3lXOy/pbGsvFJIWHIvn0 QV2ExYTJvE6NRi6UWl2MVrQhLUEoYoziMeGlmXSZoK4PEbYE4R9t3pXX5UG2i7BV pcft1X8eSit3ZG9PxH9pJzE/Delxbvfz1KWqOZLLmaJu0MjPN1OZRg/ic3knAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2FSpTZhik0QxCFlul/q1nW2b49UwHwYDVR0j BBgwFoAUoA28eMsvzW2pTcHgffpmaAJ9G2MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWM3YTQwNC1lYjNmLTRjZjEtOTlmOS04Mjc5NjE2NjFmMzEvMC9BMDBEQkM3OENC MkZDRDZEQTk0REMxRTA3REZBNjY2ODAyN0QxQjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2NjgwMjdE MUI2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YzdhNDA0LWViM2YtNGNmMS05 OWY5LTgyNzk2MTY2MWYzMS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZnAwDQYJ KoZIhvcNAQELBQADggEBAAOnfnA0duVcl/QKWgpZPvCQg4d70OFZEMt1YypHzYHX ylRuLrEH6RuewmxsXrQ+hd0y0gTl6LLnH2EFr30RyFjGPjJ1asmI7H3IXgYxB+ii CpmjT176HSN+2FQ7X3WeDQ0blutBn6iqVlH3M0W1YVI4q86NClt2Bhvb10xuWf6Z IpUwK/4o8NCcTKzxQAWkJHZym1jusMC1dyQlIFPvgPcv5UAA67K5hJM7aC+thcX1 dHdICVJOsEp0pI/jfu0m93To7rGoIQoX8HFH8HwqFJATTmJVAguhQquHpBQlF5qH y5Ueoal4FDaHmBah5vv2CknxBewy59zZabcYul2dZi0= -----END CERTIFICATE-----Generated at Wed Nov 5 09:20:40 2025 by rpki-client