$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa File: 3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: XZBWXgwi6/bY0uActUG5TDU+WKOBs9TQUHXitVU+Zwk= Subject key identifier: 73:54:13:F5:FC:9C:30:79:B3:5B:A3:E5:6D:4B:3B:70:C8:E6:BE:B4 Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Certificate serial: 5194A85C0E07BE865A7CC4B77EA420995E7F6FE4 Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa Signing time: Wed 22 Oct 2025 04:26:13 +0000 ROA not before: Wed 22 Oct 2025 04:21:13 +0000 ROA not after: Wed 21 Oct 2026 04:26:13 +0000 asID: 138077 IP address blocks: 117.103.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 17:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:94:a8:5c:0e:07:be:86:5a:7c:c4:b7:7e:a4:20:99:5e:7f:6f:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Validity Not Before: Oct 22 04:21:13 2025 GMT Not After : Oct 21 04:26:13 2026 GMT Subject: CN=735413F5FC9C3079B35BA3E56D4B3B70C8E6BEB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:af:ba:37:4f:f6:f7:8a:b2:84:1a:b3:c4:af: ca:8b:13:99:61:46:a0:11:12:37:92:f4:84:2c:c9: df:6a:55:53:09:68:79:21:17:c9:8e:cf:e0:03:13: 7d:7b:4e:7f:72:71:19:2b:cf:e8:e0:c2:11:9f:18: ef:28:6f:81:12:9d:78:83:d8:47:6e:a4:8f:11:d4: 18:e8:9f:27:f6:b5:ae:9c:04:4a:66:d3:6e:ad:c7: 2b:e9:93:b0:01:b7:8b:da:cf:de:27:9a:ca:b9:b9: aa:82:fb:b8:e8:c5:04:66:2d:bb:52:b0:c4:90:5c: ee:dc:32:9f:99:3c:f4:ae:ff:87:20:52:fe:45:ff: 96:0d:8f:21:8e:b7:95:71:c7:da:a0:5e:b3:bd:0f: 7e:45:81:8c:af:4e:2b:cd:8f:8a:ad:e6:37:53:85: f4:4c:27:7f:69:a3:02:49:29:3f:5c:f7:55:51:21: b2:40:38:da:db:84:30:01:cf:2c:73:52:14:ba:61: 36:fe:04:d2:3a:67:52:71:1f:45:1c:df:ff:5d:de: d6:33:f0:52:9e:83:61:dc:ee:a1:2d:1b:dc:e2:99: 5f:a2:bc:06:a2:b8:fb:aa:09:dd:ab:62:47:be:c0: ef:70:54:f1:18:97:c4:8f:4d:c7:2a:6a:24:16:3a: a2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:54:13:F5:FC:9C:30:79:B3:5B:A3:E5:6D:4B:3B:70:C8:E6:BE:B4 X509v3 Authority Key Identifier: keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.116.0/24 Signature Algorithm: sha256WithRSAEncryption 95:76:0b:20:ec:f1:c8:5e:49:e6:91:e2:7e:e5:8b:1d:f9:5e: a8:4d:b8:0c:fd:3a:c9:f0:3f:34:32:71:6c:b7:ae:7f:06:50: 7f:82:12:21:ec:ad:37:54:b6:db:9e:b9:ab:f4:83:f4:34:af: 1e:de:34:a7:a2:c4:c6:85:99:d4:07:99:19:9d:81:0b:08:cf: fd:84:64:73:91:c7:27:01:8e:a0:fa:c4:31:ae:7a:15:b4:aa: ef:a8:d4:f4:b2:2a:bd:94:bd:54:f9:5d:26:6c:d1:31:fd:69: 64:d9:b0:d4:e1:38:81:55:c7:00:bb:98:fd:db:7b:97:ba:6b: 18:0e:1d:7e:8d:de:e6:03:8f:34:eb:1e:60:4f:85:fa:77:4c: 2f:a1:3f:31:99:33:4d:84:f7:ce:3f:ca:d7:2d:68:0e:bb:05: 6c:30:0b:13:6a:be:c2:05:f8:f3:25:db:69:60:31:b8:7f:f1: cd:d8:0f:de:b6:d2:49:f5:5e:32:63:bb:6a:7d:6d:03:0d:ec: 8d:f9:72:e7:89:3d:4e:a8:d6:34:ff:89:de:6f:04:bd:5a:9f: 4c:75:1b:60:66:9c:ea:fc:0c:0d:3a:62:f8:f5:be:ad:e5:2a: 93:90:c9:49:5f:a6:01:73:94:34:91:27:9e:94:44:06:54:f8: f6:ec:07:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUZSoXA4HvoZafMS3fqQgmV5/b+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3 RTkzNzZFNDAeFw0yNTEwMjIwNDIxMTNaFw0yNjEwMjEwNDI2MTNaMDMxMTAvBgNV BAMTKDczNTQxM0Y1RkM5QzMwNzlCMzVCQTNFNTZENEIzQjcwQzhFNkJFQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDur7o3T/b3irKEGrPEr8qLE5lh RqAREjeS9IQsyd9qVVMJaHkhF8mOz+ADE317Tn9ycRkrz+jgwhGfGO8ob4ESnXiD 2EdupI8R1Bjonyf2ta6cBEpm026txyvpk7ABt4vaz94nmsq5uaqC+7joxQRmLbtS sMSQXO7cMp+ZPPSu/4cgUv5F/5YNjyGOt5Vxx9qgXrO9D35FgYyvTivNj4qt5jdT hfRMJ39powJJKT9c91VRIbJAONrbhDABzyxzUhS6YTb+BNI6Z1JxH0Uc3/9d3tYz 8FKeg2Hc7qEtG9zimV+ivAaiuPuqCd2rYke+wO9wVPEYl8SPTccqaiQWOqK/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc1QT9fycMHmzW6PlbUs7cMjmvrQwHwYDVR0j BBgwFoAUuHfNHFQsPeLLuO8VHxebhX6TduQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjZkMTg1ZS1kNGY0LTQ4MjAtYjRiNi03OThjMzA3YWQ3ZTUvMC9CODc3Q0QxQzU0 MkMzREUyQ0JCOEVGMTUxRjE3OUI4NTdFOTM3NkU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3RTkz NzZFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNmQxODVlLWQ0ZjQtNDgyMC1i NGI2LTc5OGMzMDdhZDdlNS8wLzMxMzEzNzJlMzEzMDMzMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB1Z3QwDQYJ KoZIhvcNAQELBQADggEBAJV2CyDs8cheSeaR4n7lix35XqhNuAz9OsnwPzQycWy3 rn8GUH+CEiHsrTdUttueuav0g/Q0rx7eNKeixMaFmdQHmRmdgQsIz/2EZHORxycB jqD6xDGuehW0qu+o1PSyKr2UvVT5XSZs0TH9aWTZsNThOIFVxwC7mP3be5e6axgO HX6N3uYDjzTrHmBPhfp3TC+hPzGZM02E984/ytctaA67BWwwCxNqvsIF+PMl22lg Mbh/8c3YD9620kn1XjJju2p9bQMN7I35cueJPU6o1jT/id5vBL1an0x1G2BmnOr8 DA06Yvj1vq3lKpOQyUlfpgFzlDSRJ56URAZU+PbsB5Q= -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:28 2025 by rpki-client