$ rpki-client -vvf repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa File: 3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa (raw, json) Hash identifier: oAysGbdydhifr7l/UknID+HyQ/T/iVxBHJ4DGeZc8gQ= Subject key identifier: 4B:95:CB:CD:0C:7E:75:AA:79:73:29:B6:FA:93:B8:5C:CC:02:2D:D3 Certificate issuer: /CN=473225269441779F80E443B1EA516CC99E4ED4DA Certificate serial: 46DEB6C8414BFB4EB58C83FEDD909938530DA859 Authority key identifier: 47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa Signing time: Fri 25 Apr 2025 17:00:02 +0000 ROA not before: Fri 25 Apr 2025 16:55:02 +0000 ROA not after: Fri 24 Apr 2026 17:00:02 +0000 asID: 141909 IP address blocks: 103.121.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 19:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:de:b6:c8:41:4b:fb:4e:b5:8c:83:fe:dd:90:99:38:53:0d:a8:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473225269441779F80E443B1EA516CC99E4ED4DA Validity Not Before: Apr 25 16:55:02 2025 GMT Not After : Apr 24 17:00:02 2026 GMT Subject: CN=4B95CBCD0C7E75AA797329B6FA93B85CCC022DD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d9:6a:81:3e:5e:45:86:46:1d:a6:c4:fc:84: 77:d9:0a:65:e7:bc:46:8e:7d:ee:76:63:15:23:64: 09:0f:a3:88:4b:c3:82:83:28:7a:3e:5a:ba:aa:45: a9:05:30:ef:6b:5f:d4:19:8f:57:7d:df:48:d8:6f: 07:e0:39:a5:53:af:90:dd:11:0f:97:da:44:01:4a: fe:dc:03:0d:59:28:a3:46:c7:76:9e:3e:1d:e3:63: 4b:f0:37:8c:38:02:a6:5f:7e:33:54:75:ab:18:a9: 8a:2e:d1:db:15:45:50:7f:17:2b:e9:b2:35:31:5b: fd:42:86:09:7f:84:ac:7a:51:71:17:82:e5:69:0b: b6:f8:34:00:f5:ef:1b:d0:c5:ed:10:dd:73:e1:53: 2f:f6:6f:70:50:ea:d0:8c:14:8e:bc:25:c3:a2:91: 00:1a:b4:43:86:90:e6:aa:84:f0:32:7c:6f:0b:56: 6b:e0:1d:86:f0:65:ef:e5:4e:41:88:f1:3e:63:6d: a8:ec:a1:36:a6:0c:79:e6:7f:9b:33:ff:51:b5:88: b6:cd:51:5b:8f:6f:41:fa:16:8f:c6:37:2e:3c:6d: b2:32:0b:2f:e7:c5:8b:f5:ce:92:ef:c3:a2:32:e1: 07:49:02:1b:3f:e1:e7:59:28:81:a8:8a:2e:09:f9: 64:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:95:CB:CD:0C:7E:75:AA:79:73:29:B6:FA:93:B8:5C:CC:02:2D:D3 X509v3 Authority Key Identifier: keyid:47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138362e302f32332d3233203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.186.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:d3:46:1d:33:40:00:8b:00:b6:c8:56:7e:f3:0e:ee:60:68: af:a2:71:97:14:39:fc:82:a6:8d:a4:3f:45:f1:b0:dc:79:81: a3:19:9d:7c:55:85:2c:d5:8d:2c:88:c3:cb:d7:94:a4:51:62: 0c:70:2d:7d:44:dc:b2:e7:62:3f:a4:a2:bd:bb:2a:10:0b:0f: 17:91:86:ad:e5:63:94:9e:0d:cc:7f:b5:9a:b1:69:dd:82:56: 5b:ed:15:bd:c5:e6:d5:81:14:6a:de:31:30:85:4b:03:3e:7b: 05:ea:c2:1e:0f:fe:2c:40:b8:30:8d:69:ee:71:68:06:90:08: f7:2e:c3:1f:b9:d9:c4:dd:43:9d:51:68:7a:50:67:b5:94:ce: 90:20:a5:11:ad:1b:95:63:0f:e4:95:c3:e0:58:92:cd:f5:b5: e8:c7:a7:23:83:34:b4:6e:b3:5f:83:ee:9f:09:6a:36:f9:b7: 9d:00:02:60:63:6f:24:fc:ef:e7:0b:da:d8:2d:39:2c:7f:b0: b7:93:f2:77:53:e6:f6:fb:77:db:d2:f4:fe:8e:63:7d:19:02: fb:68:88:33:23:19:47:b7:15:5d:a3:2f:1b:ca:22:23:20:56: e9:59:94:c0:cd:e1:cc:07:c9:95:9c:aa:05:a3:2e:b3:c8:78: 01:01:31:8b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURt62yEFL+061jIP+3ZCZOFMNqFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczMjI1MjY5NDQxNzc5RjgwRTQ0M0IxRUE1MTZDQzk5 RTRFRDREQTAeFw0yNTA0MjUxNjU1MDJaFw0yNjA0MjQxNzAwMDJaMDMxMTAvBgNV BAMTKDRCOTVDQkNEMEM3RTc1QUE3OTczMjlCNkZBOTNCODVDQ0MwMjJERDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj2WqBPl5FhkYdpsT8hHfZCmXn vEaOfe52YxUjZAkPo4hLw4KDKHo+WrqqRakFMO9rX9QZj1d930jYbwfgOaVTr5Dd EQ+X2kQBSv7cAw1ZKKNGx3aePh3jY0vwN4w4AqZffjNUdasYqYou0dsVRVB/Fyvp sjUxW/1Chgl/hKx6UXEXguVpC7b4NAD17xvQxe0Q3XPhUy/2b3BQ6tCMFI68JcOi kQAatEOGkOaqhPAyfG8LVmvgHYbwZe/lTkGI8T5jbajsoTamDHnmf5sz/1G1iLbN UVuPb0H6Fo/GNy48bbIyCy/nxYv1zpLvw6Iy4QdJAhs/4edZKIGoii4J+WQlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUS5XLzQx+dap5cym2+pO4XMwCLdMwHwYDVR0j BBgwFoAURzIlJpRBd5+A5EOx6lFsyZ5O1NowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDYyMGNmYy1iNDZjLTQ1N2MtOWZkZS0yOTc3MTBjNTQ2YTkvMC80NzMyMjUyNjk0 NDE3NzlGODBFNDQzQjFFQTUxNkNDOTlFNEVENERBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczMjI1MjY5NDQxNzc5RjgwRTQ0M0IxRUE1MTZDQzk5RTRF RDREQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwNjIwY2ZjLWI0NmMtNDU3Yy05 ZmRlLTI5NzcxMGM1NDZhOS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnebowDQYJ KoZIhvcNAQELBQADggEBADzTRh0zQACLALbIVn7zDu5gaK+icZcUOfyCpo2kP0Xx sNx5gaMZnXxVhSzVjSyIw8vXlKRRYgxwLX1E3LLnYj+kor27KhALDxeRhq3lY5Se Dcx/tZqxad2CVlvtFb3F5tWBFGreMTCFSwM+ewXqwh4P/ixAuDCNae5xaAaQCPcu wx+52cTdQ51RaHpQZ7WUzpAgpRGtG5VjD+SVw+BYks31tejHpyODNLRus1+D7p8J ajb5t50AAmBjbyT87+cL2tgtOSx/sLeT8ndT5vb7d9vS9P6OY30ZAvtoiDMjGUe3 FV2jLxvKIiMgVulZlMDN4cwHyZWcqgWjLrPIeAEBMYs= -----END CERTIFICATE-----Generated at Wed Nov 5 12:12:20 2025 by rpki-client