$ rpki-client -vvf repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3234203d3e203538353531.roa File: 3130332e32302e3136362e302f32332d3234203d3e203538353531.roa (raw, json) Hash identifier: CKy2gQtIBacjD8C67dYMJdlND8CS/j+yiiHq3SKDq4Q= Subject key identifier: 8C:AF:2C:ED:DA:E4:10:4E:D3:F1:25:AF:58:8A:55:0D:2C:0E:7B:DC Certificate issuer: /CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Certificate serial: 08821221FFE24B999C7E3265280EB488F785027C Authority key identifier: CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3234203d3e203538353531.roa Signing time: Wed 19 Mar 2025 08:00:00 +0000 ROA not before: Wed 19 Mar 2025 07:55:00 +0000 ROA not after: Wed 18 Mar 2026 08:00:00 +0000 asID: 58551 IP address blocks: 103.20.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:82:12:21:ff:e2:4b:99:9c:7e:32:65:28:0e:b4:88:f7:85:02:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Validity Not Before: Mar 19 07:55:00 2025 GMT Not After : Mar 18 08:00:00 2026 GMT Subject: CN=8CAF2CEDDAE4104ED3F125AF588A550D2C0E7BDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c8:64:cb:a8:f1:9e:db:af:30:8b:d2:4a:c0: 3f:29:cf:c6:41:39:04:ec:e5:25:00:de:a3:c5:ad: 39:29:0e:d4:2b:a8:54:ae:7b:91:9a:11:aa:ef:df: a4:0b:7e:9c:cb:4e:85:98:b2:65:4b:0e:7e:dd:d9: e8:f8:68:37:87:15:e1:27:c2:2a:65:59:b9:87:cf: 62:31:2d:2f:b7:ec:e9:c1:ef:11:20:17:b8:20:91: 96:ac:40:f9:35:36:c7:f4:4c:0a:21:ce:1d:fc:c5: 44:46:03:b2:d1:1e:9b:af:82:74:6c:ba:de:aa:04: 55:c9:e8:94:4e:f1:45:7a:0a:03:ab:66:08:24:fe: 19:5d:f1:ba:c7:7b:d3:01:9e:95:0c:1f:5d:ff:d8: 10:22:22:c9:66:7d:c1:28:63:8f:c5:46:85:41:c7: 1d:19:0c:7b:45:42:0a:04:7a:7f:3a:56:84:1a:d0: 5f:d7:1a:77:30:aa:ad:4e:0f:17:eb:03:2b:4b:09: 5c:ed:5f:f5:b6:52:d7:4a:b8:1c:8e:86:4e:dd:be: 8f:4e:33:29:60:ab:0d:b2:a2:5b:93:ec:9d:fc:e3: d4:83:f1:d7:a3:17:15:9c:62:60:92:8b:ab:23:6f: f0:01:a9:ee:d5:c5:2c:9b:98:ed:b0:e1:1b:ed:c6: 90:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AF:2C:ED:DA:E4:10:4E:D3:F1:25:AF:58:8A:55:0D:2C:0E:7B:DC X509v3 Authority Key Identifier: keyid:CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e32302e3136362e302f32332d3234203d3e203538353531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.166.0/23 Signature Algorithm: sha256WithRSAEncryption 41:01:67:11:6f:94:57:fe:d3:10:a1:7d:73:02:db:4e:5e:64: aa:e6:5c:88:52:f6:be:8c:9e:2c:42:51:4e:74:54:9d:0e:7e: 31:f5:4c:66:09:e0:be:7b:19:4d:09:3a:43:d6:1e:3e:95:2c: 84:c3:13:df:05:51:3b:5d:58:b2:df:45:bd:52:42:2d:0f:75: 44:3b:55:a8:17:c3:97:6d:a9:26:93:b1:c7:ff:fc:8f:16:08: 88:a6:5e:b7:0f:13:90:8e:1b:09:7c:5f:cd:80:6a:05:78:2a: 7a:36:6f:d6:01:b8:d4:97:ee:a2:58:4e:0b:39:4a:64:db:cf: f0:03:31:13:33:a2:9d:76:11:aa:0b:bc:dd:71:83:cc:09:a8: d1:57:c0:85:84:d0:4f:28:09:74:e7:2b:af:b4:d8:f5:ad:87: 24:7d:2f:2a:79:3a:b6:40:b7:23:4a:9f:60:3f:e8:09:0d:7f: cf:a1:c6:93:31:bb:62:5e:09:2d:49:3b:cd:1b:1f:59:7d:ea: 61:c1:5c:dc:f1:77:15:b7:63:eb:72:74:af:68:57:30:9e:d9: 44:64:4c:0f:a8:ad:27:16:ee:46:de:7e:c7:a3:1e:30:14:65: af:6b:5e:0e:1f:8e:da:ad:66:82:76:61:76:a3:d7:75:58:56: b0:75:9f:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCIISIf/iS5mcfjJlKA60iPeFAnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgx QUFEMjQ1MDAeFw0yNTAzMTkwNzU1MDBaFw0yNjAzMTgwODAwMDBaMDMxMTAvBgNV BAMTKDhDQUYyQ0VEREFFNDEwNEVEM0YxMjVBRjU4OEE1NTBEMkMwRTdCREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFyGTLqPGe268wi9JKwD8pz8ZB OQTs5SUA3qPFrTkpDtQrqFSue5GaEarv36QLfpzLToWYsmVLDn7d2ej4aDeHFeEn wiplWbmHz2IxLS+37OnB7xEgF7ggkZasQPk1Nsf0TAohzh38xURGA7LRHpuvgnRs ut6qBFXJ6JRO8UV6CgOrZggk/hld8brHe9MBnpUMH13/2BAiIslmfcEoY4/FRoVB xx0ZDHtFQgoEen86VoQa0F/XGncwqq1ODxfrAytLCVztX/W2UtdKuByOhk7dvo9O Mylgqw2yoluT7J3849SD8dejFxWcYmCSi6sjb/ABqe7VxSybmO2w4RvtxpDzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjK8s7drkEE7T8SWvWIpVDSwOe9wwHwYDVR0j BBgwFoAUzcCF49TXVDmuG7bLaPGA6BqtJFAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDBlMGRlYS01ZjliLTQyNWMtODJjZS0zMGE4NjUwMDdjMzUvMC9DREMwODVFM0Q0 RDc1NDM5QUUxQkI2Q0I2OEYxODBFODFBQUQyNDUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgxQUFE MjQ1MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMGUwZGVhLTVmOWItNDI1Yy04 MmNlLTMwYTg2NTAwN2MzNS8wLzMxMzAzMzJlMzIzMDJlMzEzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcUpjANBgkqhkiG 9w0BAQsFAAOCAQEAQQFnEW+UV/7TEKF9cwLbTl5kquZciFL2voyeLEJRTnRUnQ5+ MfVMZgngvnsZTQk6Q9YePpUshMMT3wVRO11Yst9FvVJCLQ91RDtVqBfDl22pJpOx x//8jxYIiKZetw8TkI4bCXxfzYBqBXgqejZv1gG41JfuolhOCzlKZNvP8AMxEzOi nXYRqgu83XGDzAmo0VfAhYTQTygJdOcrr7TY9a2HJH0vKnk6tkC3I0qfYD/oCQ1/ z6HGkzG7Yl4JLUk7zRsfWX3qYcFc3PF3Fbdj63J0r2hXMJ7ZRGRMD6itJxbuRt5+ x6MeMBRlr2teDh+O2q1mgnZhdqPXdVhWsHWfCg== -----END CERTIFICATE-----Generated at Wed Nov 5 04:16:13 2025 by rpki-client