$ rpki-client -vvf repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa File: 3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa (raw, json) Hash identifier: 0nIrLmzw2yFdEt0E0nHpohk06VMGMx5xfHHQtXENJ0s= Subject key identifier: 3A:47:D2:DB:5D:45:64:07:ED:83:85:53:08:02:70:B5:C8:20:79:26 Certificate issuer: /CN=54A1848904113F647F5C294B41B7D143112C7137 Certificate serial: 77D958153FF6FE806C52B23EF95FA231EE14AFCB Authority key identifier: 54:A1:84:89:04:11:3F:64:7F:5C:29:4B:41:B7:D1:43:11:2C:71:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54A1848904113F647F5C294B41B7D143112C7137.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa Signing time: Wed 29 Oct 2025 05:00:01 +0000 ROA not before: Wed 29 Oct 2025 04:55:01 +0000 ROA not after: Wed 28 Oct 2026 05:00:01 +0000 asID: 45287 IP address blocks: 103.127.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/54A1848904113F647F5C294B41B7D143112C7137.crl rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/54A1848904113F647F5C294B41B7D143112C7137.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54A1848904113F647F5C294B41B7D143112C7137.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 17:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d9:58:15:3f:f6:fe:80:6c:52:b2:3e:f9:5f:a2:31:ee:14:af:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54A1848904113F647F5C294B41B7D143112C7137 Validity Not Before: Oct 29 04:55:01 2025 GMT Not After : Oct 28 05:00:01 2026 GMT Subject: CN=3A47D2DB5D456407ED838553080270B5C8207926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e4:e6:37:a2:87:72:24:96:37:5d:78:af:14: 4d:75:df:85:61:b4:5f:a5:88:7e:32:8f:ad:5c:a1: de:46:55:be:94:dc:bb:83:11:1d:94:c4:f2:f5:cb: bd:ac:f5:ab:be:6f:a1:62:4b:df:d7:db:4e:56:3a: da:5f:7a:e7:a2:82:ae:4a:fc:36:7c:bd:c2:85:1b: bb:09:9c:ce:24:47:5b:fe:83:a8:20:a7:65:c3:e3: c7:f0:2e:70:0a:71:3f:28:cb:a7:39:3f:da:d7:7c: c2:0f:b9:ca:49:a7:31:65:5f:03:88:9a:8a:c3:83: 31:25:fb:19:96:57:b4:b0:bc:a9:d6:e4:df:3d:b0: 71:f7:8d:20:41:01:cb:0b:75:56:4a:62:0f:84:7b: fb:0a:0a:82:98:3e:e0:08:73:94:76:65:0d:5a:db: 5e:7d:06:7f:e2:58:50:2e:8c:34:ab:fd:71:b5:27: dd:b6:3b:a0:bf:5e:30:37:f0:0f:18:31:a8:84:d9: e3:7a:d1:d0:f1:c0:94:55:64:40:c5:1e:6a:d9:fa: 3e:0a:b9:3b:93:ad:d6:f8:36:83:5f:83:a2:5e:9e: 40:74:44:95:e6:ef:2b:4f:df:f5:a2:a7:67:78:00: 2a:61:13:b5:a4:7c:37:03:11:4c:a7:a1:a4:3f:f7: 93:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:47:D2:DB:5D:45:64:07:ED:83:85:53:08:02:70:B5:C8:20:79:26 X509v3 Authority Key Identifier: keyid:54:A1:84:89:04:11:3F:64:7F:5C:29:4B:41:B7:D1:43:11:2C:71:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/54A1848904113F647F5C294B41B7D143112C7137.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54A1848904113F647F5C294B41B7D143112C7137.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.168.0/23 Signature Algorithm: sha256WithRSAEncryption a1:15:c1:9d:8e:4c:df:c7:78:4f:97:ea:25:f9:9b:1d:5b:1a: 75:0a:94:91:6b:a2:a7:5d:6f:f1:1e:06:70:be:98:61:3d:d2: 3a:72:e4:15:68:1c:8a:33:5c:57:27:7c:3b:89:b9:0c:75:16: bb:c3:07:8d:d5:6a:fe:ba:cc:bb:a7:b7:eb:9e:60:9a:83:58: 96:24:33:da:df:3c:a7:56:8e:39:25:cc:8a:92:28:ce:70:41: d5:0b:05:de:d5:ba:37:4d:8a:7c:0c:c6:ae:e4:2f:2a:05:71: e5:ca:6b:4a:17:ce:04:37:70:ac:ae:c8:1d:08:59:8d:58:c5: 08:11:4a:1d:a5:59:61:e9:a0:d9:f4:81:d3:19:b1:72:47:33: 77:db:81:aa:09:26:59:ac:e8:f0:41:a5:da:ed:55:60:00:df: 0c:68:73:ce:7d:f9:39:e8:76:98:a2:a2:6a:b3:b3:94:2a:21: 52:41:f1:11:d6:08:15:03:c3:15:42:35:c7:21:32:3e:db:0c: ba:ff:11:e4:e3:f0:76:1d:f2:e8:6e:1a:3d:35:25:ba:e4:36: e1:f8:19:36:91:96:27:d5:41:b9:5d:95:53:b5:f5:51:69:f5: 22:dc:4f:17:ad:ea:9f:08:a5:70:cf:5f:c0:96:51:27:59:92: 23:9f:81:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd9lYFT/2/oBsUrI++V+iMe4Ur8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRBMTg0ODkwNDExM0Y2NDdGNUMyOTRCNDFCN0QxNDMx MTJDNzEzNzAeFw0yNTEwMjkwNDU1MDFaFw0yNjEwMjgwNTAwMDFaMDMxMTAvBgNV BAMTKDNBNDdEMkRCNUQ0NTY0MDdFRDgzODU1MzA4MDI3MEI1QzgyMDc5MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp5OY3oodyJJY3XXivFE1134Vh tF+liH4yj61cod5GVb6U3LuDER2UxPL1y72s9au+b6FiS9/X205WOtpfeueigq5K /DZ8vcKFG7sJnM4kR1v+g6ggp2XD48fwLnAKcT8oy6c5P9rXfMIPucpJpzFlXwOI morDgzEl+xmWV7SwvKnW5N89sHH3jSBBAcsLdVZKYg+Ee/sKCoKYPuAIc5R2ZQ1a 2159Bn/iWFAujDSr/XG1J922O6C/XjA38A8YMaiE2eN60dDxwJRVZEDFHmrZ+j4K uTuTrdb4NoNfg6JenkB0RJXm7ytP3/Wip2d4ACphE7WkfDcDEUynoaQ/95MfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOkfS211FZAftg4VTCAJwtcggeSYwHwYDVR0j BBgwFoAUVKGEiQQRP2R/XClLQbfRQxEscTcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZTdjYzk3Ni02OWY2LTRkYjgtYTdhYi04NTZhMmJiOGVhZmUvMC81NEExODQ4OTA0 MTEzRjY0N0Y1QzI5NEI0MUI3RDE0MzExMkM3MTM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTRBMTg0ODkwNDExM0Y2NDdGNUMyOTRCNDFCN0QxNDMxMTJD NzEzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZlN2NjOTc2LTY5ZjYtNGRiOC1h N2FiLTg1NmEyYmI4ZWFmZS8wLzMxMzAzMzJlMzEzMjM3MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM1MzIzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3+oMA0GCSqG SIb3DQEBCwUAA4IBAQChFcGdjkzfx3hPl+ol+ZsdWxp1CpSRa6KnXW/xHgZwvphh PdI6cuQVaByKM1xXJ3w7ibkMdRa7wweN1Wr+usy7p7frnmCag1iWJDPa3zynVo45 JcyKkijOcEHVCwXe1bo3TYp8DMau5C8qBXHlymtKF84EN3CsrsgdCFmNWMUIEUod pVlh6aDZ9IHTGbFyRzN324GqCSZZrOjwQaXa7VVgAN8MaHPOffk56HaYoqJqs7OU KiFSQfER1ggVA8MVQjXHITI+2wy6/xHk4/B2HfLobho9NSW65Dbh+Bk2kZYn1UG5 XZVTtfVRafUi3E8XreqfCKVwz1/AllEnWZIjn4Gg -----END CERTIFICATE-----Generated at Thu Nov 6 00:23:24 2025 by rpki-client