$ rpki-client -vvf repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/3130332e3137392e38362e302f32332d3234203d3e20313430333839.roa File: 3130332e3137392e38362e302f32332d3234203d3e20313430333839.roa (raw, json) Hash identifier: E6T8Gt5EtL567pGgeSiX6DPJMeUcOvm0iW+qF8Vx1Vo= Subject key identifier: AF:A9:3D:8D:FA:3C:F6:88:F5:84:DD:6F:79:11:1B:65:0C:38:1E:8B Certificate issuer: /CN=8B7E0099F26BEEE90826C9B0E424575BDE128403 Certificate serial: 5C8AB1542B9393672A9453290B2329B8965B5E3B Authority key identifier: 8B:7E:00:99:F2:6B:EE:E9:08:26:C9:B0:E4:24:57:5B:DE:12:84:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B7E0099F26BEEE90826C9B0E424575BDE128403.cer Subject info access: rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/3130332e3137392e38362e302f32332d3234203d3e20313430333839.roa Signing time: Thu 16 Oct 2025 12:00:02 +0000 ROA not before: Thu 16 Oct 2025 11:55:02 +0000 ROA not after: Thu 15 Oct 2026 12:00:02 +0000 asID: 140389 IP address blocks: 103.179.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.crl rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B7E0099F26BEEE90826C9B0E424575BDE128403.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:8a:b1:54:2b:93:93:67:2a:94:53:29:0b:23:29:b8:96:5b:5e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B7E0099F26BEEE90826C9B0E424575BDE128403 Validity Not Before: Oct 16 11:55:02 2025 GMT Not After : Oct 15 12:00:02 2026 GMT Subject: CN=AFA93D8DFA3CF688F584DD6F79111B650C381E8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:cc:47:c7:b9:4d:19:68:5f:09:b0:d9:66: 8d:fd:8e:88:29:ca:d6:76:39:c8:24:16:6c:4f:10: 94:c2:36:04:ce:61:1d:ee:2b:59:f8:f6:89:33:7d: 27:25:c7:75:0a:88:0f:4a:67:a7:db:08:f2:89:8a: 5d:62:7c:c4:35:6a:03:31:e2:fc:03:9d:9c:5b:b1: 50:c8:58:2b:38:6d:ca:da:b6:c6:62:95:5e:6b:9b: 7b:9a:5e:70:9a:16:19:29:cb:ce:21:05:99:58:e7: 04:29:b8:77:1c:63:df:37:2d:c3:3e:86:6f:f7:a1: 83:09:e6:1b:2c:28:2d:9c:1d:20:87:75:a0:0b:79: 17:9b:93:67:37:f9:d7:ee:3b:3b:13:e6:d3:af:d8: 36:d3:13:12:4b:c6:af:65:e5:84:a6:5e:1b:46:25: de:f1:5c:22:fd:a4:f0:8d:10:47:81:0a:e5:19:76: d0:4f:62:0a:af:ca:10:f6:de:9a:f5:52:f8:b6:bb: e0:f2:3f:3e:4a:8c:a4:6c:d3:a6:08:11:83:df:d4: 17:ab:d9:d1:ab:07:9a:45:54:54:95:ff:ca:cd:63: 38:e1:e0:5f:b4:35:9c:77:d2:93:39:b2:0e:9d:27: a3:da:e2:ee:3a:1c:d4:dc:5f:48:b3:7c:b1:f1:26: 8e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A9:3D:8D:FA:3C:F6:88:F5:84:DD:6F:79:11:1B:65:0C:38:1E:8B X509v3 Authority Key Identifier: keyid:8B:7E:00:99:F2:6B:EE:E9:08:26:C9:B0:E4:24:57:5B:DE:12:84:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B7E0099F26BEEE90826C9B0E424575BDE128403.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/3130332e3137392e38362e302f32332d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.86.0/23 Signature Algorithm: sha256WithRSAEncryption 94:a1:da:54:c5:ca:97:b3:d8:d8:73:fe:3b:c3:60:75:01:7b: 13:e8:c6:43:2c:11:e0:11:10:45:6b:52:dc:c9:05:5f:05:c9: 97:b3:ba:2c:a6:f0:9c:5c:a3:52:51:e4:0f:a6:95:ae:eb:31: 64:2f:a0:6b:00:ef:22:6d:73:d2:83:ec:8c:00:ec:49:ad:f0: 43:88:1f:33:82:c8:4d:fb:83:3e:dc:54:c4:f7:f8:0e:b6:35: 6c:8f:86:a8:a8:47:93:ea:64:c8:91:cd:15:40:de:3c:97:2a: 03:87:57:b0:45:f3:10:07:02:93:3b:78:8c:45:d3:40:39:e3: 4c:e9:a4:4f:52:a7:b0:a5:a7:06:12:2a:e3:6f:7c:33:38:53: 22:f6:63:c8:7f:23:b1:9d:79:79:42:98:72:9a:cf:b1:3e:07: 03:5c:1d:48:08:9d:b1:30:c3:48:c2:ee:13:ab:91:76:d9:9c: f5:9d:6c:38:4a:26:66:67:18:b5:52:f1:90:3c:3d:96:c9:6c: 54:15:9a:da:36:1e:68:7a:20:b5:94:f3:14:8c:5c:9a:2e:81: e9:42:09:13:95:dc:19:70:17:b3:a0:44:42:b5:a2:a3:fd:54: 45:b6:bf:d2:e6:15:20:06:ae:12:27:34:e5:19:2d:9f:12:a0: f8:ce:dd:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXIqxVCuTk2cqlFMpCyMpuJZbXjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEI3RTAwOTlGMjZCRUVFOTA4MjZDOUIwRTQyNDU3NUJE RTEyODQwMzAeFw0yNTEwMTYxMTU1MDJaFw0yNjEwMTUxMjAwMDJaMDMxMTAvBgNV BAMTKEFGQTkzRDhERkEzQ0Y2ODhGNTg0REQ2Rjc5MTExQjY1MEMzODFFOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy8cxHx7lNGWhfCbDZZo39jogp ytZ2OcgkFmxPEJTCNgTOYR3uK1n49okzfSclx3UKiA9KZ6fbCPKJil1ifMQ1agMx 4vwDnZxbsVDIWCs4bcratsZilV5rm3uaXnCaFhkpy84hBZlY5wQpuHccY983LcM+ hm/3oYMJ5hssKC2cHSCHdaALeRebk2c3+dfuOzsT5tOv2DbTExJLxq9l5YSmXhtG Jd7xXCL9pPCNEEeBCuUZdtBPYgqvyhD23pr1Uvi2u+DyPz5KjKRs06YIEYPf1Ber 2dGrB5pFVFSV/8rNYzjh4F+0NZx30pM5sg6dJ6Pa4u46HNTcX0izfLHxJo5tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUr6k9jfo89oj1hN1veREbZQw4HoswHwYDVR0j BBgwFoAUi34AmfJr7ukIJsmw5CRXW94ShAMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OWE4ODg5Ny1jMzg3LTQ3MzUtYWNkOC0xZDFjNTNjZGUyNjQvMC84QjdFMDA5OUYy NkJFRUU5MDgyNkM5QjBFNDI0NTc1QkRFMTI4NDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEI3RTAwOTlGMjZCRUVFOTA4MjZDOUIwRTQyNDU3NUJERTEy ODQwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5YTg4ODk3LWMzODctNDczNS1h Y2Q4LTFkMWM1M2NkZTI2NC8wLzMxMzAzMzJlMzEzNzM5MmUzODM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzMzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7NWMA0GCSqG SIb3DQEBCwUAA4IBAQCUodpUxcqXs9jYc/47w2B1AXsT6MZDLBHgERBFa1LcyQVf BcmXs7ospvCcXKNSUeQPppWu6zFkL6BrAO8ibXPSg+yMAOxJrfBDiB8zgshN+4M+ 3FTE9/gOtjVsj4aoqEeT6mTIkc0VQN48lyoDh1ewRfMQBwKTO3iMRdNAOeNM6aRP UqewpacGEirjb3wzOFMi9mPIfyOxnXl5Qphyms+xPgcDXB1ICJ2xMMNIwu4Tq5F2 2Zz1nWw4SiZmZxi1UvGQPD2WyWxUFZraNh5oeiC1lPMUjFyaLoHpQgkTldwZcBez oERCtaKj/VRFtr/S5hUgBq4SJzTlGS2fEqD4zt1Z -----END CERTIFICATE-----Generated at Mon Oct 20 20:35:03 2025 by rpki-client