$ rpki-client -vvf repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa File: 3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa (raw, json) Hash identifier: Y71EeD959aIr9ucCZApJALClmCCepz1YWwy1H6B20+w= Subject key identifier: 31:68:C1:77:F4:21:D8:25:0B:64:AA:99:6C:E2:4D:59:60:D0:42:AF Certificate issuer: /CN=E1FE69A34216C24D1870F5CED3A4309234A0F1B2 Certificate serial: 2657DE91D4C53075AA90C55CF048D4444F9C06E2 Authority key identifier: E1:FE:69:A3:42:16:C2:4D:18:70:F5:CE:D3:A4:30:92:34:A0:F1:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa Signing time: Fri 19 Sep 2025 10:00:01 +0000 ROA not before: Fri 19 Sep 2025 09:55:01 +0000 ROA not after: Fri 18 Sep 2026 10:00:01 +0000 asID: 149881 IP address blocks: 103.189.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.crl rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:57:de:91:d4:c5:30:75:aa:90:c5:5c:f0:48:d4:44:4f:9c:06:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1FE69A34216C24D1870F5CED3A4309234A0F1B2 Validity Not Before: Sep 19 09:55:01 2025 GMT Not After : Sep 18 10:00:01 2026 GMT Subject: CN=3168C177F421D8250B64AA996CE24D5960D042AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f3:34:38:49:be:a8:5c:c1:8d:19:1c:66:af: e0:80:be:3e:bf:c6:8b:63:34:5e:12:a8:b9:9c:f5: 97:2f:a0:f3:73:37:50:cb:30:06:7c:cd:a4:30:0c: 7d:46:d4:31:6a:d9:87:a9:fd:c0:fd:83:3f:60:52: 6f:da:5c:84:ab:0d:ac:c4:e1:48:57:93:ba:e5:b3: a3:c2:ed:97:3c:bf:aa:dd:5b:2c:51:2e:9d:df:06: ba:91:7d:d0:83:ce:74:dd:8b:3a:74:1a:02:b8:ef: 66:d7:3e:43:37:24:d9:fa:17:db:54:92:6a:06:58: bc:45:37:bb:e8:e5:c5:96:44:63:b5:7f:f4:95:9f: 85:a7:6b:a1:51:a0:6c:85:47:4d:bc:9f:bc:d8:be: 9d:74:e1:f4:34:67:76:f2:cb:2b:d3:e9:77:66:94: 05:fc:7b:dd:fe:d6:50:35:7a:2a:ad:62:ce:aa:35: 19:9b:7a:1b:a8:d7:74:0c:74:03:2d:e8:6c:33:75: 73:85:1d:6a:5e:2b:3d:05:9d:6f:a2:59:24:56:f2: 81:c5:e7:0c:51:cc:f4:dc:cb:97:a4:06:c0:98:b5: 05:44:d0:61:c0:f7:1d:ba:31:59:30:04:a9:8e:52: e8:77:45:f9:09:b8:e5:27:53:b3:7f:07:59:03:21: 1d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:68:C1:77:F4:21:D8:25:0B:64:AA:99:6C:E2:4D:59:60:D0:42:AF X509v3 Authority Key Identifier: keyid:E1:FE:69:A3:42:16:C2:4D:18:70:F5:CE:D3:A4:30:92:34:A0:F1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.223.0/24 Signature Algorithm: sha256WithRSAEncryption 16:7f:3a:ed:7a:7f:e6:6a:2a:1c:37:4c:64:9f:85:12:4a:af: 43:4f:db:e8:11:a5:c0:c7:08:0a:98:da:34:2f:1a:10:58:0f: f0:52:d1:3b:f5:0c:6e:c4:e0:db:d3:ef:82:9c:1f:19:55:50: 89:d3:67:af:fd:00:a5:de:a5:61:c6:8e:02:2b:ee:22:b7:1b: 3e:d0:9a:00:67:1f:1d:7f:f0:55:91:d6:ee:ca:5d:5a:82:7b: f3:99:a1:aa:32:a6:99:37:41:22:a9:57:28:aa:af:97:40:14: 32:91:aa:df:20:9f:25:b7:c8:a7:d1:d3:26:8b:ae:d1:5d:75: 0e:ba:c5:1d:cd:6f:ad:3b:96:8f:8e:34:fe:68:b6:c5:60:53: 8f:c3:aa:59:30:1f:3f:df:48:16:57:ec:3c:ca:f3:9c:86:38: 9e:01:7a:26:e9:bb:0f:65:6a:b2:c1:98:8b:af:bb:ea:cc:dd: a5:bf:19:1e:10:8a:f9:55:b8:4b:7b:57:1e:49:92:94:95:8d: 76:7c:94:84:ed:0f:ce:8a:fb:23:cc:a0:0c:88:0e:00:c2:3f: 9b:cb:57:b3:43:12:58:de:8b:c7:f6:8f:06:ae:fd:d7:65:1d: ad:57:3a:b3:de:fc:11:1a:e6:e2:8f:97:c7:7b:34:0b:a5:93: 85:6f:f2:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJlfekdTFMHWqkMVc8EjURE+cBuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFGRTY5QTM0MjE2QzI0RDE4NzBGNUNFRDNBNDMwOTIz NEEwRjFCMjAeFw0yNTA5MTkwOTU1MDFaFw0yNjA5MTgxMDAwMDFaMDMxMTAvBgNV BAMTKDMxNjhDMTc3RjQyMUQ4MjUwQjY0QUE5OTZDRTI0RDU5NjBEMDQyQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW8zQ4Sb6oXMGNGRxmr+CAvj6/ xotjNF4SqLmc9ZcvoPNzN1DLMAZ8zaQwDH1G1DFq2Yep/cD9gz9gUm/aXISrDazE 4UhXk7rls6PC7Zc8v6rdWyxRLp3fBrqRfdCDznTdizp0GgK472bXPkM3JNn6F9tU kmoGWLxFN7vo5cWWRGO1f/SVn4Wna6FRoGyFR028n7zYvp104fQ0Z3byyyvT6Xdm lAX8e93+1lA1eiqtYs6qNRmbehuo13QMdAMt6GwzdXOFHWpeKz0FnW+iWSRW8oHF 5wxRzPTcy5ekBsCYtQVE0GHA9x26MVkwBKmOUuh3RfkJuOUnU7N/B1kDIR3JAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMWjBd/Qh2CULZKqZbOJNWWDQQq8wHwYDVR0j BBgwFoAU4f5po0IWwk0YcPXO06QwkjSg8bIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODhlM2ExNy0xYzkxLTQ3OTMtODNjNC0yMTFkNDIxMGFlYTgvMC9FMUZFNjlBMzQy MTZDMjREMTg3MEY1Q0VEM0E0MzA5MjM0QTBGMUIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFGRTY5QTM0MjE2QzI0RDE4NzBGNUNFRDNBNDMwOTIzNEEw RjFCMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4OGUzYTE3LTFjOTEtNDc5My04 M2M0LTIxMWQ0MjEwYWVhOC8wLzMxMzAzMzJlMzEzODM5MmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvd8wDQYJ KoZIhvcNAQELBQADggEBABZ/Ou16f+ZqKhw3TGSfhRJKr0NP2+gRpcDHCAqY2jQv GhBYD/BS0Tv1DG7E4NvT74KcHxlVUInTZ6/9AKXepWHGjgIr7iK3Gz7QmgBnHx1/ 8FWR1u7KXVqCe/OZoaoyppk3QSKpVyiqr5dAFDKRqt8gnyW3yKfR0yaLrtFddQ66 xR3Nb607lo+ONP5otsVgU4/DqlkwHz/fSBZX7DzK85yGOJ4Beibpuw9larLBmIuv u+rM3aW/GR4QivlVuEt7Vx5JkpSVjXZ8lITtD86K+yPMoAyIDgDCP5vLV7NDElje i8f2jwau/ddlHa1XOrPe/BEa5uKPl8d7NAulk4Vv8tQ= -----END CERTIFICATE-----Generated at Tue Oct 21 01:37:25 2025 by rpki-client