$ rpki-client -vvf repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa File: 3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa (raw, json) Hash identifier: r4fgqA47qTlb3GhP6gzYmrPLdVv6QpS/f5hXYEC/f/k= Subject key identifier: A3:E1:FB:22:26:A2:60:A2:54:AA:FE:13:4D:7D:C6:F0:F7:EC:F4:9D Certificate issuer: /CN=E2CDAA223BFB6F2B13973EB80353ED211C9F21C9 Certificate serial: 37AF5F4DB2634EA787F9D2FF5FA7B8C50DDAE6F0 Authority key identifier: E2:CD:AA:22:3B:FB:6F:2B:13:97:3E:B8:03:53:ED:21:1C:9F:21:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa Signing time: Thu 09 Oct 2025 12:02:28 +0000 ROA not before: Thu 09 Oct 2025 11:57:28 +0000 ROA not after: Thu 08 Oct 2026 12:02:28 +0000 asID: 149888 IP address blocks: 103.189.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.crl rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:af:5f:4d:b2:63:4e:a7:87:f9:d2:ff:5f:a7:b8:c5:0d:da:e6:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2CDAA223BFB6F2B13973EB80353ED211C9F21C9 Validity Not Before: Oct 9 11:57:28 2025 GMT Not After : Oct 8 12:02:28 2026 GMT Subject: CN=A3E1FB2226A260A254AAFE134D7DC6F0F7ECF49D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:fd:41:db:bd:ee:1c:82:e9:73:14:60:b0: a5:f8:a8:8a:92:83:c3:0b:04:f3:d9:3a:5e:54:65: 7a:cc:79:5c:c8:56:1b:67:85:6e:dd:3e:3d:d7:cb: cd:cf:f8:f3:6f:3a:5e:6b:7d:73:de:76:8c:92:87: 4f:90:bd:f2:79:47:08:14:e5:42:ca:70:31:c0:6e: 55:f5:c8:3f:8b:b0:a4:eb:5f:50:e9:c3:47:ae:6c: 46:5c:96:e7:85:d0:0f:86:bc:ce:b2:c2:12:3b:40: aa:e4:c7:40:b2:19:90:e1:fa:c5:cd:41:c2:83:d4: eb:41:1b:71:64:96:51:93:bf:6e:88:a0:12:35:11: 3c:93:bc:b7:67:e2:16:5a:9d:3f:02:40:e8:33:c5: b3:07:80:99:7b:13:81:11:62:ff:0d:37:9e:2c:36: ce:e0:1e:f0:8b:81:d2:a1:9b:6a:7e:ad:61:f6:62: 18:79:9b:fd:d1:ed:ca:88:ac:f6:b0:ca:2e:47:30: 70:f5:88:03:35:6f:b6:e7:47:24:37:04:92:dc:62: 77:83:6f:27:77:f7:25:b8:8f:fb:18:33:1e:ed:4c: e5:8d:45:83:28:af:4c:ab:9d:f3:88:de:5e:ee:c7: 7f:3f:d4:4e:00:26:cf:3f:65:65:0d:c4:40:16:70: 62:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E1:FB:22:26:A2:60:A2:54:AA:FE:13:4D:7D:C6:F0:F7:EC:F4:9D X509v3 Authority Key Identifier: keyid:E2:CD:AA:22:3B:FB:6F:2B:13:97:3E:B8:03:53:ED:21:1C:9F:21:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.248.0/24 Signature Algorithm: sha256WithRSAEncryption 42:5e:72:f9:d0:68:90:93:cf:61:e3:2c:7a:d9:3f:c8:e7:5a: 1b:e9:b2:8d:a5:f8:24:35:8f:ac:4b:a7:40:1a:a7:0b:7b:12: f6:bc:a2:64:85:01:42:6c:c4:97:b5:ed:59:d9:8d:db:98:23: c9:be:68:0b:f5:bf:96:48:f7:58:40:79:21:49:a7:38:1c:62: 72:65:12:59:96:86:82:3b:eb:b5:24:6b:24:8f:d9:8a:94:f9: 7a:36:36:12:bf:5e:9c:95:6a:4d:9f:fe:ba:a8:9e:6e:05:40: 87:b6:e8:50:68:8e:11:61:6f:a5:b9:f7:df:84:1b:8d:8a:9e: 95:44:7b:06:5b:d4:ae:78:1e:e7:2f:1a:e1:62:08:ca:8e:66: d9:f6:f7:ea:7a:f0:9c:af:a0:e4:b7:e0:80:15:12:f2:a7:8c: 4a:fe:01:4a:90:fd:93:e7:bc:87:dc:b3:3b:d3:50:ad:20:de: 6d:17:84:92:20:63:41:57:d9:98:4b:55:cc:92:43:c7:3d:b9: c9:e8:e8:01:0d:90:b4:5c:b5:93:2b:88:c2:b1:ad:99:c0:98: 79:9a:a7:76:f6:50:b0:ce:20:9f:9e:8b:c9:ec:e3:cf:40:88: aa:3c:36:e5:20:45:39:15:d1:f2:6e:29:98:47:5e:ec:98:e8: a6:d2:c6:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUN69fTbJjTqeH+dL/X6e4xQ3a5vAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTJDREFBMjIzQkZCNkYyQjEzOTczRUI4MDM1M0VEMjEx QzlGMjFDOTAeFw0yNTEwMDkxMTU3MjhaFw0yNjEwMDgxMjAyMjhaMDMxMTAvBgNV BAMTKEEzRTFGQjIyMjZBMjYwQTI1NEFBRkUxMzREN0RDNkYwRjdFQ0Y0OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvLf1B273uHILpcxRgsKX4qIqS g8MLBPPZOl5UZXrMeVzIVhtnhW7dPj3Xy83P+PNvOl5rfXPedoySh0+QvfJ5RwgU 5ULKcDHAblX1yD+LsKTrX1Dpw0eubEZclueF0A+GvM6ywhI7QKrkx0CyGZDh+sXN QcKD1OtBG3FkllGTv26IoBI1ETyTvLdn4hZanT8CQOgzxbMHgJl7E4ERYv8NN54s Ns7gHvCLgdKhm2p+rWH2Yhh5m/3R7cqIrPawyi5HMHD1iAM1b7bnRyQ3BJLcYneD byd39yW4j/sYMx7tTOWNRYMor0yrnfOI3l7ux38/1E4AJs8/ZWUNxEAWcGJhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUo+H7IiaiYKJUqv4TTX3G8Pfs9J0wHwYDVR0j BBgwFoAU4s2qIjv7bysTlz64A1PtIRyfIckwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGY0MTY0ZS03NGU1LTQwZDYtOWEzMC1iMzcyYTRkMmE0NTQvMC9FMkNEQUEyMjNC RkI2RjJCMTM5NzNFQjgwMzUzRUQyMTFDOUYyMUM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTJDREFBMjIzQkZCNkYyQjEzOTczRUI4MDM1M0VEMjExQzlG MjFDOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZjQxNjRlLTc0ZTUtNDBkNi05 YTMwLWIzNzJhNGQyYTQ1NC8wLzMxMzAzMzJlMzEzODM5MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvfgwDQYJ KoZIhvcNAQELBQADggEBAEJecvnQaJCTz2HjLHrZP8jnWhvpso2l+CQ1j6xLp0Aa pwt7Eva8omSFAUJsxJe17VnZjduYI8m+aAv1v5ZI91hAeSFJpzgcYnJlElmWhoI7 67UkaySP2YqU+Xo2NhK/XpyVak2f/rqonm4FQIe26FBojhFhb6W599+EG42KnpVE ewZb1K54HucvGuFiCMqOZtn29+p68JyvoOS34IAVEvKnjEr+AUqQ/ZPnvIfcszvT UK0g3m0XhJIgY0FX2ZhLVcySQ8c9ucno6AENkLRctZMriMKxrZnAmHmap3b2ULDO IJ+ei8ns489AiKo8NuUgRTkV0fJuKZhHXuyY6KbSxuk= -----END CERTIFICATE-----Generated at Mon Oct 20 13:24:57 2025 by rpki-client