$ rpki-client -vvf repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37392e302f32342d3234203d3e20313336383734.roa File: 3130332e3130352e37392e302f32342d3234203d3e20313336383734.roa (raw, json) Hash identifier: dcc/bwTW1oTsN+Z0h/Aw94q6mQUdzuyzIAdCoesD/EQ= Subject key identifier: BB:E7:31:91:E4:C4:99:12:0B:2C:53:A8:D4:32:E7:67:F8:10:D8:2B Certificate issuer: /CN=2993EFF92300988A33773DD8C4B502F74B907112 Certificate serial: 481DB0023499DF738311C679A3F457E4A2825BEE Authority key identifier: 29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject info access: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37392e302f32342d3234203d3e20313336383734.roa Signing time: Thu 16 Oct 2025 14:00:00 +0000 ROA not before: Thu 16 Oct 2025 13:55:00 +0000 ROA not after: Thu 15 Oct 2026 14:00:00 +0000 asID: 136874 IP address blocks: 103.105.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1d:b0:02:34:99:df:73:83:11:c6:79:a3:f4:57:e4:a2:82:5b:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2993EFF92300988A33773DD8C4B502F74B907112 Validity Not Before: Oct 16 13:55:00 2025 GMT Not After : Oct 15 14:00:00 2026 GMT Subject: CN=BBE73191E4C499120B2C53A8D432E767F810D82B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:2a:e8:c0:9f:4a:8a:ce:ec:00:bf:f6:c6: f2:65:ed:e2:77:31:88:0e:ef:03:f2:3b:70:0a:b8: 12:ef:f7:69:42:59:59:b6:d2:d1:5a:7e:32:35:51: 74:5d:1b:f2:4d:2f:02:59:a7:a8:ff:f3:f7:e7:72: 95:d4:21:97:89:39:6f:89:39:d7:da:ac:63:62:fd: a5:bd:fd:e7:cb:ff:aa:3a:d1:32:45:f5:d8:1f:a7: 7d:07:55:f4:39:69:ae:de:28:a3:50:38:f1:8d:55: 6f:35:0f:7b:6f:ba:b0:f4:67:0a:45:94:e2:5b:fd: c3:3b:80:e1:a2:b1:cd:8c:4d:26:93:f4:d1:3c:48: ba:84:4a:dd:51:1a:78:4b:bf:e5:47:41:73:b2:ef: 1a:c4:15:46:06:b0:aa:62:44:26:cf:5c:cd:5f:95: 59:ab:32:e3:5b:05:b2:eb:b5:5f:e6:f7:cb:19:4c: f6:ab:45:35:25:a2:95:b1:ea:41:ca:0d:97:70:52: 6a:c4:26:3a:79:b5:50:55:27:c7:9a:ff:1e:51:49: 0a:cd:5f:2d:ee:65:6e:66:d2:3d:7d:7c:2a:a8:be: 20:7d:d6:bb:1a:b0:7c:e9:26:e6:f8:3d:a2:5e:ea: cb:57:10:87:b7:75:55:c1:07:7a:82:a4:ff:54:89: 7e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E7:31:91:E4:C4:99:12:0B:2C:53:A8:D4:32:E7:67:F8:10:D8:2B X509v3 Authority Key Identifier: keyid:29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37392e302f32342d3234203d3e20313336383734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.79.0/24 Signature Algorithm: sha256WithRSAEncryption 76:b7:df:e6:d6:41:41:53:5b:03:9d:eb:70:33:8e:58:5e:cc: f9:1f:17:db:1f:32:52:84:c0:0b:42:05:36:ff:9b:63:3a:6f: 86:57:e3:f4:b3:26:82:f0:e6:d5:8a:a0:6c:a8:a7:ed:8d:53: 1f:46:ff:67:a3:0e:48:54:84:ab:45:00:5d:4b:6e:22:1b:11: 33:28:81:17:0f:2b:43:21:76:9a:29:63:46:d8:ac:89:a2:88: d4:c9:17:a0:31:d7:e8:20:5b:dd:37:c9:66:73:35:5b:7d:5b: 03:30:21:76:ef:86:56:6d:51:c4:70:9b:d8:70:0b:1c:e9:32: 54:a5:f3:7c:f8:9a:9a:cb:26:60:1c:33:3e:ba:6b:88:bf:de: 96:4b:05:43:7d:46:0d:c3:97:ea:11:3d:aa:53:49:c5:b5:1e: 73:43:9e:29:d5:ed:36:a1:10:75:20:46:70:80:3a:57:87:c5: ff:2f:34:7a:36:c1:47:5e:f0:91:42:9f:25:67:cc:4b:5c:1f: 98:b7:de:d9:ef:a9:29:b2:b3:f5:66:fe:d0:10:a4:a5:4c:aa: f7:65:55:c2:6a:88:42:ff:7b:10:28:92:e0:b2:18:52:30:98: 77:53:8b:ab:75:7f:ad:68:ee:81:e9:e0:d7:f0:50:f4:37:96: 33:36:52:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSB2wAjSZ33ODEcZ5o/RX5KKCW+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0 QjkwNzExMjAeFw0yNTEwMTYxMzU1MDBaFw0yNjEwMTUxNDAwMDBaMDMxMTAvBgNV BAMTKEJCRTczMTkxRTRDNDk5MTIwQjJDNTNBOEQ0MzJFNzY3RjgxMEQ4MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7xCrowJ9Kis7sAL/2xvJl7eJ3 MYgO7wPyO3AKuBLv92lCWVm20tFafjI1UXRdG/JNLwJZp6j/8/fncpXUIZeJOW+J OdfarGNi/aW9/efL/6o60TJF9dgfp30HVfQ5aa7eKKNQOPGNVW81D3tvurD0ZwpF lOJb/cM7gOGisc2MTSaT9NE8SLqESt1RGnhLv+VHQXOy7xrEFUYGsKpiRCbPXM1f lVmrMuNbBbLrtV/m98sZTParRTUlopWx6kHKDZdwUmrEJjp5tVBVJ8ea/x5RSQrN Xy3uZW5m0j19fCqoviB91rsasHzpJub4PaJe6stXEIe3dVXBB3qCpP9UiX7dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUu+cxkeTEmRILLFOo1DLnZ/gQ2CswHwYDVR0j BBgwFoAUKZPv+SMAmIozdz3YxLUC90uQcRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzdiYzNkMi00YWIzLTRjZmItOTIyMi02NmM2ZWE5NDQ3ZTMvMC8yOTkzRUZGOTIz MDA5ODhBMzM3NzNERDhDNEI1MDJGNzRCOTA3MTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0Qjkw NzExMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3N2JjM2QyLTRhYjMtNGNmYi05 MjIyLTY2YzZlYTk0NDdlMy8wLzMxMzAzMzJlMzEzMDM1MmUzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2lPMA0GCSqG SIb3DQEBCwUAA4IBAQB2t9/m1kFBU1sDnetwM45YXsz5HxfbHzJShMALQgU2/5tj Om+GV+P0syaC8ObViqBsqKftjVMfRv9now5IVISrRQBdS24iGxEzKIEXDytDIXaa KWNG2KyJoojUyRegMdfoIFvdN8lmczVbfVsDMCF274ZWbVHEcJvYcAsc6TJUpfN8 +JqayyZgHDM+umuIv96WSwVDfUYNw5fqET2qU0nFtR5zQ54p1e02oRB1IEZwgDpX h8X/LzR6NsFHXvCRQp8lZ8xLXB+Yt97Z76kpsrP1Zv7QEKSlTKr3ZVXCaohC/3sQ KJLgshhSMJh3U4urdX+taO6B6eDX8FD0N5YzNlJb -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:30 2025 by rpki-client