$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa File: 3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa (raw, json) Hash identifier: HLVBD979pS8wg1hMg/z3bLcZUZBMG19OyH8qnmPOiEQ= Subject key identifier: A4:98:73:B2:91:66:72:03:6D:0B:C1:06:4F:1F:5F:1F:5A:F1:09:C2 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 59C1FE9F0C72AEE834630CA64AC4DD9BEE8EED11 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa Signing time: Wed 08 Oct 2025 10:02:25 +0000 ROA not before: Wed 08 Oct 2025 09:57:25 +0000 ROA not after: Wed 07 Oct 2026 10:02:25 +0000 asID: 38515 IP address blocks: 103.107.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c1:fe:9f:0c:72:ae:e8:34:63:0c:a6:4a:c4:dd:9b:ee:8e:ed:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Oct 8 09:57:25 2025 GMT Not After : Oct 7 10:02:25 2026 GMT Subject: CN=A49873B2916672036D0BC1064F1F5F1F5AF109C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b4:f1:8e:88:aa:ab:42:cd:ee:43:09:ad:94: 39:a6:c5:f1:46:77:d9:44:b3:66:29:78:37:be:35: 98:cb:c0:a8:9c:6a:b3:dd:d3:e3:c6:ec:ca:44:95: 30:ff:c1:e9:d8:59:c0:23:3d:a9:74:f0:87:98:69: 45:05:65:50:bb:54:10:18:fb:39:29:a1:54:13:83: f7:cc:e2:72:86:79:af:67:31:27:b6:49:0f:a5:50: 51:72:48:cc:93:3b:20:b0:8c:ed:04:8e:87:aa:2f: 85:fb:00:73:92:b7:45:5b:cf:f9:9f:1b:b7:2b:f0: fe:d1:55:2e:72:9b:86:ba:78:55:97:ca:06:78:75: 7e:c5:a0:c5:0f:fb:83:56:7d:56:79:f2:f6:56:43: 5e:06:0d:b4:62:48:69:0a:97:bb:34:07:d5:b0:68: e3:ab:7e:25:4f:8c:30:4f:33:ad:f8:b8:bd:24:14: 60:27:a8:ad:5c:a0:a3:e0:87:9e:99:76:82:8c:6a: c7:8d:ec:5b:07:00:bf:67:6e:92:99:5a:b9:32:de: 9a:f0:90:8f:53:a5:16:c2:00:54:d0:ad:90:1b:48: 7e:ec:23:32:2e:ce:fa:75:e4:d7:7a:9d:2d:3c:a3: 27:5e:ff:f5:3a:be:65:bb:6c:c0:5a:61:17:5d:c2: a3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:98:73:B2:91:66:72:03:6D:0B:C1:06:4F:1F:5F:1F:5A:F1:09:C2 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.248.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:ef:19:02:92:1c:bc:0f:26:62:95:42:b5:34:7f:2a:40:67: e2:23:57:ed:95:80:63:18:62:01:0b:97:6c:97:ac:4a:92:39: 62:aa:40:81:ea:ce:dd:6f:ec:5b:e0:c4:03:06:34:4d:5f:4b: 53:4d:d3:cf:b2:7d:a9:8e:55:1e:29:41:14:6e:34:a8:7a:a7: 6b:25:92:8a:32:3f:48:e9:58:45:19:a4:54:b6:17:fb:a9:48: 29:c3:50:f4:50:b7:f1:87:5b:f3:c1:20:38:9f:8e:b8:1d:cb: 3b:98:f7:4b:1b:49:67:af:b0:56:1e:e0:68:8f:3b:af:8a:af: 55:5d:27:7b:82:02:4e:cc:c3:74:03:34:c3:ba:d0:5f:31:cc: 58:67:42:00:3b:91:1b:25:68:9e:70:31:03:ba:b7:33:ce:75: 17:f8:59:53:30:20:bf:6b:a1:c0:8e:37:8a:b6:ae:e2:5b:1c: ae:98:c9:c1:9b:30:92:71:f2:d0:b1:40:8b:83:45:5b:5d:4c: 34:cf:d0:fa:83:f8:4b:2c:fc:93:be:c6:ce:57:38:1b:3d:87: bb:5b:50:5a:5a:bb:db:1b:73:a3:e0:10:a8:b2:98:ac:2f:a7: 78:26:44:90:28:0e:c8:8c:a1:40:39:73:9b:c4:e0:58:b8:29: 4e:13:8b:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWcH+nwxyrug0YwymSsTdm+6O7REwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTEwMDgwOTU3MjVaFw0yNjEwMDcxMDAyMjVaMDMxMTAvBgNV BAMTKEE0OTg3M0IyOTE2NjcyMDM2RDBCQzEwNjRGMUY1RjFGNUFGMTA5QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwtPGOiKqrQs3uQwmtlDmmxfFG d9lEs2YpeDe+NZjLwKicarPd0+PG7MpElTD/wenYWcAjPal08IeYaUUFZVC7VBAY +zkpoVQTg/fM4nKGea9nMSe2SQ+lUFFySMyTOyCwjO0EjoeqL4X7AHOSt0Vbz/mf G7cr8P7RVS5ym4a6eFWXygZ4dX7FoMUP+4NWfVZ58vZWQ14GDbRiSGkKl7s0B9Ww aOOrfiVPjDBPM634uL0kFGAnqK1coKPgh56ZdoKMaseN7FsHAL9nbpKZWrky3prw kI9TpRbCAFTQrZAbSH7sIzIuzvp15Nd6nS08oyde//U6vmW7bMBaYRddwqPdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpJhzspFmcgNtC8EGTx9fH1rxCcIwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMxMzAzMzJlMzEzMDM3MmUzMjM0MzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMzM4MzUzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2v4MA0GCSqG SIb3DQEBCwUAA4IBAQBM7xkCkhy8DyZilUK1NH8qQGfiI1ftlYBjGGIBC5dsl6xK kjliqkCB6s7db+xb4MQDBjRNX0tTTdPPsn2pjlUeKUEUbjSoeqdrJZKKMj9I6VhF GaRUthf7qUgpw1D0ULfxh1vzwSA4n464Hcs7mPdLG0lnr7BWHuBojzuviq9VXSd7 ggJOzMN0AzTDutBfMcxYZ0IAO5EbJWiecDEDurczznUX+FlTMCC/a6HAjjeKtq7i WxyumMnBmzCScfLQsUCLg0VbXUw0z9D6g/hLLPyTvsbOVzgbPYe7W1BaWrvbG3Oj 4BCospisL6d4JkSQKA7IjKFAOXObxOBYuClOE4v+ -----END CERTIFICATE-----Generated at Tue Oct 21 02:05:01 2025 by rpki-client