$ rpki-client -vvf repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3130332e34312e3138382e302f32322d3234203d3e203538333937.roa File: 3130332e34312e3138382e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: 2o165ipoUQ5xC+3YJyvZSSnkLXwty1Hk0oFl5RqIxMo= Subject key identifier: 7D:3C:87:FD:B4:18:78:3C:5B:5B:6B:28:31:E2:BC:3F:8C:5C:7D:E3 Certificate issuer: /CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Certificate serial: 35FD513725A671B97209BD6B493CE36C73DD6015 Authority key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3130332e34312e3138382e302f32322d3234203d3e203538333937.roa Signing time: Fri 10 Oct 2025 23:01:21 +0000 ROA not before: Fri 10 Oct 2025 22:56:21 +0000 ROA not after: Fri 09 Oct 2026 23:01:21 +0000 asID: 58397 IP address blocks: 103.41.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:fd:51:37:25:a6:71:b9:72:09:bd:6b:49:3c:e3:6c:73:dd:60:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Validity Not Before: Oct 10 22:56:21 2025 GMT Not After : Oct 9 23:01:21 2026 GMT Subject: CN=7D3C87FDB418783C5B5B6B2831E2BC3F8C5C7DE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:56:f2:24:f7:74:25:f0:61:2b:e1:43:e0:62: 2a:42:bf:79:12:74:35:f7:6d:50:0d:ca:ff:1a:63: 29:48:8b:e2:71:ce:1e:ed:47:59:04:5a:49:40:ef: e1:32:ca:15:64:c0:cb:98:88:41:43:d1:8d:ac:76: f5:9d:36:4f:1d:16:2a:6c:0c:e2:fa:dd:25:f9:69: 83:ff:e0:f2:b1:39:e3:17:3e:04:51:bf:b2:e1:4e: 88:7f:af:56:5c:cd:79:79:40:4d:c7:0f:d0:26:2c: 47:e0:49:0f:9b:a9:7e:3e:1d:e5:4e:dd:13:8c:48: 61:d2:cd:26:ab:f6:6c:7b:b1:44:d7:2a:5f:98:a1: 5b:55:a8:44:1d:9b:57:b0:13:2a:f9:a2:f6:c4:9b: ea:aa:f8:13:a5:44:dc:5b:06:dd:69:0b:e1:93:84: d7:a9:c7:10:5b:f8:2b:68:e9:72:7f:e6:2d:04:58: bf:c1:c7:5d:02:06:b1:a3:85:98:79:9d:97:a1:13: 34:87:e5:07:31:7e:eb:c6:14:2d:65:be:c7:5b:9f: dd:fe:b7:7f:1b:cb:e4:f4:6d:40:0e:8c:80:7b:90: f6:c6:c2:1f:ab:ea:21:45:ab:4f:73:e3:de:a2:19: ac:03:e9:95:3c:f0:0f:2a:5a:d6:7e:e5:56:2d:a3: d8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3C:87:FD:B4:18:78:3C:5B:5B:6B:28:31:E2:BC:3F:8C:5C:7D:E3 X509v3 Authority Key Identifier: keyid:57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3130332e34312e3138382e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.188.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:83:8a:20:f4:1b:a2:fe:69:cb:75:2a:01:6e:5f:25:38:c0: 76:c4:fc:0d:56:77:e3:e3:ac:08:0a:e8:52:4f:60:2a:df:79: 02:1d:30:92:63:03:f4:dc:f5:f3:4b:c3:fe:a5:00:1d:92:8b: 8d:fb:ae:70:a0:05:c1:3a:dc:32:9f:2c:81:d9:28:8c:3b:83: 36:8b:6a:19:73:97:59:5c:a0:8b:83:06:5c:32:9e:51:27:c5: 3a:8e:1e:b7:a7:07:79:78:17:01:d0:46:52:6a:a8:65:70:ef: fc:1b:93:f0:4f:3c:a3:4e:01:b4:1e:21:65:a4:c4:7d:e3:43: 5a:e5:e1:b3:64:61:94:56:5b:78:8f:75:d7:f6:cb:c3:a7:1e: e2:0f:df:e0:69:3e:93:0d:96:45:9f:eb:8e:0e:09:16:e4:60: 3f:c9:57:d4:5d:a0:67:4f:81:d5:87:bb:af:cd:8c:84:0f:29: ee:d9:8f:47:de:0a:21:5f:45:e9:99:cd:99:f4:a7:f0:f8:7d: 94:55:ef:44:85:62:0d:f3:22:4f:20:8d:1e:ab:78:1f:99:9b: 27:3e:7d:ad:0c:14:91:d9:01:3c:6f:22:1e:cb:7a:64:b8:5e: 7d:61:39:51:56:6d:8e:7a:eb:ce:1c:8b:f4:3a:25:ed:cb:31: bd:6a:84:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNf1RNyWmcblyCb1rSTzjbHPdYBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNE NkY2MEUyNDAeFw0yNTEwMTAyMjU2MjFaFw0yNjEwMDkyMzAxMjFaMDMxMTAvBgNV BAMTKDdEM0M4N0ZEQjQxODc4M0M1QjVCNkIyODMxRTJCQzNGOEM1QzdERTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiVvIk93Ql8GEr4UPgYipCv3kS dDX3bVANyv8aYylIi+Jxzh7tR1kEWklA7+EyyhVkwMuYiEFD0Y2sdvWdNk8dFips DOL63SX5aYP/4PKxOeMXPgRRv7LhToh/r1ZczXl5QE3HD9AmLEfgSQ+bqX4+HeVO 3ROMSGHSzSar9mx7sUTXKl+YoVtVqEQdm1ewEyr5ovbEm+qq+BOlRNxbBt1pC+GT hNepxxBb+Cto6XJ/5i0EWL/Bx10CBrGjhZh5nZehEzSH5QcxfuvGFC1lvsdbn93+ t38by+T0bUAOjIB7kPbGwh+r6iFFq09z496iGawD6ZU88A8qWtZ+5VYto9jZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfTyH/bQYeDxbW2soMeK8P4xcfeMwHwYDVR0j BBgwFoAUV9S4JprdpGDo95JdCqEm7Nb2DiQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMC81N0Q0QjgyNjlB RERBNDYwRThGNzkyNUQwQUExMjZFQ0Q2RjYwRTI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNENkY2 MEUyNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2LWEyNDYtNGQxOC1i ZTg2LWY0NjFkOGY1NTljOC8wLzMxMzAzMzJlMzQzMTJlMzEzODM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcpvDANBgkqhkiG 9w0BAQsFAAOCAQEAToOKIPQbov5py3UqAW5fJTjAdsT8DVZ34+OsCAroUk9gKt95 Ah0wkmMD9Nz180vD/qUAHZKLjfuucKAFwTrcMp8sgdkojDuDNotqGXOXWVygi4MG XDKeUSfFOo4et6cHeXgXAdBGUmqoZXDv/BuT8E88o04BtB4hZaTEfeNDWuXhs2Rh lFZbeI911/bLw6ce4g/f4Gk+kw2WRZ/rjg4JFuRgP8lX1F2gZ0+B1Ye7r82MhA8p 7tmPR94KIV9F6ZnNmfSn8Ph9lFXvRIViDfMiTyCNHqt4H5mbJz59rQwUkdkBPG8i Hst6ZLhefWE5UVZtjnrrzhyL9Dol7csxvWqEyA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:02:29 2025 by rpki-client