$ rpki-client -vvf repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa File: 3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa (raw, json) Hash identifier: iFIOjwBtj1k6jrBAXZlZrv1rFkh0HszvE5iJysrcroI= Subject key identifier: CF:4F:BA:E6:D2:5C:B1:C0:BE:17:4C:2F:88:53:40:F1:54:B9:E8:6C Certificate issuer: /CN=E0EC18AE1077112F303C479717B7E1EAA868E35F Certificate serial: 7D65E41EFB1C292D61EBA200E58653E695B579A1 Authority key identifier: E0:EC:18:AE:10:77:11:2F:30:3C:47:97:17:B7:E1:EA:A8:68:E3:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0EC18AE1077112F303C479717B7E1EAA868E35F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa Signing time: Tue 16 Sep 2025 04:00:00 +0000 ROA not before: Tue 16 Sep 2025 03:55:00 +0000 ROA not after: Tue 15 Sep 2026 04:00:00 +0000 asID: 149687 IP address blocks: 103.186.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/E0EC18AE1077112F303C479717B7E1EAA868E35F.crl rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/E0EC18AE1077112F303C479717B7E1EAA868E35F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0EC18AE1077112F303C479717B7E1EAA868E35F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 12:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:65:e4:1e:fb:1c:29:2d:61:eb:a2:00:e5:86:53:e6:95:b5:79:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0EC18AE1077112F303C479717B7E1EAA868E35F Validity Not Before: Sep 16 03:55:00 2025 GMT Not After : Sep 15 04:00:00 2026 GMT Subject: CN=CF4FBAE6D25CB1C0BE174C2F885340F154B9E86C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:16:a4:ce:a6:33:80:90:f7:28:b5:95:f2:23: a2:fe:63:40:7f:1a:ba:66:4d:0b:57:ae:78:6f:78: ba:1c:de:37:02:d2:10:27:3d:72:50:71:20:e9:15: e3:d8:14:f9:55:64:ba:9a:00:4e:41:80:6b:a8:95: ab:e7:ce:9a:32:03:f5:60:8c:04:c4:fc:17:a1:6d: 1d:e3:da:93:25:41:83:4f:c7:8a:9f:b3:10:de:72: e3:dc:f6:eb:54:9d:0d:34:a3:26:e3:39:4e:de:80: ac:3f:bd:25:03:83:34:5a:88:f6:30:95:cb:e7:87: 72:89:5b:9f:62:6b:5c:14:d2:90:4a:d5:10:2e:57: a6:bc:27:f3:d8:b7:1f:bf:c0:34:5f:86:2e:ab:2c: 81:bb:ce:e5:23:f8:74:df:da:09:b0:82:1f:a9:cf: dd:ff:a5:9b:90:42:f4:07:c6:9c:e6:f2:e4:2c:c7: 83:72:40:a1:3c:3b:34:62:e8:4f:17:76:2c:5e:58: 3d:da:14:3c:98:c8:3a:73:51:f4:95:f7:60:f2:22: d5:14:bc:61:1a:21:75:fc:a8:6b:3c:58:2d:20:82: 21:94:1c:7e:36:aa:3a:01:7d:9d:48:a4:66:65:47: 39:96:f9:ae:64:ff:e8:45:a5:aa:f6:d9:47:43:ba: 3d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:4F:BA:E6:D2:5C:B1:C0:BE:17:4C:2F:88:53:40:F1:54:B9:E8:6C X509v3 Authority Key Identifier: keyid:E0:EC:18:AE:10:77:11:2F:30:3C:47:97:17:B7:E1:EA:A8:68:E3:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/E0EC18AE1077112F303C479717B7E1EAA868E35F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0EC18AE1077112F303C479717B7E1EAA868E35F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.34.0/24 Signature Algorithm: sha256WithRSAEncryption ac:dc:dc:1d:14:c8:4b:33:73:7c:33:44:ce:81:68:5a:f6:49: 2c:8f:ca:ba:93:05:27:70:a8:52:e6:b0:0d:d9:7d:48:c7:b8: bb:fe:84:b4:50:c5:b6:7e:e2:5c:24:50:f6:e9:2b:49:07:77: 9b:ef:57:b1:47:bd:14:4e:d8:a3:c9:76:e4:29:f7:f9:7c:c1: 50:d2:3b:d0:1a:d0:fd:75:fb:52:de:4d:a7:26:af:de:3f:00: f7:e8:b4:01:ad:03:21:53:d2:31:48:b1:b8:c8:17:fd:cd:92: a8:7a:44:c4:80:6f:a8:9c:3a:65:ec:60:ec:dc:8e:1c:cd:e7: 4b:ea:f6:34:4b:7a:31:2e:46:66:30:91:0d:29:ab:bf:d4:e5: 08:c2:66:bb:39:9e:33:93:31:4e:f3:03:92:7e:0f:59:b1:72: 47:ee:55:22:2f:7f:a3:dd:2a:5b:e4:7f:ae:85:23:6e:55:ae: 1d:1d:ca:6d:4a:7f:fa:f6:cd:83:49:8b:da:25:69:73:1a:cd: a6:8c:dd:ac:37:e7:1c:7f:6b:72:02:eb:5a:7d:a7:06:12:90: 45:aa:11:bd:58:8f:d1:8f:68:da:c6:d8:82:c0:a7:61:19:bf: 33:db:94:1f:85:8b:a3:d4:18:ee:b4:ba:28:ac:e8:fe:05:62: fb:b9:c8:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfWXkHvscKS1h66IA5YZT5pW1eaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBFQzE4QUUxMDc3MTEyRjMwM0M0Nzk3MTdCN0UxRUFB ODY4RTM1RjAeFw0yNTA5MTYwMzU1MDBaFw0yNjA5MTUwNDAwMDBaMDMxMTAvBgNV BAMTKENGNEZCQUU2RDI1Q0IxQzBCRTE3NEMyRjg4NTM0MEYxNTRCOUU4NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMFqTOpjOAkPcotZXyI6L+Y0B/ GrpmTQtXrnhveLoc3jcC0hAnPXJQcSDpFePYFPlVZLqaAE5BgGuolavnzpoyA/Vg jATE/BehbR3j2pMlQYNPx4qfsxDecuPc9utUnQ00oybjOU7egKw/vSUDgzRaiPYw lcvnh3KJW59ia1wU0pBK1RAuV6a8J/PYtx+/wDRfhi6rLIG7zuUj+HTf2gmwgh+p z93/pZuQQvQHxpzm8uQsx4NyQKE8OzRi6E8XdixeWD3aFDyYyDpzUfSV92DyItUU vGEaIXX8qGs8WC0ggiGUHH42qjoBfZ1IpGZlRzmW+a5k/+hFpar22UdDuj2XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz0+65tJcscC+F0wviFNA8VS56GwwHwYDVR0j BBgwFoAU4OwYrhB3ES8wPEeXF7fh6qho418wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTljN2M5Ni03YWJiLTQ1YWMtYTBjYi1kN2ZmZDA5YzE4NzYvMC9FMEVDMThBRTEw NzcxMTJGMzAzQzQ3OTcxN0I3RTFFQUE4NjhFMzVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBFQzE4QUUxMDc3MTEyRjMwM0M0Nzk3MTdCN0UxRUFBODY4 RTM1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1OWM3Yzk2LTdhYmItNDVhYy1h MGNiLWQ3ZmZkMDljMTg3Ni8wLzMxMzAzMzJlMzEzODM2MmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7oiMA0GCSqG SIb3DQEBCwUAA4IBAQCs3NwdFMhLM3N8M0TOgWha9kksj8q6kwUncKhS5rAN2X1I x7i7/oS0UMW2fuJcJFD26StJB3eb71exR70UTtijyXbkKff5fMFQ0jvQGtD9dftS 3k2nJq/ePwD36LQBrQMhU9IxSLG4yBf9zZKoekTEgG+onDpl7GDs3I4czedL6vY0 S3oxLkZmMJENKau/1OUIwma7OZ4zkzFO8wOSfg9ZsXJH7lUiL3+j3Spb5H+uhSNu Va4dHcptSn/69s2DSYvaJWlzGs2mjN2sN+ccf2tyAutafacGEpBFqhG9WI/Rj2ja xtiCwKdhGb8z25QfhYuj1BjutLoorOj+BWL7uciI -----END CERTIFICATE-----Generated at Tue Oct 21 08:35:20 2025 by rpki-client