$ rpki-client -vvf repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa File: 3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: pdL/jDmC/bRYeiHS8cnl+uvo57Pja48iQZSIZZK07no= Subject key identifier: E0:F9:D1:D5:D0:71:25:07:AE:CF:A0:0A:38:9A:96:2E:75:69:0D:4A Certificate issuer: /CN=FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF Certificate serial: 2D3230DC9189BF7FBD9F498A0B5940493873B3EE Authority key identifier: FF:89:F2:3B:CB:C4:26:35:E9:7A:E1:5A:7F:B6:9E:1E:09:A9:7D:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa Signing time: Mon 20 Oct 2025 06:00:02 +0000 ROA not before: Mon 20 Oct 2025 05:55:02 +0000 ROA not after: Mon 19 Oct 2026 06:00:02 +0000 asID: 142366 IP address blocks: 103.163.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.crl rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:32:30:dc:91:89:bf:7f:bd:9f:49:8a:0b:59:40:49:38:73:b3:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF Validity Not Before: Oct 20 05:55:02 2025 GMT Not After : Oct 19 06:00:02 2026 GMT Subject: CN=E0F9D1D5D0712507AECFA00A389A962E75690D4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ec:d5:43:71:6a:fb:0c:a7:ab:84:23:05:7e: 57:6e:09:5d:19:23:57:bb:d6:fa:dd:fb:bf:12:26: 39:9c:a0:5f:e7:5a:b6:c2:2b:14:42:22:2f:64:7a: 54:c6:de:70:96:27:ce:1c:9c:60:31:b1:f5:b5:97: 05:32:ae:51:53:3c:ca:ff:46:5c:27:32:a5:1d:31: 9b:77:f7:96:12:bd:c3:0a:ba:68:c9:f4:1f:9e:57: 6c:ab:d0:43:b9:6f:74:77:d9:f2:99:25:ca:ec:ae: d5:19:75:52:f2:a8:78:8b:d6:d4:99:0a:d7:23:69: 4a:be:db:d2:ab:4d:e2:a1:df:9d:3a:67:66:9e:58: 02:e5:28:a8:4e:0b:10:8c:61:af:23:af:e3:98:01: c5:94:41:d0:49:16:39:09:2b:6a:01:5b:0c:bf:5d: 70:49:67:63:0e:73:d5:67:b8:96:55:39:4d:20:50: b4:2d:e5:2e:b0:06:88:03:d8:9f:b8:d1:04:d4:cf: 89:13:50:af:c8:1f:cc:48:3d:01:c2:f4:78:58:d8: 14:f8:41:26:e7:81:38:46:07:27:dc:07:ee:f8:65: 8c:13:6d:54:77:2c:ff:32:50:e8:db:b0:60:9a:de: bc:4a:bd:02:4b:96:56:88:f0:ae:ca:f5:8e:5a:6d: 17:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F9:D1:D5:D0:71:25:07:AE:CF:A0:0A:38:9A:96:2E:75:69:0D:4A X509v3 Authority Key Identifier: keyid:FF:89:F2:3B:CB:C4:26:35:E9:7A:E1:5A:7F:B6:9E:1E:09:A9:7D:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.185.0/24 Signature Algorithm: sha256WithRSAEncryption 74:87:49:b7:ea:04:8f:89:38:1b:d1:5c:b2:42:a3:86:fa:3a: 55:ae:41:24:fc:4e:72:f6:86:5f:59:b6:48:1d:e6:75:a9:ab: 03:ea:92:44:01:20:f9:e2:f0:05:88:69:71:bf:2d:74:b6:58: 47:fb:14:1f:f5:61:1a:6a:6e:d7:a0:07:36:7c:ea:2f:9e:90: fa:cb:4a:2f:af:f1:74:73:40:05:77:eb:c5:88:14:c5:e9:9d: 58:2d:20:30:e8:ea:9b:7d:69:95:ad:9d:8f:a9:ba:1f:25:20: 17:ca:db:f8:36:de:c5:55:88:2e:39:e1:7b:7b:5a:19:0c:bf: b3:e5:7c:e3:4f:a5:cc:9a:cd:74:13:99:b4:db:a4:c1:1c:c6: ea:24:8c:64:2a:2c:92:71:4c:6d:6a:5e:dd:06:cf:09:ea:2f: 67:3d:25:d7:ed:89:5d:95:f5:b4:0e:bc:f4:cc:ce:02:27:07: 8a:3f:89:96:4e:fb:b8:4f:9c:1b:fc:0e:ab:e6:35:8c:34:77: 5a:6e:e0:30:73:e5:3e:d0:e3:2b:57:07:4f:54:76:68:67:33: 53:59:09:c7:95:68:94:76:e3:53:1c:c7:57:91:3d:a3:a5:41: 09:29:54:19:78:dc:04:42:5e:87:2e:f2:04:1d:c4:09:c5:57: ae:26:f8:cb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULTIw3JGJv3+9n0mKC1lASThzs+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY4OUYyM0JDQkM0MjYzNUU5N0FFMTVBN0ZCNjlFMUUw OUE5N0RBRjAeFw0yNTEwMjAwNTU1MDJaFw0yNjEwMTkwNjAwMDJaMDMxMTAvBgNV BAMTKEUwRjlEMUQ1RDA3MTI1MDdBRUNGQTAwQTM4OUE5NjJFNzU2OTBENEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD37NVDcWr7DKerhCMFflduCV0Z I1e71vrd+78SJjmcoF/nWrbCKxRCIi9kelTG3nCWJ84cnGAxsfW1lwUyrlFTPMr/ RlwnMqUdMZt395YSvcMKumjJ9B+eV2yr0EO5b3R32fKZJcrsrtUZdVLyqHiL1tSZ CtcjaUq+29KrTeKh3506Z2aeWALlKKhOCxCMYa8jr+OYAcWUQdBJFjkJK2oBWwy/ XXBJZ2MOc9VnuJZVOU0gULQt5S6wBogD2J+40QTUz4kTUK/IH8xIPQHC9HhY2BT4 QSbngThGByfcB+74ZYwTbVR3LP8yUOjbsGCa3rxKvQJLllaI8K7K9Y5abRcLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4PnR1dBxJQeuz6AKOJqWLnVpDUowHwYDVR0j BBgwFoAU/4nyO8vEJjXpeuFaf7aeHgmpfa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjE2NjRhNy1jOWM5LTQ0NDItODcxOC05YWVjOWUyMTEwYTIvMC9GRjg5RjIzQkNC QzQyNjM1RTk3QUUxNUE3RkI2OUUxRTA5QTk3REFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY4OUYyM0JDQkM0MjYzNUU5N0FFMTVBN0ZCNjlFMUUwOUE5 N0RBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMTY2NGE3LWM5YzktNDQ0Mi04 NzE4LTlhZWM5ZTIxMTBhMi8wLzMxMzAzMzJlMzEzNjMzMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno7kwDQYJ KoZIhvcNAQELBQADggEBAHSHSbfqBI+JOBvRXLJCo4b6OlWuQST8TnL2hl9Ztkgd 5nWpqwPqkkQBIPni8AWIaXG/LXS2WEf7FB/1YRpqbtegBzZ86i+ekPrLSi+v8XRz QAV368WIFMXpnVgtIDDo6pt9aZWtnY+puh8lIBfK2/g23sVViC454Xt7WhkMv7Pl fONPpcyazXQTmbTbpMEcxuokjGQqLJJxTG1qXt0GzwnqL2c9JdftiV2V9bQOvPTM zgInB4o/iZZO+7hPnBv8DqvmNYw0d1pu4DBz5T7Q4ytXB09UdmhnM1NZCceVaJR2 41Mcx1eRPaOlQQkpVBl43ARCXocu8gQdxAnFV64m+Ms= -----END CERTIFICATE-----Generated at Mon Oct 20 13:55:28 2025 by rpki-client