$ rpki-client -vvf repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa File: 3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa (raw, json) Hash identifier: GwLSbTnQeuh0a53ovkV2iGQ8IVBTUAVLDO4WWZFmNyc= Subject key identifier: 96:D4:11:9A:D8:FF:1F:15:31:DB:57:3D:DC:BF:5A:64:CE:53:99:BB Certificate issuer: /CN=99F644C407D1C8C133A923CC84619FC228E767AC Certificate serial: 731D9D3E72C92249CC85FA9679631A2647771AB2 Authority key identifier: 99:F6:44:C4:07:D1:C8:C1:33:A9:23:CC:84:61:9F:C2:28:E7:67:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99F644C407D1C8C133A923CC84619FC228E767AC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa Signing time: Tue 23 Sep 2025 15:00:02 +0000 ROA not before: Tue 23 Sep 2025 14:55:02 +0000 ROA not after: Tue 22 Sep 2026 15:00:02 +0000 asID: 142391 IP address blocks: 103.169.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/99F644C407D1C8C133A923CC84619FC228E767AC.crl rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/99F644C407D1C8C133A923CC84619FC228E767AC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99F644C407D1C8C133A923CC84619FC228E767AC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 04:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:1d:9d:3e:72:c9:22:49:cc:85:fa:96:79:63:1a:26:47:77:1a:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99F644C407D1C8C133A923CC84619FC228E767AC Validity Not Before: Sep 23 14:55:02 2025 GMT Not After : Sep 22 15:00:02 2026 GMT Subject: CN=96D4119AD8FF1F1531DB573DDCBF5A64CE5399BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:81:02:1b:ae:9e:00:38:34:d1:09:90:d3:64: 1a:0f:a8:44:d0:ee:08:27:b1:cc:26:1a:98:2c:3f: b5:05:e6:b5:e1:59:e1:42:1b:87:ef:b9:ba:a4:f8: 8f:4f:44:8b:9e:fa:4b:c3:68:19:b4:7d:72:fb:6f: 82:3c:83:e8:4d:c3:bf:59:81:0d:3b:79:d9:74:36: 61:12:90:c3:d2:5b:ad:1a:cf:e1:66:f9:a5:97:f8: d4:d2:d6:ce:c8:1b:6d:f1:89:1a:7e:71:c3:3b:54: 48:44:dc:4d:e9:b0:0e:7a:e9:fb:60:3f:31:ec:8f: 37:dc:3e:4a:5e:8f:b0:82:15:a1:7f:b4:e8:49:52: 18:14:1e:9a:57:d0:65:9b:28:83:72:9d:82:68:ae: 42:a6:eb:60:f9:f6:44:0a:56:8f:c1:7e:0b:e9:09: 43:a6:27:58:c2:bf:3f:66:b8:40:04:f5:60:8a:99: 78:45:2f:a4:07:66:2f:1d:d7:eb:97:7d:c4:7b:d9: 3b:47:e0:be:e4:36:a4:22:26:ab:30:fb:2e:88:54: d2:89:88:bd:a2:94:c3:9a:06:22:b0:97:e8:89:e7: c6:74:83:52:9b:21:1f:85:0e:c3:91:77:b1:91:38: 44:a9:90:32:ca:a0:80:85:a9:75:2d:43:ed:a1:e6: 92:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D4:11:9A:D8:FF:1F:15:31:DB:57:3D:DC:BF:5A:64:CE:53:99:BB X509v3 Authority Key Identifier: keyid:99:F6:44:C4:07:D1:C8:C1:33:A9:23:CC:84:61:9F:C2:28:E7:67:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/99F644C407D1C8C133A923CC84619FC228E767AC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/99F644C407D1C8C133A923CC84619FC228E767AC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/946b5248-ce33-4e97-882f-f6145f319026/0/3130332e3136392e34342e302f32342d3234203d3e20313432333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.44.0/24 Signature Algorithm: sha256WithRSAEncryption c6:02:b5:8e:10:87:55:0a:b4:2f:a5:39:d4:c4:f2:3e:5c:94: 29:ce:24:9e:ab:96:26:9d:91:23:95:1b:d5:dd:32:8e:cd:da: 04:8f:84:50:8c:dd:44:90:54:0b:db:7b:24:21:6f:94:54:63: 16:bb:c3:f0:26:3f:76:d6:43:89:bb:62:63:62:4f:71:8a:0b: f6:40:a0:ca:fe:6b:24:1a:cd:dc:10:18:74:4b:c9:b7:07:f9: 96:4f:ea:8a:c2:0e:06:ae:8d:ec:06:0c:13:d5:91:3f:41:7d: 53:3c:21:bc:40:1f:5c:1c:3a:d6:c9:a0:f2:9c:e8:9c:73:ef: e1:e5:03:89:11:0f:42:13:ce:48:e3:76:d7:50:24:8b:7a:1f: 21:6d:8a:ff:59:dc:51:98:84:41:71:98:63:66:09:e0:35:d5: b2:28:34:76:e3:0e:dd:ff:b7:9e:02:11:84:7b:5d:64:cb:6e: 43:dd:4a:00:05:e0:c9:81:7c:b5:57:81:2f:ab:25:72:2b:1d: 22:9e:bf:7f:20:2a:ea:f6:9f:a8:8a:a5:10:f8:c4:72:98:58: 22:bf:a8:85:1d:b0:55:e6:72:2d:e4:76:8f:7e:0a:a8:00:c1: bb:3e:11:b2:1c:fb:3b:0a:a6:d4:90:de:03:96:b2:48:14:b2: 8c:dc:e3:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcx2dPnLJIknMhfqWeWMaJkd3GrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlGNjQ0QzQwN0QxQzhDMTMzQTkyM0NDODQ2MTlGQzIy OEU3NjdBQzAeFw0yNTA5MjMxNDU1MDJaFw0yNjA5MjIxNTAwMDJaMDMxMTAvBgNV BAMTKDk2RDQxMTlBRDhGRjFGMTUzMURCNTczRERDQkY1QTY0Q0U1Mzk5QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBgQIbrp4AODTRCZDTZBoPqETQ 7ggnscwmGpgsP7UF5rXhWeFCG4fvubqk+I9PRIue+kvDaBm0fXL7b4I8g+hNw79Z gQ07edl0NmESkMPSW60az+Fm+aWX+NTS1s7IG23xiRp+ccM7VEhE3E3psA566ftg PzHsjzfcPkpej7CCFaF/tOhJUhgUHppX0GWbKINynYJorkKm62D59kQKVo/Bfgvp CUOmJ1jCvz9muEAE9WCKmXhFL6QHZi8d1+uXfcR72TtH4L7kNqQiJqsw+y6IVNKJ iL2ilMOaBiKwl+iJ58Z0g1KbIR+FDsORd7GROESpkDLKoICFqXUtQ+2h5pLlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUltQRmtj/HxUx21c93L9aZM5TmbswHwYDVR0j BBgwFoAUmfZExAfRyMEzqSPMhGGfwijnZ6wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDZiNTI0OC1jZTMzLTRlOTctODgyZi1mNjE0NWYzMTkwMjYvMC85OUY2NDRDNDA3 RDFDOEMxMzNBOTIzQ0M4NDYxOUZDMjI4RTc2N0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTlGNjQ0QzQwN0QxQzhDMTMzQTkyM0NDODQ2MTlGQzIyOEU3 NjdBQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0NmI1MjQ4LWNlMzMtNGU5Ny04 ODJmLWY2MTQ1ZjMxOTAyNi8wLzMxMzAzMzJlMzEzNjM5MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ksMA0GCSqG SIb3DQEBCwUAA4IBAQDGArWOEIdVCrQvpTnUxPI+XJQpziSeq5YmnZEjlRvV3TKO zdoEj4RQjN1EkFQL23skIW+UVGMWu8PwJj921kOJu2JjYk9xigv2QKDK/mskGs3c EBh0S8m3B/mWT+qKwg4Gro3sBgwT1ZE/QX1TPCG8QB9cHDrWyaDynOicc+/h5QOJ EQ9CE85I43bXUCSLeh8hbYr/WdxRmIRBcZhjZgngNdWyKDR24w7d/7eeAhGEe11k y25D3UoABeDJgXy1V4EvqyVyKx0inr9/ICrq9p+oiqUQ+MRymFgiv6iFHbBV5nIt 5HaPfgqoAMG7PhGyHPs7CqbUkN4DlrJIFLKM3OPs -----END CERTIFICATE-----Generated at Mon Oct 20 21:07:25 2025 by rpki-client