$ rpki-client -vvf repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32372e302f32342d3234203d3e20313439333333.roa File: 3130332e3137392e32372e302f32342d3234203d3e20313439333333.roa (raw, json) Hash identifier: CA6BkOUxy6RzqVUPo5k4/nE9lMWi4FuR3B6V59PMkHY= Subject key identifier: 75:04:AD:BA:9F:72:ED:14:D3:7B:17:AA:05:62:A0:C1:EC:4E:0E:7C Certificate issuer: /CN=34D90463B7D23555C6F77AA2464E508E3F913994 Certificate serial: 257136312C3992F9168262141B56054B34ED5AFE Authority key identifier: 34:D9:04:63:B7:D2:35:55:C6:F7:7A:A2:46:4E:50:8E:3F:91:39:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer Subject info access: rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32372e302f32342d3234203d3e20313439333333.roa Signing time: Fri 03 Oct 2025 08:01:49 +0000 ROA not before: Fri 03 Oct 2025 07:56:49 +0000 ROA not after: Fri 02 Oct 2026 08:01:49 +0000 asID: 149333 IP address blocks: 103.179.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.crl rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:71:36:31:2c:39:92:f9:16:82:62:14:1b:56:05:4b:34:ed:5a:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D90463B7D23555C6F77AA2464E508E3F913994 Validity Not Before: Oct 3 07:56:49 2025 GMT Not After : Oct 2 08:01:49 2026 GMT Subject: CN=7504ADBA9F72ED14D37B17AA0562A0C1EC4E0E7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:06:ba:74:6b:e1:6d:63:8f:a5:26:a5:24: ef:23:c9:e6:b1:f7:1a:65:17:63:3c:ac:48:38:9c: ba:0c:24:87:bb:6e:33:00:ae:ee:a7:f7:c3:ba:fe: 12:ba:0e:bb:79:fc:4c:1a:bc:c8:cc:11:b2:24:64: 02:a5:94:73:40:bc:80:70:62:1c:b8:32:3c:b7:85: d5:96:b2:1b:ff:53:7a:d5:42:ed:37:f9:89:0e:e7: 96:52:d3:32:c7:8f:0b:9b:c2:4a:02:1b:4c:ff:a3: 36:e1:be:79:70:aa:99:1d:77:eb:9c:36:60:a6:83: 6a:01:2e:2d:45:e6:57:57:9e:32:0c:78:22:ca:ba: 9c:c8:8f:2d:22:70:59:d7:7b:06:45:15:bc:6a:ec: 1f:fd:63:86:83:8f:f6:c5:ee:c9:e6:e0:81:8d:c3: be:60:18:d6:1b:21:bc:8a:64:be:4b:d8:cb:4f:83: bb:4f:46:3c:22:43:cf:bc:61:54:e4:e5:ff:99:6f: e1:5e:7a:2c:59:c8:60:a7:3d:3c:0e:b4:95:ef:51: 18:fe:e5:30:44:a6:14:e0:07:3b:1f:d6:e2:46:34: 07:49:6e:bf:41:2c:b1:80:57:63:d0:94:f5:9c:07: a9:db:c7:27:5d:be:af:28:55:75:5a:b2:3a:c7:ca: dd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:04:AD:BA:9F:72:ED:14:D3:7B:17:AA:05:62:A0:C1:EC:4E:0E:7C X509v3 Authority Key Identifier: keyid:34:D9:04:63:B7:D2:35:55:C6:F7:7A:A2:46:4E:50:8E:3F:91:39:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32372e302f32342d3234203d3e20313439333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.27.0/24 Signature Algorithm: sha256WithRSAEncryption 60:d8:b6:d0:a1:b8:f4:60:c9:d8:1c:96:ac:51:d0:e5:2c:91: 68:94:47:57:08:93:bc:24:ee:07:f0:c0:93:be:c0:8a:d1:1d: 4c:73:a6:27:a5:69:90:ed:d2:9b:8e:1f:1f:2f:2d:77:09:db: d2:6d:35:a3:c3:0f:75:0b:cf:f9:0b:22:6b:59:d4:f1:88:e5: bf:e1:b3:03:b0:8b:0b:54:da:b3:16:f4:73:22:8b:59:73:b8: d5:c3:35:b7:95:5d:1c:26:83:97:56:5f:ec:d0:2e:68:87:32: 7c:56:58:51:60:2f:2d:db:e7:eb:c1:e3:d1:02:0c:7f:33:e4: 08:e2:ed:0a:9b:81:25:c1:25:8e:d7:61:c7:1d:d4:73:de:52: 98:85:c2:50:2f:0d:26:f0:7e:b4:9a:b7:09:bd:8e:42:3b:46: 67:21:68:8b:89:68:11:3e:96:db:d4:46:89:fb:5f:cd:dc:9a: 6f:8c:7f:53:ab:6b:b1:05:b1:22:69:35:7a:52:3c:4e:70:15: 82:0d:db:43:fe:ff:de:7a:ca:e3:a8:56:78:2f:12:86:3a:d7: 06:42:6f:f4:7c:b8:ba:bc:c4:1c:40:f9:97:78:04:55:b9:8c: 47:e4:ff:4e:b7:c6:22:9c:00:ab:98:41:3d:58:2d:fb:a0:f3: e4:b0:ed:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJXE2MSw5kvkWgmIUG1YFSzTtWv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzREOTA0NjNCN0QyMzU1NUM2Rjc3QUEyNDY0RTUwOEUz RjkxMzk5NDAeFw0yNTEwMDMwNzU2NDlaFw0yNjEwMDIwODAxNDlaMDMxMTAvBgNV BAMTKDc1MDRBREJBOUY3MkVEMTREMzdCMTdBQTA1NjJBMEMxRUM0RTBFN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3rAa6dGvhbWOPpSalJO8jyeax 9xplF2M8rEg4nLoMJIe7bjMAru6n98O6/hK6Drt5/EwavMjMEbIkZAKllHNAvIBw Yhy4Mjy3hdWWshv/U3rVQu03+YkO55ZS0zLHjwubwkoCG0z/ozbhvnlwqpkdd+uc NmCmg2oBLi1F5ldXnjIMeCLKupzIjy0icFnXewZFFbxq7B/9Y4aDj/bF7snm4IGN w75gGNYbIbyKZL5L2MtPg7tPRjwiQ8+8YVTk5f+Zb+FeeixZyGCnPTwOtJXvURj+ 5TBEphTgBzsf1uJGNAdJbr9BLLGAV2PQlPWcB6nbxyddvq8oVXVasjrHyt05AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdQStup9y7RTTexeqBWKgwexODnwwHwYDVR0j BBgwFoAUNNkEY7fSNVXG93qiRk5Qjj+ROZQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OThiMzU0OS1lMjUzLTRmZDktYTcwNC0yOTY5NDRlNWEwNjMvMC8zNEQ5MDQ2M0I3 RDIzNTU1QzZGNzdBQTI0NjRFNTA4RTNGOTEzOTk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzREOTA0NjNCN0QyMzU1NUM2Rjc3QUEyNDY0RTUwOEUzRjkx Mzk5NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5OGIzNTQ5LWUyNTMtNGZkOS1h NzA0LTI5Njk0NGU1YTA2My8wLzMxMzAzMzJlMzEzNzM5MmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7MbMA0GCSqG SIb3DQEBCwUAA4IBAQBg2LbQobj0YMnYHJasUdDlLJFolEdXCJO8JO4H8MCTvsCK 0R1Mc6YnpWmQ7dKbjh8fLy13CdvSbTWjww91C8/5CyJrWdTxiOW/4bMDsIsLVNqz FvRzIotZc7jVwzW3lV0cJoOXVl/s0C5ohzJ8VlhRYC8t2+frwePRAgx/M+QI4u0K m4ElwSWO12HHHdRz3lKYhcJQLw0m8H60mrcJvY5CO0ZnIWiLiWgRPpbb1EaJ+1/N 3JpvjH9Tq2uxBbEiaTV6UjxOcBWCDdtD/v/eesrjqFZ4LxKGOtcGQm/0fLi6vMQc QPmXeARVuYxH5P9Ot8YinACrmEE9WC37oPPksO3x -----END CERTIFICATE-----Generated at Tue Oct 21 01:25:19 2025 by rpki-client