$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa File: 3130332e35392e34342e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: WwofrZFmyxxNmFQldqggXgk6rTZwUF5EZ7pyfgFI9jU= Subject key identifier: 28:B7:B5:ED:CA:42:EE:7C:46:33:F2:A0:16:92:85:94:CE:ED:B4:B8 Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 1BA21AA5A85FA7F05CC8E42F4B2C1E26B9C9BCA8 Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa Signing time: Tue 30 Sep 2025 10:00:01 +0000 ROA not before: Tue 30 Sep 2025 09:55:01 +0000 ROA not after: Tue 29 Sep 2026 10:00:01 +0000 asID: 138881 IP address blocks: 103.59.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 18:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a2:1a:a5:a8:5f:a7:f0:5c:c8:e4:2f:4b:2c:1e:26:b9:c9:bc:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Sep 30 09:55:01 2025 GMT Not After : Sep 29 10:00:01 2026 GMT Subject: CN=28B7B5EDCA42EE7C4633F2A016928594CEEDB4B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:d9:d2:f3:19:d9:21:c5:8a:76:d7:d4:7c: 16:d1:5f:95:cb:9d:78:73:e5:17:d1:72:98:75:c1: 5d:db:9a:75:f7:17:92:a5:b6:93:da:32:85:0a:04: b4:40:d4:fe:21:59:13:39:2e:31:6a:76:00:fa:25: 78:22:0e:a9:5f:f6:2f:8f:7a:20:30:2d:66:e7:11: 0e:9a:82:ea:6b:c4:6b:61:d5:76:08:88:6b:b7:ff: 8a:62:f3:bf:94:7f:c7:ad:f8:fc:59:fa:8e:53:42: 48:35:41:61:3c:eb:ab:87:0d:8b:a6:aa:16:c4:71: b5:87:de:5f:4c:de:5d:d2:05:76:43:52:bf:94:b1: 5d:5c:36:13:00:17:95:c6:32:56:3b:77:fd:29:bc: cf:a9:d3:5f:1f:d6:14:f0:3a:b3:3d:87:fa:84:cc: 01:c8:6a:bc:68:69:38:e2:af:52:79:b7:25:b5:0c: 50:ab:25:5e:8d:4c:4c:33:fc:a6:83:29:91:08:86: b3:fe:d0:a1:da:fe:87:77:a1:be:6b:79:56:ee:0f: 98:b8:f0:b1:78:9f:9a:01:c4:27:60:c2:5e:81:60: 67:67:6e:37:b8:28:a2:5a:66:0a:d8:f5:0a:6b:4b: 2f:3d:15:81:84:22:9d:e3:99:01:04:21:23:95:d3: 2e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B7:B5:ED:CA:42:EE:7C:46:33:F2:A0:16:92:85:94:CE:ED:B4:B8 X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.44.0/24 Signature Algorithm: sha256WithRSAEncryption 99:3a:c4:fa:ce:0d:9f:56:6c:50:16:2a:73:87:03:6f:89:2d: 74:93:e3:8f:6b:dd:b9:a8:18:2f:11:39:47:63:7e:a9:c3:fb: 89:03:a8:17:d0:43:ee:5a:cc:9d:d1:8d:bc:28:4e:08:91:b2: e0:be:87:0d:79:01:64:6b:fa:c3:e3:8a:69:e0:d9:fa:4b:01: 67:0b:6b:af:8e:70:c6:6e:28:29:fb:5a:ab:f2:c5:56:ef:74: 46:27:52:03:61:f8:81:45:65:a1:52:d3:d0:83:d3:5b:f0:a1: 67:83:77:c1:73:e8:f3:66:b6:42:e8:e9:ba:07:95:5e:42:04: ea:cb:c9:7f:6a:02:c7:cf:62:ae:2d:d7:6a:d6:b9:67:f0:0f: ce:7e:4f:aa:a9:08:a8:fa:15:41:ba:e4:a1:5e:39:9a:7d:12: 80:d8:6e:cd:b5:c9:64:07:b2:91:c0:a6:ef:83:e1:b5:73:20: 3b:d4:a9:ab:19:e0:f6:08:a0:87:cc:d4:08:0b:18:8e:08:17: e4:b5:90:ee:dc:42:5b:65:c2:f3:6a:15:29:3e:e6:bc:9d:3d: 3f:9f:61:62:71:86:4d:3f:ee:ef:23:47:7c:49:89:bd:34:d0: 1e:ba:a0:3e:e5:55:cd:3f:95:da:78:17:7d:9e:0a:32:5f:7d: f4:ea:5a:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG6Iapahfp/BcyOQvSyweJrnJvKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yNTA5MzAwOTU1MDFaFw0yNjA5MjkxMDAwMDFaMDMxMTAvBgNV BAMTKDI4QjdCNUVEQ0E0MkVFN0M0NjMzRjJBMDE2OTI4NTk0Q0VFREI0QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3nNnS8xnZIcWKdtfUfBbRX5XL nXhz5RfRcph1wV3bmnX3F5KltpPaMoUKBLRA1P4hWRM5LjFqdgD6JXgiDqlf9i+P eiAwLWbnEQ6aguprxGth1XYIiGu3/4pi87+Uf8et+PxZ+o5TQkg1QWE866uHDYum qhbEcbWH3l9M3l3SBXZDUr+UsV1cNhMAF5XGMlY7d/0pvM+p018f1hTwOrM9h/qE zAHIarxoaTjir1J5tyW1DFCrJV6NTEwz/KaDKZEIhrP+0KHa/od3ob5reVbuD5i4 8LF4n5oBxCdgwl6BYGdnbje4KKJaZgrY9QprSy89FYGEIp3jmQEEISOV0y57AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKLe17cpC7nxGM/KgFpKFlM7ttLgwHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc7LDANBgkqhkiG 9w0BAQsFAAOCAQEAmTrE+s4Nn1ZsUBYqc4cDb4ktdJPjj2vduagYLxE5R2N+qcP7 iQOoF9BD7lrMndGNvChOCJGy4L6HDXkBZGv6w+OKaeDZ+ksBZwtrr45wxm4oKfta q/LFVu90RidSA2H4gUVloVLT0IPTW/ChZ4N3wXPo82a2QujpugeVXkIE6svJf2oC x89iri3Xata5Z/APzn5PqqkIqPoVQbrkoV45mn0SgNhuzbXJZAeykcCm74PhtXMg O9Spqxng9gigh8zUCAsYjggX5LWQ7txCW2XC82oVKT7mvJ09P59hYnGGTT/u7yNH fEmJvTTQHrqgPuVVzT+V2ngXfZ4KMl999Opafg== -----END CERTIFICATE-----Generated at Mon Oct 20 17:55:56 2025 by rpki-client