$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e20313431363330.roa File: 3130332e36362e36382e302f32342d3234203d3e20313431363330.roa (raw, json) Hash identifier: I/le6Te2VCdo9U/Jhbu6/dBd0G0Ft1HGDM8GZasvyxk= Subject key identifier: 79:C9:1F:0D:41:34:4E:4D:7F:7E:83:F8:C4:5E:5C:AC:7C:A6:0D:7E Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 1F2EE75A6B6E53B78502BCE156886E3A9BF04D98 Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e20313431363330.roa Signing time: Mon 06 Oct 2025 04:06:53 +0000 ROA not before: Mon 06 Oct 2025 04:01:53 +0000 ROA not after: Mon 05 Oct 2026 04:06:53 +0000 asID: 141630 IP address blocks: 103.66.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:2e:e7:5a:6b:6e:53:b7:85:02:bc:e1:56:88:6e:3a:9b:f0:4d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Oct 6 04:01:53 2025 GMT Not After : Oct 5 04:06:53 2026 GMT Subject: CN=79C91F0D41344E4D7F7E83F8C45E5CAC7CA60D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:15:26:30:90:a2:49:2a:d6:85:ec:45:21:3a: e1:e8:eb:06:73:56:49:3c:18:eb:34:6f:96:3f:72: 11:06:9c:a8:cc:7a:71:b3:bd:9b:f7:76:11:9b:5b: 83:02:fa:ec:68:23:a4:2a:1a:74:95:46:a5:7b:01: ef:f8:3c:94:ac:43:ff:32:b5:94:9e:bc:cd:5b:c0: 54:0b:50:4e:82:a6:20:7a:71:79:40:47:b8:b5:56: 45:b3:c2:a1:89:07:36:a6:cf:9b:7e:f8:e4:a7:ed: 6c:22:bd:45:ee:69:42:16:59:69:58:aa:0d:a9:cb: 3c:f5:ea:5e:e5:08:18:fa:9e:85:6f:9b:90:fb:fa: b5:fc:9d:ed:ba:3e:bc:f5:24:d0:ff:24:ae:93:e1: 08:96:08:25:39:5f:91:d2:49:c7:f1:8f:e3:dd:b5: c6:c3:93:3c:30:6b:46:d1:88:98:25:de:ee:41:e5: 3e:8a:86:af:82:5c:2b:70:21:00:20:2b:bf:bf:c6: 33:5e:28:45:23:ee:68:ba:af:1f:6d:c4:4f:7b:af: 87:5b:55:1f:a5:85:2f:c2:54:2d:36:d3:c1:df:22: ba:4d:9d:a4:15:69:6d:6a:dd:53:1d:f2:d7:a6:75: e0:b2:70:b4:2e:d4:08:e2:ef:4f:9d:82:b2:50:5c: f8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C9:1F:0D:41:34:4E:4D:7F:7E:83:F8:C4:5E:5C:AC:7C:A6:0D:7E X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e20313431363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.68.0/24 Signature Algorithm: sha256WithRSAEncryption 80:af:bb:f5:6c:5d:38:1c:2c:0b:59:cf:da:2c:0a:bc:a5:34: 6d:8a:cb:18:c0:f0:b5:66:9d:fd:3c:23:54:c8:e7:62:c8:d6: cd:f1:f9:fc:23:96:5a:e9:d7:46:5d:d8:15:1f:dc:6d:f4:78: e1:22:5e:a4:b7:ca:63:35:85:f4:ba:91:b3:b2:34:18:2f:32: 0d:fa:5c:db:7c:58:33:7c:d8:88:ad:91:02:dd:36:e4:e2:8f: e1:8f:0d:33:a9:e5:ae:25:52:0f:db:b5:8f:de:f9:d1:9b:95: d5:ec:be:74:24:e6:0e:c8:90:c1:ef:76:4d:21:6f:65:84:eb: 45:4d:b2:19:f1:59:13:11:c9:c8:c1:5f:1e:08:ab:bb:1f:40: 99:06:e3:27:a5:2a:17:b7:78:8a:9b:f0:10:16:99:22:da:ea: 83:ea:36:7a:cf:c4:f5:df:6f:fb:53:83:17:41:fa:b9:ba:5e: d0:26:7b:65:65:58:bb:3c:08:ac:17:05:25:df:b3:fa:1c:c9: 1b:01:a5:4a:9a:f5:df:b5:e9:0b:a1:13:bf:87:f8:97:67:7b: fa:b2:5f:ba:c5:09:c2:22:36:b5:04:23:49:fc:c6:f3:32:56: 2d:18:a2:ae:3a:b1:e4:41:75:f3:ae:23:9e:f5:c2:5c:ec:b8: d7:f9:60:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHy7nWmtuU7eFArzhVohuOpvwTZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yNTEwMDYwNDAxNTNaFw0yNjEwMDUwNDA2NTNaMDMxMTAvBgNV BAMTKDc5QzkxRjBENDEzNDRFNEQ3RjdFODNGOEM0NUU1Q0FDN0NBNjBEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8FSYwkKJJKtaF7EUhOuHo6wZz Vkk8GOs0b5Y/chEGnKjMenGzvZv3dhGbW4MC+uxoI6QqGnSVRqV7Ae/4PJSsQ/8y tZSevM1bwFQLUE6CpiB6cXlAR7i1VkWzwqGJBzamz5t++OSn7WwivUXuaUIWWWlY qg2pyzz16l7lCBj6noVvm5D7+rX8ne26Prz1JND/JK6T4QiWCCU5X5HSScfxj+Pd tcbDkzwwa0bRiJgl3u5B5T6Khq+CXCtwIQAgK7+/xjNeKEUj7mi6rx9txE97r4db VR+lhS/CVC0208HfIrpNnaQVaW1q3VMd8temdeCycLQu1Aji70+dgrJQXPh5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeckfDUE0Tk1/foP4xF5crHymDX4wHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCRDANBgkqhkiG 9w0BAQsFAAOCAQEAgK+79WxdOBwsC1nP2iwKvKU0bYrLGMDwtWad/TwjVMjnYsjW zfH5/COWWunXRl3YFR/cbfR44SJepLfKYzWF9LqRs7I0GC8yDfpc23xYM3zYiK2R At025OKP4Y8NM6nlriVSD9u1j9750ZuV1ey+dCTmDsiQwe92TSFvZYTrRU2yGfFZ ExHJyMFfHgirux9AmQbjJ6UqF7d4ipvwEBaZItrqg+o2es/E9d9v+1ODF0H6ubpe 0CZ7ZWVYuzwIrBcFJd+z+hzJGwGlSpr137XpC6ETv4f4l2d7+rJfusUJwiI2tQQj SfzG8zJWLRiirjqx5EF1864jnvXCXOy41/lgrw== -----END CERTIFICATE-----Generated at Mon Oct 20 13:18:43 2025 by rpki-client