$ rpki-client -vvf repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32342e302f32342d3234203d3e20313432333837.roa File: 3130332e3137322e32342e302f32342d3234203d3e20313432333837.roa (raw, json) Hash identifier: nL/HZGA0E7GxsNtQZwq3/bQqUnFo5wNCWdHlAXFVa2g= Subject key identifier: B4:8B:3B:F7:A2:63:9A:04:B2:0B:B6:1F:CC:10:BC:E4:9E:42:FE:5B Certificate issuer: /CN=8874CE775F191B6E0B34A789A359EB9FB93B737E Certificate serial: 2A5A5FFC480D6F182625CB9A9A78F41A6CF52655 Authority key identifier: 88:74:CE:77:5F:19:1B:6E:0B:34:A7:89:A3:59:EB:9F:B9:3B:73:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8874CE775F191B6E0B34A789A359EB9FB93B737E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32342e302f32342d3234203d3e20313432333837.roa Signing time: Fri 17 Oct 2025 13:00:02 +0000 ROA not before: Fri 17 Oct 2025 12:55:02 +0000 ROA not after: Fri 16 Oct 2026 13:00:02 +0000 asID: 142387 IP address blocks: 103.172.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/8874CE775F191B6E0B34A789A359EB9FB93B737E.crl rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/8874CE775F191B6E0B34A789A359EB9FB93B737E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8874CE775F191B6E0B34A789A359EB9FB93B737E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:5a:5f:fc:48:0d:6f:18:26:25:cb:9a:9a:78:f4:1a:6c:f5:26:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8874CE775F191B6E0B34A789A359EB9FB93B737E Validity Not Before: Oct 17 12:55:02 2025 GMT Not After : Oct 16 13:00:02 2026 GMT Subject: CN=B48B3BF7A2639A04B20BB61FCC10BCE49E42FE5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:60:a9:ec:c8:8e:73:2b:00:81:72:44:b9:28: d5:ef:e9:a6:c5:64:79:ff:7e:e7:24:d3:b3:34:d3: 51:c2:72:31:80:df:39:0f:c9:44:1d:67:44:d3:c9: ef:27:61:75:00:af:5f:62:12:e1:ad:42:61:21:c1: 6d:c1:83:7e:31:83:05:bb:5a:b4:0a:96:95:99:8d: ef:d4:86:67:b9:fc:36:a0:2c:17:9b:c8:ae:33:f3: fe:55:e8:7a:3e:26:7d:54:00:04:31:05:98:6b:65: 5a:91:a9:2d:d9:82:61:63:95:36:96:95:58:1c:64: a2:48:2d:92:86:22:d0:de:3d:c0:73:f4:6d:88:2c: 76:e3:72:37:84:d2:9d:ed:3a:06:38:e8:fb:5e:b9: 56:9d:7b:b1:91:ca:cb:78:05:31:4c:71:9e:37:2a: 8d:39:99:59:75:89:c8:68:84:01:64:04:9b:73:f5: f7:c4:c2:ef:23:05:02:87:17:17:7f:13:b6:cb:87: ed:32:7c:97:da:56:54:b5:9c:d2:72:7a:25:ca:b0: 25:51:54:35:db:12:03:db:4c:a7:da:88:61:a6:0b: d2:1d:58:af:9e:cd:92:a4:88:73:bf:34:ac:a8:05: 5a:e9:f8:ac:9c:83:5c:e5:9a:97:01:99:51:06:9c: 35:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8B:3B:F7:A2:63:9A:04:B2:0B:B6:1F:CC:10:BC:E4:9E:42:FE:5B X509v3 Authority Key Identifier: keyid:88:74:CE:77:5F:19:1B:6E:0B:34:A7:89:A3:59:EB:9F:B9:3B:73:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/8874CE775F191B6E0B34A789A359EB9FB93B737E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8874CE775F191B6E0B34A789A359EB9FB93B737E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32342e302f32342d3234203d3e20313432333837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.24.0/24 Signature Algorithm: sha256WithRSAEncryption 95:4d:72:8c:f6:89:c2:98:97:5e:94:8a:d2:d6:56:c9:11:b5: 4a:b6:1d:d2:c6:bb:3b:82:5c:52:4e:b9:39:e8:28:33:b9:f5: 59:68:d2:17:72:5a:5f:12:a5:21:aa:28:74:4e:21:90:c7:b2: 22:0b:e3:38:83:1c:a5:3c:1a:d9:6b:b3:70:61:4c:b4:43:43: 4e:a2:8c:7a:f0:d2:03:e7:51:5c:39:53:c5:41:24:78:7f:d3: 71:a4:d1:fd:97:fd:1e:63:59:66:50:f5:12:a0:09:97:72:1a: 64:58:0a:97:e4:24:1b:6a:3e:40:b5:8c:02:a9:86:69:06:fe: d8:8e:17:ca:31:9b:0a:77:07:1c:fe:89:bb:4d:d9:8f:ef:cc: f2:60:b2:39:13:f7:47:1f:a1:64:65:fd:41:c7:af:f8:7b:45: e1:30:d3:23:df:67:43:76:bf:b9:ca:db:e0:24:ad:b2:00:c2: ac:c4:fc:fe:f9:6d:41:ae:f0:5b:0b:b9:9b:1f:10:17:ca:46: 23:e3:ed:0f:22:3a:65:3a:dc:9a:ef:23:60:ac:a2:88:17:f0: 58:10:2f:10:3b:8e:52:a2:14:ab:f8:2c:88:b5:56:85:41:76: a4:c8:22:92:c4:78:a0:bd:5e:a8:40:59:78:78:ea:b2:c8:19: bd:2d:fc:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKlpf/EgNbxgmJcuamnj0Gmz1JlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg3NENFNzc1RjE5MUI2RTBCMzRBNzg5QTM1OUVCOUZC OTNCNzM3RTAeFw0yNTEwMTcxMjU1MDJaFw0yNjEwMTYxMzAwMDJaMDMxMTAvBgNV BAMTKEI0OEIzQkY3QTI2MzlBMDRCMjBCQjYxRkNDMTBCQ0U0OUU0MkZFNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+YKnsyI5zKwCBckS5KNXv6abF ZHn/fuck07M001HCcjGA3zkPyUQdZ0TTye8nYXUAr19iEuGtQmEhwW3Bg34xgwW7 WrQKlpWZje/Uhme5/DagLBebyK4z8/5V6Ho+Jn1UAAQxBZhrZVqRqS3ZgmFjlTaW lVgcZKJILZKGItDePcBz9G2ILHbjcjeE0p3tOgY46PteuVade7GRyst4BTFMcZ43 Ko05mVl1ichohAFkBJtz9ffEwu8jBQKHFxd/E7bLh+0yfJfaVlS1nNJyeiXKsCVR VDXbEgPbTKfaiGGmC9IdWK+ezZKkiHO/NKyoBVrp+Kycg1zlmpcBmVEGnDVFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtIs796JjmgSyC7YfzBC85J5C/lswHwYDVR0j BBgwFoAUiHTOd18ZG24LNKeJo1nrn7k7c34wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjBiYTFlNy1kMTQyLTQ3Y2QtOGQ4Zi0yYTM3MmI5MjIyMjMvMC84ODc0Q0U3NzVG MTkxQjZFMEIzNEE3ODlBMzU5RUI5RkI5M0I3MzdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODg3NENFNzc1RjE5MUI2RTBCMzRBNzg5QTM1OUVCOUZCOTNC NzM3RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmMGJhMWU3LWQxNDItNDdjZC04 ZDhmLTJhMzcyYjkyMjIyMy8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wYMA0GCSqG SIb3DQEBCwUAA4IBAQCVTXKM9onCmJdelIrS1lbJEbVKth3Sxrs7glxSTrk56Cgz ufVZaNIXclpfEqUhqih0TiGQx7IiC+M4gxylPBrZa7NwYUy0Q0NOoox68NID51Fc OVPFQSR4f9NxpNH9l/0eY1lmUPUSoAmXchpkWAqX5CQbaj5AtYwCqYZpBv7YjhfK MZsKdwcc/om7TdmP78zyYLI5E/dHH6FkZf1Bx6/4e0XhMNMj32dDdr+5ytvgJK2y AMKsxPz++W1BrvBbC7mbHxAXykYj4+0PIjplOtya7yNgrKKIF/BYEC8QO45SohSr +CyItVaFQXakyCKSxHigvV6oQFl4eOqyyBm9LfyW -----END CERTIFICATE-----Generated at Tue Oct 21 04:35:07 2025 by rpki-client