$ rpki-client -vvf repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa File: 3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa (raw, json) Hash identifier: aI45yKhAru9VHfZlQWe/rwkciB33mSYkuVbNTgyinfk= Subject key identifier: 1A:9C:83:62:F3:D7:BF:F2:75:61:D9:BB:83:A1:8D:99:A1:0D:BD:78 Certificate issuer: /CN=8874CE775F191B6E0B34A789A359EB9FB93B737E Certificate serial: 1E585F646D08DC7D88DF2E109355838E360A1720 Authority key identifier: 88:74:CE:77:5F:19:1B:6E:0B:34:A7:89:A3:59:EB:9F:B9:3B:73:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8874CE775F191B6E0B34A789A359EB9FB93B737E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa Signing time: Fri 17 Oct 2025 13:00:02 +0000 ROA not before: Fri 17 Oct 2025 12:55:02 +0000 ROA not after: Fri 16 Oct 2026 13:00:02 +0000 asID: 142387 IP address blocks: 103.172.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/8874CE775F191B6E0B34A789A359EB9FB93B737E.crl rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/8874CE775F191B6E0B34A789A359EB9FB93B737E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8874CE775F191B6E0B34A789A359EB9FB93B737E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:58:5f:64:6d:08:dc:7d:88:df:2e:10:93:55:83:8e:36:0a:17:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8874CE775F191B6E0B34A789A359EB9FB93B737E Validity Not Before: Oct 17 12:55:02 2025 GMT Not After : Oct 16 13:00:02 2026 GMT Subject: CN=1A9C8362F3D7BFF27561D9BB83A18D99A10DBD78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:da:10:b6:6a:82:c1:4d:e5:59:b3:b9:a8: 80:c7:7f:33:2b:bb:f5:58:6b:fe:94:a3:13:da:f8: 9a:f4:63:da:30:9d:31:cc:63:be:0f:62:40:95:08: f1:b3:a9:3f:09:3e:70:11:38:f4:24:e5:44:d4:33: 51:63:31:73:82:da:55:2f:29:a0:d1:4a:8d:18:8d: 17:77:dc:f1:4d:d0:c3:1e:b1:fc:3b:b1:ee:66:4d: 36:e7:9a:b2:9d:72:5b:ed:bd:c2:fd:e6:99:73:2c: 95:82:2c:d5:e3:fd:51:c7:3f:a6:26:62:42:28:c2: 69:7a:41:68:e6:ba:bd:8f:c2:f0:09:3d:18:33:90: 5f:d4:bd:6e:c2:10:6c:33:e1:18:04:ae:2c:df:6a: bd:da:80:51:87:27:75:f2:5e:36:a5:1f:5c:78:70: 4d:d7:cf:9e:fd:20:30:4d:75:85:ef:84:36:0c:3c: fb:24:42:04:31:a4:21:70:78:68:82:74:0a:b3:c9: 7f:29:4b:1a:4b:c7:25:77:1d:08:f0:13:18:23:d2: 1d:a7:22:c3:ea:15:14:55:a8:db:18:c2:2a:f4:65: 01:0d:19:68:b2:54:d9:c9:e5:b2:ca:5c:8c:82:fa: 40:5b:b7:d0:bb:62:99:7d:5e:45:28:ec:44:6c:76: d4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9C:83:62:F3:D7:BF:F2:75:61:D9:BB:83:A1:8D:99:A1:0D:BD:78 X509v3 Authority Key Identifier: keyid:88:74:CE:77:5F:19:1B:6E:0B:34:A7:89:A3:59:EB:9F:B9:3B:73:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/8874CE775F191B6E0B34A789A359EB9FB93B737E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8874CE775F191B6E0B34A789A359EB9FB93B737E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf0ba1e7-d142-47cd-8d8f-2a372b922223/0/3130332e3137322e32352e302f32342d3234203d3e20313432333837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.25.0/24 Signature Algorithm: sha256WithRSAEncryption 06:38:d8:8c:d8:84:c7:8e:86:dc:17:8c:b3:fc:4d:f2:19:f4: a0:26:28:c7:56:fd:76:66:25:f2:fb:44:8f:5c:19:2d:ff:7c: c9:d9:0f:a3:01:94:d2:ff:33:28:2f:73:3a:ea:6b:10:d5:31: 04:f9:6a:7f:21:66:ea:b5:76:9d:7c:f7:af:10:7d:6a:75:02: ca:9e:1d:60:7d:68:d2:c9:32:8c:28:32:a2:d6:96:c6:fb:e9: e7:01:e9:68:14:08:05:41:1a:b2:f0:60:95:82:a7:9a:96:6c: e1:ce:62:1d:c9:90:95:bc:a0:72:d3:2b:7d:2d:ea:95:30:9d: f1:85:1c:6e:13:a0:07:f8:43:99:77:d4:eb:87:e1:50:1e:43: e6:90:aa:07:d6:6b:88:a5:e5:a9:f9:dc:33:21:40:fa:76:74: aa:79:26:64:c4:86:21:3f:5f:7e:58:7b:be:0f:19:d9:ea:bc: 51:16:42:7e:6c:a0:58:46:90:80:47:ea:c2:e1:ed:12:54:53: c7:4c:1d:d4:c1:64:86:66:6b:34:db:7a:98:ce:4e:b1:36:b4: 1c:d8:ce:33:39:7c:e2:f9:f4:0b:04:ae:81:cb:d6:f6:38:83: 6e:ce:8c:64:f1:48:f1:61:19:f5:7c:9b:69:7a:23:0e:9d:4f: 21:6c:69:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHlhfZG0I3H2I3y4Qk1WDjjYKFyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg3NENFNzc1RjE5MUI2RTBCMzRBNzg5QTM1OUVCOUZC OTNCNzM3RTAeFw0yNTEwMTcxMjU1MDJaFw0yNjEwMTYxMzAwMDJaMDMxMTAvBgNV BAMTKDFBOUM4MzYyRjNEN0JGRjI3NTYxRDlCQjgzQTE4RDk5QTEwREJENzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Q9oQtmqCwU3lWbO5qIDHfzMr u/VYa/6UoxPa+Jr0Y9ownTHMY74PYkCVCPGzqT8JPnAROPQk5UTUM1FjMXOC2lUv KaDRSo0YjRd33PFN0MMesfw7se5mTTbnmrKdclvtvcL95plzLJWCLNXj/VHHP6Ym YkIowml6QWjmur2PwvAJPRgzkF/UvW7CEGwz4RgErizfar3agFGHJ3XyXjalH1x4 cE3Xz579IDBNdYXvhDYMPPskQgQxpCFweGiCdAqzyX8pSxpLxyV3HQjwExgj0h2n IsPqFRRVqNsYwir0ZQENGWiyVNnJ5bLKXIyC+kBbt9C7Ypl9XkUo7ERsdtQJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGpyDYvPXv/J1Ydm7g6GNmaENvXgwHwYDVR0j BBgwFoAUiHTOd18ZG24LNKeJo1nrn7k7c34wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjBiYTFlNy1kMTQyLTQ3Y2QtOGQ4Zi0yYTM3MmI5MjIyMjMvMC84ODc0Q0U3NzVG MTkxQjZFMEIzNEE3ODlBMzU5RUI5RkI5M0I3MzdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODg3NENFNzc1RjE5MUI2RTBCMzRBNzg5QTM1OUVCOUZCOTNC NzM3RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmMGJhMWU3LWQxNDItNDdjZC04 ZDhmLTJhMzcyYjkyMjIyMy8wLzMxMzAzMzJlMzEzNzMyMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wZMA0GCSqG SIb3DQEBCwUAA4IBAQAGONiM2ITHjobcF4yz/E3yGfSgJijHVv12ZiXy+0SPXBkt /3zJ2Q+jAZTS/zMoL3M66msQ1TEE+Wp/IWbqtXadfPevEH1qdQLKnh1gfWjSyTKM KDKi1pbG++nnAeloFAgFQRqy8GCVgqealmzhzmIdyZCVvKBy0yt9LeqVMJ3xhRxu E6AH+EOZd9Trh+FQHkPmkKoH1muIpeWp+dwzIUD6dnSqeSZkxIYhP19+WHu+DxnZ 6rxRFkJ+bKBYRpCAR+rC4e0SVFPHTB3UwWSGZms023qYzk6xNrQc2M4zOXzi+fQL BK6By9b2OINuzoxk8UjxYRn1fJtpeiMOnU8hbGlZ -----END CERTIFICATE-----Generated at Tue Oct 21 04:35:06 2025 by rpki-client