$ rpki-client -vvf repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/3130332e37392e3233362e302f32332d3233203d3e20313530393535.roa File: 3130332e37392e3233362e302f32332d3233203d3e20313530393535.roa (raw, json) Hash identifier: ThDgpbBTSfRRealh0FHjoyTHcEPiBLGvmWH7tSYcxdE= Subject key identifier: B9:2F:AC:9D:6E:FC:B2:1A:43:75:0A:7E:36:20:B7:65:D5:5F:C5:50 Certificate issuer: /CN=89B98D1F135A7FC66C0284C34477C19604645554 Certificate serial: 422459FD09CBB7F4EF14A5A1FCE9FF7EB0F0E65C Authority key identifier: 89:B9:8D:1F:13:5A:7F:C6:6C:02:84:C3:44:77:C1:96:04:64:55:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/3130332e37392e3233362e302f32332d3233203d3e20313530393535.roa Signing time: Tue 09 Sep 2025 07:02:04 +0000 ROA not before: Tue 09 Sep 2025 06:57:04 +0000 ROA not after: Tue 08 Sep 2026 07:02:04 +0000 asID: 150955 IP address blocks: 103.79.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.crl rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:24:59:fd:09:cb:b7:f4:ef:14:a5:a1:fc:e9:ff:7e:b0:f0:e6:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89B98D1F135A7FC66C0284C34477C19604645554 Validity Not Before: Sep 9 06:57:04 2025 GMT Not After : Sep 8 07:02:04 2026 GMT Subject: CN=B92FAC9D6EFCB21A43750A7E3620B765D55FC550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:b9:c1:ca:57:0a:6e:89:4e:ff:0b:f9:12: b8:8f:a6:08:52:63:f9:f9:96:b3:e5:36:b1:9d:fa: a3:15:bc:08:39:a2:89:68:da:2d:8c:bc:cb:6e:11: 27:ad:8b:8c:90:d1:8b:e8:56:bd:55:33:99:88:70: 7b:c9:17:90:43:57:93:3f:49:ab:3e:cf:bb:bd:99: c2:76:8e:6a:0e:89:ab:ce:08:c5:74:57:a0:e2:e7: fc:aa:70:b4:8a:6d:ef:42:35:21:0f:cb:fa:9f:ce: 50:de:3c:15:dd:16:02:97:44:b9:09:83:c3:22:8c: 09:40:96:dc:47:44:cb:28:3b:26:c1:7f:9c:c9:3b: 12:c5:16:5c:4b:be:bf:dc:eb:eb:6e:8c:24:3c:75: 4a:4c:ca:a2:12:19:38:af:f1:fb:b4:d4:86:90:67: 7e:d9:73:a8:6a:e0:68:09:bb:77:86:6a:d9:4d:1b: 50:13:e4:a8:ba:44:93:8c:fa:55:8d:ad:4f:9e:c6: 24:0b:7e:60:9c:cf:ed:98:19:43:4a:4e:20:7d:f3: 39:dd:cd:eb:dc:cc:8a:66:a8:1f:ee:4c:84:07:6b: f6:99:45:e0:57:27:43:58:cf:e1:f2:cf:05:41:99: d3:3e:3b:fc:a8:66:69:4a:b8:4d:fe:51:ff:1b:0b: 81:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2F:AC:9D:6E:FC:B2:1A:43:75:0A:7E:36:20:B7:65:D5:5F:C5:50 X509v3 Authority Key Identifier: keyid:89:B9:8D:1F:13:5A:7F:C6:6C:02:84:C3:44:77:C1:96:04:64:55:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/3130332e37392e3233362e302f32332d3233203d3e20313530393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.236.0/23 Signature Algorithm: sha256WithRSAEncryption b5:31:4e:99:83:69:31:8c:43:dc:67:a1:80:a1:20:88:8f:f7: dd:23:f6:d5:b4:58:02:87:37:e7:3a:7a:5c:a1:cd:5c:0d:d3: c7:b8:40:19:37:74:7b:23:40:3d:0b:18:92:a0:c5:73:e2:19: ca:d2:38:2f:8d:a1:a2:5f:e1:32:8c:4d:6a:a2:d4:60:d8:6c: a2:4a:c7:d4:9a:a4:3f:38:45:62:92:d1:30:c1:2a:bb:55:58: fa:4b:d3:b0:6c:84:6b:fc:95:62:45:60:d0:11:24:92:32:58: 55:5d:02:ba:c5:d5:12:6b:60:41:31:0e:30:c5:57:3a:22:48: a3:21:34:5d:a1:36:33:e0:e6:e4:f1:73:8c:e3:0a:b9:b9:59: e8:e1:4b:13:26:6f:a5:18:2f:7b:4d:c5:2e:2e:cb:13:69:e0: 09:d3:a6:f6:0a:00:00:8a:89:dd:c4:06:4d:71:a5:00:aa:1f: fe:6d:ec:1e:10:e4:20:d0:41:d7:d5:fc:3c:3d:f6:f4:fe:32: e6:19:38:b9:c0:3f:4b:22:4a:e2:45:a1:2e:ff:a1:83:25:88: 17:79:9b:bb:58:6c:8a:17:c1:4e:a6:bd:c5:d0:e1:19:ce:ec: 43:62:45:e2:72:90:84:3d:f5:db:85:96:68:46:f2:2e:e9:22: 86:a1:70:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQiRZ/QnLt/TvFKWh/On/frDw5lwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlCOThEMUYxMzVBN0ZDNjZDMDI4NEMzNDQ3N0MxOTYw NDY0NTU1NDAeFw0yNTA5MDkwNjU3MDRaFw0yNjA5MDgwNzAyMDRaMDMxMTAvBgNV BAMTKEI5MkZBQzlENkVGQ0IyMUE0Mzc1MEE3RTM2MjBCNzY1RDU1RkM1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvWbnBylcKbolO/wv5EriPpghS Y/n5lrPlNrGd+qMVvAg5oolo2i2MvMtuESeti4yQ0YvoVr1VM5mIcHvJF5BDV5M/ Sas+z7u9mcJ2jmoOiavOCMV0V6Di5/yqcLSKbe9CNSEPy/qfzlDePBXdFgKXRLkJ g8MijAlAltxHRMsoOybBf5zJOxLFFlxLvr/c6+tujCQ8dUpMyqISGTiv8fu01IaQ Z37Zc6hq4GgJu3eGatlNG1AT5Ki6RJOM+lWNrU+exiQLfmCcz+2YGUNKTiB98znd zevczIpmqB/uTIQHa/aZReBXJ0NYz+HyzwVBmdM+O/yoZmlKuE3+Uf8bC4GbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuS+snW78shpDdQp+NiC3ZdVfxVAwHwYDVR0j BBgwFoAUibmNHxNaf8ZsAoTDRHfBlgRkVVQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmZmMWIzZi0xMTkwLTQxMTktYmJjNi0xNDE3ZGY4YWEyNTgvMC84OUI5OEQxRjEz NUE3RkM2NkMwMjg0QzM0NDc3QzE5NjA0NjQ1NTU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODlCOThEMUYxMzVBN0ZDNjZDMDI4NEMzNDQ3N0MxOTYwNDY0 NTU1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiZmYxYjNmLTExOTAtNDExOS1i YmM2LTE0MTdkZjhhYTI1OC8wLzMxMzAzMzJlMzczOTJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0/sMA0GCSqG SIb3DQEBCwUAA4IBAQC1MU6Zg2kxjEPcZ6GAoSCIj/fdI/bVtFgChzfnOnpcoc1c DdPHuEAZN3R7I0A9CxiSoMVz4hnK0jgvjaGiX+EyjE1qotRg2GyiSsfUmqQ/OEVi ktEwwSq7VVj6S9OwbIRr/JViRWDQESSSMlhVXQK6xdUSa2BBMQ4wxVc6IkijITRd oTYz4Obk8XOM4wq5uVno4UsTJm+lGC97TcUuLssTaeAJ06b2CgAAiondxAZNcaUA qh/+beweEOQg0EHX1fw8Pfb0/jLmGTi5wD9LIkriRaEu/6GDJYgXeZu7WGyKF8FO pr3F0OEZzuxDYkXicpCEPfXbhZZoRvIu6SKGoXAN -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:44 2025 by rpki-client