$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39342e302f32342d3234203d3e20313331373338.roa File: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (raw, json) Hash identifier: KCUnGn0DyBychM59+lv18yYznYr1wdm5Tf5W0sYTxbE= Subject key identifier: 58:70:41:A5:8E:CF:C9:46:46:DA:49:61:9B:EB:F3:52:7F:1B:25:71 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 5E716235F09ACBC814AB8E8275E181C8944883B2 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39342e302f32342d3234203d3e20313331373338.roa Signing time: Fri 17 Oct 2025 09:00:01 +0000 ROA not before: Fri 17 Oct 2025 08:55:01 +0000 ROA not after: Fri 16 Oct 2026 09:00:01 +0000 asID: 131738 IP address blocks: 103.21.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:71:62:35:f0:9a:cb:c8:14:ab:8e:82:75:e1:81:c8:94:48:83:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Oct 17 08:55:01 2025 GMT Not After : Oct 16 09:00:01 2026 GMT Subject: CN=587041A58ECFC94646DA49619BEBF3527F1B2571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:ee:da:ea:aa:2d:0b:c9:d1:04:4a:a4:f4: b3:29:60:8e:fe:9f:39:1d:09:8d:9b:da:2a:e5:8c: 29:56:c6:11:a2:6f:5e:b9:f0:74:b1:eb:0c:86:85: ff:a4:33:8a:49:41:70:05:6e:7d:b1:08:00:8a:1b: e8:4a:be:9b:76:f9:ee:d6:d5:07:4a:cd:9c:1a:40: f0:9a:c2:1e:82:64:03:89:e3:43:18:46:ee:23:dc: f7:5b:e5:80:f5:80:bd:0b:ed:5f:28:c1:62:d1:84: 2f:96:bf:fd:98:fc:fc:57:d8:e5:63:2d:2f:7f:80: e7:ca:c1:b3:b4:95:52:34:d9:b6:9e:4b:bb:03:7c: 98:e8:09:8f:a7:86:08:68:f8:3f:35:71:c5:55:7f: 2c:ef:38:98:b2:e2:25:7e:74:59:4f:66:43:2d:4d: 41:f3:ab:a3:b6:8c:c2:1a:14:a7:c8:f6:bb:e2:87: ce:80:39:52:23:c0:5f:a8:8d:26:c8:4d:0c:59:e3: 53:83:ad:56:9e:90:0d:70:58:33:c0:5b:f9:11:05: 0e:a3:99:71:57:03:5a:57:2b:be:65:07:4b:18:db: ea:a7:4e:c3:bc:f4:64:03:10:00:de:41:05:79:c2: 1e:a5:76:50:97:bb:72:83:01:38:69:11:ba:2b:b2: 31:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:70:41:A5:8E:CF:C9:46:46:DA:49:61:9B:EB:F3:52:7F:1B:25:71 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39342e302f32342d3234203d3e20313331373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.94.0/24 Signature Algorithm: sha256WithRSAEncryption ad:12:1d:c1:d1:6a:79:fe:4d:54:b6:91:06:39:48:75:46:88: 48:08:0c:a7:95:68:fe:c5:00:d5:cc:dd:b2:5c:36:4e:ae:f8: 37:9b:6b:c8:b9:29:3b:78:fb:bd:c0:fe:af:06:7e:66:1f:b3: ca:35:1a:ed:25:0e:03:90:99:44:01:ee:cb:71:8f:3a:d5:a1: 99:04:dc:cf:b7:b8:b5:38:5c:58:64:59:23:14:a6:2c:52:57: e2:bc:c9:80:f4:46:a6:c2:42:44:f3:90:e2:a0:10:09:dd:42: 21:24:ca:a0:9c:b4:0a:b9:24:ce:87:77:24:8d:fb:b7:69:be: 02:b0:cd:66:e7:d9:98:05:f8:19:ff:02:3a:07:05:5c:d2:c6: 31:a9:af:1b:80:e7:33:b9:11:b5:06:57:c7:2b:b4:47:8e:6d: e0:f7:ff:3b:76:0c:94:35:11:ab:8b:57:61:2f:21:9c:cf:6e: 4b:1b:92:b9:d0:9a:54:8a:20:70:e8:b3:69:36:91:a6:ac:4d: f1:37:f0:99:71:02:52:53:1a:87:52:46:0e:20:44:63:cd:a0: 13:da:6a:e9:98:ec:46:84:ad:bf:b9:59:7e:9a:9c:a3:bb:cc: 28:a6:e0:88:58:77:4b:3a:ed:70:82:21:f4:9b:6c:30:18:61: 89:9c:8d:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXnFiNfCay8gUq46CdeGByJRIg7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNTEwMTcwODU1MDFaFw0yNjEwMTYwOTAwMDFaMDMxMTAvBgNV BAMTKDU4NzA0MUE1OEVDRkM5NDY0NkRBNDk2MTlCRUJGMzUyN0YxQjI1NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Y+7a6qotC8nRBEqk9LMpYI7+ nzkdCY2b2irljClWxhGib1658HSx6wyGhf+kM4pJQXAFbn2xCACKG+hKvpt2+e7W 1QdKzZwaQPCawh6CZAOJ40MYRu4j3Pdb5YD1gL0L7V8owWLRhC+Wv/2Y/PxX2OVj LS9/gOfKwbO0lVI02baeS7sDfJjoCY+nhgho+D81ccVVfyzvOJiy4iV+dFlPZkMt TUHzq6O2jMIaFKfI9rvih86AOVIjwF+ojSbITQxZ41ODrVaekA1wWDPAW/kRBQ6j mXFXA1pXK75lB0sY2+qnTsO89GQDEADeQQV5wh6ldlCXu3KDAThpEborsjFrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWHBBpY7PyUZG2klhm+vzUn8bJXEwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZThlMThkLWEwNDctNDU5MC05 ZTU2LTQ2NGE3M2UyM2M2Yy8wLzMxMzAzMzJlMzIzMTJlMzkzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcVXjANBgkqhkiG 9w0BAQsFAAOCAQEArRIdwdFqef5NVLaRBjlIdUaISAgMp5Vo/sUA1czdslw2Tq74 N5tryLkpO3j7vcD+rwZ+Zh+zyjUa7SUOA5CZRAHuy3GPOtWhmQTcz7e4tThcWGRZ IxSmLFJX4rzJgPRGpsJCRPOQ4qAQCd1CISTKoJy0Crkkzod3JI37t2m+ArDNZufZ mAX4Gf8COgcFXNLGMamvG4DnM7kRtQZXxyu0R45t4Pf/O3YMlDURq4tXYS8hnM9u SxuSudCaVIogcOizaTaRpqxN8TfwmXECUlMah1JGDiBEY82gE9pq6ZjsRoStv7lZ fpqco7vMKKbgiFh3SzrtcIIh9JtsMBhhiZyNow== -----END CERTIFICATE-----Generated at Tue Oct 21 00:39:27 2025 by rpki-client