$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39352e302f32342d3234203d3e203435323935.roa File: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (raw, json) Hash identifier: WHp6+633q2Em0ghmTjJeCMByUXIoDLeS8IvSNmEh0gE= Subject key identifier: F2:13:18:5C:C5:6C:94:F6:43:5C:EE:32:4B:FF:B2:D1:0C:2E:3E:85 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 46F985E3E12ECB63D2FE7951F5E789AF50FBE304 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39352e302f32342d3234203d3e203435323935.roa Signing time: Fri 17 Oct 2025 08:00:01 +0000 ROA not before: Fri 17 Oct 2025 07:55:01 +0000 ROA not after: Fri 16 Oct 2026 08:00:01 +0000 asID: 45295 IP address blocks: 103.21.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f9:85:e3:e1:2e:cb:63:d2:fe:79:51:f5:e7:89:af:50:fb:e3:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Oct 17 07:55:01 2025 GMT Not After : Oct 16 08:00:01 2026 GMT Subject: CN=F213185CC56C94F6435CEE324BFFB2D10C2E3E85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:fc:31:ac:64:e0:0c:b0:73:3a:5e:0f:0c:96: 17:38:c6:4b:0e:df:2b:8c:6c:ca:ad:42:82:3b:a7: d1:d6:71:f4:15:80:1a:4b:b1:b7:c6:c9:95:ed:3b: 56:c0:cf:9c:8f:bb:53:d5:f5:fb:c5:1d:c1:65:33: 03:27:dc:d2:b5:07:75:9e:97:14:42:a7:aa:99:b5: ca:0d:03:5f:a3:57:17:e1:78:cf:7d:9c:44:35:50: 7c:c2:dc:5d:2d:54:33:34:a0:2b:45:0b:25:58:b8: 24:71:30:13:44:96:be:68:e9:8d:db:ab:ba:f4:78: 60:1d:53:0e:ef:2d:61:58:d5:07:0c:a0:d8:b7:f7: a2:d1:67:6d:d3:d2:2f:46:7c:ab:7a:0e:fe:33:37: 8e:4d:32:b9:dc:82:5c:4d:a3:66:78:24:01:4d:09: 2a:b3:a8:b5:4e:8d:8f:e7:c3:c5:50:72:e6:b6:9d: 6f:99:d4:dc:d3:79:18:fe:8f:ef:5b:a9:22:2a:22: ca:33:ce:3c:7a:54:a1:96:88:ea:30:d3:ca:55:a2: f0:70:53:03:9f:12:77:02:b0:57:2a:a0:b3:a3:61: be:50:75:67:f0:78:2a:fb:76:fe:83:d0:ce:1f:83: 7e:b2:53:27:74:d2:02:f4:5d:94:21:7b:6b:ee:86: ff:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:13:18:5C:C5:6C:94:F6:43:5C:EE:32:4B:FF:B2:D1:0C:2E:3E:85 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39352e302f32342d3234203d3e203435323935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.95.0/24 Signature Algorithm: sha256WithRSAEncryption 98:2d:bd:e9:6b:51:ed:c5:df:39:30:ea:9b:65:f1:bd:23:94: 84:f5:92:40:ff:7c:f0:67:b5:de:53:6b:fe:bf:18:4f:6c:24: 7e:a1:b0:49:b5:af:cf:07:05:11:26:37:c0:d8:4d:c3:bf:c0: 19:1b:53:0c:79:ef:c3:a0:f1:3d:55:c5:39:95:d9:71:b1:5f: 45:76:b9:54:f1:98:00:44:a7:f4:a8:29:b3:52:78:1d:55:85: cb:70:fa:2c:f8:9f:9f:06:b8:19:cf:3e:aa:18:39:0b:47:49: 93:f5:6e:14:39:81:2b:0d:7f:73:44:6e:e1:31:e8:6b:c0:5a: d7:87:6d:e1:48:64:bd:40:52:3e:8e:cc:2b:d3:ae:37:5f:c8: b4:70:97:2e:97:65:7d:e8:38:4e:f7:dc:ee:1f:6a:d5:5b:bf: ed:3f:39:8b:c2:b0:5e:c7:7c:57:0c:3b:23:f3:d2:fa:f0:06: ad:12:18:f6:0c:cc:37:18:f8:09:00:41:ed:f5:e8:00:4b:84: 56:ef:44:39:17:77:c2:b8:34:bc:34:a1:b3:b9:52:fc:f2:de: aa:5e:24:1f:43:91:79:27:4c:2f:a8:d2:4a:03:80:99:f3:4c: e7:c0:23:ce:4c:b0:d7:d3:73:58:05:88:64:67:dc:78:9f:0b: 03:d4:88:06 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURvmF4+Euy2PS/nlR9eeJr1D74wQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNTEwMTcwNzU1MDFaFw0yNjEwMTYwODAwMDFaMDMxMTAvBgNV BAMTKEYyMTMxODVDQzU2Qzk0RjY0MzVDRUUzMjRCRkZCMkQxMEMyRTNFODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0/DGsZOAMsHM6Xg8Mlhc4xksO 3yuMbMqtQoI7p9HWcfQVgBpLsbfGyZXtO1bAz5yPu1PV9fvFHcFlMwMn3NK1B3We lxRCp6qZtcoNA1+jVxfheM99nEQ1UHzC3F0tVDM0oCtFCyVYuCRxMBNElr5o6Y3b q7r0eGAdUw7vLWFY1QcMoNi396LRZ23T0i9GfKt6Dv4zN45NMrncglxNo2Z4JAFN CSqzqLVOjY/nw8VQcua2nW+Z1NzTeRj+j+9bqSIqIsozzjx6VKGWiOow08pVovBw UwOfEncCsFcqoLOjYb5QdWfweCr7dv6D0M4fg36yUyd00gL0XZQhe2vuhv+RAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8hMYXMVslPZDXO4yS/+y0QwuPoUwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZThlMThkLWEwNDctNDU5MC05 ZTU2LTQ2NGE3M2UyM2M2Yy8wLzMxMzAzMzJlMzIzMTJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMjM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnFV8wDQYJKoZIhvcN AQELBQADggEBAJgtvelrUe3F3zkw6ptl8b0jlIT1kkD/fPBntd5Ta/6/GE9sJH6h sEm1r88HBREmN8DYTcO/wBkbUwx578Og8T1VxTmV2XGxX0V2uVTxmABEp/SoKbNS eB1Vhctw+iz4n58GuBnPPqoYOQtHSZP1bhQ5gSsNf3NEbuEx6GvAWteHbeFIZL1A Uj6OzCvTrjdfyLRwly6XZX3oOE733O4fatVbv+0/OYvCsF7HfFcMOyPz0vrwBq0S GPYMzDcY+AkAQe316ABLhFbvRDkXd8K4NLw0obO5Uvzy3qpeJB9DkXknTC+o0koD gJnzTOfAI85MsNfTc1gFiGRn3HifCwPUiAY= -----END CERTIFICATE-----Generated at Mon Oct 20 18:02:52 2025 by rpki-client