$ rpki-client -vvf repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3130332e3136342e31342e302f32332d3234203d3e20313532303537.roa File: 3130332e3136342e31342e302f32332d3234203d3e20313532303537.roa (raw, json) Hash identifier: TODEDun2Zl+j5gm95jSV7b8fVwk7R83jzCkXAd4YUh0= Subject key identifier: 75:A0:A4:F4:92:90:7E:8D:EF:10:F2:0F:79:91:AF:50:7D:0F:0C:6F Certificate issuer: /CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Certificate serial: 690A07DB7F18C2B339677493B4FE9004F97459C9 Authority key identifier: E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3130332e3136342e31342e302f32332d3234203d3e20313532303537.roa Signing time: Thu 16 Oct 2025 15:00:02 +0000 ROA not before: Thu 16 Oct 2025 14:55:02 +0000 ROA not after: Thu 15 Oct 2026 15:00:02 +0000 asID: 152057 IP address blocks: 103.164.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 10:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0a:07:db:7f:18:c2:b3:39:67:74:93:b4:fe:90:04:f9:74:59:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Validity Not Before: Oct 16 14:55:02 2025 GMT Not After : Oct 15 15:00:02 2026 GMT Subject: CN=75A0A4F492907E8DEF10F20F7991AF507D0F0C6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f5:ba:c7:d3:9c:0c:53:d0:79:3d:ba:01:4d: c5:eb:a0:e7:56:21:b8:3f:7a:5a:88:51:a6:92:e3: e4:41:45:14:53:15:b8:30:bb:74:dc:21:8c:8e:5b: 72:c4:c3:f7:89:b1:45:3c:45:e4:e1:89:d5:27:88: 83:53:b5:33:b4:ba:b4:4d:a5:00:5c:af:51:d3:3e: f2:da:b7:cc:d6:d1:9a:7f:cc:ef:44:58:bd:e7:20: e4:38:a5:2f:ea:bb:79:3d:99:41:8a:b0:26:b7:c1: 07:cc:e0:2e:42:8e:e5:4e:2a:fb:0c:95:d6:dc:2f: 40:4e:34:05:dd:38:87:28:ec:be:d5:f5:36:09:1d: 0f:cc:61:13:93:42:0d:71:30:e2:58:f2:5d:3a:9f: 2d:93:48:5d:d9:bd:02:9f:b8:b8:de:cd:86:5d:8f: 57:9c:ef:09:76:70:9b:c5:16:73:e9:eb:d7:1c:b3: 88:1d:bd:3b:b7:f7:c7:fc:1c:38:56:db:38:b2:97: 00:f2:00:e6:64:01:61:74:f3:28:85:0b:57:c4:92: ba:9f:91:12:84:e5:cd:7c:22:bb:e1:ab:7d:94:50: d3:03:b0:c3:a7:27:b4:f7:1c:3b:37:01:e5:af:9f: b1:a2:89:9b:19:19:79:e1:b7:e5:e2:25:ce:92:1e: 6a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A0:A4:F4:92:90:7E:8D:EF:10:F2:0F:79:91:AF:50:7D:0F:0C:6F X509v3 Authority Key Identifier: keyid:E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/3130332e3136342e31342e302f32332d3234203d3e20313532303537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.14.0/23 Signature Algorithm: sha256WithRSAEncryption 07:2f:3e:3a:76:54:18:4a:25:ae:0a:8e:08:39:7f:3b:a3:e3: af:d1:3d:ef:a2:6a:d5:35:49:61:27:34:44:99:b7:41:f2:a8: 08:89:fb:10:1f:54:e0:4c:ac:c3:3c:88:4c:f0:8d:ba:15:f9: c5:9b:29:d6:fb:5f:83:07:63:ea:c0:1b:b5:42:ff:63:5a:9c: 43:ff:41:7b:e1:83:9d:0b:94:cb:f9:a7:4a:85:a5:51:50:92: 0f:0d:36:98:25:54:41:6c:90:ec:06:b1:df:f1:d8:52:1a:b3: 0e:34:3e:14:8c:56:17:00:dd:66:3a:f1:23:f7:34:30:94:a6: 2e:83:78:32:52:a9:0b:d2:78:6d:41:89:86:2e:44:31:1a:29: be:37:05:04:4b:79:c5:6b:d3:4a:b4:fd:9b:2c:d8:a7:84:89: bf:c2:32:60:5f:a4:2a:0d:5d:0a:ad:28:49:63:72:21:e3:cb: bc:a0:36:b3:f4:34:e4:08:a3:84:f4:6b:36:88:3a:cd:a3:31: b3:e1:25:44:86:d9:53:dd:e4:c9:86:38:83:e6:ef:e0:9e:e6: d0:68:8c:fa:94:2c:f7:ad:3f:03:6a:12:5f:8c:b0:fa:5d:78: f0:0b:18:13:c9:4b:77:52:7a:e1:bd:7a:00:72:ee:ba:1f:96: b6:8a:bb:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaQoH238YwrM5Z3STtP6QBPl0WckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJB NDBFNjM3MDAeFw0yNTEwMTYxNDU1MDJaFw0yNjEwMTUxNTAwMDJaMDMxMTAvBgNV BAMTKDc1QTBBNEY0OTI5MDdFOERFRjEwRjIwRjc5OTFBRjUwN0QwRjBDNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh9brH05wMU9B5PboBTcXroOdW Ibg/elqIUaaS4+RBRRRTFbgwu3TcIYyOW3LEw/eJsUU8ReThidUniINTtTO0urRN pQBcr1HTPvLat8zW0Zp/zO9EWL3nIOQ4pS/qu3k9mUGKsCa3wQfM4C5CjuVOKvsM ldbcL0BONAXdOIco7L7V9TYJHQ/MYROTQg1xMOJY8l06ny2TSF3ZvQKfuLjezYZd j1ec7wl2cJvFFnPp69ccs4gdvTu398f8HDhW2ziylwDyAOZkAWF08yiFC1fEkrqf kRKE5c18Irvhq32UUNMDsMOnJ7T3HDs3AeWvn7GiiZsZGXnht+XiJc6SHmq7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdaCk9JKQfo3vEPIPeZGvUH0PDG8wHwYDVR0j BBgwFoAU6U1AmQZHE/HDpeIR6BfPwqQOY3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjdhZTgyZi01MzdlLTQ2MjYtYmU5ZS0zMzM5NGEyZGM5NjkvMC9FOTRENDA5OTA2 NDcxM0YxQzNBNUUyMTFFODE3Q0ZDMkE0MEU2MzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJBNDBF NjM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmN2FlODJmLTUzN2UtNDYyNi1i ZTllLTMzMzk0YTJkYzk2OS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6QOMA0GCSqG SIb3DQEBCwUAA4IBAQAHLz46dlQYSiWuCo4IOX87o+Ov0T3vomrVNUlhJzREmbdB 8qgIifsQH1TgTKzDPIhM8I26FfnFmynW+1+DB2PqwBu1Qv9jWpxD/0F74YOdC5TL +adKhaVRUJIPDTaYJVRBbJDsBrHf8dhSGrMOND4UjFYXAN1mOvEj9zQwlKYug3gy UqkL0nhtQYmGLkQxGim+NwUES3nFa9NKtP2bLNinhIm/wjJgX6QqDV0KrShJY3Ih 48u8oDaz9DTkCKOE9Gs2iDrNozGz4SVEhtlT3eTJhjiD5u/gnubQaIz6lCz3rT8D ahJfjLD6XXjwCxgTyUt3UnrhvXoAcu66H5a2iruz -----END CERTIFICATE-----Generated at Mon Oct 20 16:53:43 2025 by rpki-client