$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32342d3234203d3e2034383030.roa File: 3130332e39362e3134342e302f32342d3234203d3e2034383030.roa (raw, json) Hash identifier: CV24SqbvkbSixkw/z0Fm5hevRc2j9on8+yOAVNVWp6c= Subject key identifier: 05:73:9C:D8:B6:B7:89:8E:95:65:64:63:44:7A:5B:83:40:4E:6D:B1 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 70933BB20001FF72998D33E42281E38DED79EEF4 Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32342d3234203d3e2034383030.roa Signing time: Thu 06 Nov 2025 08:00:01 +0000 ROA not before: Thu 06 Nov 2025 07:55:01 +0000 ROA not after: Thu 05 Nov 2026 08:00:01 +0000 asID: 4800 IP address blocks: 103.96.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 20:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:93:3b:b2:00:01:ff:72:99:8d:33:e4:22:81:e3:8d:ed:79:ee:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Nov 6 07:55:01 2025 GMT Not After : Nov 5 08:00:01 2026 GMT Subject: CN=05739CD8B6B7898E95656463447A5B83404E6DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:86:55:98:d1:99:4d:37:5e:99:e5:9b:30:a2: 57:31:ff:cd:52:2b:e4:03:b9:f6:ec:f9:21:38:23: f8:c4:a8:30:2e:00:91:3f:60:8f:c5:72:1c:7c:dc: 09:bc:53:d4:e6:9a:10:6f:28:e0:9b:2d:af:99:15: d3:8c:f3:05:17:08:ad:10:81:57:be:72:6e:4f:ca: 46:b2:5d:66:bd:af:03:9d:a3:ba:a3:95:f4:c8:fd: 25:7c:ee:6b:26:08:00:70:57:28:9f:b9:e3:16:27: 2c:0e:5a:66:41:6d:70:0f:b1:09:14:1a:29:cb:b3: c8:0a:9e:d2:04:f6:75:c1:ca:f1:00:60:c3:e3:cb: 3d:d8:c9:99:ec:a4:d3:c2:4a:a6:a1:62:f4:b4:b2: ee:7b:7c:74:85:47:f5:f4:e7:5a:0a:2a:d6:59:13: 0d:9b:da:46:05:39:f5:ad:5c:f6:a6:c4:1f:c6:61: 5f:17:e5:00:11:64:ef:3d:14:93:99:0f:11:89:b8: a4:36:3d:4f:4d:d9:0e:e8:5a:11:68:2c:5d:5d:84: 0a:94:55:10:fa:b1:80:4c:64:2d:ac:37:e4:8e:23: 53:4b:96:ab:31:2c:9e:3d:81:c6:e6:9e:42:b4:9a: 7d:d9:4a:b2:0f:43:23:b5:c7:13:6f:15:a8:fb:f1: 87:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:73:9C:D8:B6:B7:89:8E:95:65:64:63:44:7A:5B:83:40:4E:6D:B1 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32342d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.144.0/24 Signature Algorithm: sha256WithRSAEncryption 69:c8:1b:62:25:74:9e:8f:6a:be:c5:0b:0e:35:19:49:2a:96: 89:67:5b:48:ae:ea:37:e7:9e:44:23:bf:df:24:91:23:9b:c8: be:c5:6c:d3:17:d1:75:f8:7d:4f:dd:91:da:f0:0d:4d:70:7e: ed:67:f5:19:5a:b0:6c:2d:e0:39:88:93:85:9d:9c:4c:e3:e7: aa:3e:f3:65:55:42:e6:10:21:3d:ae:1f:5d:5d:22:e2:1a:2b: f9:71:47:15:39:ca:6f:35:46:10:4c:58:8a:a0:c6:32:75:e8: 04:91:73:9d:fd:b3:66:84:b9:43:a9:30:08:46:81:bc:32:52: 04:57:90:27:42:7b:05:0f:3b:ec:46:2c:9b:7a:1b:a1:d1:39: 9f:01:a9:80:50:00:4c:1b:89:b1:d3:b2:8d:9a:10:93:59:9b: 2b:6e:66:cb:ae:6e:50:b0:38:08:2b:fb:a0:0f:85:9f:40:61: 05:6b:b9:3e:f5:8c:da:d8:eb:cd:de:0f:43:71:b1:2a:5f:54: 64:07:c5:0e:a1:a1:95:75:09:82:ff:5d:bc:ab:ca:6d:c5:3e: f1:c2:6c:66:91:ba:04:8c:36:f1:04:80:c9:c4:77:b3:ed:7c: ff:94:f1:0d:3d:b2:37:0a:a3:61:80:40:dc:46:76:d0:ef:a8: 5f:e2:db:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcJM7sgAB/3KZjTPkIoHjje157vQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNTExMDYwNzU1MDFaFw0yNjExMDUwODAwMDFaMDMxMTAvBgNV BAMTKDA1NzM5Q0Q4QjZCNzg5OEU5NTY1NjQ2MzQ0N0E1QjgzNDA0RTZEQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbhlWY0ZlNN16Z5Zswolcx/81S K+QDufbs+SE4I/jEqDAuAJE/YI/Fchx83Am8U9TmmhBvKOCbLa+ZFdOM8wUXCK0Q gVe+cm5PykayXWa9rwOdo7qjlfTI/SV87msmCABwVyifueMWJywOWmZBbXAPsQkU GinLs8gKntIE9nXByvEAYMPjyz3YyZnspNPCSqahYvS0su57fHSFR/X051oKKtZZ Ew2b2kYFOfWtXPamxB/GYV8X5QARZO89FJOZDxGJuKQ2PU9N2Q7oWhFoLF1dhAqU VRD6sYBMZC2sN+SOI1NLlqsxLJ49gcbmnkK0mn3ZSrIPQyO1xxNvFaj78YflAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBXOc2La3iY6VZWRjRHpbg0BObbEwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnYJAwDQYJKoZIhvcN AQELBQADggEBAGnIG2IldJ6Par7FCw41GUkqlolnW0iu6jfnnkQjv98kkSObyL7F bNMX0XX4fU/dkdrwDU1wfu1n9RlasGwt4DmIk4WdnEzj56o+82VVQuYQIT2uH11d IuIaK/lxRxU5ym81RhBMWIqgxjJ16ASRc539s2aEuUOpMAhGgbwyUgRXkCdCewUP O+xGLJt6G6HROZ8BqYBQAEwbibHTso2aEJNZmytuZsuublCwOAgr+6APhZ9AYQVr uT71jNrY683eD0NxsSpfVGQHxQ6hoZV1CYL/Xbyrym3FPvHCbGaRugSMNvEEgMnE d7PtfP+U8Q09sjcKo2GAQNxGdtDvqF/i24o= -----END CERTIFICATE-----Generated at Mon Nov 17 13:46:55 2025 by rpki-client