$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa File: 3130332e34322e3131382e302f32332d3233203d3e203234353139.roa (raw, json) Hash identifier: I+1VVYj6jtqkdnEHUu+yoBW+N9Gr17EVEw+bCbgU0gI= Subject key identifier: 19:B7:A7:1B:8E:3A:93:95:98:8F:88:AE:DE:5C:73:5E:EE:EA:CE:3A Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8 Certificate serial: 47D9F38A1654E83B67F34716F50B61C5C2D7C2C7 Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa Signing time: Sun 26 Oct 2025 05:00:01 +0000 ROA not before: Sun 26 Oct 2025 04:55:01 +0000 ROA not after: Sun 25 Oct 2026 05:00:01 +0000 asID: 24519 IP address blocks: 103.42.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 16:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d9:f3:8a:16:54:e8:3b:67:f3:47:16:f5:0b:61:c5:c2:d7:c2:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8 Validity Not Before: Oct 26 04:55:01 2025 GMT Not After : Oct 25 05:00:01 2026 GMT Subject: CN=19B7A71B8E3A9395988F88AEDE5C735EEEEACE3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:69:f2:5a:96:72:4b:45:31:4d:54:5c:1d:c6: 27:8a:0d:71:80:1c:3f:41:bb:6d:20:92:f6:a2:02: 6c:a6:bc:56:f8:f5:61:8f:be:c1:f4:19:81:ea:35: bd:55:0a:fd:2b:3d:db:85:31:58:16:ef:5d:c0:97: 07:17:61:00:b4:68:d2:61:80:eb:f7:07:1a:61:9b: 35:83:46:b7:d8:9d:20:10:4f:01:cb:7d:96:54:f3: 27:ea:5d:19:46:d3:dc:b7:2d:d5:59:d7:95:cf:79: 03:cf:4e:50:b2:8b:6f:2a:1b:e4:41:d3:7b:56:03: cb:42:ea:7a:da:12:14:03:6a:f1:fb:82:6c:41:89: dc:75:13:29:0b:e9:a5:08:78:91:df:9b:2d:79:6c: a4:bf:09:de:5f:58:65:12:1d:de:13:c1:96:5e:df: 51:6c:ec:92:18:d8:d5:ad:38:75:9d:25:eb:48:c6: 54:7d:b0:8d:aa:66:3b:df:41:7c:f0:1d:d6:6c:a8: 90:7e:fa:45:ff:aa:b8:1e:57:41:5c:f5:ff:99:23: 1a:05:56:a3:a6:e0:e5:c1:86:68:2f:a4:d3:71:42: b8:3f:bc:7e:34:b6:d7:43:ba:76:09:04:28:d3:b8: db:9a:fc:97:41:27:da:16:31:79:f3:7e:84:a9:09: 41:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B7:A7:1B:8E:3A:93:95:98:8F:88:AE:DE:5C:73:5E:EE:EA:CE:3A X509v3 Authority Key Identifier: keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.118.0/23 Signature Algorithm: sha256WithRSAEncryption 91:8b:31:ee:fe:94:07:48:f6:11:87:69:3f:43:f7:03:35:d5: f5:f6:e6:70:4e:ef:5b:a8:2e:40:a8:63:a3:7d:26:a6:f9:37: 45:b3:91:16:9c:c7:87:ad:ab:30:bb:af:74:e3:d1:11:4f:9e: dd:6f:dd:6f:af:76:a5:f8:cc:fc:5b:79:23:a1:f0:df:61:5c: 51:ec:39:8d:2d:6b:28:58:5e:94:20:3d:25:15:95:17:89:c3: ce:96:64:49:9d:f7:35:2e:30:42:c8:a3:44:5a:4e:fd:dd:53: be:88:73:ef:ac:67:6b:42:0b:af:17:d8:a0:db:00:b0:19:9b: f8:0e:e5:42:f1:7b:1a:23:df:a3:84:61:cc:5e:ae:20:94:bd: fa:80:97:a5:4e:e0:45:5e:41:b5:e7:d0:a9:5f:ae:58:b7:44: fe:5e:3e:0a:39:d8:a2:ec:34:64:08:cf:80:75:ee:19:37:13: 3d:dc:83:6a:ff:35:4c:09:04:9b:17:15:b5:29:90:b6:e6:aa: ff:52:3b:3d:d4:30:1c:a9:63:39:05:6a:fa:c9:a9:dc:85:1f: f6:4f:c2:46:f3:f7:8d:5a:6e:0f:9a:61:bd:a0:2e:c0:59:31: 00:b8:8b:f7:0c:00:b6:65:54:3b:11:75:23:cf:e4:71:53:c3: d7:c6:dd:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR9nzihZU6Dtn80cW9QthxcLXwscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY0ODVBREFEMjA2ODMzN0ZERjhCMjhGRjAwN0JDREM1 QjQ5OTlEODAeFw0yNTEwMjYwNDU1MDFaFw0yNjEwMjUwNTAwMDFaMDMxMTAvBgNV BAMTKDE5QjdBNzFCOEUzQTkzOTU5ODhGODhBRURFNUM3MzVFRUVFQUNFM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqafJalnJLRTFNVFwdxieKDXGA HD9Bu20gkvaiAmymvFb49WGPvsH0GYHqNb1VCv0rPduFMVgW713AlwcXYQC0aNJh gOv3BxphmzWDRrfYnSAQTwHLfZZU8yfqXRlG09y3LdVZ15XPeQPPTlCyi28qG+RB 03tWA8tC6nraEhQDavH7gmxBidx1EykL6aUIeJHfmy15bKS/Cd5fWGUSHd4TwZZe 31Fs7JIY2NWtOHWdJetIxlR9sI2qZjvfQXzwHdZsqJB++kX/qrgeV0Fc9f+ZIxoF VqOm4OXBhmgvpNNxQrg/vH40ttdDunYJBCjTuNua/JdBJ9oWMXnzfoSpCUF7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGbenG446k5WYj4iu3lxzXu7qzjowHwYDVR0j BBgwFoAUb0ha2tIGgzf9+LKP8Ae83FtJmdgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjU4OTM0ZC0xYjAwLTQ0ODktOTJlZC0xY2E2ZGM0YjI5MGYvMC82RjQ4NUFEQUQy MDY4MzM3RkRGOEIyOEZGMDA3QkNEQzVCNDk5OUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY0ODVBREFEMjA2ODMzN0ZERjhCMjhGRjAwN0JDREM1QjQ5 OTlEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNTg5MzRkLTFiMDAtNDQ4OS05 MmVkLTFjYTZkYzRiMjkwZi8wLzMxMzAzMzJlMzQzMjJlMzEzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcqdjANBgkqhkiG 9w0BAQsFAAOCAQEAkYsx7v6UB0j2EYdpP0P3AzXV9fbmcE7vW6guQKhjo30mpvk3 RbORFpzHh62rMLuvdOPREU+e3W/db692pfjM/Ft5I6Hw32FcUew5jS1rKFhelCA9 JRWVF4nDzpZkSZ33NS4wQsijRFpO/d1Tvohz76xna0ILrxfYoNsAsBmb+A7lQvF7 GiPfo4RhzF6uIJS9+oCXpU7gRV5BtefQqV+uWLdE/l4+CjnYouw0ZAjPgHXuGTcT PdyDav81TAkEmxcVtSmQtuaq/1I7PdQwHKljOQVq+smp3IUf9k/CRvP3jVpuD5ph vaAuwFkxALiL9wwAtmVUOxF1I8/kcVPD18bd1w== -----END CERTIFICATE-----Generated at Mon Nov 3 09:06:46 2025 by rpki-client