$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32342d3234203d3e203234353139.roa File: 3130332e34322e3131382e302f32342d3234203d3e203234353139.roa (raw, json) Hash identifier: Vb5cnFC6Wpj880gEVaQTtTKJLSX6B7dTQEwn1sKGOMQ= Subject key identifier: 8C:7A:10:9D:8D:F7:D5:5A:EC:81:30:B8:4D:97:E5:77:21:57:30:29 Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8 Certificate serial: 335089C73D292014F794F384D0171073448A0E3A Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32342d3234203d3e203234353139.roa Signing time: Sun 26 Oct 2025 05:00:01 +0000 ROA not before: Sun 26 Oct 2025 04:55:01 +0000 ROA not after: Sun 25 Oct 2026 05:00:01 +0000 asID: 24519 IP address blocks: 103.42.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 16:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:50:89:c7:3d:29:20:14:f7:94:f3:84:d0:17:10:73:44:8a:0e:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8 Validity Not Before: Oct 26 04:55:01 2025 GMT Not After : Oct 25 05:00:01 2026 GMT Subject: CN=8C7A109D8DF7D55AEC8130B84D97E57721573029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:73:d0:df:1d:bf:d6:8c:b5:52:b0:be:ba:ed: cb:da:2e:52:3a:53:79:61:84:e5:15:80:88:07:62: 9b:6c:bb:a5:e7:1d:66:9c:4e:1c:07:f3:e9:59:79: 97:6e:ae:24:46:fa:22:53:ce:5c:9a:e1:93:99:e7: 65:0f:96:1c:2a:16:0d:01:37:dc:3a:2a:18:56:26: 6e:b8:b9:72:0f:f8:99:ff:d2:ce:65:d1:8d:7e:76: 52:34:b6:8f:1c:44:7c:f2:84:0b:da:04:6e:bc:02: 37:b1:1b:d6:4a:8e:bc:78:29:c3:f0:89:c7:d2:ae: f1:f8:a5:aa:90:b3:e2:69:43:1e:d1:cc:a2:d1:9d: 9c:dc:17:5f:68:32:53:ca:8e:93:d8:63:61:90:4a: b2:39:95:f3:ef:9d:10:40:91:89:56:77:e9:60:da: 17:45:b6:87:12:a2:b1:49:db:97:19:e0:12:8c:c8: 48:c2:7e:45:3d:be:56:91:16:05:58:d4:a6:17:b0: 22:ce:0a:d6:2f:b7:14:93:b2:87:f7:d3:d9:bc:3b: 91:a6:a9:e7:85:dd:b4:cf:71:d5:14:3d:60:08:6d: 2e:5a:04:08:3e:55:cb:8f:97:69:0c:32:39:2f:3b: da:14:fc:88:b8:d0:af:92:01:89:05:6d:9c:cf:a2: 78:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:7A:10:9D:8D:F7:D5:5A:EC:81:30:B8:4D:97:E5:77:21:57:30:29 X509v3 Authority Key Identifier: keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32342d3234203d3e203234353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.118.0/24 Signature Algorithm: sha256WithRSAEncryption 76:a1:d3:91:58:6c:de:ca:fa:de:64:c1:4f:00:3c:0c:a1:f7: 92:7b:2b:a6:b6:79:41:5d:86:af:fe:f7:b5:7a:1b:23:ba:cc: 49:be:c1:91:56:de:41:ed:a9:ef:27:ec:2d:0c:ab:9d:4b:3c: 7e:d1:91:12:af:59:5e:d3:19:5a:21:ee:2c:5f:3f:39:39:3a: d3:bf:19:d7:98:1f:5f:39:b1:38:d5:a9:6b:70:94:99:b7:4e: ff:58:e2:36:a8:38:dd:39:1a:61:2e:ba:06:0e:b6:38:48:8b: ad:63:06:4d:f6:70:31:98:98:57:58:b2:83:98:49:23:65:70: cf:46:1b:4b:9a:b6:65:09:51:22:55:91:0b:c8:58:51:2d:73: 6f:de:33:8f:e9:54:e8:80:69:e8:08:ed:76:a2:19:09:5b:b2: 22:12:ef:ca:52:cb:34:50:d6:8f:6c:01:36:56:14:39:e3:db: 1e:2b:19:69:72:29:54:58:30:81:be:76:a5:a5:51:47:f6:68: 28:aa:6a:bc:52:56:2b:d5:04:d3:6e:86:6a:68:e6:3d:3d:93: 9b:a5:73:fb:7e:2e:a7:1a:a6:ef:16:61:ec:e6:f4:e9:4b:79: 20:64:88:d8:67:c3:1f:c0:a9:a2:49:e4:9f:82:c9:85:57:21: 2b:03:6a:82 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM1CJxz0pIBT3lPOE0BcQc0SKDjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY0ODVBREFEMjA2ODMzN0ZERjhCMjhGRjAwN0JDREM1 QjQ5OTlEODAeFw0yNTEwMjYwNDU1MDFaFw0yNjEwMjUwNTAwMDFaMDMxMTAvBgNV BAMTKDhDN0ExMDlEOERGN0Q1NUFFQzgxMzBCODREOTdFNTc3MjE1NzMwMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzc9DfHb/WjLVSsL667cvaLlI6 U3lhhOUVgIgHYptsu6XnHWacThwH8+lZeZduriRG+iJTzlya4ZOZ52UPlhwqFg0B N9w6KhhWJm64uXIP+Jn/0s5l0Y1+dlI0to8cRHzyhAvaBG68AjexG9ZKjrx4KcPw icfSrvH4paqQs+JpQx7RzKLRnZzcF19oMlPKjpPYY2GQSrI5lfPvnRBAkYlWd+lg 2hdFtocSorFJ25cZ4BKMyEjCfkU9vlaRFgVY1KYXsCLOCtYvtxSTsof309m8O5Gm qeeF3bTPcdUUPWAIbS5aBAg+VcuPl2kMMjkvO9oU/Ii40K+SAYkFbZzPonj9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjHoQnY331VrsgTC4TZfldyFXMCkwHwYDVR0j BBgwFoAUb0ha2tIGgzf9+LKP8Ae83FtJmdgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjU4OTM0ZC0xYjAwLTQ0ODktOTJlZC0xY2E2ZGM0YjI5MGYvMC82RjQ4NUFEQUQy MDY4MzM3RkRGOEIyOEZGMDA3QkNEQzVCNDk5OUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY0ODVBREFEMjA2ODMzN0ZERjhCMjhGRjAwN0JDREM1QjQ5 OTlEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNTg5MzRkLTFiMDAtNDQ4OS05 MmVkLTFjYTZkYzRiMjkwZi8wLzMxMzAzMzJlMzQzMjJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcqdjANBgkqhkiG 9w0BAQsFAAOCAQEAdqHTkVhs3sr63mTBTwA8DKH3knsrprZ5QV2Gr/73tXobI7rM Sb7BkVbeQe2p7yfsLQyrnUs8ftGREq9ZXtMZWiHuLF8/OTk6078Z15gfXzmxONWp a3CUmbdO/1jiNqg43TkaYS66Bg62OEiLrWMGTfZwMZiYV1iyg5hJI2Vwz0YbS5q2 ZQlRIlWRC8hYUS1zb94zj+lU6IBp6AjtdqIZCVuyIhLvylLLNFDWj2wBNlYUOePb HisZaXIpVFgwgb52paVRR/ZoKKpqvFJWK9UE026GamjmPT2Tm6Vz+34upxqm7xZh 7Ob06Ut5IGSI2GfDH8Cpoknkn4LJhVchKwNqgg== -----END CERTIFICATE-----Generated at Mon Nov 3 09:09:53 2025 by rpki-client