$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa File: 3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa (raw, json) Hash identifier: uSzBN61VjNugxnFtdmn55QCfTiv4UjZL/cWrBYUaKgE= Subject key identifier: 27:3E:12:F6:DC:FE:2A:9A:3E:3A:95:5E:58:74:07:34:86:FA:8F:7E Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Certificate serial: 3CFF5F622B26498DCCA145AD007A2B4E7DD98494 Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa Signing time: Wed 22 Oct 2025 19:00:02 +0000 ROA not before: Wed 22 Oct 2025 18:55:02 +0000 ROA not after: Wed 21 Oct 2026 19:00:02 +0000 asID: 139981 IP address blocks: 103.148.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 19:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ff:5f:62:2b:26:49:8d:cc:a1:45:ad:00:7a:2b:4e:7d:d9:84:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Validity Not Before: Oct 22 18:55:02 2025 GMT Not After : Oct 21 19:00:02 2026 GMT Subject: CN=273E12F6DCFE2A9A3E3A955E5874073486FA8F7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e3:f0:c7:44:e0:a2:80:9c:8e:a5:5a:83:07: 7f:83:d6:3f:2c:b1:63:51:ab:96:aa:09:d1:0f:0b: 1c:54:c5:38:10:a8:ee:c9:ca:3f:7a:26:c6:ba:c6: d5:05:7d:8c:a3:0a:9a:61:fb:7d:22:e5:3e:2d:03: ab:8b:4c:b3:6c:c0:b6:9a:25:e1:91:06:61:3a:4a: 5b:0a:85:22:11:58:86:7a:d6:37:99:53:c7:c5:55: 4a:1d:89:f2:6f:cf:76:cc:ee:7c:40:49:99:31:f9: 51:6c:9c:43:af:12:bb:d8:30:57:6e:f6:03:19:f1: fa:76:c1:cb:80:eb:8e:e0:70:81:45:8d:8f:01:cb: 68:c6:7a:7a:65:4f:8d:14:0a:61:82:6f:ee:e4:b0: 4b:a2:1d:6b:bd:3c:23:70:8f:e1:25:c8:90:06:34: 42:6b:32:58:3b:da:cd:32:4e:fb:dd:9d:4f:24:99: 51:6e:a9:12:76:4f:c6:c6:e9:5f:ed:4c:8e:26:62: bd:ca:c4:09:98:47:1d:fc:89:cc:bb:42:65:c9:06: f7:e6:3b:fe:e6:66:47:ad:48:c0:2b:df:29:35:a8: bc:01:cf:af:4e:ee:49:3f:b3:aa:52:05:05:80:01: f6:15:d5:00:03:40:59:fa:4a:ed:48:4a:a4:ba:cb: e0:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3E:12:F6:DC:FE:2A:9A:3E:3A:95:5E:58:74:07:34:86:FA:8F:7E X509v3 Authority Key Identifier: keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.24.0/23 Signature Algorithm: sha256WithRSAEncryption a0:ca:41:59:d7:88:bf:9b:b8:13:b2:4e:a9:f3:4f:5b:c0:ae: ef:7b:62:de:4e:97:8c:a4:5a:5c:d1:36:53:13:c2:b6:8f:86: 3c:d6:fa:8b:ab:8a:f6:88:d0:3d:b0:f4:8d:e1:62:3b:ea:a4: 11:3d:e6:9a:ec:cf:86:94:b1:9e:fc:73:be:a3:61:d6:4d:cc: b7:4a:4c:86:33:af:4c:0a:39:09:6e:b5:42:f0:96:a5:03:c5: 4f:71:50:70:ac:44:f4:8e:b0:ed:36:17:75:d6:98:39:9c:f7: 07:a7:8d:34:b2:ac:8f:9c:60:9f:67:0b:04:a3:ec:98:da:29: 46:85:8d:2f:32:61:5e:45:9c:a8:73:5c:3a:ab:c9:ac:f8:e6: 63:90:4f:d2:a1:19:0d:3f:7b:4a:f6:d0:bb:3e:26:77:f8:da: 49:3f:d0:fa:f5:72:b2:20:ea:85:2e:a9:31:d0:71:b9:bb:e2: fc:65:5b:62:2b:73:c2:84:51:7c:11:2e:ae:d5:a6:29:1e:aa: 73:ad:13:87:e5:98:11:0e:aa:c6:98:1a:eb:fd:78:3d:51:46: 59:b9:a3:3e:31:22:7c:07:c8:02:4e:e4:c4:f9:0c:75:54:21: bf:aa:80:1c:b7:0a:30:52:92:c4:a4:d4:4f:77:59:75:64:e4: dd:27:fd:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPP9fYismSY3MoUWtAHorTn3ZhJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlE MURFQTZDMTAeFw0yNTEwMjIxODU1MDJaFw0yNjEwMjExOTAwMDJaMDMxMTAvBgNV BAMTKDI3M0UxMkY2RENGRTJBOUEzRTNBOTU1RTU4NzQwNzM0ODZGQThGN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB4/DHROCigJyOpVqDB3+D1j8s sWNRq5aqCdEPCxxUxTgQqO7Jyj96Jsa6xtUFfYyjCpph+30i5T4tA6uLTLNswLaa JeGRBmE6SlsKhSIRWIZ61jeZU8fFVUodifJvz3bM7nxASZkx+VFsnEOvErvYMFdu 9gMZ8fp2wcuA647gcIFFjY8By2jGenplT40UCmGCb+7ksEuiHWu9PCNwj+ElyJAG NEJrMlg72s0yTvvdnU8kmVFuqRJ2T8bG6V/tTI4mYr3KxAmYRx38icy7QmXJBvfm O/7mZketSMAr3yk1qLwBz69O7kk/s6pSBQWAAfYV1QADQFn6Su1ISqS6y+D5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJz4S9tz+Kpo+OpVeWHQHNIb6j34wHwYDVR0j BBgwFoAUKvUSHNHPp3mMwd13e0ZDadHepsEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTJlMDdmOC0xYTQ4LTQzOTEtYTZhNS04ZTRlMzljODU4OGEvMC8yQUY1MTIxQ0Qx Q0ZBNzc5OENDMURENzc3QjQ2NDM2OUQxREVBNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlEMURF QTZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMxMzAzMzJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5QYMA0GCSqG SIb3DQEBCwUAA4IBAQCgykFZ14i/m7gTsk6p809bwK7ve2LeTpeMpFpc0TZTE8K2 j4Y81vqLq4r2iNA9sPSN4WI76qQRPeaa7M+GlLGe/HO+o2HWTcy3SkyGM69MCjkJ brVC8JalA8VPcVBwrET0jrDtNhd11pg5nPcHp400sqyPnGCfZwsEo+yY2ilGhY0v MmFeRZyoc1w6q8ms+OZjkE/SoRkNP3tK9tC7PiZ3+NpJP9D69XKyIOqFLqkx0HG5 u+L8ZVtiK3PChFF8ES6u1aYpHqpzrROH5ZgRDqrGmBrr/Xg9UUZZuaM+MSJ8B8gC TuTE+Qx1VCG/qoActwowUpLEpNRPd1l1ZOTdJ/0X -----END CERTIFICATE-----Generated at Mon Nov 3 06:48:33 2025 by rpki-client