$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32322d3232203d3e203234323131.roa File: 3130332e34392e3232302e302f32322d3232203d3e203234323131.roa (raw, json) Hash identifier: uWwiOJltrZFVipiBhXuhkZCxDk18qXrBbeqh2tDeBHY= Subject key identifier: DF:CB:DF:D7:02:60:CA:65:DE:47:2F:63:18:35:72:88:3C:13:6F:C0 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 3B2052DD6986A49E17C828427E2EEAB49E4E81A2 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32322d3232203d3e203234323131.roa Signing time: Fri 24 Oct 2025 11:00:01 +0000 ROA not before: Fri 24 Oct 2025 10:55:01 +0000 ROA not after: Fri 23 Oct 2026 11:00:01 +0000 asID: 24211 IP address blocks: 103.49.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:20:52:dd:69:86:a4:9e:17:c8:28:42:7e:2e:ea:b4:9e:4e:81:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Oct 24 10:55:01 2025 GMT Not After : Oct 23 11:00:01 2026 GMT Subject: CN=DFCBDFD70260CA65DE472F63183572883C136FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:b9:fc:d1:9a:cb:c1:7d:62:3f:0c:7b:82: c8:b2:43:64:36:32:a4:fd:83:5e:9d:03:77:a1:69: d4:d8:cf:d9:2f:b0:68:7d:25:cf:65:f7:14:f1:03: 47:19:95:e8:f3:0a:42:20:60:44:77:28:a5:05:62: 91:45:03:a3:9a:3d:17:9b:f2:64:c5:fc:e9:30:76: 4f:c9:d6:cf:1b:f0:b5:1f:b0:66:95:c2:1e:71:ba: 76:c9:62:aa:9c:06:bd:90:ce:16:73:5d:d9:93:d4: 23:d8:55:4e:00:00:7d:99:5e:f6:d5:7c:2e:80:99: 6b:d6:d6:2d:b9:b2:e3:71:e3:0c:97:92:8f:4b:fa: 6d:ce:f4:a0:a8:0e:7c:b6:c8:5d:95:6c:5a:37:f1: c4:71:e6:54:64:db:e5:bd:2e:18:66:04:6a:76:1d: 94:2f:e7:fb:e2:1b:96:a1:39:60:db:cc:b4:16:5d: 19:d4:0f:0d:81:ca:d0:fd:73:66:f1:6f:41:b9:d5: 88:5a:2c:d1:07:da:43:63:dc:85:3d:73:4a:a0:da: 04:3a:ac:e5:3c:b8:69:88:59:1f:ce:33:7e:94:0c: d3:e4:b6:af:fe:4f:41:72:24:f9:e3:dd:19:e2:1b: f8:91:96:4b:60:04:96:b2:a9:ce:5f:af:9d:c2:47: 32:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CB:DF:D7:02:60:CA:65:DE:47:2F:63:18:35:72:88:3C:13:6F:C0 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32322d3232203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:d4:6d:5f:b4:26:e8:7c:36:e0:03:85:39:64:39:cd:32:1b: 4b:8a:ed:d1:7f:d3:51:37:61:37:ea:71:4d:eb:68:46:96:8b: a2:a4:6a:f4:49:8c:a3:61:6c:9c:39:af:fd:27:fd:ff:75:58: 43:f0:ac:99:03:f8:1a:9e:95:e8:9c:16:7d:3f:9f:b3:1e:24: 02:d7:ff:7f:69:4c:32:aa:e1:ac:e2:4f:d7:ef:6a:e2:28:90: 85:80:b0:58:00:83:21:c3:e0:f5:5d:6b:9f:1a:65:2e:25:d8: 2a:67:cd:3f:64:c4:30:d0:7d:3a:b7:11:de:85:c3:4a:f6:c3: e0:88:d4:0c:a7:70:b6:35:76:94:36:ef:59:9f:ee:22:15:0f: b3:5c:93:52:e8:b5:20:68:49:06:42:5a:5d:08:26:8a:10:70: 24:5a:1c:03:f7:10:c6:d1:5f:40:38:a5:4e:fd:2b:66:c5:51: d4:d9:07:b9:89:e3:81:a2:08:17:9a:f0:9c:de:7b:45:09:00: 42:41:1a:75:a8:5d:a3:ee:e4:d1:89:b5:b2:ee:06:a7:ec:9a: 1a:9c:8d:ca:8c:45:09:e0:ff:96:6c:7c:e3:e8:73:87:22:14: ff:5e:79:67:1d:32:cf:3a:9d:4d:82:4e:41:8b:9a:c9:6c:d7: 1d:a3:41:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOyBS3WmGpJ4XyChCfi7qtJ5OgaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTEwMjQxMDU1MDFaFw0yNjEwMjMxMTAwMDFaMDMxMTAvBgNV BAMTKERGQ0JERkQ3MDI2MENBNjVERTQ3MkY2MzE4MzU3Mjg4M0MxMzZGQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4L7n80ZrLwX1iPwx7gsiyQ2Q2 MqT9g16dA3ehadTYz9kvsGh9Jc9l9xTxA0cZlejzCkIgYER3KKUFYpFFA6OaPReb 8mTF/Okwdk/J1s8b8LUfsGaVwh5xunbJYqqcBr2QzhZzXdmT1CPYVU4AAH2ZXvbV fC6AmWvW1i25suNx4wyXko9L+m3O9KCoDny2yF2VbFo38cRx5lRk2+W9LhhmBGp2 HZQv5/viG5ahOWDbzLQWXRnUDw2BytD9c2bxb0G51YhaLNEH2kNj3IU9c0qg2gQ6 rOU8uGmIWR/OM36UDNPktq/+T0FyJPnj3RniG/iRlktgBJayqc5fr53CRzIzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU38vf1wJgymXeRy9jGDVyiDwTb8AwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcx3DANBgkqhkiG 9w0BAQsFAAOCAQEADtRtX7Qm6Hw24AOFOWQ5zTIbS4rt0X/TUTdhN+pxTetoRpaL oqRq9EmMo2FsnDmv/Sf9/3VYQ/CsmQP4Gp6V6JwWfT+fsx4kAtf/f2lMMqrhrOJP 1+9q4iiQhYCwWACDIcPg9V1rnxplLiXYKmfNP2TEMNB9OrcR3oXDSvbD4IjUDKdw tjV2lDbvWZ/uIhUPs1yTUui1IGhJBkJaXQgmihBwJFocA/cQxtFfQDilTv0rZsVR 1NkHuYnjgaIIF5rwnN57RQkAQkEadahdo+7k0Ym1su4Gp+yaGpyNyoxFCeD/lmx8 4+hzhyIU/155Zx0yzzqdTYJOQYuayWzXHaNBRA== -----END CERTIFICATE-----Generated at Tue Oct 28 06:31:33 2025 by rpki-client