$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa File: 3130332e34392e3232302e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: UTSVYP8TuDxGN9w/aLP45n2ry9eglsw2DYtgDGOkId4= Subject key identifier: D7:45:96:CF:17:B8:8D:57:A6:CE:E0:69:0E:89:01:70:C4:E7:C2:83 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 115F12F27231310648D89BA67ACCE4FC92357C97 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa Signing time: Fri 24 Oct 2025 11:00:00 +0000 ROA not before: Fri 24 Oct 2025 10:55:00 +0000 ROA not after: Fri 23 Oct 2026 11:00:00 +0000 asID: 24211 IP address blocks: 103.49.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:5f:12:f2:72:31:31:06:48:d8:9b:a6:7a:cc:e4:fc:92:35:7c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Oct 24 10:55:00 2025 GMT Not After : Oct 23 11:00:00 2026 GMT Subject: CN=D74596CF17B88D57A6CEE0690E890170C4E7C283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fd:9c:02:3f:13:b7:f4:17:85:86:6d:f1:30: 3b:4d:4b:10:40:65:1b:c9:6b:c4:bc:c2:a0:82:42: 23:a1:25:99:63:6e:d4:f7:a5:cf:ff:c0:a7:91:f5: 2d:8e:ff:93:e5:c9:79:b6:3a:26:b2:e8:59:57:92: 15:d6:e8:ad:13:cf:cd:02:4e:a5:09:a9:3f:d7:56: 0d:f2:66:12:49:4d:ce:05:e8:57:8a:24:18:9a:a9: 49:b3:65:bc:76:dc:b3:51:78:dd:b0:0d:7e:d6:e0: 8c:64:5d:d2:43:d1:58:5d:a9:c4:66:c3:25:e5:6f: 41:33:5d:68:ed:82:6a:4a:a4:56:a3:a9:ec:f8:bc: 71:28:fe:08:e4:05:89:9c:85:bb:68:03:e0:05:a8: 81:14:15:7b:74:de:86:5d:b4:48:d6:a4:99:5d:71: d5:28:94:ab:b2:4b:c9:b0:13:f1:5a:30:42:7c:7a: 6a:ab:a2:49:17:37:eb:71:46:70:03:f0:a7:10:73: 56:a8:84:fd:c7:d4:0b:a3:2f:ec:83:f3:9f:02:51: 45:c4:c5:bb:49:7f:fd:5d:eb:02:d9:47:0d:1d:17: 8e:43:2c:5c:f9:08:33:46:6b:8a:c9:ed:7d:86:83: 81:ac:94:f2:9f:90:3b:1b:78:42:7f:27:49:c8:a0: 90:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:45:96:CF:17:B8:8D:57:A6:CE:E0:69:0E:89:01:70:C4:E7:C2:83 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/23 Signature Algorithm: sha256WithRSAEncryption 01:60:bb:25:79:94:ca:69:58:e5:d9:07:19:e3:f4:64:e0:48: 6f:02:db:10:69:f4:0a:91:ee:21:af:33:40:cc:d0:53:17:a3: d7:a9:a9:8c:18:5a:d5:ad:8a:8c:de:95:ab:4f:73:d0:d1:e2: c8:dd:b8:78:27:4d:db:74:83:12:02:73:82:91:f6:87:54:fc: 7d:77:10:68:b7:19:15:dd:d5:b1:18:1b:26:e8:1a:95:64:3c: 93:fb:a9:e3:0b:d1:8d:5b:c5:b2:5f:8b:f3:d7:ec:a8:dd:08: 52:28:bc:13:fd:26:91:a7:89:5a:87:f3:da:7f:81:e5:ae:34: 54:40:54:42:bb:e7:70:88:71:b0:13:6f:96:39:aa:5e:51:ff: 5f:46:24:da:7e:7b:50:96:fd:ae:a9:ea:98:6f:40:3b:b3:5b: 55:d6:4a:c9:db:70:12:70:d8:13:36:f8:b1:53:6d:16:cb:3c: 88:df:25:04:a4:02:1a:c7:4b:73:c1:5a:af:cb:5c:9c:e0:af: 3b:41:c6:05:ba:a2:04:29:44:83:bc:48:0d:6c:30:af:cd:0d: 17:74:c3:57:a8:59:9e:57:42:0e:46:fe:ef:6f:b3:c6:16:f0: b8:3d:6c:8e:80:f8:82:60:e8:b4:15:d1:ab:5a:48:cb:06:a6: b8:0b:96:01 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEV8S8nIxMQZI2Jumeszk/JI1fJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTEwMjQxMDU1MDBaFw0yNjEwMjMxMTAwMDBaMDMxMTAvBgNV BAMTKEQ3NDU5NkNGMTdCODhENTdBNkNFRTA2OTBFODkwMTcwQzRFN0MyODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy/ZwCPxO39BeFhm3xMDtNSxBA ZRvJa8S8wqCCQiOhJZljbtT3pc//wKeR9S2O/5PlyXm2Oiay6FlXkhXW6K0Tz80C TqUJqT/XVg3yZhJJTc4F6FeKJBiaqUmzZbx23LNReN2wDX7W4IxkXdJD0VhdqcRm wyXlb0EzXWjtgmpKpFajqez4vHEo/gjkBYmchbtoA+AFqIEUFXt03oZdtEjWpJld cdUolKuyS8mwE/FaMEJ8emqrokkXN+txRnAD8KcQc1aohP3H1AujL+yD858CUUXE xbtJf/1d6wLZRw0dF45DLFz5CDNGa4rJ7X2Gg4GslPKfkDsbeEJ/J0nIoJB/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU10WWzxe4jVemzuBpDokBcMTnwoMwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcx3DANBgkqhkiG 9w0BAQsFAAOCAQEAAWC7JXmUymlY5dkHGeP0ZOBIbwLbEGn0CpHuIa8zQMzQUxej 16mpjBha1a2KjN6Vq09z0NHiyN24eCdN23SDEgJzgpH2h1T8fXcQaLcZFd3VsRgb JugalWQ8k/up4wvRjVvFsl+L89fsqN0IUii8E/0mkaeJWofz2n+B5a40VEBUQrvn cIhxsBNvljmqXlH/X0Yk2n57UJb9rqnqmG9AO7NbVdZKydtwEnDYEzb4sVNtFss8 iN8lBKQCGsdLc8Far8tcnOCvO0HGBbqiBClEg7xIDWwwr80NF3TDV6hZnldCDkb+ 72+zxhbwuD1sjoD4gmDotBXRq1pIywamuAuWAQ== -----END CERTIFICATE-----Generated at Tue Oct 28 06:31:31 2025 by rpki-client