$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa File: 3130332e34392e3232322e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: fyFpznbRMF6ODJByEnZRGU+1l5nWWTK42b2kDTub5ng= Subject key identifier: 8F:C6:CD:8A:1C:E9:81:51:7D:DF:AD:76:5B:D5:A6:37:3B:F9:65:64 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 3D625A6758537AA016BDF936E046B450172C4105 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa Signing time: Fri 24 Oct 2025 11:00:01 +0000 ROA not before: Fri 24 Oct 2025 10:55:01 +0000 ROA not after: Fri 23 Oct 2026 11:00:01 +0000 asID: 24211 IP address blocks: 103.49.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:62:5a:67:58:53:7a:a0:16:bd:f9:36:e0:46:b4:50:17:2c:41:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Oct 24 10:55:01 2025 GMT Not After : Oct 23 11:00:01 2026 GMT Subject: CN=8FC6CD8A1CE981517DDFAD765BD5A6373BF96564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:23:a5:03:d1:10:b8:08:ea:0f:f4:20:70:a3: 86:97:01:60:15:ee:e8:5b:ad:c8:2a:17:dc:40:56: 37:ba:29:f3:0c:19:61:3b:0d:09:62:51:3d:0a:1e: 12:d6:ab:8a:90:48:67:16:9e:20:a1:bd:8a:34:44: 23:63:ba:fe:bf:99:bf:5d:74:72:54:9c:df:d3:c5: 6e:52:c3:d8:2f:f9:44:c5:37:72:15:e5:f9:73:ac: e5:9b:c4:bb:43:e5:43:74:36:5e:59:37:bd:65:f0: 58:2c:e4:98:71:fd:22:e3:b3:1a:37:37:77:7b:da: 9a:64:b3:53:15:03:25:0b:d3:c0:49:b8:77:7e:7d: 57:2a:2d:dd:33:05:bc:63:26:a1:3b:1d:4e:33:df: e4:9a:43:01:6d:89:dd:87:b6:c5:e2:06:e1:af:7f: 8a:9c:c1:35:c6:19:48:0c:5d:2f:84:67:e3:e5:35: 6e:f8:9a:15:98:66:51:11:93:27:4c:cb:da:45:5f: 2e:fd:16:3a:1f:b8:8c:dc:b5:73:1e:93:e7:ec:84: cd:41:3f:89:38:af:5e:cb:74:ea:03:6b:09:75:b8: 6a:36:df:e0:a6:c4:0a:f0:ca:35:20:4d:1e:2b:3d: 49:e5:0d:3f:c8:f6:63:b6:c1:b8:5d:bd:1c:c4:2e: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C6:CD:8A:1C:E9:81:51:7D:DF:AD:76:5B:D5:A6:37:3B:F9:65:64 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.222.0/23 Signature Algorithm: sha256WithRSAEncryption c6:0e:b6:3c:76:c2:a3:28:9c:de:78:69:8b:67:e2:7f:82:3f: 26:33:0d:d2:ad:92:74:68:75:ee:7d:e9:d8:57:75:4c:3a:8d: 30:e1:e0:b5:05:6b:a7:62:1f:2c:ae:2b:38:6d:53:60:01:ee: fc:d7:81:bd:69:d9:ce:0b:20:aa:db:e3:48:d6:fe:42:05:13: e3:72:a8:2b:a1:a4:f3:64:f1:dd:98:52:f1:d5:40:2c:28:e9: 47:3c:c1:f9:ba:cf:ef:8d:72:d3:44:6c:70:6c:85:02:a5:dc: 58:54:ee:77:d6:a9:52:51:75:25:22:99:81:eb:cb:aa:1a:e4: e6:0c:c1:22:e0:58:d4:6f:29:9e:49:dd:62:ac:0d:96:c2:ae: 9e:47:31:77:94:78:b9:19:1d:8c:ef:86:8d:60:0f:67:3d:b2: d6:61:dc:db:83:1d:b2:30:39:b7:84:32:e1:6c:22:bb:d2:30: 2e:e5:fa:86:ab:84:6d:8c:46:68:3c:8a:5b:5d:ec:30:e4:7c: 2b:3d:d1:e9:92:e5:bb:b9:99:98:1e:5b:52:dd:e7:ef:c9:bc: 9a:10:be:1d:88:d3:51:e2:9a:fc:99:a9:07:9b:d6:73:50:b7: 36:47:5c:8a:c9:a1:9e:66:46:7e:53:15:68:c9:6b:cc:f0:af: 23:f6:21:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPWJaZ1hTeqAWvfk24Ea0UBcsQQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTEwMjQxMDU1MDFaFw0yNjEwMjMxMTAwMDFaMDMxMTAvBgNV BAMTKDhGQzZDRDhBMUNFOTgxNTE3RERGQUQ3NjVCRDVBNjM3M0JGOTY1NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeI6UD0RC4COoP9CBwo4aXAWAV 7uhbrcgqF9xAVje6KfMMGWE7DQliUT0KHhLWq4qQSGcWniChvYo0RCNjuv6/mb9d dHJUnN/TxW5Sw9gv+UTFN3IV5flzrOWbxLtD5UN0Nl5ZN71l8Fgs5Jhx/SLjsxo3 N3d72ppks1MVAyUL08BJuHd+fVcqLd0zBbxjJqE7HU4z3+SaQwFtid2HtsXiBuGv f4qcwTXGGUgMXS+EZ+PlNW74mhWYZlERkydMy9pFXy79FjofuIzctXMek+fshM1B P4k4r17LdOoDawl1uGo23+CmxArwyjUgTR4rPUnlDT/I9mO2wbhdvRzELhNVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj8bNihzpgVF93612W9WmNzv5ZWQwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcx3jANBgkqhkiG 9w0BAQsFAAOCAQEAxg62PHbCoyic3nhpi2fif4I/JjMN0q2SdGh17n3p2Fd1TDqN MOHgtQVrp2IfLK4rOG1TYAHu/NeBvWnZzgsgqtvjSNb+QgUT43KoK6Gk82Tx3ZhS 8dVALCjpRzzB+brP741y00RscGyFAqXcWFTud9apUlF1JSKZgevLqhrk5gzBIuBY 1G8pnkndYqwNlsKunkcxd5R4uRkdjO+GjWAPZz2y1mHc24MdsjA5t4Qy4Wwiu9Iw LuX6hquEbYxGaDyKW13sMOR8Kz3R6ZLlu7mZmB5bUt3n78m8mhC+HYjTUeKa/Jmp B5vWc1C3NkdcismhnmZGflMVaMlrzPCvI/YhyQ== -----END CERTIFICATE-----Generated at Tue Oct 28 06:31:31 2025 by rpki-client