$ rpki-client -vvf repo-rpki.idnic.net/repo/729401d0-26a7-4787-b68a-182b152a9513/0/3130332e342e37362e302f32332d3234203d3e20313530323136.roa File: 3130332e342e37362e302f32332d3234203d3e20313530323136.roa (raw, json) Hash identifier: ncYGXRGoDNxvYIX3PcGqdrJLj1FxUvjJrqOvy1GAKxo= Subject key identifier: 8F:C1:48:4E:4C:80:64:61:A5:69:F4:D0:6C:82:32:1B:BB:DB:25:37 Certificate issuer: /CN=3FBFE92D5B220E9B36B37BCD3091D754EA8156D3 Certificate serial: 37043D681E633E69E05EE82D45CE3CE902B54671 Authority key identifier: 3F:BF:E9:2D:5B:22:0E:9B:36:B3:7B:CD:30:91:D7:54:EA:81:56:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FBFE92D5B220E9B36B37BCD3091D754EA8156D3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/729401d0-26a7-4787-b68a-182b152a9513/0/3130332e342e37362e302f32332d3234203d3e20313530323136.roa Signing time: Sat 20 Sep 2025 10:00:02 +0000 ROA not before: Sat 20 Sep 2025 09:55:02 +0000 ROA not after: Sat 19 Sep 2026 10:00:02 +0000 asID: 150216 IP address blocks: 103.4.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/729401d0-26a7-4787-b68a-182b152a9513/0/3FBFE92D5B220E9B36B37BCD3091D754EA8156D3.crl rsync://repo-rpki.idnic.net/repo/729401d0-26a7-4787-b68a-182b152a9513/0/3FBFE92D5B220E9B36B37BCD3091D754EA8156D3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FBFE92D5B220E9B36B37BCD3091D754EA8156D3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:04:3d:68:1e:63:3e:69:e0:5e:e8:2d:45:ce:3c:e9:02:b5:46:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FBFE92D5B220E9B36B37BCD3091D754EA8156D3 Validity Not Before: Sep 20 09:55:02 2025 GMT Not After : Sep 19 10:00:02 2026 GMT Subject: CN=8FC1484E4C806461A569F4D06C82321BBBDB2537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:0c:9d:c3:ee:03:70:2a:4c:f9:ab:76:77: 19:41:af:df:f2:38:63:d8:80:bd:75:71:5e:0b:ec: ce:cb:d4:13:89:88:b0:84:a5:6b:02:32:3c:7d:07: b9:d1:f2:ae:82:1b:d0:81:c3:a3:22:8e:2c:43:a1: e0:27:0c:7e:55:3e:9e:ba:3c:26:f5:3f:f1:be:20: ce:a2:12:34:38:83:58:58:a5:02:2e:89:cb:1e:b2: 42:8c:3b:01:68:8b:78:68:a5:c3:ca:54:30:85:36: d0:d0:d4:43:59:ae:a3:7a:9b:a9:9a:ad:fe:20:5e: 9b:7d:92:a4:d5:8c:ac:7a:03:f3:5d:c8:2e:60:ac: 23:28:6f:58:d6:87:e0:d6:af:a7:98:8a:40:4b:a2: 45:ef:7b:fd:bd:24:b1:68:2f:07:27:72:06:d6:94: 6b:3a:1d:24:4d:e4:51:16:4d:dc:9d:1b:cd:eb:ea: 32:0c:5e:29:07:f7:42:ba:a9:7f:7e:53:30:05:db: a1:fa:c7:b7:ac:cf:49:df:53:51:15:19:93:be:72: 12:07:88:be:60:60:f2:75:80:33:2a:37:00:e9:3b: 79:14:78:19:1f:fa:00:c4:0c:65:32:ea:6c:17:39: f9:b2:ff:c2:41:ba:e7:b7:b3:be:8d:e6:c9:59:0e: bb:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C1:48:4E:4C:80:64:61:A5:69:F4:D0:6C:82:32:1B:BB:DB:25:37 X509v3 Authority Key Identifier: keyid:3F:BF:E9:2D:5B:22:0E:9B:36:B3:7B:CD:30:91:D7:54:EA:81:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/729401d0-26a7-4787-b68a-182b152a9513/0/3FBFE92D5B220E9B36B37BCD3091D754EA8156D3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FBFE92D5B220E9B36B37BCD3091D754EA8156D3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/729401d0-26a7-4787-b68a-182b152a9513/0/3130332e342e37362e302f32332d3234203d3e20313530323136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.76.0/23 Signature Algorithm: sha256WithRSAEncryption 15:ee:16:6c:5d:0c:7c:94:92:22:4f:3d:e4:f4:5b:fa:98:1a: 42:04:e3:b9:a5:60:33:a0:2c:4d:b9:fa:b3:fa:71:34:b7:ba: 1c:f9:7b:e0:67:d5:b7:b2:a5:3d:ea:af:75:d2:1f:64:e5:f5: 43:fd:a8:16:7d:5c:f3:0a:34:ed:6c:10:53:37:49:a2:1b:08: 0a:fe:2d:1e:7b:c5:54:fd:9b:48:6f:f8:1d:56:f7:ab:71:bb: 97:0a:78:b9:f6:95:05:97:3b:d4:51:01:4a:67:45:49:e7:c6: dd:6c:62:ad:93:04:1e:f5:91:02:10:b5:a9:85:4e:82:74:4c: 26:fe:7c:85:0d:57:45:db:c2:07:ba:e1:9c:4a:36:cd:83:8d: 9e:f7:6b:56:f1:ab:39:5a:71:ff:10:39:04:55:42:39:8e:e7: 9a:18:06:95:34:67:26:c9:1a:5d:91:99:b3:ef:c9:25:36:18: ab:72:ef:ae:1a:30:bd:27:fc:ee:c7:3f:c2:9f:43:13:c2:a1: 24:8b:45:e6:55:64:db:48:53:18:a7:47:b3:87:56:0e:ce:9f: b0:2d:46:50:9b:17:ba:c2:7b:b7:24:94:67:33:28:8e:40:cb: d0:3f:d3:df:47:50:f6:a7:dd:49:4d:2b:46:a4:94:eb:4b:bc: b0:ff:6f:cc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNwQ9aB5jPmngXugtRc486QK1RnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZCRkU5MkQ1QjIyMEU5QjM2QjM3QkNEMzA5MUQ3NTRF QTgxNTZEMzAeFw0yNTA5MjAwOTU1MDJaFw0yNjA5MTkxMDAwMDJaMDMxMTAvBgNV BAMTKDhGQzE0ODRFNEM4MDY0NjFBNTY5RjREMDZDODIzMjFCQkJEQjI1MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOwydw+4DcCpM+at2dxlBr9/y OGPYgL11cV4L7M7L1BOJiLCEpWsCMjx9B7nR8q6CG9CBw6MijixDoeAnDH5VPp66 PCb1P/G+IM6iEjQ4g1hYpQIuicseskKMOwFoi3hopcPKVDCFNtDQ1ENZrqN6m6ma rf4gXpt9kqTVjKx6A/NdyC5grCMob1jWh+DWr6eYikBLokXve/29JLFoLwcncgbW lGs6HSRN5FEWTdydG83r6jIMXikH90K6qX9+UzAF26H6x7esz0nfU1EVGZO+chIH iL5gYPJ1gDMqNwDpO3kUeBkf+gDEDGUy6mwXOfmy/8JBuue3s76N5slZDrvRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUj8FITkyAZGGlafTQbIIyG7vbJTcwHwYDVR0j BBgwFoAUP7/pLVsiDps2s3vNMJHXVOqBVtMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Mjk0MDFkMC0yNmE3LTQ3ODctYjY4YS0xODJiMTUyYTk1MTMvMC8zRkJGRTkyRDVC MjIwRTlCMzZCMzdCQ0QzMDkxRDc1NEVBODE1NkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZCRkU5MkQ1QjIyMEU5QjM2QjM3QkNEMzA5MUQ3NTRFQTgx NTZEMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyOTQwMWQwLTI2YTctNDc4Ny1i NjhhLTE4MmIxNTJhOTUxMy8wLzMxMzAzMzJlMzQyZTM3MzYyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM1MzAzMjMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnBEwwDQYJKoZIhvcN AQELBQADggEBABXuFmxdDHyUkiJPPeT0W/qYGkIE47mlYDOgLE25+rP6cTS3uhz5 e+Bn1beypT3qr3XSH2Tl9UP9qBZ9XPMKNO1sEFM3SaIbCAr+LR57xVT9m0hv+B1W 96txu5cKeLn2lQWXO9RRAUpnRUnnxt1sYq2TBB71kQIQtamFToJ0TCb+fIUNV0Xb wge64ZxKNs2DjZ73a1bxqzlacf8QOQRVQjmO55oYBpU0ZybJGl2RmbPvySU2GKty 764aML0n/O7HP8KfQxPCoSSLReZVZNtIUxinR7OHVg7On7AtRlCbF7rCe7cklGcz KI5Ay9A/099HUPan3UlNK0aklOtLvLD/b8w= -----END CERTIFICATE-----Generated at Mon Oct 20 08:24:58 2025 by rpki-client