$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa File: 3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa (raw, json) Hash identifier: zlUSo08cC5dU1tahN2pFRIpVflwenezMlRGB/W6FAVg= Subject key identifier: E9:DD:B1:C1:78:83:13:41:4E:0D:35:83:B4:E6:71:08:D5:6E:CC:47 Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 474DCA97290E19DA468E52BD5E79821F4D3314F0 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa Signing time: Mon 02 Jun 2025 01:03:12 +0000 ROA not before: Mon 02 Jun 2025 00:58:12 +0000 ROA not after: Mon 01 Jun 2026 01:03:12 +0000 asID: 136079 IP address blocks: 103.86.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:4d:ca:97:29:0e:19:da:46:8e:52:bd:5e:79:82:1f:4d:33:14:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jun 2 00:58:12 2025 GMT Not After : Jun 1 01:03:12 2026 GMT Subject: CN=E9DDB1C1788313414E0D3583B4E67108D56ECC47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:15:08:68:3f:91:33:05:b7:7d:59:ba:1e:75: 1d:34:92:47:d1:1e:40:5b:69:60:9a:a9:24:40:40: b7:07:44:dd:59:c1:38:12:09:11:f8:c1:8f:ef:c8: 3a:9a:39:b2:bb:f9:63:c0:24:cb:78:3e:16:69:15: 39:5e:0a:b9:c4:46:4c:2a:0a:13:9d:d1:9c:4e:74: 38:16:13:75:c6:5d:6e:b0:49:d6:07:68:ff:3a:11: 50:34:9f:cb:3c:79:56:d2:88:77:ab:f6:31:03:f6: 6b:71:dc:2e:f9:97:dc:77:44:c4:24:2a:95:5f:ce: 7a:c6:c1:40:b1:26:ca:8a:e2:03:dc:aa:c0:98:e0: 44:c0:49:c5:94:17:9b:0a:e3:10:e4:ba:69:6b:97: 64:da:4a:af:1f:ae:38:5c:e3:5e:28:c9:47:4b:0e: 43:0e:c6:8a:b8:71:78:e3:f1:7b:54:be:b4:5e:3b: 32:aa:b6:a1:99:12:97:21:0f:68:1b:e9:8f:e9:a1: 9c:21:d8:87:65:23:03:1c:38:8f:af:d5:1d:8d:af: e7:11:6e:a1:2c:83:ed:ad:a7:64:de:93:31:c6:60: a2:a2:4d:3f:b6:b7:f6:02:22:f2:55:24:c5:f9:74: 73:dc:42:0f:30:04:e5:b9:80:ca:49:38:d4:3d:89: 3b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DD:B1:C1:78:83:13:41:4E:0D:35:83:B4:E6:71:08:D5:6E:CC:47 X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.101.0/24 Signature Algorithm: sha256WithRSAEncryption 69:e5:70:d9:62:28:be:a8:f2:54:73:7a:0e:bb:1e:7c:10:09: b7:87:9e:ef:05:8c:8c:16:a3:5c:95:7c:a9:e8:c4:2e:76:14: 2b:9c:5a:2b:67:85:32:2a:e3:25:79:14:ed:93:74:b7:e5:f6: 94:21:bd:82:43:04:d8:ca:1b:9b:6e:a1:f6:63:39:b3:4f:95: c6:7a:f7:86:45:a7:dc:cf:41:d0:b0:d1:ef:83:6a:3b:f4:4f: dd:44:09:df:b9:73:e1:5f:27:d4:3d:01:dc:9a:1a:63:58:7e: ec:7a:97:e4:df:9c:86:45:19:4e:9f:38:ae:92:59:35:dc:3f: a1:da:04:ef:83:c1:6f:4f:06:71:ae:af:ab:98:3b:e9:4c:08: c0:a3:cb:a2:7c:58:1a:23:de:72:34:c7:32:1f:33:98:bc:c4: ac:4d:9e:cb:a3:c5:70:c7:00:14:aa:02:c9:32:2b:77:92:02: d4:67:11:cb:fc:25:9d:28:a3:5b:b5:20:42:f9:85:ac:ee:62: b6:a4:33:fe:2b:bb:04:5c:d2:e7:bb:20:d7:af:72:a1:03:30: d3:07:60:a9:04:91:45:29:b2:0f:31:95:f9:1c:b0:92:82:4d: 18:33:17:31:93:41:69:ae:5c:70:b7:82:81:ec:24:d2:6c:9e: c2:63:7b:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR03KlykOGdpGjlK9XnmCH00zFPAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA2MDIwMDU4MTJaFw0yNjA2MDEwMTAzMTJaMDMxMTAvBgNV BAMTKEU5RERCMUMxNzg4MzEzNDE0RTBEMzU4M0I0RTY3MTA4RDU2RUNDNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoFQhoP5EzBbd9WboedR00kkfR HkBbaWCaqSRAQLcHRN1ZwTgSCRH4wY/vyDqaObK7+WPAJMt4PhZpFTleCrnERkwq ChOd0ZxOdDgWE3XGXW6wSdYHaP86EVA0n8s8eVbSiHer9jED9mtx3C75l9x3RMQk KpVfznrGwUCxJsqK4gPcqsCY4ETAScWUF5sK4xDkumlrl2TaSq8frjhc414oyUdL DkMOxoq4cXjj8XtUvrReOzKqtqGZEpchD2gb6Y/poZwh2IdlIwMcOI+v1R2Nr+cR bqEsg+2tp2TekzHGYKKiTT+2t/YCIvJVJMX5dHPcQg8wBOW5gMpJONQ9iTsnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6d2xwXiDE0FODTWDtOZxCNVuzEcwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMxMzAzMzJlMzgzNjJlMzEzMDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1ZlMA0GCSqG SIb3DQEBCwUAA4IBAQBp5XDZYii+qPJUc3oOux58EAm3h57vBYyMFqNclXyp6MQu dhQrnForZ4UyKuMleRTtk3S35faUIb2CQwTYyhubbqH2YzmzT5XGeveGRafcz0HQ sNHvg2o79E/dRAnfuXPhXyfUPQHcmhpjWH7sepfk35yGRRlOnziuklk13D+h2gTv g8FvTwZxrq+rmDvpTAjAo8uifFgaI95yNMcyHzOYvMSsTZ7Lo8VwxwAUqgLJMit3 kgLUZxHL/CWdKKNbtSBC+YWs7mK2pDP+K7sEXNLnuyDXr3KhAzDTB2CpBJFFKbIP MZX5HLCSgk0YMxcxk0Fprlxwt4KB7CTSbJ7CY3s4 -----END CERTIFICATE-----Generated at Tue Oct 28 14:08:43 2025 by rpki-client