$ rpki-client -vvf repo-rpki.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/3130332e3136302e39352e302f32342d3234203d3e20313431353739.roa File: 3130332e3136302e39352e302f32342d3234203d3e20313431353739.roa (raw, json) Hash identifier: APKnqzs0AhNltyzReDLYt5pEaL3GFsO7SJudc2pHP5w= Subject key identifier: CD:08:F9:90:EF:6B:8A:B3:30:E8:3E:6F:F1:B8:EF:30:5F:21:25:98 Certificate issuer: /CN=F8F2A2C885D477DE76A5B2E75D699D5C06240751 Certificate serial: 3EA3E1A634CA58DFA87EC234C02DD79B5E9D20FD Authority key identifier: F8:F2:A2:C8:85:D4:77:DE:76:A5:B2:E7:5D:69:9D:5C:06:24:07:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8F2A2C885D477DE76A5B2E75D699D5C06240751.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/3130332e3136302e39352e302f32342d3234203d3e20313431353739.roa Signing time: Sat 06 Sep 2025 04:02:26 +0000 ROA not before: Sat 06 Sep 2025 03:57:26 +0000 ROA not after: Sat 05 Sep 2026 04:02:26 +0000 asID: 141579 IP address blocks: 103.160.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/F8F2A2C885D477DE76A5B2E75D699D5C06240751.crl rsync://repo-rpki.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/F8F2A2C885D477DE76A5B2E75D699D5C06240751.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8F2A2C885D477DE76A5B2E75D699D5C06240751.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 14:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a3:e1:a6:34:ca:58:df:a8:7e:c2:34:c0:2d:d7:9b:5e:9d:20:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8F2A2C885D477DE76A5B2E75D699D5C06240751 Validity Not Before: Sep 6 03:57:26 2025 GMT Not After : Sep 5 04:02:26 2026 GMT Subject: CN=CD08F990EF6B8AB330E83E6FF1B8EF305F212598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a2:67:33:49:c8:a0:1d:02:cc:fd:86:eb:8c: 66:a4:48:67:4b:f0:c2:95:f8:70:ac:c0:e3:ce:00: 76:3e:eb:44:37:3c:6d:a1:a4:72:d6:e6:19:c2:d0: f0:74:27:a0:81:83:c7:3e:a9:98:c9:c8:66:c5:60: dc:3b:9b:cc:ad:15:66:74:f6:6a:46:58:46:62:92: 6f:c6:41:1d:ed:9f:70:84:a4:58:92:f4:9c:c6:95: 4c:69:d8:f7:3f:9d:a1:e1:f8:ba:e5:e0:ba:45:d3: e7:d8:61:57:67:5b:32:4f:0b:d9:0b:1c:9e:52:23: d9:10:20:87:23:43:7e:b6:e4:00:66:9d:64:64:50: ff:b8:71:45:a7:8f:d6:05:96:49:64:fb:01:75:08: 49:f4:2b:d0:d5:d8:fa:f4:4b:d7:7e:4f:cc:5a:ff: 70:67:ae:e5:f3:01:86:0e:2e:5e:31:8e:09:13:64: 8c:ea:4c:51:55:3a:22:7a:ee:68:70:fa:49:69:ae: c5:6e:e7:e0:28:be:68:f5:14:8c:74:d4:b8:54:f8: 7d:d3:d9:22:0d:4f:32:91:8d:81:ee:a7:61:9d:77: e0:4f:b9:3e:6b:80:ff:1f:f3:98:3b:ae:c9:ff:4d: 99:ca:ed:01:66:9a:bb:a0:a1:0c:8d:34:e7:e1:fd: 30:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:08:F9:90:EF:6B:8A:B3:30:E8:3E:6F:F1:B8:EF:30:5F:21:25:98 X509v3 Authority Key Identifier: keyid:F8:F2:A2:C8:85:D4:77:DE:76:A5:B2:E7:5D:69:9D:5C:06:24:07:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/F8F2A2C885D477DE76A5B2E75D699D5C06240751.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8F2A2C885D477DE76A5B2E75D699D5C06240751.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a59e5658-ab10-4297-92f4-f6a2663e54c0/0/3130332e3136302e39352e302f32342d3234203d3e20313431353739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.95.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:3b:fc:8a:01:80:60:76:31:c1:4d:99:fc:be:24:91:bb:92: ee:a3:38:4f:fd:34:11:d2:cd:e1:10:b9:95:a6:b8:20:32:6b: 0b:15:3c:db:1c:55:af:f6:ee:e8:72:81:67:77:29:09:99:4f: 66:f5:b5:dc:dc:7b:60:ef:b8:a8:5e:86:7d:c9:89:54:5e:75: a6:75:8b:c1:62:af:e0:16:04:8e:65:85:65:da:07:7d:49:3f: ef:41:d3:fb:3c:56:51:9f:c5:7b:41:33:81:95:70:a5:2b:bd: ff:0a:a2:1e:0a:8a:58:df:22:7f:e5:e7:ad:24:e1:16:c0:0f: 59:67:75:02:f1:6b:0b:fa:d3:4b:68:97:6d:8c:f3:20:de:2d: f2:15:30:2c:91:94:7d:17:d5:06:2a:80:f4:d4:a1:3a:bb:5c: 23:bf:f1:78:1e:cd:2f:6c:c4:44:40:bf:ef:c2:ef:19:6f:35: c0:af:3c:26:57:c8:b3:e6:47:2e:76:e3:33:63:e1:65:51:38: 4e:2b:eb:ce:7c:c2:e9:6c:18:a7:8a:a9:12:9a:bc:23:9f:4e: 6d:72:f1:6c:ed:f8:55:51:5f:f1:24:d6:6d:f2:8a:60:78:b9: d0:e2:2a:de:40:d9:31:90:7a:25:2a:dd:7c:7b:fb:d5:6c:24: dc:e0:c8:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPqPhpjTKWN+ofsI0wC3Xm16dIP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhGMkEyQzg4NUQ0NzdERTc2QTVCMkU3NUQ2OTlENUMw NjI0MDc1MTAeFw0yNTA5MDYwMzU3MjZaFw0yNjA5MDUwNDAyMjZaMDMxMTAvBgNV BAMTKENEMDhGOTkwRUY2QjhBQjMzMEU4M0U2RkYxQjhFRjMwNUYyMTI1OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjomczScigHQLM/YbrjGakSGdL 8MKV+HCswOPOAHY+60Q3PG2hpHLW5hnC0PB0J6CBg8c+qZjJyGbFYNw7m8ytFWZ0 9mpGWEZikm/GQR3tn3CEpFiS9JzGlUxp2Pc/naHh+Lrl4LpF0+fYYVdnWzJPC9kL HJ5SI9kQIIcjQ3625ABmnWRkUP+4cUWnj9YFlklk+wF1CEn0K9DV2Pr0S9d+T8xa /3BnruXzAYYOLl4xjgkTZIzqTFFVOiJ67mhw+klprsVu5+Aovmj1FIx01LhU+H3T 2SINTzKRjYHup2Gdd+BPuT5rgP8f85g7rsn/TZnK7QFmmrugoQyNNOfh/TBvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzQj5kO9rirMw6D5v8bjvMF8hJZgwHwYDVR0j BBgwFoAU+PKiyIXUd952pbLnXWmdXAYkB1EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTllNTY1OC1hYjEwLTQyOTctOTJmNC1mNmEyNjYzZTU0YzAvMC9GOEYyQTJDODg1 RDQ3N0RFNzZBNUIyRTc1RDY5OUQ1QzA2MjQwNzUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhGMkEyQzg4NUQ0NzdERTc2QTVCMkU3NUQ2OTlENUMwNjI0 MDc1MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1OWU1NjU4LWFiMTAtNDI5Ny05 MmY0LWY2YTI2NjNlNTRjMC8wLzMxMzAzMzJlMzEzNjMwMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6BfMA0GCSqG SIb3DQEBCwUAA4IBAQAeO/yKAYBgdjHBTZn8viSRu5LuozhP/TQR0s3hELmVprgg MmsLFTzbHFWv9u7ocoFndykJmU9m9bXc3Htg77ioXoZ9yYlUXnWmdYvBYq/gFgSO ZYVl2gd9ST/vQdP7PFZRn8V7QTOBlXClK73/CqIeCopY3yJ/5eetJOEWwA9ZZ3UC 8WsL+tNLaJdtjPMg3i3yFTAskZR9F9UGKoD01KE6u1wjv/F4Hs0vbMREQL/vwu8Z bzXArzwmV8iz5kcuduMzY+FlUThOK+vOfMLpbBiniqkSmrwjn05tcvFs7fhVUV/x JNZt8opgeLnQ4ireQNkxkHolKt18e/vVbCTc4MhX -----END CERTIFICATE-----Generated at Sun Oct 19 20:37:11 2025 by rpki-client