$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa File: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: 8iEgHOEIqDfpr7gSt8jxyho1deCIzw83qW565uPVSgs= Subject key identifier: DD:E1:8B:34:A3:50:19:F0:FE:8E:03:70:4F:DD:D2:B5:1C:18:B3:B2 Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 1F835AC8ADB5A26288DE7F6B623D1C9D442E3B24 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa Signing time: Mon 06 Oct 2025 01:00:01 +0000 ROA not before: Mon 06 Oct 2025 00:55:01 +0000 ROA not after: Mon 05 Oct 2026 01:00:01 +0000 asID: 136052 IP address blocks: 103.59.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 21:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:83:5a:c8:ad:b5:a2:62:88:de:7f:6b:62:3d:1c:9d:44:2e:3b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Oct 6 00:55:01 2025 GMT Not After : Oct 5 01:00:01 2026 GMT Subject: CN=DDE18B34A35019F0FE8E03704FDDD2B51C18B3B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:4c:55:73:24:96:1b:30:66:65:23:4c:b4: 31:2a:af:bc:62:aa:00:e8:dd:a0:cf:ea:72:da:2f: 3f:db:e5:0f:ec:93:25:6d:7b:3d:d9:40:2e:00:2c: 07:4a:9d:77:0b:6c:ba:b7:f6:ca:a0:00:c4:27:a8: 54:59:db:23:4f:b6:27:03:2a:07:ae:f2:f0:ec:ed: d7:cd:ae:66:e5:16:a0:45:7a:71:ad:e3:a8:27:7e: 9c:6f:0c:e9:de:fe:97:b3:90:5b:f0:06:f9:c5:80: 47:06:5a:6e:19:66:3f:d8:a3:01:4a:98:3e:f3:81: 95:d1:3f:b9:9c:9f:d6:7b:3a:f2:cc:1f:91:63:80: 56:86:2e:99:17:70:c9:3b:63:90:a8:f4:fa:33:2c: 5a:1a:2c:0b:02:d2:03:5e:ff:f8:63:6d:c3:7e:34: b1:51:23:88:7b:b6:a9:3c:7e:2b:75:5a:a6:71:03: d3:20:06:2b:0d:d1:2b:88:53:9f:69:df:80:26:aa: a4:85:60:76:57:8a:2b:17:22:c0:c5:6b:a1:90:a7: 66:58:10:bb:57:67:f3:05:ed:34:09:f0:f3:ff:94: 4f:1e:8a:4c:bd:12:aa:c9:51:8a:e2:df:ce:69:84: 24:15:ec:02:d3:95:c4:ff:17:82:e1:a6:68:2c:02: 6d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E1:8B:34:A3:50:19:F0:FE:8E:03:70:4F:DD:D2:B5:1C:18:B3:B2 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.94.0/23 Signature Algorithm: sha256WithRSAEncryption 15:27:3b:ba:5b:f2:0c:6b:9d:6a:33:72:06:31:79:46:f0:5c: 3c:80:4b:ef:44:5a:b6:c3:b9:1b:e1:62:d8:9f:fa:cd:b4:77: 28:b3:27:09:95:9f:a8:ff:70:4c:c9:6b:11:e9:56:72:89:9e: 22:f6:b6:80:03:8e:f6:39:2c:51:20:c3:10:7a:c0:6d:4a:1e: 9c:a4:e9:01:10:e4:6b:46:be:7b:22:97:22:0c:7d:93:e8:a9: 8b:12:c6:6b:6d:6c:53:07:58:e1:9e:21:ba:3e:40:32:76:86: a4:f1:26:63:35:a3:f6:01:52:fc:b3:f0:60:66:31:e6:b9:d1: ae:b3:64:a8:3e:f2:ac:23:a7:a8:5b:c6:f8:54:f2:e8:0a:dc: 9a:d6:55:e9:ed:85:12:1b:01:fe:97:99:9e:e3:9b:f8:52:03: e6:8d:e0:95:95:cb:3f:12:5b:e2:26:32:0f:47:e8:8c:a2:7a: 49:ac:fe:8f:22:10:10:7e:e5:26:6b:4f:35:d1:61:74:b4:7b: 8b:66:2c:56:17:bb:f5:a8:06:42:44:b9:89:2d:ae:b6:74:0e: 00:57:2a:91:3e:7f:2b:77:6d:ef:de:61:3c:c4:0f:41:cb:21: df:81:63:32:cc:67:5a:82:47:ab:c3:c6:c3:13:a7:6d:09:00: 27:e7:9a:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH4NayK21omKI3n9rYj0cnUQuOyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTEwMDYwMDU1MDFaFw0yNjEwMDUwMTAwMDFaMDMxMTAvBgNV BAMTKERERTE4QjM0QTM1MDE5RjBGRThFMDM3MDRGREREMkI1MUMxOEIzQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy/ExVcySWGzBmZSNMtDEqr7xi qgDo3aDP6nLaLz/b5Q/skyVtez3ZQC4ALAdKnXcLbLq39sqgAMQnqFRZ2yNPticD Kgeu8vDs7dfNrmblFqBFenGt46gnfpxvDOne/pezkFvwBvnFgEcGWm4ZZj/YowFK mD7zgZXRP7mcn9Z7OvLMH5FjgFaGLpkXcMk7Y5Co9PozLFoaLAsC0gNe//hjbcN+ NLFRI4h7tqk8fit1WqZxA9MgBisN0SuIU59p34AmqqSFYHZXiisXIsDFa6GQp2ZY ELtXZ/MF7TQJ8PP/lE8eiky9EqrJUYri385phCQV7ALTlcT/F4LhpmgsAm0dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3eGLNKNQGfD+jgNwT93StRwYs7IwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NmE4ZjI4LTlhMDMtNDM3Ni1i NjEyLTMxZjVhZDFjMWVkNi8wLzMxMzAzMzJlMzUzOTJlMzkzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc7XjANBgkqhkiG 9w0BAQsFAAOCAQEAFSc7ulvyDGudajNyBjF5RvBcPIBL70RatsO5G+Fi2J/6zbR3 KLMnCZWfqP9wTMlrEelWcomeIva2gAOO9jksUSDDEHrAbUoenKTpARDka0a+eyKX Igx9k+ipixLGa21sUwdY4Z4huj5AMnaGpPEmYzWj9gFS/LPwYGYx5rnRrrNkqD7y rCOnqFvG+FTy6ArcmtZV6e2FEhsB/peZnuOb+FID5o3glZXLPxJb4iYyD0fojKJ6 Saz+jyIQEH7lJmtPNdFhdLR7i2YsVhe79agGQkS5iS2utnQOAFcqkT5/K3dt795h PMQPQcsh34FjMsxnWoJHq8PGwxOnbQkAJ+ea/Q== -----END CERTIFICATE-----Generated at Mon Oct 20 04:54:42 2025 by rpki-client