$ rpki-client -vvf repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/3130332e3137392e38322e302f32342d3234203d3e20313338303832.roa File: 3130332e3137392e38322e302f32342d3234203d3e20313338303832.roa (raw, json) Hash identifier: GfoRbCqzzEwM+JaSR+jL9jpyyrybmpGlShF5wsNuV5w= Subject key identifier: 40:5A:CE:2B:1E:9F:82:D0:A1:73:DD:26:02:74:7F:53:D0:EC:30:EE Certificate issuer: /CN=EA01C91511C5E347C7C11EA4649B0F041A5D0520 Certificate serial: 54E90F54C2CF66B053D753371E59DE03A6166919 Authority key identifier: EA:01:C9:15:11:C5:E3:47:C7:C1:1E:A4:64:9B:0F:04:1A:5D:05:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA01C91511C5E347C7C11EA4649B0F041A5D0520.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/3130332e3137392e38322e302f32342d3234203d3e20313338303832.roa Signing time: Tue 28 Oct 2025 06:00:00 +0000 ROA not before: Tue 28 Oct 2025 05:55:00 +0000 ROA not after: Tue 27 Oct 2026 06:00:00 +0000 asID: 138082 IP address blocks: 103.179.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/EA01C91511C5E347C7C11EA4649B0F041A5D0520.crl rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/EA01C91511C5E347C7C11EA4649B0F041A5D0520.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA01C91511C5E347C7C11EA4649B0F041A5D0520.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 01:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e9:0f:54:c2:cf:66:b0:53:d7:53:37:1e:59:de:03:a6:16:69:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA01C91511C5E347C7C11EA4649B0F041A5D0520 Validity Not Before: Oct 28 05:55:00 2025 GMT Not After : Oct 27 06:00:00 2026 GMT Subject: CN=405ACE2B1E9F82D0A173DD2602747F53D0EC30EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:31:62:04:f6:41:02:ac:a2:47:3e:5e:75:d6: 3d:a3:91:75:28:b9:b8:19:f6:3b:19:7f:9c:0b:20: 83:35:b4:3f:01:9c:ba:3e:b9:28:71:c7:03:c5:3f: b9:bb:4c:8e:68:d1:e2:15:a0:39:8e:db:94:06:96: 13:8b:63:e3:8b:14:e7:0d:93:be:42:62:83:ec:94: bd:f1:d0:0e:57:45:d3:73:52:57:59:8b:ec:c6:9f: 4f:77:0b:e0:e8:ea:b6:d8:22:88:77:de:fb:12:8e: 5e:93:be:09:ed:6f:0b:4c:86:08:20:56:7c:56:43: a5:cb:04:6d:5e:fc:ea:4a:9e:26:ec:ca:85:55:3b: 07:3e:35:e1:4e:99:24:0b:76:93:18:10:06:70:1b: 76:10:2e:64:bc:a1:27:1d:4b:e8:e9:42:31:d4:60: 46:2f:d0:b5:df:9e:76:00:a4:9c:ca:db:44:24:00: 7f:99:65:d2:25:2a:80:05:76:73:13:47:d4:20:fa: 91:d2:5f:d0:f9:d2:27:dc:0b:d4:c4:f4:44:c2:c6: 30:b5:b0:88:83:4d:fb:c8:eb:42:26:e0:79:90:d4: 2f:5e:a2:ff:a0:46:03:60:d1:b5:f0:e0:97:8a:0e: ae:8f:f7:08:a3:73:5e:5d:66:15:c7:df:c3:4f:10: e0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5A:CE:2B:1E:9F:82:D0:A1:73:DD:26:02:74:7F:53:D0:EC:30:EE X509v3 Authority Key Identifier: keyid:EA:01:C9:15:11:C5:E3:47:C7:C1:1E:A4:64:9B:0F:04:1A:5D:05:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/EA01C91511C5E347C7C11EA4649B0F041A5D0520.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA01C91511C5E347C7C11EA4649B0F041A5D0520.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/3130332e3137392e38322e302f32342d3234203d3e20313338303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.82.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:a9:bd:ba:89:a8:db:bd:5f:67:6f:14:4b:7f:08:1a:f7:56: c1:2b:cf:c1:95:74:39:9b:60:17:9f:e1:2d:bf:60:2c:3a:dd: 05:38:38:50:48:98:ef:1e:01:ad:28:df:2c:bb:87:c7:cf:46: 8d:61:d8:b8:3d:34:48:b4:71:b0:69:d0:93:a8:8f:0d:c8:b1: 86:aa:aa:4d:08:fa:15:3b:ab:fc:a9:7c:59:fe:ea:1d:b1:ad: 9c:93:3a:22:1e:37:c8:e3:1a:f1:f6:b4:84:13:07:13:a6:63: cb:3f:11:de:33:d7:16:cb:fc:55:c0:74:2a:16:97:99:76:53: 5d:94:b5:0a:be:5c:d2:1e:6f:56:79:87:03:14:16:66:c5:9c: ce:25:ac:0b:81:fc:92:f8:89:22:85:14:23:c4:cc:bd:20:7e: ae:a3:17:3d:05:aa:64:4b:bf:27:ff:09:b5:c6:b6:3d:8b:7f: 56:81:f1:54:30:dd:ca:04:bc:b1:02:bf:a6:e9:90:ba:88:2c: d2:de:c7:bc:62:7b:d5:4f:0c:5b:b9:6c:94:d8:50:93:c7:ff: 3a:a1:dd:69:3b:cd:37:86:a5:74:16:b2:75:64:f4:ae:ca:5f: 46:85:d2:0d:3d:d9:5d:01:af:c8:a8:a1:70:6c:22:55:b2:ef: 09:47:b5:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVOkPVMLPZrBT11M3HlneA6YWaRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUEwMUM5MTUxMUM1RTM0N0M3QzExRUE0NjQ5QjBGMDQx QTVEMDUyMDAeFw0yNTEwMjgwNTU1MDBaFw0yNjEwMjcwNjAwMDBaMDMxMTAvBgNV BAMTKDQwNUFDRTJCMUU5RjgyRDBBMTczREQyNjAyNzQ3RjUzRDBFQzMwRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPMWIE9kECrKJHPl511j2jkXUo ubgZ9jsZf5wLIIM1tD8BnLo+uShxxwPFP7m7TI5o0eIVoDmO25QGlhOLY+OLFOcN k75CYoPslL3x0A5XRdNzUldZi+zGn093C+Do6rbYIoh33vsSjl6TvgntbwtMhggg VnxWQ6XLBG1e/OpKnibsyoVVOwc+NeFOmSQLdpMYEAZwG3YQLmS8oScdS+jpQjHU YEYv0LXfnnYApJzK20QkAH+ZZdIlKoAFdnMTR9Qg+pHSX9D50ifcC9TE9ETCxjC1 sIiDTfvI60Im4HmQ1C9eov+gRgNg0bXw4JeKDq6P9wijc15dZhXH38NPEOBdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQFrOKx6fgtChc90mAnR/U9DsMO4wHwYDVR0j BBgwFoAU6gHJFRHF40fHwR6kZJsPBBpdBSAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Y2QyNGU4Mi1mMzA2LTQ0MDAtYjAwYS1kNTliNDFlMjg2YmIvMC9FQTAxQzkxNTEx QzVFMzQ3QzdDMTFFQTQ2NDlCMEYwNDFBNUQwNTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUEwMUM5MTUxMUM1RTM0N0M3QzExRUE0NjQ5QjBGMDQxQTVE MDUyMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjZDI0ZTgyLWYzMDYtNDQwMC1i MDBhLWQ1OWI0MWUyODZiYi8wLzMxMzAzMzJlMzEzNzM5MmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7NSMA0GCSqG SIb3DQEBCwUAA4IBAQCeqb26iajbvV9nbxRLfwga91bBK8/BlXQ5m2AXn+Etv2As Ot0FODhQSJjvHgGtKN8su4fHz0aNYdi4PTRItHGwadCTqI8NyLGGqqpNCPoVO6v8 qXxZ/uodsa2ckzoiHjfI4xrx9rSEEwcTpmPLPxHeM9cWy/xVwHQqFpeZdlNdlLUK vlzSHm9WeYcDFBZmxZzOJawLgfyS+IkihRQjxMy9IH6uoxc9BapkS78n/wm1xrY9 i39WgfFUMN3KBLyxAr+m6ZC6iCzS3se8YnvVTwxbuWyU2FCTx/86od1pO803hqV0 FrJ1ZPSuyl9GhdINPdldAa/IqKFwbCJVsu8JR7WL -----END CERTIFICATE-----Generated at Wed Nov 5 05:05:07 2025 by rpki-client