$ rpki-client -vvf repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa File: 3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa (raw, json) Hash identifier: MT1KDWQqYyLr20+JCVbOcTP9065uZU6zePFP48QOnT0= Subject key identifier: D7:F6:1E:CF:45:BB:9F:48:B8:EF:6A:31:A0:08:D7:17:C1:85:E2:E3 Certificate issuer: /CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Certificate serial: 674D7BBD6A3DD68751EAACDCC00B231ADD52C70E Authority key identifier: 28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa Signing time: Wed 29 Oct 2025 08:00:01 +0000 ROA not before: Wed 29 Oct 2025 07:55:01 +0000 ROA not after: Wed 28 Oct 2026 08:00:01 +0000 asID: 38524 IP address blocks: 103.191.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 06:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:4d:7b:bd:6a:3d:d6:87:51:ea:ac:dc:c0:0b:23:1a:dd:52:c7:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Validity Not Before: Oct 29 07:55:01 2025 GMT Not After : Oct 28 08:00:01 2026 GMT Subject: CN=D7F61ECF45BB9F48B8EF6A31A008D717C185E2E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4c:e4:74:05:74:0a:4c:d1:8b:9d:41:31:40: c7:b1:a3:ca:17:31:5d:c9:44:5d:21:a1:8e:df:70: e0:b9:1a:d5:72:09:35:36:8f:c9:b2:0b:83:90:7e: f5:81:e7:ec:a0:3b:8b:fb:63:6c:be:79:52:fa:85: 8e:52:3b:eb:84:1e:54:42:43:50:aa:58:7b:10:9a: 39:44:a7:30:89:ba:b5:5a:b3:99:f8:b6:5c:30:39: e1:10:49:23:17:97:ee:16:86:48:df:fc:e0:92:82: 45:fe:76:2d:90:68:6b:b8:7c:d7:af:85:62:80:36: d8:39:b7:d7:f1:54:f5:8f:75:f5:1d:0f:0b:88:e3: 5e:17:58:b6:b3:c4:43:0d:83:09:d1:2c:f6:06:07: ba:4c:78:83:c3:9e:55:e0:1c:af:da:b1:00:9a:bb: 76:14:05:99:eb:e8:85:f9:f8:ca:e6:37:6f:45:09: d8:7b:eb:2d:86:5b:5b:db:cf:9a:07:d6:93:bb:1e: cf:f8:14:90:52:59:e5:73:13:0c:cc:85:95:35:9e: ec:8d:71:b3:2b:de:f3:4f:32:9c:bf:d1:9d:26:bc: 6c:ee:e3:d6:65:9d:7c:92:79:05:cb:48:f9:e1:9f: cd:ca:7f:06:71:be:13:be:ac:63:75:de:11:d4:55: 7d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F6:1E:CF:45:BB:9F:48:B8:EF:6A:31:A0:08:D7:17:C1:85:E2:E3 X509v3 Authority Key Identifier: keyid:28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.152.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:c5:ae:1e:f1:29:26:ba:23:37:9a:90:fd:1e:ab:2b:54:cf: 82:36:d6:8a:06:3a:06:f1:a2:59:0c:d9:8e:58:62:e1:b0:93: 70:a1:0a:05:44:e3:77:37:ce:4a:c5:4e:e6:72:2f:1e:a2:d7: 08:08:5c:6a:06:9c:e6:3a:29:fb:70:90:c5:ff:51:9b:73:e9: 64:0b:6a:23:3c:67:b2:ee:18:4e:89:cb:04:ae:69:01:20:0e: 77:f3:91:25:0a:6c:8b:e1:b8:7c:4e:13:ac:3c:97:95:4b:ce: 5b:44:71:af:eb:74:17:e6:ff:44:1c:c5:c2:49:67:e9:0d:35: e0:0f:0d:1c:6a:52:a7:04:62:e6:6d:4b:d3:2c:28:f7:00:22: 9f:13:9f:6e:dc:f1:99:85:23:36:15:4f:95:97:77:35:be:ac: 21:a3:4b:44:36:d7:91:65:d8:06:a9:27:fe:6b:68:27:e4:97: 1e:a1:ba:ac:1c:91:1c:ca:dd:a8:a2:0c:fa:df:23:0e:84:5b: 17:36:77:60:8e:09:95:27:4f:c1:09:af:7d:78:50:c0:de:f2: 19:6c:6e:db:34:3c:03:38:45:ca:62:a4:87:5d:cf:98:65:9c: 3b:9e:c5:af:99:65:0d:ad:d2:b4:05:71:f7:92:90:4b:3d:5c: d5:c2:3a:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ017vWo91odR6qzcwAsjGt1Sxw4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0 MzFGMEY0NzAeFw0yNTEwMjkwNzU1MDFaFw0yNjEwMjgwODAwMDFaMDMxMTAvBgNV BAMTKEQ3RjYxRUNGNDVCQjlGNDhCOEVGNkEzMUEwMDhENzE3QzE4NUUyRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5TOR0BXQKTNGLnUExQMexo8oX MV3JRF0hoY7fcOC5GtVyCTU2j8myC4OQfvWB5+ygO4v7Y2y+eVL6hY5SO+uEHlRC Q1CqWHsQmjlEpzCJurVas5n4tlwwOeEQSSMXl+4Whkjf/OCSgkX+di2QaGu4fNev hWKANtg5t9fxVPWPdfUdDwuI414XWLazxEMNgwnRLPYGB7pMeIPDnlXgHK/asQCa u3YUBZnr6IX5+MrmN29FCdh76y2GW1vbz5oH1pO7Hs/4FJBSWeVzEwzMhZU1nuyN cbMr3vNPMpy/0Z0mvGzu49ZlnXySeQXLSPnhn83KfwZxvhO+rGN13hHUVX3PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1/Yez0W7n0i472oxoAjXF8GF4uMwHwYDVR0j BBgwFoAUKKv4UipDz3zHJXkFpbo+UEMfD0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmE2Y2ExMi1iMjg3LTRhYzctODdiOC02Y2Q3MzM1M2U2N2YvMC8yOEFCRjg1MjJB NDNDRjdDQzcyNTc5MDVBNUJBM0U1MDQzMUYwRjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0MzFG MEY0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YTZjYTEyLWIyODctNGFjNy04 N2I4LTZjZDczMzUzZTY3Zi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7+YMA0GCSqG SIb3DQEBCwUAA4IBAQBfxa4e8SkmuiM3mpD9HqsrVM+CNtaKBjoG8aJZDNmOWGLh sJNwoQoFRON3N85KxU7mci8eotcICFxqBpzmOin7cJDF/1Gbc+lkC2ojPGey7hhO icsErmkBIA5385ElCmyL4bh8ThOsPJeVS85bRHGv63QX5v9EHMXCSWfpDTXgDw0c alKnBGLmbUvTLCj3ACKfE59u3PGZhSM2FU+Vl3c1vqwho0tENteRZdgGqSf+a2gn 5JceobqsHJEcyt2oogz63yMOhFsXNndgjgmVJ0/BCa99eFDA3vIZbG7bNDwDOEXK YqSHXc+YZZw7nsWvmWUNrdK0BXH3kpBLPVzVwjo+ -----END CERTIFICATE-----Generated at Tue Nov 4 16:45:16 2025 by rpki-client