$ rpki-client -vvf repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/3130332e3136322e33362e302f32332d3233203d3e20313431363339.roa File: 3130332e3136322e33362e302f32332d3233203d3e20313431363339.roa (raw, json) Hash identifier: uAyx0ZgKo2lMKIycgmtqallZpoJhZxNdFY86j3bZrVw= Subject key identifier: 87:11:38:20:01:4B:2F:20:00:F0:46:8F:5B:71:8A:F9:DF:7B:D3:27 Certificate issuer: /CN=F9645D835A5B60A8E839A13E87861562B73F34B6 Certificate serial: 12000150CDE2B7BDD5C15D7749022F8EDB6556E9 Authority key identifier: F9:64:5D:83:5A:5B:60:A8:E8:39:A1:3E:87:86:15:62:B7:3F:34:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9645D835A5B60A8E839A13E87861562B73F34B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/3130332e3136322e33362e302f32332d3233203d3e20313431363339.roa Signing time: Thu 30 Oct 2025 23:00:01 +0000 ROA not before: Thu 30 Oct 2025 22:55:01 +0000 ROA not after: Thu 29 Oct 2026 23:00:01 +0000 asID: 141639 IP address blocks: 103.162.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/F9645D835A5B60A8E839A13E87861562B73F34B6.crl rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/F9645D835A5B60A8E839A13E87861562B73F34B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9645D835A5B60A8E839A13E87861562B73F34B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 08:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:00:01:50:cd:e2:b7:bd:d5:c1:5d:77:49:02:2f:8e:db:65:56:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9645D835A5B60A8E839A13E87861562B73F34B6 Validity Not Before: Oct 30 22:55:01 2025 GMT Not After : Oct 29 23:00:01 2026 GMT Subject: CN=87113820014B2F2000F0468F5B718AF9DF7BD327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2c:1b:dd:89:e5:19:34:f8:c4:82:d8:1f:bc: 0d:9b:c8:fe:72:c5:23:2d:6e:4f:b0:ba:89:9a:9e: 29:0e:4c:f2:6f:1a:cb:fc:88:8e:6b:cd:06:ea:87: d8:0c:b5:62:28:ae:ed:ea:c7:95:5c:6b:58:8e:55: 97:4e:69:ce:23:03:76:ba:69:28:12:53:b3:e5:75: 5f:cb:07:d4:47:8f:75:79:9b:7a:e2:2e:e6:3d:59: f0:98:43:76:d7:09:78:02:e7:ac:de:2e:a1:b8:f6: ea:68:d3:bb:88:19:42:68:30:b6:96:02:75:8a:f3: 39:88:26:74:e2:0b:20:70:3c:37:26:58:59:58:bd: 8a:07:63:bf:c2:2a:52:d4:56:55:f2:59:88:87:98: ac:7c:6e:56:be:b7:1c:da:b9:f9:ff:39:15:c0:d0: 08:c0:1a:79:97:da:63:09:94:c3:52:88:6e:8b:e5: d1:0a:c6:ff:ec:93:c8:e3:15:e6:ca:ad:ba:96:52: 05:d0:6c:63:c7:78:1a:2a:c3:c0:a2:7c:8a:e1:2e: 7c:6f:11:61:ab:c1:a9:01:48:f2:0a:08:a6:f6:79: 79:7e:62:42:36:b3:1b:af:0a:69:4e:9e:7e:c6:db: 06:3f:e7:81:5c:af:2f:14:9f:8c:7c:87:64:fc:47: 58:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:11:38:20:01:4B:2F:20:00:F0:46:8F:5B:71:8A:F9:DF:7B:D3:27 X509v3 Authority Key Identifier: keyid:F9:64:5D:83:5A:5B:60:A8:E8:39:A1:3E:87:86:15:62:B7:3F:34:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/F9645D835A5B60A8E839A13E87861562B73F34B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9645D835A5B60A8E839A13E87861562B73F34B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/3130332e3136322e33362e302f32332d3233203d3e20313431363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.36.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:51:08:84:e9:00:17:ac:c0:5b:e9:f9:04:2c:5b:4d:3a:61: 91:6d:9c:b1:a1:9d:f2:b2:24:a6:f3:53:5d:87:ba:be:e1:5f: 98:b5:d3:c8:fb:a8:10:76:0a:66:4c:0d:95:57:87:93:67:72: dd:d2:7c:66:9b:33:e7:0b:99:cc:3b:0e:e9:5c:e1:fc:b5:96: 22:7a:c6:b1:13:70:a3:1b:ba:93:e3:a4:e0:b7:6b:ea:84:52: 55:2b:e6:f8:2f:80:ea:b0:49:41:e0:c5:ef:3e:75:14:b0:c7: c5:3a:13:84:47:ad:5a:e3:7f:2d:d5:44:b5:47:6b:72:ee:16: 38:1e:4a:8b:a9:03:db:ec:c5:cb:e6:7d:00:75:c8:44:5a:97: 95:ee:33:b9:69:c9:74:00:77:a8:ce:14:02:d9:08:3d:50:83: cf:41:87:f9:ae:34:fd:6e:e4:16:3c:64:b2:bf:55:3f:0a:6f: 2a:25:62:c3:93:da:4a:d5:b9:ef:0e:37:bf:35:07:3b:38:58: ce:74:ac:a3:87:3d:a7:bf:d3:49:eb:88:24:1b:a1:74:08:82: 97:6e:a9:90:0a:18:fe:70:22:22:58:41:dd:a9:2a:ac:e4:f3: e8:41:dd:66:26:6e:a1:68:7e:09:71:62:13:7c:e5:b1:c6:e6: c9:4d:64:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEgABUM3it73VwV13SQIvjttlVukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk2NDVEODM1QTVCNjBBOEU4MzlBMTNFODc4NjE1NjJC NzNGMzRCNjAeFw0yNTEwMzAyMjU1MDFaFw0yNjEwMjkyMzAwMDFaMDMxMTAvBgNV BAMTKDg3MTEzODIwMDE0QjJGMjAwMEYwNDY4RjVCNzE4QUY5REY3QkQzMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXLBvdieUZNPjEgtgfvA2byP5y xSMtbk+wuomanikOTPJvGsv8iI5rzQbqh9gMtWIoru3qx5Vca1iOVZdOac4jA3a6 aSgSU7PldV/LB9RHj3V5m3riLuY9WfCYQ3bXCXgC56zeLqG49upo07uIGUJoMLaW AnWK8zmIJnTiCyBwPDcmWFlYvYoHY7/CKlLUVlXyWYiHmKx8bla+txzaufn/ORXA 0AjAGnmX2mMJlMNSiG6L5dEKxv/sk8jjFebKrbqWUgXQbGPHeBoqw8CifIrhLnxv EWGrwakBSPIKCKb2eXl+YkI2sxuvCmlOnn7G2wY/54Fcry8Un4x8h2T8R1jVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhxE4IAFLLyAA8EaPW3GK+d970ycwHwYDVR0j BBgwFoAU+WRdg1pbYKjoOaE+h4YVYrc/NLYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmYzYWU5Ny1mNTJlLTQ5NzctOTBkMS00MzQ5YWFkMDUyYTgvMC9GOTY0NUQ4MzVB NUI2MEE4RTgzOUExM0U4Nzg2MTU2MkI3M0YzNEI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjk2NDVEODM1QTVCNjBBOEU4MzlBMTNFODc4NjE1NjJCNzNG MzRCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2ZjNhZTk3LWY1MmUtNDk3Ny05 MGQxLTQzNDlhYWQwNTJhOC8wLzMxMzAzMzJlMzEzNjMyMmUzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzYzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6IkMA0GCSqG SIb3DQEBCwUAA4IBAQA/UQiE6QAXrMBb6fkELFtNOmGRbZyxoZ3ysiSm81Ndh7q+ 4V+YtdPI+6gQdgpmTA2VV4eTZ3Ld0nxmmzPnC5nMOw7pXOH8tZYiesaxE3CjG7qT 46Tgt2vqhFJVK+b4L4DqsElB4MXvPnUUsMfFOhOER61a438t1US1R2ty7hY4HkqL qQPb7MXL5n0AdchEWpeV7jO5acl0AHeozhQC2Qg9UIPPQYf5rjT9buQWPGSyv1U/ Cm8qJWLDk9pK1bnvDje/NQc7OFjOdKyjhz2nv9NJ64gkG6F0CIKXbqmQChj+cCIi WEHdqSqs5PPoQd1mJm6haH4JcWITfOWxxubJTWSr -----END CERTIFICATE-----Generated at Wed Nov 5 16:37:48 2025 by rpki-client