$ rpki-client -vvf repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/3130332e3136322e33362e302f32342d3234203d3e20313431363339.roa File: 3130332e3136322e33362e302f32342d3234203d3e20313431363339.roa (raw, json) Hash identifier: ctP7iZh6Pi4bGkXsiPVFEzH3C3SbuLNPCJCcVp3ePus= Subject key identifier: 3C:DA:66:A7:0F:62:4D:74:8D:B7:AA:1A:07:37:A2:6B:BA:BA:63:1A Certificate issuer: /CN=F9645D835A5B60A8E839A13E87861562B73F34B6 Certificate serial: 2B38C6A0E8E7C090F7555296DEED49872084778B Authority key identifier: F9:64:5D:83:5A:5B:60:A8:E8:39:A1:3E:87:86:15:62:B7:3F:34:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9645D835A5B60A8E839A13E87861562B73F34B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/3130332e3136322e33362e302f32342d3234203d3e20313431363339.roa Signing time: Thu 30 Oct 2025 16:00:01 +0000 ROA not before: Thu 30 Oct 2025 15:55:01 +0000 ROA not after: Thu 29 Oct 2026 16:00:01 +0000 asID: 141639 IP address blocks: 103.162.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/F9645D835A5B60A8E839A13E87861562B73F34B6.crl rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/F9645D835A5B60A8E839A13E87861562B73F34B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9645D835A5B60A8E839A13E87861562B73F34B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 08:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:38:c6:a0:e8:e7:c0:90:f7:55:52:96:de:ed:49:87:20:84:77:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9645D835A5B60A8E839A13E87861562B73F34B6 Validity Not Before: Oct 30 15:55:01 2025 GMT Not After : Oct 29 16:00:01 2026 GMT Subject: CN=3CDA66A70F624D748DB7AA1A0737A26BBABA631A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:26:62:87:0f:f6:be:d4:98:84:ea:ad:a8:5f: 6b:7b:9a:16:ba:fb:87:e1:39:24:7f:f3:4d:46:c5: 20:cc:ec:c2:a2:87:97:a0:1f:e2:d8:95:cd:a5:bb: b9:1d:3e:cf:32:c7:5a:7a:89:c0:f6:98:51:cc:2c: 8e:f9:9a:82:d9:ba:3a:81:9e:8c:f3:e2:6f:cb:75: 8e:bc:8e:3d:03:49:6c:15:84:b7:bd:e6:af:8f:9e: e2:85:33:b1:9f:a4:da:07:4e:1c:a0:3f:ec:3d:c2: fd:ab:05:52:53:cf:47:52:ba:73:59:48:cb:fa:81: 4f:2f:e7:61:b9:f7:d3:fc:70:ca:33:34:11:2a:81: e2:a6:3e:44:9a:0e:94:d6:6c:9d:61:4e:f5:45:e0: 68:14:ea:f6:b5:b2:41:c5:70:11:a4:7e:a1:02:9c: 55:4e:b3:c2:47:dd:c7:ee:42:81:ef:e3:87:65:b1: 88:a5:17:7c:0e:4c:22:cc:09:a0:8b:03:79:69:c5: 30:70:ae:df:5c:89:2f:80:91:8d:1e:d4:8d:3b:88: 7a:69:f6:f5:cb:a1:ec:97:bd:8a:60:01:57:3d:e2: 56:32:76:fe:ae:b1:c4:5c:9f:0c:a6:9d:f9:41:10: d6:78:46:a3:b8:78:00:0e:41:58:18:ff:2b:94:ce: c6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DA:66:A7:0F:62:4D:74:8D:B7:AA:1A:07:37:A2:6B:BA:BA:63:1A X509v3 Authority Key Identifier: keyid:F9:64:5D:83:5A:5B:60:A8:E8:39:A1:3E:87:86:15:62:B7:3F:34:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/F9645D835A5B60A8E839A13E87861562B73F34B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9645D835A5B60A8E839A13E87861562B73F34B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36f3ae97-f52e-4977-90d1-4349aad052a8/0/3130332e3136322e33362e302f32342d3234203d3e20313431363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.36.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:12:c4:b5:37:c8:0d:7d:8a:bc:c3:93:49:c0:44:63:0b:d4: fc:1f:22:48:5e:8b:ad:1a:14:88:3c:e2:ef:d1:cc:72:09:d7: 3f:ab:41:6f:e5:9a:2f:c3:39:b9:2b:ab:4e:12:02:24:5e:07: 96:4f:4e:86:c9:d3:79:67:91:1c:fe:39:a0:a9:f9:55:06:1e: 54:f1:7a:8c:f4:7d:9e:99:08:ae:24:ca:38:fa:cb:f4:9f:51: d5:9f:ef:ee:fe:6a:76:a5:a9:8f:b5:db:81:8a:76:ab:3d:16: 5c:04:97:cb:e6:9f:03:55:66:80:84:53:1d:72:80:3f:47:f3: fb:8e:39:36:ff:7b:e6:57:94:2b:ee:76:ac:fb:a1:19:20:a3: 05:95:06:ac:4b:bf:fb:df:27:58:cb:f8:ea:91:61:b8:2a:ae: 7b:3b:d4:13:2a:6a:54:38:d8:cb:16:d7:4b:03:5c:f0:f6:aa: d2:14:7c:d7:82:8f:d4:2a:8a:d2:09:20:41:c4:b2:55:15:46: cd:27:55:eb:bc:c2:6c:c4:31:1a:62:ed:c6:bf:cf:ba:26:56: f0:58:0e:2f:22:2f:f3:6d:da:40:9e:9d:c3:12:4c:fd:20:62: f6:0c:fc:6f:81:32:86:ab:a2:47:b1:29:d6:07:0c:4e:19:07: 02:35:fe:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKzjGoOjnwJD3VVKW3u1JhyCEd4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk2NDVEODM1QTVCNjBBOEU4MzlBMTNFODc4NjE1NjJC NzNGMzRCNjAeFw0yNTEwMzAxNTU1MDFaFw0yNjEwMjkxNjAwMDFaMDMxMTAvBgNV BAMTKDNDREE2NkE3MEY2MjRENzQ4REI3QUExQTA3MzdBMjZCQkFCQTYzMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7JmKHD/a+1JiE6q2oX2t7mha6 +4fhOSR/801GxSDM7MKih5egH+LYlc2lu7kdPs8yx1p6icD2mFHMLI75moLZujqB nozz4m/LdY68jj0DSWwVhLe95q+PnuKFM7GfpNoHThygP+w9wv2rBVJTz0dSunNZ SMv6gU8v52G599P8cMozNBEqgeKmPkSaDpTWbJ1hTvVF4GgU6va1skHFcBGkfqEC nFVOs8JH3cfuQoHv44dlsYilF3wOTCLMCaCLA3lpxTBwrt9ciS+AkY0e1I07iHpp 9vXLoeyXvYpgAVc94lYydv6uscRcnwymnflBENZ4RqO4eAAOQVgY/yuUzsZZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPNpmpw9iTXSNt6oaBzeia7q6YxowHwYDVR0j BBgwFoAU+WRdg1pbYKjoOaE+h4YVYrc/NLYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmYzYWU5Ny1mNTJlLTQ5NzctOTBkMS00MzQ5YWFkMDUyYTgvMC9GOTY0NUQ4MzVB NUI2MEE4RTgzOUExM0U4Nzg2MTU2MkI3M0YzNEI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjk2NDVEODM1QTVCNjBBOEU4MzlBMTNFODc4NjE1NjJCNzNG MzRCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2ZjNhZTk3LWY1MmUtNDk3Ny05 MGQxLTQzNDlhYWQwNTJhOC8wLzMxMzAzMzJlMzEzNjMyMmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6IkMA0GCSqG SIb3DQEBCwUAA4IBAQALEsS1N8gNfYq8w5NJwERjC9T8HyJIXoutGhSIPOLv0cxy Cdc/q0Fv5Zovwzm5K6tOEgIkXgeWT06GydN5Z5Ec/jmgqflVBh5U8XqM9H2emQiu JMo4+sv0n1HVn+/u/mp2pamPtduBinarPRZcBJfL5p8DVWaAhFMdcoA/R/P7jjk2 /3vmV5Qr7nas+6EZIKMFlQasS7/73ydYy/jqkWG4Kq57O9QTKmpUONjLFtdLA1zw 9qrSFHzXgo/UKorSCSBBxLJVFUbNJ1XrvMJsxDEaYu3Gv8+6JlbwWA4vIi/zbdpA np3DEkz9IGL2DPxvgTKGq6JHsSnWBwxOGQcCNf6a -----END CERTIFICATE-----Generated at Wed Nov 5 16:37:17 2025 by rpki-client