$ rpki-client -vvf repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa File: 3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: lA0HvakrheoR+VMWrWjd7ZsfLODkGFiLcqbm8PHhQfs= Subject key identifier: 81:82:4E:63:88:BB:7A:3C:E4:9F:E0:70:0A:92:62:60:C1:AE:A1:A5 Certificate issuer: /CN=ED137633BAEE661A0ACBBF277089F107CB59439A Certificate serial: 7764FD166AA006DB55FAEC4B71AA40032825F60E Authority key identifier: ED:13:76:33:BA:EE:66:1A:0A:CB:BF:27:70:89:F1:07:CB:59:43:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa Signing time: Sat 25 Oct 2025 03:00:01 +0000 ROA not before: Sat 25 Oct 2025 02:55:01 +0000 ROA not after: Sat 24 Oct 2026 03:00:01 +0000 asID: 137316 IP address blocks: 103.162.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.crl rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 17:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:64:fd:16:6a:a0:06:db:55:fa:ec:4b:71:aa:40:03:28:25:f6:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED137633BAEE661A0ACBBF277089F107CB59439A Validity Not Before: Oct 25 02:55:01 2025 GMT Not After : Oct 24 03:00:01 2026 GMT Subject: CN=81824E6388BB7A3CE49FE0700A926260C1AEA1A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:39:17:09:30:7b:6b:0b:ad:50:1f:74:4d:ac: 67:6a:8b:c4:6b:b6:a2:2e:b1:d3:92:eb:ef:c4:a7: 6c:c2:10:a0:5c:be:cb:8b:9d:22:f5:af:bd:45:a6: 0d:5e:95:e2:30:e7:6d:37:f8:c4:35:56:92:ed:90: 7b:80:9e:14:cf:66:cb:47:77:a0:3f:6e:aa:ce:12: fa:04:b6:ea:0e:7a:79:ee:e9:14:cd:90:9b:66:5d: 92:2a:3b:67:c7:ca:32:ce:15:f5:78:f2:28:45:e5: e6:12:82:8b:4c:b8:ce:97:9c:f3:3a:56:9f:ab:be: 37:9f:dd:be:81:38:5d:bb:04:2c:89:21:a4:ed:9c: e6:f1:c6:bd:91:a4:9f:d3:55:87:4f:22:f6:d0:75: 54:15:1e:7c:bf:0d:2c:f5:74:b2:b9:76:76:52:fb: b7:5c:50:c9:49:34:f5:e7:9c:b9:c5:76:4c:6d:f2: 26:5c:d9:79:b7:a0:70:4d:c6:00:a3:0a:fd:c5:25: a9:b4:07:bc:69:9e:98:6a:eb:a1:bb:7e:26:fc:eb: 27:da:fe:ab:88:17:7d:04:93:48:ec:aa:ee:dd:49: cc:ee:02:28:04:03:60:95:9f:8f:81:d3:67:e3:c4: ac:08:49:62:fe:9f:fc:73:09:3c:5d:ad:d9:bb:ee: 49:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:82:4E:63:88:BB:7A:3C:E4:9F:E0:70:0A:92:62:60:C1:AE:A1:A5 X509v3 Authority Key Identifier: keyid:ED:13:76:33:BA:EE:66:1A:0A:CB:BF:27:70:89:F1:07:CB:59:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.105.0/24 Signature Algorithm: sha256WithRSAEncryption ab:cd:93:ff:d6:fb:72:34:98:2c:0f:b6:54:63:0f:e0:d8:fe: ad:16:77:14:bf:51:fb:df:c9:ca:2e:cb:24:ad:35:12:49:1d: 27:76:95:d4:01:3a:45:8b:36:5c:df:7d:d5:7b:57:4c:fa:53: 8d:23:c0:51:c0:10:3c:ee:a9:0b:b4:1c:f4:4b:25:22:8d:61: d8:0c:3e:ff:d2:43:d8:5d:f0:95:80:c4:a7:2b:93:e1:5c:4f: 57:e6:eb:59:36:22:fe:f8:bf:3e:2e:b7:d8:80:30:5f:0a:02: 62:5f:64:39:62:b8:b6:5e:c8:58:cb:db:33:75:c7:14:1f:b7: 90:17:46:59:f0:ae:c4:2c:f7:4a:52:bc:11:0b:4f:c7:80:b4: f8:04:9d:1a:02:1a:19:61:3d:35:48:9f:5e:0d:ab:d5:34:e1: 7d:9b:b7:6f:38:a2:1c:31:90:a8:a9:fe:7c:be:02:7d:fb:f2: 42:81:34:05:11:5f:0d:cf:80:ea:8f:d4:3c:c8:5d:eb:d7:ec: c5:f6:45:0e:d1:60:6d:71:de:88:cb:60:7c:dd:89:74:89:a8: 26:57:12:21:a5:7f:ce:f6:a9:ae:31:b8:b9:4a:07:68:c7:7c: 62:e7:19:10:6a:05:f8:e2:cf:84:5e:5e:a6:1f:a5:4b:f1:f4: f8:02:32:8a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd2T9FmqgBttV+uxLcapAAygl9g4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQxMzc2MzNCQUVFNjYxQTBBQ0JCRjI3NzA4OUYxMDdD QjU5NDM5QTAeFw0yNTEwMjUwMjU1MDFaFw0yNjEwMjQwMzAwMDFaMDMxMTAvBgNV BAMTKDgxODI0RTYzODhCQjdBM0NFNDlGRTA3MDBBOTI2MjYwQzFBRUExQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFORcJMHtrC61QH3RNrGdqi8Rr tqIusdOS6+/Ep2zCEKBcvsuLnSL1r71Fpg1eleIw5203+MQ1VpLtkHuAnhTPZstH d6A/bqrOEvoEtuoOennu6RTNkJtmXZIqO2fHyjLOFfV48ihF5eYSgotMuM6XnPM6 Vp+rvjef3b6BOF27BCyJIaTtnObxxr2RpJ/TVYdPIvbQdVQVHny/DSz1dLK5dnZS +7dcUMlJNPXnnLnFdkxt8iZc2Xm3oHBNxgCjCv3FJam0B7xpnphq66G7fib86yfa /quIF30Ek0jsqu7dSczuAigEA2CVn4+B02fjxKwISWL+n/xzCTxdrdm77klJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgYJOY4i7ejzkn+BwCpJiYMGuoaUwHwYDVR0j BBgwFoAU7RN2M7ruZhoKy78ncInxB8tZQ5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzIyNDM2MC0yNDVkLTRhMWEtYWYzNi1mOWJlZmNkYjcwYjcvMC9FRDEzNzYzM0JB RUU2NjFBMEFDQkJGMjc3MDg5RjEwN0NCNTk0MzlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUQxMzc2MzNCQUVFNjYxQTBBQ0JCRjI3NzA4OUYxMDdDQjU5 NDM5QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3MjI0MzYwLTI0NWQtNGExYS1h ZjM2LWY5YmVmY2RiNzBiNy8wLzMxMzAzMzJlMzEzNjMyMmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnomkwDQYJ KoZIhvcNAQELBQADggEBAKvNk//W+3I0mCwPtlRjD+DY/q0WdxS/UfvfycouyySt NRJJHSd2ldQBOkWLNlzffdV7V0z6U40jwFHAEDzuqQu0HPRLJSKNYdgMPv/SQ9hd 8JWAxKcrk+FcT1fm61k2Iv74vz4ut9iAMF8KAmJfZDliuLZeyFjL2zN1xxQft5AX RlnwrsQs90pSvBELT8eAtPgEnRoCGhlhPTVIn14Nq9U04X2bt284ohwxkKip/ny+ An378kKBNAURXw3PgOqP1DzIXevX7MX2RQ7RYG1x3ojLYHzdiXSJqCZXEiGlf872 qa4xuLlKB2jHfGLnGRBqBfjiz4ReXqYfpUvx9PgCMoo= -----END CERTIFICATE-----Generated at Tue Nov 4 18:56:03 2025 by rpki-client