$ rpki-client -vvf repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/3130332e3138392e3232392e302f32342d3234203d3e20313533303637.roa File: 3130332e3138392e3232392e302f32342d3234203d3e20313533303637.roa (raw, json) Hash identifier: vjhjgRhzt1JqsmC1aofaHI99IqjsXLKnPCxe8EhPf/U= Subject key identifier: E0:00:53:3E:70:24:DE:49:8F:63:53:98:5F:DF:3C:68:77:56:70:69 Certificate issuer: /CN=25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3 Certificate serial: 08618CD11BB603753C62E202C13AC55EA5A779DA Authority key identifier: 25:DF:F1:C9:9D:CD:F1:9F:3A:4B:9E:D3:6F:D3:3B:AA:50:1B:87:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/3130332e3138392e3232392e302f32342d3234203d3e20313533303637.roa Signing time: Mon 03 Nov 2025 09:25:55 +0000 ROA not before: Mon 03 Nov 2025 09:20:55 +0000 ROA not after: Mon 02 Nov 2026 09:25:55 +0000 asID: 153067 IP address blocks: 103.189.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.crl rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 12:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:61:8c:d1:1b:b6:03:75:3c:62:e2:02:c1:3a:c5:5e:a5:a7:79:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3 Validity Not Before: Nov 3 09:20:55 2025 GMT Not After : Nov 2 09:25:55 2026 GMT Subject: CN=E000533E7024DE498F6353985FDF3C6877567069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:58:13:94:f3:b0:cf:f2:16:7d:c7:04:cc:1a: e8:fe:76:d9:2a:69:00:8b:c2:22:39:07:88:8d:53: d3:a3:6a:34:b9:60:0a:e7:0e:03:84:ac:a9:ee:eb: e4:aa:c4:0e:72:eb:c9:af:52:6e:1b:81:69:cd:11: 45:c4:43:e0:40:d1:fa:54:f8:92:b9:19:b3:74:cc: db:14:fb:69:f9:0a:e2:0b:93:98:20:27:4c:b5:04: 9b:95:4c:23:2a:1d:b6:a2:fc:b6:34:3d:c0:96:24: d6:55:74:24:ec:7d:b2:48:7a:55:55:2b:b0:69:c1: 78:e2:96:fc:bb:8d:46:2f:c4:81:08:5b:d5:64:9c: 57:2a:32:27:b2:6b:c9:fe:c8:1d:68:3a:8f:6a:22: b2:b0:ed:05:23:40:38:0f:03:11:58:c1:dc:1c:75: d7:5e:8a:6e:97:49:c0:38:74:34:a6:e0:6c:5b:b3: c5:43:d2:49:ab:5c:51:50:5b:f6:db:f4:5e:b1:ef: 16:a1:11:52:ab:9d:7f:48:6a:26:c2:17:65:0c:61: 2b:e8:0e:eb:df:36:70:f7:ae:7a:ad:92:c7:97:bb: 9f:86:45:01:d8:8c:7f:78:56:f5:29:8b:a2:04:42: f7:3a:ab:4f:ec:b7:5f:34:c6:7d:a8:41:80:25:68: b2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:00:53:3E:70:24:DE:49:8F:63:53:98:5F:DF:3C:68:77:56:70:69 X509v3 Authority Key Identifier: keyid:25:DF:F1:C9:9D:CD:F1:9F:3A:4B:9E:D3:6F:D3:3B:AA:50:1B:87:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/3130332e3138392e3232392e302f32342d3234203d3e20313533303637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.229.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:3e:8c:b4:54:66:12:fd:fc:3b:43:19:95:f1:ea:e7:66:77: 9e:b6:b7:b5:ea:9c:80:68:70:f3:45:55:aa:62:ce:33:ee:7b: 4c:36:cb:20:06:78:99:b7:3b:47:ca:cb:50:12:48:4c:d7:9a: 63:af:93:77:fb:47:d4:ab:70:1b:e5:65:9b:7b:e0:0e:a6:2d: cb:83:97:bb:24:34:25:9c:19:27:22:cc:db:5b:eb:2c:18:76: 27:1f:ac:7c:12:e7:8f:70:f9:1a:29:ba:c9:1d:43:87:d0:0d: 4d:cc:a9:48:ca:ed:83:68:cd:9a:5b:80:c2:ce:cd:f5:c9:07: 03:df:07:4f:fc:a8:cd:c0:9d:90:7d:18:d8:4b:e3:dc:b1:5e: 31:f8:78:95:9a:ce:29:2a:3c:2c:76:56:26:91:eb:24:22:a8: 37:c9:ba:63:83:44:88:8c:6e:9b:03:dc:13:d6:31:8b:22:55: 76:b5:e1:1c:79:8b:06:59:7a:f1:47:db:ab:7e:0d:82:b9:39: b7:30:47:10:b5:b3:e1:c4:49:6c:87:e1:59:3e:17:7c:89:9a: fb:19:95:39:e9:82:72:f3:16:97:1f:a3:23:4e:89:22:ca:d5: 41:0d:db:a5:16:a5:a6:a0:7d:66:f5:43:04:cc:6a:a5:97:1f: 4a:32:fb:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCGGM0Ru2A3U8YuICwTrFXqWnedowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVERkYxQzk5RENERjE5RjNBNEI5RUQzNkZEMzNCQUE1 MDFCODdFMzAeFw0yNTExMDMwOTIwNTVaFw0yNjExMDIwOTI1NTVaMDMxMTAvBgNV BAMTKEUwMDA1MzNFNzAyNERFNDk4RjYzNTM5ODVGREYzQzY4Nzc1NjcwNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjWBOU87DP8hZ9xwTMGuj+dtkq aQCLwiI5B4iNU9OjajS5YArnDgOErKnu6+SqxA5y68mvUm4bgWnNEUXEQ+BA0fpU +JK5GbN0zNsU+2n5CuILk5ggJ0y1BJuVTCMqHbai/LY0PcCWJNZVdCTsfbJIelVV K7BpwXjilvy7jUYvxIEIW9VknFcqMieya8n+yB1oOo9qIrKw7QUjQDgPAxFYwdwc dddeim6XScA4dDSm4Gxbs8VD0kmrXFFQW/bb9F6x7xahEVKrnX9IaibCF2UMYSvo DuvfNnD3rnqtkseXu5+GRQHYjH94VvUpi6IEQvc6q0/st180xn2oQYAlaLJdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4ABTPnAk3kmPY1OYX988aHdWcGkwHwYDVR0j BBgwFoAUJd/xyZ3N8Z86S57Tb9M7qlAbh+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OThlZWIzOC03NzQ2LTQ4OTktOWExMC03OTgwZjhiOTA1MzIvMC8yNURGRjFDOTlE Q0RGMTlGM0E0QjlFRDM2RkQzM0JBQTUwMUI4N0UzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVERkYxQzk5RENERjE5RjNBNEI5RUQzNkZEMzNCQUE1MDFC ODdFMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5OGVlYjM4LTc3NDYtNDg5OS05 YTEwLTc5ODBmOGI5MDUzMi8wLzMxMzAzMzJlMzEzODM5MmUzMjMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnveUwDQYJ KoZIhvcNAQELBQADggEBABs+jLRUZhL9/DtDGZXx6udmd562t7XqnIBocPNFVapi zjPue0w2yyAGeJm3O0fKy1ASSEzXmmOvk3f7R9SrcBvlZZt74A6mLcuDl7skNCWc GScizNtb6ywYdicfrHwS549w+RopuskdQ4fQDU3MqUjK7YNozZpbgMLOzfXJBwPf B0/8qM3AnZB9GNhL49yxXjH4eJWazikqPCx2ViaR6yQiqDfJumODRIiMbpsD3BPW MYsiVXa14Rx5iwZZevFH26t+DYK5ObcwRxC1s+HESWyH4Vk+F3yJmvsZlTnpgnLz FpcfoyNOiSLK1UEN26UWpaagfWb1QwTMaqWXH0oy+1U= -----END CERTIFICATE-----Generated at Wed Nov 5 03:07:44 2025 by rpki-client