$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3134332e302f32342d3234203d3e203436303334.roa File: 3130332e37342e3134332e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: D1j1lCivRx4MpFMf1wJtpmY2c2+VbcHJ9Y4DtgTsc+k= Subject key identifier: F1:F2:D7:AF:E9:3A:98:B2:B5:93:41:8B:48:11:CA:B4:9E:2E:68:82 Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Certificate serial: 68FBC6CEC40D987620C5389BDC53681588B01A57 Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3134332e302f32342d3234203d3e203436303334.roa Signing time: Thu 23 Oct 2025 13:00:00 +0000 ROA not before: Thu 23 Oct 2025 12:55:00 +0000 ROA not after: Thu 22 Oct 2026 13:00:00 +0000 asID: 46034 IP address blocks: 103.74.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 02:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:fb:c6:ce:c4:0d:98:76:20:c5:38:9b:dc:53:68:15:88:b0:1a:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Validity Not Before: Oct 23 12:55:00 2025 GMT Not After : Oct 22 13:00:00 2026 GMT Subject: CN=F1F2D7AFE93A98B2B593418B4811CAB49E2E6882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:67:ab:b0:f2:af:65:d6:c6:96:e7:d0:a3:c1: a5:c3:1e:7e:e8:44:fa:a8:16:32:e3:95:cb:83:ab: 2b:94:35:dd:e6:23:c6:d9:61:bb:62:be:e8:07:a1: df:3d:37:a6:b0:16:e0:19:52:b9:46:36:1a:80:b4: a5:80:23:c9:32:ce:18:32:48:44:6d:b0:59:f5:e6: 59:9f:96:44:7c:57:a0:23:4b:bb:5e:49:20:37:e0: ec:43:f4:de:b1:41:c6:10:73:e3:81:40:7d:20:f3: 7d:98:f1:09:73:d8:c4:4b:39:2e:4c:ea:d8:98:2a: 2a:bd:65:55:89:34:6c:8b:19:e0:64:23:13:84:95: 19:7c:e7:0b:9f:72:3b:de:49:4e:bd:ad:82:f3:27: 72:fd:ae:14:5c:3d:ab:de:76:43:9b:99:26:f7:9f: eb:ec:3b:a6:87:64:53:83:92:2b:48:32:30:ef:92: 3b:7e:d4:e8:01:11:c6:64:28:33:fa:68:4f:d0:64: 19:2f:d6:b7:34:be:65:9d:c3:1c:2e:c3:6a:89:c6: 92:4c:9f:44:d4:4a:e4:d3:e0:ef:ed:e1:4e:e1:23: c4:36:79:e2:77:dd:b0:77:92:81:0f:dc:87:7d:00: 5d:5a:10:33:09:3e:cf:74:9f:10:fb:52:85:81:0f: f8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F2:D7:AF:E9:3A:98:B2:B5:93:41:8B:48:11:CA:B4:9E:2E:68:82 X509v3 Authority Key Identifier: keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3134332e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.74.143.0/24 Signature Algorithm: sha256WithRSAEncryption a5:4d:a4:67:eb:b1:3f:ca:43:f1:43:f7:1a:74:3e:0c:9f:32: a9:c2:56:2d:ad:09:9a:46:26:2e:30:e3:96:5f:00:ed:f6:2b: 7b:9b:ba:6a:5d:b9:10:9f:e3:68:64:99:ea:e5:8e:0f:66:31: 48:fe:a1:8b:59:04:c2:19:0b:7f:63:7e:5b:16:d2:7f:9b:17: 27:39:59:5b:5b:fc:76:5d:69:22:80:85:0e:d4:b7:b5:b1:3a: fd:a5:96:51:3c:34:50:eb:3c:0b:8b:6b:69:a0:94:62:e4:55: f8:a6:13:e3:82:f9:18:67:43:2b:02:c0:5f:43:86:c6:99:78: e3:d9:b0:50:e2:dd:fd:43:10:f0:cd:97:26:ff:85:b5:bb:7c: 37:9c:f6:d2:40:b5:50:90:74:97:df:2d:2b:00:cd:9c:3c:e6: 17:6c:ef:00:8c:70:3c:fc:cd:13:93:6b:ad:ee:aa:ba:33:14: 6d:01:12:e2:39:2c:bc:65:40:66:4d:e2:42:24:d0:0f:2b:3d: 2c:d2:46:9a:61:65:a1:45:44:2b:c6:0e:d3:a9:0c:87:5c:a6: 84:26:d9:63:5d:9e:b7:ea:94:c6:5f:62:91:ae:a9:2b:cc:f2: 10:d7:85:4e:62:97:71:44:94:1b:f0:8f:6d:cd:41:91:bb:ea: eb:b7:16:4a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaPvGzsQNmHYgxTib3FNoFYiwGlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3 RTFENzIxQzAeFw0yNTEwMjMxMjU1MDBaFw0yNjEwMjIxMzAwMDBaMDMxMTAvBgNV BAMTKEYxRjJEN0FGRTkzQTk4QjJCNTkzNDE4QjQ4MTFDQUI0OUUyRTY4ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcZ6uw8q9l1saW59CjwaXDHn7o RPqoFjLjlcuDqyuUNd3mI8bZYbtivugHod89N6awFuAZUrlGNhqAtKWAI8kyzhgy SERtsFn15lmflkR8V6AjS7teSSA34OxD9N6xQcYQc+OBQH0g832Y8Qlz2MRLOS5M 6tiYKiq9ZVWJNGyLGeBkIxOElRl85wufcjveSU69rYLzJ3L9rhRcPavedkObmSb3 n+vsO6aHZFODkitIMjDvkjt+1OgBEcZkKDP6aE/QZBkv1rc0vmWdwxwuw2qJxpJM n0TUSuTT4O/t4U7hI8Q2eeJ33bB3koEP3Id9AF1aEDMJPs90nxD7UoWBD/hJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8fLXr+k6mLK1k0GLSBHKtJ4uaIIwHwYDVR0j BBgwFoAU6JyT8ImgfQO1eUsMAiOe9n4dchwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 Zjg4NTFlNS1lZTViLTQxZTEtOWFiYy00NDI2NTFkMjcyOTQvMC9FODlDOTNGMDg5 QTA3RDAzQjU3OTRCMEMwMjIzOUVGNjdFMUQ3MjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3RTFE NzIxQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMxMzAzMzJlMzczNDJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdKjzANBgkqhkiG 9w0BAQsFAAOCAQEApU2kZ+uxP8pD8UP3GnQ+DJ8yqcJWLa0JmkYmLjDjll8A7fYr e5u6al25EJ/jaGSZ6uWOD2YxSP6hi1kEwhkLf2N+WxbSf5sXJzlZW1v8dl1pIoCF DtS3tbE6/aWWUTw0UOs8C4traaCUYuRV+KYT44L5GGdDKwLAX0OGxpl449mwUOLd /UMQ8M2XJv+Ftbt8N5z20kC1UJB0l98tKwDNnDzmF2zvAIxwPPzNE5Nrre6qujMU bQES4jksvGVAZk3iQiTQDys9LNJGmmFloUVEK8YO06kMh1ymhCbZY12et+qUxl9i ka6pK8zyENeFTmKXcUSUG/CPbc1Bkbvq67cWSg== -----END CERTIFICATE-----Generated at Tue Nov 4 21:14:54 2025 by rpki-client