$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3136342e302f32342d3234203d3e203436303334.roa File: 3130332e37342e3136342e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: qP5p1JtLajQU4tMkK8i4H4Q7vMTKK0pWmbujRAH0CW4= Subject key identifier: EB:A2:AA:EF:73:05:7B:0F:2B:4F:E3:14:DF:8B:F2:4E:24:23:3A:6A Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Certificate serial: 4564DDE9A9BE4C795EF2F5BBCFD999B4B27FDAD2 Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3136342e302f32342d3234203d3e203436303334.roa Signing time: Thu 23 Oct 2025 13:00:00 +0000 ROA not before: Thu 23 Oct 2025 12:55:00 +0000 ROA not after: Thu 22 Oct 2026 13:00:00 +0000 asID: 46034 IP address blocks: 103.74.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 02:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:64:dd:e9:a9:be:4c:79:5e:f2:f5:bb:cf:d9:99:b4:b2:7f:da:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Validity Not Before: Oct 23 12:55:00 2025 GMT Not After : Oct 22 13:00:00 2026 GMT Subject: CN=EBA2AAEF73057B0F2B4FE314DF8BF24E24233A6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:06:d2:59:8c:5e:ed:13:df:e5:d9:7d:f6:9a: 10:00:de:68:b8:38:98:ae:cb:70:cc:61:75:25:17: f1:8b:65:f2:de:75:fd:7f:cf:82:ff:6e:42:a7:d4: 9e:15:05:3d:9c:3a:1b:d0:fb:ce:10:44:53:51:5b: 62:cc:68:9a:ea:a4:a3:d5:e4:2d:08:b3:5a:12:87: d4:f0:a9:6f:8d:b9:e4:26:e0:b3:52:0c:40:56:be: 89:10:d8:a9:9d:bc:67:e5:01:e9:a2:35:e8:4d:65: e2:e6:91:bc:6c:39:b7:7c:f3:9a:a6:e6:1c:98:ea: de:6a:89:e3:a1:26:35:e5:d5:a1:1a:94:d8:ee:56: b3:37:e0:c9:36:4b:16:f0:51:1f:78:bb:67:c9:0d: 84:6d:3f:4f:2a:3f:1c:a4:41:1b:2e:a3:94:a8:83: 44:5d:d8:8e:df:b0:ae:08:77:dd:b7:98:3b:ab:95: 54:86:45:45:5b:a6:7b:0c:7e:fc:87:dc:0a:76:a9: 89:ce:2d:31:7a:86:06:0c:39:5f:f8:08:e7:77:92: a1:6c:13:a1:f3:5a:2a:70:65:46:c1:9d:e7:57:ab: c2:27:7e:1a:a7:5f:bb:e4:b8:7c:ab:86:a6:b1:ce: ec:b4:56:dc:98:72:7c:9e:69:d7:d0:7e:f5:ac:f6: e8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A2:AA:EF:73:05:7B:0F:2B:4F:E3:14:DF:8B:F2:4E:24:23:3A:6A X509v3 Authority Key Identifier: keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3136342e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.74.164.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:97:8d:9f:6b:c0:b0:f6:27:c3:ab:2a:43:5c:f6:eb:7c:64: a0:9e:81:6d:c4:16:b1:a3:8d:8d:7d:c9:9d:21:13:27:0a:18: 89:5b:19:32:f3:4b:e5:59:90:78:b2:0a:ea:51:0f:47:4d:52: 03:53:fd:e0:0e:0d:40:c2:e9:53:81:48:13:cd:ec:a9:1e:42: 1f:d6:8d:28:be:3b:72:cf:ff:3e:4f:09:db:a3:15:ad:f8:1d: 9d:83:13:a7:67:b8:88:f9:fb:ad:08:6d:77:7d:bc:7d:90:c4: 99:a2:16:59:19:c6:97:74:19:0c:b3:9e:1f:cc:21:30:c0:b6: 53:22:09:7f:99:85:60:c7:22:f1:ff:df:69:59:75:cd:37:ea: ec:a8:93:81:43:c1:50:de:84:63:b5:7d:74:5e:87:73:94:89: fd:bf:f3:89:e3:8a:db:15:61:dc:0d:74:f1:d5:41:62:32:03: 24:0c:76:ba:de:95:6d:64:03:82:86:0e:90:67:22:e3:5e:b7: 29:c5:09:e8:7e:1d:f2:5d:be:f3:21:93:4a:0d:b2:57:b1:0c: bc:90:03:b0:77:84:a7:c3:65:d9:89:cb:4f:0e:7f:6d:8e:04: c5:34:7c:82:b1:bc:b8:b4:07:ab:19:f6:5b:9f:78:42:2e:d6: 6e:b8:ed:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURWTd6am+THle8vW7z9mZtLJ/2tIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3 RTFENzIxQzAeFw0yNTEwMjMxMjU1MDBaFw0yNjEwMjIxMzAwMDBaMDMxMTAvBgNV BAMTKEVCQTJBQUVGNzMwNTdCMEYyQjRGRTMxNERGOEJGMjRFMjQyMzNBNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrBtJZjF7tE9/l2X32mhAA3mi4 OJiuy3DMYXUlF/GLZfLedf1/z4L/bkKn1J4VBT2cOhvQ+84QRFNRW2LMaJrqpKPV 5C0Is1oSh9TwqW+NueQm4LNSDEBWvokQ2KmdvGflAemiNehNZeLmkbxsObd885qm 5hyY6t5qieOhJjXl1aEalNjuVrM34Mk2SxbwUR94u2fJDYRtP08qPxykQRsuo5So g0Rd2I7fsK4Id923mDurlVSGRUVbpnsMfvyH3Ap2qYnOLTF6hgYMOV/4COd3kqFs E6HzWipwZUbBnedXq8InfhqnX7vkuHyrhqaxzuy0VtyYcnyeadfQfvWs9ugRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU66Kq73MFew8rT+MU34vyTiQjOmowHwYDVR0j BBgwFoAU6JyT8ImgfQO1eUsMAiOe9n4dchwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 Zjg4NTFlNS1lZTViLTQxZTEtOWFiYy00NDI2NTFkMjcyOTQvMC9FODlDOTNGMDg5 QTA3RDAzQjU3OTRCMEMwMjIzOUVGNjdFMUQ3MjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3RTFE NzIxQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMxMzAzMzJlMzczNDJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdKpDANBgkqhkiG 9w0BAQsFAAOCAQEAfZeNn2vAsPYnw6sqQ1z263xkoJ6BbcQWsaONjX3JnSETJwoY iVsZMvNL5VmQeLIK6lEPR01SA1P94A4NQMLpU4FIE83sqR5CH9aNKL47cs//Pk8J 26MVrfgdnYMTp2e4iPn7rQhtd328fZDEmaIWWRnGl3QZDLOeH8whMMC2UyIJf5mF YMci8f/faVl1zTfq7KiTgUPBUN6EY7V9dF6Hc5SJ/b/zieOK2xVh3A108dVBYjID JAx2ut6VbWQDgoYOkGci4163KcUJ6H4d8l2+8yGTSg2yV7EMvJADsHeEp8Nl2YnL Tw5/bY4ExTR8grG8uLQHqxn2W594Qi7Wbrjt8w== -----END CERTIFICATE-----Generated at Tue Nov 4 21:21:46 2025 by rpki-client