$ rpki-client -vvf repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32332d3234203d3e20313530323232.roa File: 3130332e38382e39302e302f32332d3234203d3e20313530323232.roa (raw, json) Hash identifier: RICXQj6rsugNHVh/wSozR+ATp/7OAGFCxt5pyTwldyU= Subject key identifier: CB:B2:8B:9B:91:22:27:66:91:DD:A1:27:91:77:F2:54:71:7A:D2:A2 Certificate issuer: /CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Certificate serial: 3BA5D9D018D7B4576086A90A90C107F8461A56F5 Authority key identifier: 04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32332d3234203d3e20313530323232.roa Signing time: Mon 14 Jul 2025 15:00:01 +0000 ROA not before: Mon 14 Jul 2025 14:55:01 +0000 ROA not after: Mon 13 Jul 2026 15:00:01 +0000 asID: 150222 IP address blocks: 103.88.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 21:56:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a5:d9:d0:18:d7:b4:57:60:86:a9:0a:90:c1:07:f8:46:1a:56:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Validity Not Before: Jul 14 14:55:01 2025 GMT Not After : Jul 13 15:00:01 2026 GMT Subject: CN=CBB28B9B9122276691DDA1279177F254717AD2A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:12:6e:5b:4f:3a:3e:b5:a2:97:0c:19:64:5c: 61:4c:39:1e:2b:0c:85:83:15:a2:39:20:fd:98:f8: b3:d4:5e:61:13:30:cd:10:13:d4:9a:dd:a7:96:97: 50:93:91:d9:a4:55:67:d8:f6:a1:2f:22:a5:5e:4c: 3b:dd:7d:db:d1:64:5e:62:a8:65:6c:aa:13:15:cd: f4:a0:e1:bf:61:f0:1b:97:7f:11:84:c4:f7:be:c5: 09:de:88:d1:5e:ae:1d:a8:fe:c9:6f:c1:69:1d:cb: f8:36:07:06:15:fe:20:c4:98:35:73:21:7a:ad:0e: 96:63:0e:0f:35:16:b5:ab:16:c4:9e:1c:86:d3:f3: fc:fa:56:38:24:b7:ee:7b:a9:2a:56:fc:67:b0:69: 31:cb:d6:5a:92:09:9d:02:65:fd:59:5b:bf:2d:e2: 9d:08:27:fa:8a:d8:3d:b1:17:28:a4:5a:b0:8a:fb: 4d:93:5e:26:99:c3:30:ca:ae:71:4d:3b:6f:ec:72: 44:d7:7f:50:6e:40:cc:2c:b1:dc:2b:cd:a8:81:32: 15:14:f4:27:0a:82:92:85:30:54:66:d6:32:27:5c: af:72:c1:09:45:38:46:56:8e:7c:0f:85:5f:db:db: 14:e3:af:09:d4:a2:f1:6e:ad:a9:25:9f:22:d8:02: 51:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B2:8B:9B:91:22:27:66:91:DD:A1:27:91:77:F2:54:71:7A:D2:A2 X509v3 Authority Key Identifier: keyid:04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32332d3234203d3e20313530323232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.90.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:1f:72:f5:e8:a4:61:10:dd:01:9f:d7:79:71:0d:f6:eb:a7: 08:f0:c5:aa:b7:77:c4:d7:e6:82:68:05:88:20:01:36:e4:06: 3f:79:54:99:fa:33:83:5a:b5:05:77:90:ae:26:66:bd:4f:23: b1:04:91:f0:42:be:c1:08:b6:d2:30:92:bc:51:dd:e4:a8:12: dd:f6:04:3f:44:e3:23:f3:5c:f9:1e:6c:e5:fe:c8:a1:78:56: 96:ab:e8:57:14:cb:55:e8:58:f1:cb:bd:d6:0a:73:43:f1:61: f6:07:cc:0f:c0:2a:c3:aa:3a:9e:c5:69:02:36:71:65:d7:4d: 32:6f:11:80:09:94:b6:a5:eb:c7:d9:b7:dd:26:f9:a0:96:bd: 0a:1d:a5:6a:b3:0b:bf:f6:18:6e:62:f9:73:88:59:20:81:87: 53:14:cf:33:8a:4c:4c:a8:38:c5:c9:f1:8d:0a:db:70:5a:33: a1:0a:f2:88:1a:e1:e4:10:01:2d:a4:56:ba:55:00:3a:dd:ab: 77:ec:aa:99:cb:0d:82:62:13:9d:42:47:28:ce:3b:5f:21:b2: 4a:f9:06:9b:4c:35:c0:42:42:c8:bd:0d:06:46:6c:08:60:e8: 50:75:5c:1b:50:3f:a7:d6:c5:63:13:c1:fd:3e:d3:10:a7:26: c7:24:b0:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO6XZ0BjXtFdghqkKkMEH+EYaVvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYx MUNDRjBEQjAeFw0yNTA3MTQxNDU1MDFaFw0yNjA3MTMxNTAwMDFaMDMxMTAvBgNV BAMTKENCQjI4QjlCOTEyMjI3NjY5MUREQTEyNzkxNzdGMjU0NzE3QUQyQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiEm5bTzo+taKXDBlkXGFMOR4r DIWDFaI5IP2Y+LPUXmETMM0QE9Sa3aeWl1CTkdmkVWfY9qEvIqVeTDvdfdvRZF5i qGVsqhMVzfSg4b9h8BuXfxGExPe+xQneiNFerh2o/slvwWkdy/g2BwYV/iDEmDVz IXqtDpZjDg81FrWrFsSeHIbT8/z6Vjgkt+57qSpW/GewaTHL1lqSCZ0CZf1ZW78t 4p0IJ/qK2D2xFyikWrCK+02TXiaZwzDKrnFNO2/sckTXf1BuQMwssdwrzaiBMhUU 9CcKgpKFMFRm1jInXK9ywQlFOEZWjnwPhV/b2xTjrwnUovFuraklnyLYAlERAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy7KLm5EiJ2aR3aEnkXfyVHF60qIwHwYDVR0j BBgwFoAUBO47w2kXMuBp3w2dKd42BhHM8NswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTkxODA5ZS1kZDQ5LTRjNTItYjExZi0yYTUxOGMzYWE4NTYvMC8wNEVFM0JDMzY5 MTczMkUwNjlERjBEOUQyOURFMzYwNjExQ0NGMERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYxMUND RjBEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOTE4MDllLWRkNDktNGM1Mi1i MTFmLTJhNTE4YzNhYTg1Ni8wLzMxMzAzMzJlMzgzODJlMzkzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdYWjANBgkqhkiG 9w0BAQsFAAOCAQEAWh9y9eikYRDdAZ/XeXEN9uunCPDFqrd3xNfmgmgFiCABNuQG P3lUmfozg1q1BXeQriZmvU8jsQSR8EK+wQi20jCSvFHd5KgS3fYEP0TjI/Nc+R5s 5f7IoXhWlqvoVxTLVehY8cu91gpzQ/Fh9gfMD8Aqw6o6nsVpAjZxZddNMm8RgAmU tqXrx9m33Sb5oJa9Ch2larMLv/YYbmL5c4hZIIGHUxTPM4pMTKg4xcnxjQrbcFoz oQryiBrh5BABLaRWulUAOt2rd+yqmcsNgmITnUJHKM47XyGySvkGm0w1wEJCyL0N BkZsCGDoUHVcG1A/p9bFYxPB/T7TEKcmxySwdQ== -----END CERTIFICATE-----Generated at Tue Nov 4 18:53:25 2025 by rpki-client