$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa File: 3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa (raw, json) Hash identifier: JKkCiBj1Ft4d/bxCb4U2iXHDOP8sJDEhV8ZeubcbaQE= Subject key identifier: E5:1D:D9:0D:46:60:E6:44:A8:BD:27:E5:02:19:CC:73:BB:DC:2E:D1 Certificate issuer: /CN=88E12887FF4C1BDD31B6A1B22A293CB91F465AA9 Certificate serial: 394E2699935F0F7AF494AED526E67B47993E3BB8 Authority key identifier: 88:E1:28:87:FF:4C:1B:DD:31:B6:A1:B2:2A:29:3C:B9:1F:46:5A:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88E12887FF4C1BDD31B6A1B22A293CB91F465AA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa Signing time: Wed 22 Oct 2025 10:53:25 +0000 ROA not before: Wed 22 Oct 2025 10:48:25 +0000 ROA not after: Wed 21 Oct 2026 10:53:25 +0000 asID: 147088 IP address blocks: 103.172.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/88E12887FF4C1BDD31B6A1B22A293CB91F465AA9.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/88E12887FF4C1BDD31B6A1B22A293CB91F465AA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88E12887FF4C1BDD31B6A1B22A293CB91F465AA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 05:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:4e:26:99:93:5f:0f:7a:f4:94:ae:d5:26:e6:7b:47:99:3e:3b:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88E12887FF4C1BDD31B6A1B22A293CB91F465AA9 Validity Not Before: Oct 22 10:48:25 2025 GMT Not After : Oct 21 10:53:25 2026 GMT Subject: CN=E51DD90D4660E644A8BD27E50219CC73BBDC2ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c7:65:0a:5f:28:c3:39:1b:3b:4d:2a:9b:c0: 3c:41:0a:ec:fc:39:e4:e7:a1:c2:9e:8c:1a:82:68: d6:35:c9:d9:59:14:3b:38:b5:dd:95:3f:b1:b2:76: 88:d0:8d:f7:00:26:cc:18:9c:a6:da:19:1d:e6:67: 20:48:60:03:6e:b4:7c:bc:a8:7d:0d:6d:67:5e:c6: 24:0c:25:5d:19:84:b6:f1:33:16:01:0c:b2:26:76: b2:5c:82:b2:d7:e3:8b:bc:98:c1:46:2b:a3:f3:df: 09:4f:e4:2e:6d:00:bf:07:39:00:b7:fb:53:44:45: 33:02:55:6a:aa:93:38:97:84:70:05:c2:dc:c7:ae: 96:73:69:b8:e5:59:ce:81:96:7e:93:59:6d:9e:bf: 3d:06:55:8c:af:65:f6:8d:a0:c5:05:84:83:b6:57: f8:04:6c:c5:e8:d8:c4:ff:4c:95:0b:c1:93:77:c6: a9:55:65:ff:49:81:30:16:98:c5:e2:6f:82:12:09: ca:08:ef:7e:ed:1f:44:97:89:c7:8b:43:5f:1b:5d: 9a:65:04:f5:0a:88:c3:fe:15:e2:d5:5c:d3:7f:71: f6:fa:d5:22:5f:96:c5:e8:1a:56:82:ff:08:de:f4: 9a:d7:59:da:f5:77:74:96:aa:f0:6d:cc:62:9d:1b: 0b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1D:D9:0D:46:60:E6:44:A8:BD:27:E5:02:19:CC:73:BB:DC:2E:D1 X509v3 Authority Key Identifier: keyid:88:E1:28:87:FF:4C:1B:DD:31:B6:A1:B2:2A:29:3C:B9:1F:46:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/88E12887FF4C1BDD31B6A1B22A293CB91F465AA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88E12887FF4C1BDD31B6A1B22A293CB91F465AA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/1/3130332e3137322e3137322e302f32342d3234203d3e20313437303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.172.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:4c:6a:98:56:d1:93:bf:24:a2:31:79:88:2e:c4:82:87:8d: 8d:fc:6d:c6:bd:7d:50:35:5c:27:3b:85:d8:0b:f8:5e:e6:2d: 28:22:8e:40:a1:22:dd:8b:a4:a0:6a:8d:98:32:9d:d2:1c:be: c0:f6:60:e0:a4:42:26:b9:f9:54:00:f2:54:5f:06:7c:ba:73: 10:30:9d:e9:e7:9a:13:7d:3d:40:1d:dc:18:8d:ae:4c:07:df: 99:0b:55:0e:89:ca:3d:34:66:61:b7:72:17:59:7a:be:0d:f9: 3e:12:9a:bd:31:22:94:13:19:9d:6f:6c:2d:2d:eb:8e:39:a0: 23:dd:c2:71:b9:9a:9f:b1:8d:a8:0e:8a:76:06:92:26:6b:43: da:d3:3e:1f:f9:ea:b5:c1:e3:94:8a:22:15:1a:a0:e9:c5:56: 2e:53:68:3a:55:86:f7:67:5a:83:1c:ca:6d:3d:e7:74:60:24: 4d:7e:ad:3f:8d:40:5f:db:09:f2:b6:af:26:0f:9f:f6:48:b9: a2:2f:34:78:d5:81:e7:ed:58:c1:52:90:31:29:99:05:64:97: 85:5f:e8:b1:77:87:3c:eb:c7:b9:c7:2a:92:bc:1c:83:8b:62: 3f:ff:4e:9a:10:a4:5b:a2:6c:d4:84:cc:37:67:5f:e1:f4:8f: 38:ea:48:9f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOU4mmZNfD3r0lK7VJuZ7R5k+O7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhFMTI4ODdGRjRDMUJERDMxQjZBMUIyMkEyOTNDQjkx RjQ2NUFBOTAeFw0yNTEwMjIxMDQ4MjVaFw0yNjEwMjExMDUzMjVaMDMxMTAvBgNV BAMTKEU1MUREOTBENDY2MEU2NDRBOEJEMjdFNTAyMTlDQzczQkJEQzJFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyx2UKXyjDORs7TSqbwDxBCuz8 OeTnocKejBqCaNY1ydlZFDs4td2VP7GydojQjfcAJswYnKbaGR3mZyBIYANutHy8 qH0NbWdexiQMJV0ZhLbxMxYBDLImdrJcgrLX44u8mMFGK6Pz3wlP5C5tAL8HOQC3 +1NERTMCVWqqkziXhHAFwtzHrpZzabjlWc6Bln6TWW2evz0GVYyvZfaNoMUFhIO2 V/gEbMXo2MT/TJULwZN3xqlVZf9JgTAWmMXib4ISCcoI737tH0SXiceLQ18bXZpl BPUKiMP+FeLVXNN/cfb61SJflsXoGlaC/wje9JrXWdr1d3SWqvBtzGKdGwvbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5R3ZDUZg5kSovSflAhnMc7vcLtEwHwYDVR0j BBgwFoAUiOEoh/9MG90xtqGyKik8uR9GWqkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMS84OEUxMjg4N0ZG NEMxQkREMzFCNkExQjIyQTI5M0NCOTFGNDY1QUE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhFMTI4ODdGRjRDMUJERDMxQjZBMUIyMkEyOTNDQjkxRjQ2 NUFBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg0ZGE0MTViLTVmMTctNDYwMi05 YmQ5LWZkODRhYzJjYWU4Ni8xLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrKwwDQYJ KoZIhvcNAQELBQADggEBAH1MaphW0ZO/JKIxeYguxIKHjY38bca9fVA1XCc7hdgL +F7mLSgijkChIt2LpKBqjZgyndIcvsD2YOCkQia5+VQA8lRfBny6cxAwnennmhN9 PUAd3BiNrkwH35kLVQ6Jyj00ZmG3chdZer4N+T4Smr0xIpQTGZ1vbC0t6445oCPd wnG5mp+xjagOinYGkiZrQ9rTPh/56rXB45SKIhUaoOnFVi5TaDpVhvdnWoMcym09 53RgJE1+rT+NQF/bCfK2ryYPn/ZIuaIvNHjVgeftWMFSkDEpmQVkl4Vf6LF3hzzr x7nHKpK8HIOLYj//TpoQpFuibNSEzDdnX+H0jzjqSJ8= -----END CERTIFICATE-----Generated at Wed Nov 5 15:28:44 2025 by rpki-client