$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e31312e3130372e302f32342d3234203d3e203538343832.roa File: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E= Subject key identifier: 7C:CE:69:ED:C7:1D:C5:F6:0F:AB:21:F8:0F:2C:49:BD:DC:5D:B6:1F Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 15ED4E06CED5E5CD80D5300A8E815B2D4FEED293 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e31312e3130372e302f32342d3234203d3e203538343832.roa Signing time: Tue 28 Oct 2025 11:02:30 +0000 ROA not before: Tue 28 Oct 2025 10:57:30 +0000 ROA not after: Tue 27 Oct 2026 11:02:30 +0000 asID: 58482 IP address blocks: 103.11.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ed:4e:06:ce:d5:e5:cd:80:d5:30:0a:8e:81:5b:2d:4f:ee:d2:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Oct 28 10:57:30 2025 GMT Not After : Oct 27 11:02:30 2026 GMT Subject: CN=7CCE69EDC71DC5F60FAB21F80F2C49BDDC5DB61F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:dc:82:c8:fc:9f:b9:31:77:4c:01:3c:41: 41:e0:92:86:ce:52:08:44:61:f2:2f:7e:52:f1:6d: 6d:75:01:af:99:23:8a:d2:c6:fe:b3:c0:b2:c4:7b: 43:3a:ea:19:02:09:cf:ba:36:e6:ff:e4:cb:60:ad: 8f:25:68:a1:4a:9b:69:79:a7:64:eb:b0:f6:e3:b3: e2:c8:01:8b:ea:ea:b1:0a:00:61:05:c6:8b:95:de: 7e:ea:cd:2d:17:84:99:df:80:79:62:ce:e3:93:9f: 73:8e:10:75:98:2f:c1:84:55:f1:01:8b:ba:d5:86: 9f:f4:7a:75:bb:27:0c:9d:7a:df:07:5d:0a:79:7c: 04:6a:61:cd:28:37:15:35:b2:04:6c:22:85:93:59: 7a:ac:2a:a9:5d:5e:97:34:02:24:09:f0:7b:b2:d4: 72:1d:65:a0:a5:a1:a5:41:97:7e:d7:65:6d:9e:90: 25:66:be:e7:da:52:94:c9:66:56:f4:45:16:99:ce: e3:ce:b2:64:cf:fc:1f:dd:ba:78:03:4e:6d:ce:65: 82:4d:37:67:f6:51:3a:20:cd:23:a7:e1:8a:7f:0a: e8:e3:7b:84:56:a0:be:af:8e:5e:b6:bb:34:d6:dd: 49:aa:d0:4f:15:bd:1e:23:5d:2b:33:f8:51:28:e7: 5f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CE:69:ED:C7:1D:C5:F6:0F:AB:21:F8:0F:2C:49:BD:DC:5D:B6:1F X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e31312e3130372e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.107.0/24 Signature Algorithm: sha256WithRSAEncryption a8:60:dc:40:e3:5f:94:d6:bc:13:69:37:a2:ec:50:df:d1:16: 52:52:92:4b:ce:85:f4:cf:db:bc:db:7f:ef:52:b3:55:0c:42: 92:78:10:70:e1:8e:32:76:6e:59:78:e1:b3:ee:fc:7f:c0:95: 16:4e:b7:7f:87:b9:c1:0e:ea:37:1f:03:a7:f8:7e:0a:72:31: 1e:48:f5:d7:c2:33:a5:36:36:e1:7e:ab:05:27:be:a5:a0:cd: e0:9e:d4:8a:94:3a:e6:fb:c4:26:2b:96:9d:4f:df:c3:3b:d7: 43:34:2f:b2:64:91:c5:49:a7:77:52:16:cf:e5:94:42:86:bd: 7b:e3:52:75:3d:60:77:00:0a:5c:2a:4f:81:cb:0c:b3:b6:35: 22:83:a6:97:88:ea:59:88:46:8f:45:db:5f:94:88:91:f7:b6: 3f:8f:7b:43:42:fb:d6:c1:d5:87:49:f9:47:1a:de:ea:73:18: 12:a4:f3:02:70:5d:b7:22:3f:ab:c2:75:e5:ff:8a:c2:2b:d1: 79:71:8f:52:d9:cb:29:55:f8:f4:76:27:7f:4c:dc:54:d1:6e: b2:2d:1d:85:e0:52:52:56:5d:ad:cd:b3:4a:5e:05:5b:fd:fe: 1f:f7:bb:ae:5a:73:a4:1d:d4:a5:68:e6:04:ab:a7:65:52:74: 5d:0c:04:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFe1OBs7V5c2A1TAKjoFbLU/u0pMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTEwMjgxMDU3MzBaFw0yNjEwMjcxMTAyMzBaMDMxMTAvBgNV BAMTKDdDQ0U2OUVEQzcxREM1RjYwRkFCMjFGODBGMkM0OUJEREM1REI2MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHPdyCyPyfuTF3TAE8QUHgkobO UghEYfIvflLxbW11Aa+ZI4rSxv6zwLLEe0M66hkCCc+6Nub/5MtgrY8laKFKm2l5 p2TrsPbjs+LIAYvq6rEKAGEFxouV3n7qzS0XhJnfgHlizuOTn3OOEHWYL8GEVfEB i7rVhp/0enW7Jwydet8HXQp5fARqYc0oNxU1sgRsIoWTWXqsKqldXpc0AiQJ8Huy 1HIdZaCloaVBl37XZW2ekCVmvufaUpTJZlb0RRaZzuPOsmTP/B/dungDTm3OZYJN N2f2UTogzSOn4Yp/Cujje4RWoL6vjl62uzTW3Umq0E8VvR4jXSsz+FEo518VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfM5p7ccdxfYPqyH4DyxJvdxdth8wHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZjJjNjZjLTFmODctNGQ5OC1h NDY3LTMyMThiNjQ1YjNhYy8wLzMxMzAzMzJlMzEzMTJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcLazANBgkqhkiG 9w0BAQsFAAOCAQEAqGDcQONflNa8E2k3ouxQ39EWUlKSS86F9M/bvNt/71KzVQxC kngQcOGOMnZuWXjhs+78f8CVFk63f4e5wQ7qNx8Dp/h+CnIxHkj118IzpTY24X6r BSe+paDN4J7UipQ65vvEJiuWnU/fwzvXQzQvsmSRxUmnd1IWz+WUQoa9e+NSdT1g dwAKXCpPgcsMs7Y1IoOml4jqWYhGj0XbX5SIkfe2P497Q0L71sHVh0n5Rxre6nMY EqTzAnBdtyI/q8J15f+KwivReXGPUtnLKVX49HYnf0zcVNFusi0dheBSUlZdrc2z Sl4FW/3+H/e7rlpzpB3UpWjmBKunZVJ0XQwECg== -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:27 2025 by rpki-client