$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32332d3233203d3e203536323630.roa File: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (raw, json) Hash identifier: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4= Subject key identifier: 5A:AC:D6:8A:EE:FE:A6:8C:32:7B:A2:87:65:23:FD:56:31:28:98:9D Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 043A16A86745348B360B0A6C2C3DD7818BBF78EA Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32332d3233203d3e203536323630.roa Signing time: Tue 28 Oct 2025 11:02:30 +0000 ROA not before: Tue 28 Oct 2025 10:57:30 +0000 ROA not after: Tue 27 Oct 2026 11:02:30 +0000 asID: 56260 IP address blocks: 103.29.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:3a:16:a8:67:45:34:8b:36:0b:0a:6c:2c:3d:d7:81:8b:bf:78:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Oct 28 10:57:30 2025 GMT Not After : Oct 27 11:02:30 2026 GMT Subject: CN=5AACD68AEEFEA68C327BA2876523FD563128989D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d9:4b:b9:0d:e0:d9:8a:df:b7:d0:e0:60:82: da:7b:f9:63:2a:95:19:ad:44:cf:44:a5:45:32:f3: 28:72:34:a4:4c:07:dd:1a:d4:3b:08:c4:c5:f0:6e: 8d:47:ab:9b:c0:9e:7c:1c:a4:bf:87:3f:52:72:20: dc:31:1c:07:a5:40:7f:08:e9:c5:b4:67:aa:7d:95: ee:da:29:01:b4:dd:ae:69:be:58:29:44:52:cc:39: 55:76:07:38:f9:d4:23:58:4d:dd:be:58:97:af:55: b9:ce:86:51:20:cb:64:cb:39:61:fc:2a:60:cb:43: a5:6c:aa:35:53:34:a9:91:0e:46:2e:9d:cf:8b:48: b6:6e:d8:c8:63:e1:b7:c9:7c:90:71:af:40:85:cc: b3:54:f0:d2:e0:cd:57:54:23:68:12:d5:ef:10:18: 9f:9c:fc:36:2f:67:1e:23:20:c2:be:3f:84:6c:d9: cf:bc:f2:53:af:8b:14:62:e3:2e:09:a4:7c:e7:99: 8c:49:81:0b:de:fc:f2:4b:6e:79:c1:5f:eb:87:07: 27:02:4a:95:3f:db:b3:06:4b:10:3e:36:58:d1:6d: 43:23:2e:b1:9f:39:16:e2:39:95:c5:aa:9c:36:4b: 84:51:30:38:08:c3:52:95:41:4a:08:ca:dd:cf:42: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AC:D6:8A:EE:FE:A6:8C:32:7B:A2:87:65:23:FD:56:31:28:98:9D X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32332d3233203d3e203536323630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.184.0/23 Signature Algorithm: sha256WithRSAEncryption 68:0f:bd:43:73:0f:17:7c:6c:b8:49:9e:79:5f:92:0d:9c:0b: 82:26:52:68:71:5e:bc:f0:68:5d:10:6c:3e:64:54:ae:99:12: 45:88:9e:8b:fc:6c:df:dc:11:fe:3e:58:5a:9e:8d:50:67:f2: 0e:a4:e3:c6:26:b6:68:13:6c:4e:03:81:46:8f:b5:9e:57:4a: 59:26:fd:c7:56:2d:89:d9:1b:7e:65:ac:1d:20:23:fd:04:d2: e4:57:7f:1d:dd:41:1c:a3:d4:15:49:8c:ce:91:2f:30:7b:cc: 71:b4:1d:26:d6:e9:27:35:ab:a8:18:f4:c3:c8:91:fb:2a:f7: 6d:2c:62:52:97:00:9f:3d:66:cf:a2:55:b8:ec:02:b5:8a:7f: 2f:28:29:a3:2e:6a:44:14:3e:1f:19:f5:8a:9d:f7:be:0b:0a: f3:5b:0e:2a:90:62:04:ca:f7:bb:0a:b7:27:1d:5d:1b:ee:7a: 6c:1d:da:2c:a6:d2:5d:ea:45:49:9c:9f:26:27:18:78:dd:73: f9:96:c0:fe:88:11:b2:14:2a:37:24:54:8d:96:d4:b9:ea:ca: 65:91:60:81:3f:47:0f:0d:a0:10:33:7f:46:4d:d5:04:16:63: d9:88:ce:52:48:3e:5c:ec:d9:01:6a:4a:fc:78:25:bc:22:88: 72:2c:ba:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBDoWqGdFNIs2CwpsLD3XgYu/eOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTEwMjgxMDU3MzBaFw0yNjEwMjcxMTAyMzBaMDMxMTAvBgNV BAMTKDVBQUNENjhBRUVGRUE2OEMzMjdCQTI4NzY1MjNGRDU2MzEyODk4OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt2Uu5DeDZit+30OBggtp7+WMq lRmtRM9EpUUy8yhyNKRMB90a1DsIxMXwbo1Hq5vAnnwcpL+HP1JyINwxHAelQH8I 6cW0Z6p9le7aKQG03a5pvlgpRFLMOVV2Bzj51CNYTd2+WJevVbnOhlEgy2TLOWH8 KmDLQ6VsqjVTNKmRDkYunc+LSLZu2Mhj4bfJfJBxr0CFzLNU8NLgzVdUI2gS1e8Q GJ+c/DYvZx4jIMK+P4Rs2c+88lOvixRi4y4JpHznmYxJgQve/PJLbnnBX+uHBycC SpU/27MGSxA+NljRbUMjLrGfORbiOZXFqpw2S4RRMDgIw1KVQUoIyt3PQlFdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWqzWiu7+powye6KHZSP9VjEomJ0wHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZjJjNjZjLTFmODctNGQ5OC1h NDY3LTMyMThiNjQ1YjNhYy8wLzMxMzAzMzJlMzIzOTJlMzEzODM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzNjMyMzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcduDANBgkqhkiG 9w0BAQsFAAOCAQEAaA+9Q3MPF3xsuEmeeV+SDZwLgiZSaHFevPBoXRBsPmRUrpkS RYiei/xs39wR/j5YWp6NUGfyDqTjxia2aBNsTgOBRo+1nldKWSb9x1YtidkbfmWs HSAj/QTS5Fd/Hd1BHKPUFUmMzpEvMHvMcbQdJtbpJzWrqBj0w8iR+yr3bSxiUpcA nz1mz6JVuOwCtYp/Lygpoy5qRBQ+Hxn1ip33vgsK81sOKpBiBMr3uwq3Jx1dG+56 bB3aLKbSXepFSZyfJicYeN1z+ZbA/ogRshQqNyRUjZbUuerKZZFggT9HDw2gEDN/ Rk3VBBZj2YjOUkg+XOzZAWpK/HglvCKIciy6JA== -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:44 2025 by rpki-client