$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32342d3234203d3e203536323630.roa File: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (raw, json) Hash identifier: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg= Subject key identifier: 71:B5:DA:C4:92:A5:B4:0A:73:69:62:28:A8:10:98:78:41:7F:00:1E Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 1B59ACEAD9F38CADBA542F8944059184EA731201 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32342d3234203d3e203536323630.roa Signing time: Tue 28 Oct 2025 11:02:30 +0000 ROA not before: Tue 28 Oct 2025 10:57:30 +0000 ROA not after: Tue 27 Oct 2026 11:02:30 +0000 asID: 56260 IP address blocks: 103.29.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:59:ac:ea:d9:f3:8c:ad:ba:54:2f:89:44:05:91:84:ea:73:12:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Oct 28 10:57:30 2025 GMT Not After : Oct 27 11:02:30 2026 GMT Subject: CN=71B5DAC492A5B40A73696228A8109878417F001E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:51:d2:46:a2:31:82:70:8d:b6:b3:86:3b:da: f4:d7:02:98:7f:2c:96:43:d0:5e:84:7e:e3:f8:51: de:9b:a6:eb:db:e3:d0:1f:4b:b2:18:b5:2d:41:c5: d8:14:45:d1:5a:0c:2d:55:da:24:a5:89:d0:9f:a5: 5b:30:0f:2a:11:a4:8c:ca:89:06:71:a6:fc:8c:42: b1:88:63:f4:62:ca:8c:be:2c:99:2f:29:15:52:73: cc:d6:2e:d4:87:86:78:73:c3:85:ee:11:05:b1:cb: 59:9a:d6:2b:95:98:73:50:6d:91:8a:78:fc:10:5c: 36:1d:05:51:20:20:ae:d0:fb:ec:0b:ff:93:cf:3d: 8d:61:8f:bd:73:1c:9f:63:07:27:ae:5f:33:f3:b4: df:f1:64:5f:3a:27:37:64:e6:9d:c8:8b:95:c9:5a: 17:38:f6:a8:81:69:ed:a4:5b:d1:73:5b:3e:65:7b: a1:4b:b4:d9:79:37:fe:4b:30:55:fe:64:2a:45:43: bc:c0:e9:ce:f3:7c:23:84:75:c7:ef:c5:14:fe:7b: 62:cb:7e:3c:c5:db:37:61:f6:0c:8b:54:c2:e9:64: 98:9d:73:05:fa:52:9a:ff:6c:81:4e:5d:3a:dc:06: 0d:36:c8:a3:ee:70:63:00:1e:82:92:95:be:20:78: eb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B5:DA:C4:92:A5:B4:0A:73:69:62:28:A8:10:98:78:41:7F:00:1E X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32342d3234203d3e203536323630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.184.0/24 Signature Algorithm: sha256WithRSAEncryption ca:82:ff:ec:7e:eb:5b:18:fd:bd:3f:1c:7b:eb:ba:5f:76:2b: aa:e8:86:33:67:39:3a:9e:6f:0f:cc:0d:c1:68:22:a9:ef:28: 1b:73:42:59:18:6d:00:f0:73:ec:7b:8a:03:f2:59:cd:65:fb: 25:b9:b8:0c:9c:64:a5:53:fa:88:32:e6:a7:35:0e:1d:ab:b0: 12:01:aa:3b:46:91:1f:71:c6:d3:18:ed:d5:38:03:f6:71:ca: ec:21:db:b0:44:c8:9b:ef:02:da:7a:e3:dd:88:d7:04:b4:d8: 33:79:4d:1b:39:7b:35:5d:6e:18:68:9b:94:fc:35:41:ee:81: b0:3f:d7:23:a3:35:30:9c:b0:7b:50:19:61:8d:92:92:bf:72: 40:0b:28:f4:45:40:60:39:9f:96:1d:a5:54:31:8d:b7:3a:a2: fa:4f:e1:09:79:87:c8:02:db:8d:20:5f:ad:22:fb:ec:f1:9b: 8d:8d:81:e7:d6:9b:dc:2d:8f:29:39:e1:7b:63:53:0e:b9:3b: 03:52:fb:2c:c6:d5:e9:ec:f4:1b:ee:0e:17:8b:04:cc:9c:5e: 0c:dd:f6:da:1b:60:fd:f5:03:3f:b9:47:17:de:24:8c:74:b7: 65:fd:bc:8d:4a:03:ad:01:72:15:30:c6:e4:4b:ad:97:ff:08: 5e:be:5a:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG1ms6tnzjK26VC+JRAWRhOpzEgEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTEwMjgxMDU3MzBaFw0yNjEwMjcxMTAyMzBaMDMxMTAvBgNV BAMTKDcxQjVEQUM0OTJBNUI0MEE3MzY5NjIyOEE4MTA5ODc4NDE3RjAwMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUUdJGojGCcI22s4Y72vTXAph/ LJZD0F6EfuP4Ud6bpuvb49AfS7IYtS1BxdgURdFaDC1V2iSlidCfpVswDyoRpIzK iQZxpvyMQrGIY/Riyoy+LJkvKRVSc8zWLtSHhnhzw4XuEQWxy1ma1iuVmHNQbZGK ePwQXDYdBVEgIK7Q++wL/5PPPY1hj71zHJ9jByeuXzPztN/xZF86Jzdk5p3Ii5XJ Whc49qiBae2kW9FzWz5le6FLtNl5N/5LMFX+ZCpFQ7zA6c7zfCOEdcfvxRT+e2LL fjzF2zdh9gyLVMLpZJidcwX6Upr/bIFOXTrcBg02yKPucGMAHoKSlb4geOt9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcbXaxJKltApzaWIoqBCYeEF/AB4wHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZjJjNjZjLTFmODctNGQ5OC1h NDY3LTMyMThiNjQ1YjNhYy8wLzMxMzAzMzJlMzIzOTJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcduDANBgkqhkiG 9w0BAQsFAAOCAQEAyoL/7H7rWxj9vT8ce+u6X3YrquiGM2c5Op5vD8wNwWgiqe8o G3NCWRhtAPBz7HuKA/JZzWX7Jbm4DJxkpVP6iDLmpzUOHauwEgGqO0aRH3HG0xjt 1TgD9nHK7CHbsETIm+8C2nrj3YjXBLTYM3lNGzl7NV1uGGiblPw1Qe6BsD/XI6M1 MJywe1AZYY2Skr9yQAso9EVAYDmflh2lVDGNtzqi+k/hCXmHyALbjSBfrSL77PGb jY2B59ab3C2PKTnhe2NTDrk7A1L7LMbV6ez0G+4OF4sEzJxeDN322htg/fUDP7lH F94kjHS3Zf28jUoDrQFyFTDG5Eutl/8IXr5abQ== -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:28 2025 by rpki-client