$ rpki-client -vvf repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa File: 3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: Yue0OeY9zNd13c9ik6Jsx2eyurp8CzVN+CzOusZXP3E= Subject key identifier: 56:60:6E:2F:26:86:38:F8:22:92:FF:44:A2:7E:0B:7A:C5:EF:D7:D8 Certificate issuer: /CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Certificate serial: 33705470E5260932A472474572FD8B61A0BC05FC Authority key identifier: C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa Signing time: Thu 23 Oct 2025 06:00:02 +0000 ROA not before: Thu 23 Oct 2025 05:55:02 +0000 ROA not after: Thu 22 Oct 2026 06:00:02 +0000 asID: 131743 IP address blocks: 103.21.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 17:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:70:54:70:e5:26:09:32:a4:72:47:45:72:fd:8b:61:a0:bc:05:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Validity Not Before: Oct 23 05:55:02 2025 GMT Not After : Oct 22 06:00:02 2026 GMT Subject: CN=56606E2F268638F82292FF44A27E0B7AC5EFD7D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:b6:0f:a7:5d:60:0c:d4:51:af:02:ef:ed: 61:58:c1:cf:ee:73:57:b2:1f:0e:a4:18:25:94:8f: 58:39:55:e4:ff:75:59:45:bd:57:75:1a:9a:f7:65: 89:ba:21:af:60:e2:0f:e7:07:6b:08:25:f2:39:e9: db:d8:fd:f1:c7:8e:91:7b:d2:86:bc:5e:a6:7b:ea: b1:43:6b:59:0d:72:74:f6:23:ac:b8:8d:38:36:ce: ba:a3:f3:b9:a7:7c:98:f6:44:fc:b8:5b:74:f5:6a: 75:c3:4e:53:78:94:9a:14:75:73:33:7f:bd:66:56: e9:14:78:9c:22:b0:0c:44:1a:97:4f:97:d9:3e:b7: 95:a7:50:0c:3f:c3:c7:df:1c:a6:39:48:27:5b:a1: 7a:18:05:7a:56:dd:18:d2:5a:df:8d:b9:e2:69:4a: 8e:55:49:46:5f:cf:7d:4a:92:d4:19:35:d6:b4:28: c5:b2:be:16:25:2b:47:a3:64:b8:b5:df:3f:bc:87: 79:54:c4:eb:e1:66:a0:cd:8e:88:0d:76:1c:a4:3a: 41:d5:74:98:70:a9:3a:89:cf:5b:d7:60:4e:87:7a: 21:3f:10:bf:45:b5:46:45:5e:51:92:4f:a6:ca:6f: 22:31:4c:4f:b7:5c:6b:6a:5e:54:e9:98:85:62:40: 4a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:60:6E:2F:26:86:38:F8:22:92:FF:44:A2:7E:0B:7A:C5:EF:D7:D8 X509v3 Authority Key Identifier: keyid:C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.229.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:75:3d:3a:fd:13:8b:f5:45:5a:da:b3:d7:b7:e6:51:97:1f: 8a:23:c4:15:28:75:90:95:b0:ad:da:4e:38:8d:ce:33:88:79: e2:86:10:05:56:13:fa:c3:eb:06:d8:5b:4c:38:09:13:af:94: 3f:32:d7:89:c8:56:da:97:f0:6d:b3:59:50:20:14:17:33:d9: c5:76:6f:82:de:ae:a0:08:5f:33:5b:13:f2:d5:78:97:8d:c2: e1:0e:64:85:d9:65:99:0c:7b:59:e8:3f:c8:6e:17:69:a2:95: 73:b9:9c:9f:e3:5e:d3:e0:37:f9:01:38:fa:a2:61:cc:bc:b7: d1:6e:95:5e:ed:ff:95:54:26:f5:79:6a:62:83:37:50:c3:2d: e0:b1:dd:a8:67:d3:84:7a:a6:25:ee:c7:1e:9b:c9:40:77:1b: 41:93:7d:d5:22:2d:89:7f:a1:1e:55:48:42:9b:98:9b:bc:57: 7f:06:3c:bc:d3:77:21:40:1e:4e:26:21:7e:b8:2a:42:37:71: fb:81:5a:48:06:3e:00:34:5c:7e:79:7b:f4:db:40:b2:18:de: fc:ea:05:6b:43:76:c3:0e:ce:30:4e:f0:0f:0a:09:6c:2b:39: 21:9d:84:20:60:ad:40:e5:a1:9d:c9:91:59:23:0b:f2:c0:18: 8a:95:cd:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM3BUcOUmCTKkckdFcv2LYaC8BfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5 NThERUZGNzAeFw0yNTEwMjMwNTU1MDJaFw0yNjEwMjIwNjAwMDJaMDMxMTAvBgNV BAMTKDU2NjA2RTJGMjY4NjM4RjgyMjkyRkY0NEEyN0UwQjdBQzVFRkQ3RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvLbYPp11gDNRRrwLv7WFYwc/u c1eyHw6kGCWUj1g5VeT/dVlFvVd1Gpr3ZYm6Ia9g4g/nB2sIJfI56dvY/fHHjpF7 0oa8XqZ76rFDa1kNcnT2I6y4jTg2zrqj87mnfJj2RPy4W3T1anXDTlN4lJoUdXMz f71mVukUeJwisAxEGpdPl9k+t5WnUAw/w8ffHKY5SCdboXoYBXpW3RjSWt+NueJp So5VSUZfz31KktQZNda0KMWyvhYlK0ejZLi13z+8h3lUxOvhZqDNjogNdhykOkHV dJhwqTqJz1vXYE6HeiE/EL9FtUZFXlGST6bKbyIxTE+3XGtqXlTpmIViQEqLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVmBuLyaGOPgikv9Eon4LesXv19gwHwYDVR0j BBgwFoAUxipUHHMj9s0jj1SbH4c27ZWN7/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc0ODU2Zi03NDUzLTRkMDItYmMzNS0zNDgyZWI1NjQ2YTIvMC9DNjJBNTQxQzcz MjNGNkNEMjM4RjU0OUIxRjg3MzZFRDk1OERFRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5NThE RUZGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXlMA0GCSqG SIb3DQEBCwUAA4IBAQAKdT06/ROL9UVa2rPXt+ZRlx+KI8QVKHWQlbCt2k44jc4z iHnihhAFVhP6w+sG2FtMOAkTr5Q/MteJyFbal/Bts1lQIBQXM9nFdm+C3q6gCF8z WxPy1XiXjcLhDmSF2WWZDHtZ6D/IbhdpopVzuZyf417T4Df5ATj6omHMvLfRbpVe 7f+VVCb1eWpigzdQwy3gsd2oZ9OEeqYl7scem8lAdxtBk33VIi2Jf6EeVUhCm5ib vFd/Bjy803chQB5OJiF+uCpCN3H7gVpIBj4ANFx+eXv020CyGN786gVrQ3bDDs4w TvAPCglsKzkhnYQgYK1A5aGdyZFZIwvywBiKlc0c -----END CERTIFICATE-----Generated at Wed Nov 5 06:30:45 2025 by rpki-client