$ rpki-client -vvf repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/3130332e3133342e3232322e302f32342d3234203d3e20313338383130.roa File: 3130332e3133342e3232322e302f32342d3234203d3e20313338383130.roa (raw, json) Hash identifier: 3PZFIN0jiG1liVNOYS5bc8JkLCWSH93e9B5ZRAydDG8= Subject key identifier: 8B:44:36:EE:6C:F7:91:86:EE:84:F7:99:34:73:1A:32:96:B3:47:A8 Certificate issuer: /CN=B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C Certificate serial: 6171FA7B3F371FD6B0E94B53436D49AE5EC85AD2 Authority key identifier: B3:26:3D:68:7D:5B:DF:B2:FB:4E:80:2A:B3:B0:03:FC:FD:26:6B:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/3130332e3133342e3232322e302f32342d3234203d3e20313338383130.roa Signing time: Sat 25 Oct 2025 01:59:15 +0000 ROA not before: Sat 25 Oct 2025 01:54:15 +0000 ROA not after: Sat 24 Oct 2026 01:59:15 +0000 asID: 138810 IP address blocks: 103.134.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.crl rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 18:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:71:fa:7b:3f:37:1f:d6:b0:e9:4b:53:43:6d:49:ae:5e:c8:5a:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C Validity Not Before: Oct 25 01:54:15 2025 GMT Not After : Oct 24 01:59:15 2026 GMT Subject: CN=8B4436EE6CF79186EE84F79934731A3296B347A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6e:08:85:b4:a4:af:e3:cc:d8:87:c8:f8:16: 82:25:1a:ff:f3:00:6d:ed:ca:03:64:39:ad:c0:69: 2c:3e:2f:ff:73:b1:25:d9:3e:a7:4e:5d:3c:23:9a: 2a:2a:d7:f2:d0:88:af:6f:f5:cf:cb:1e:3c:d3:2c: 6b:b9:60:50:b8:c2:0b:0b:2a:e9:f2:3a:f8:e2:04: 38:56:60:ef:c8:d9:2a:c2:1d:7d:85:3d:af:83:25: 88:0d:66:6a:0d:38:ce:24:79:43:8f:ea:73:46:c9: 46:66:44:8d:06:ef:25:77:fe:60:54:35:ba:97:73: 0f:ca:7c:7d:72:84:6e:31:8e:65:a6:bc:61:a9:fc: 54:b8:a3:c3:08:98:a1:86:54:91:eb:60:c3:af:94: a2:a9:1f:cb:73:a5:7b:d8:47:f2:ab:0e:9e:13:0e: 42:88:f2:97:88:96:2b:c8:b3:e6:7f:ee:21:a8:3a: 70:4c:54:74:48:93:94:fe:f8:87:f6:ef:ea:00:13: 99:52:b4:f6:6c:ed:1d:11:ff:80:d1:0a:cb:98:a9: 16:c7:b9:b8:36:dd:b6:10:55:8a:51:6e:7a:ea:93: be:56:1e:63:91:9f:ee:15:8c:d6:dc:57:f5:44:18: 52:c6:6a:53:73:a7:c4:43:76:fa:d7:b6:c2:28:2a: d3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:44:36:EE:6C:F7:91:86:EE:84:F7:99:34:73:1A:32:96:B3:47:A8 X509v3 Authority Key Identifier: keyid:B3:26:3D:68:7D:5B:DF:B2:FB:4E:80:2A:B3:B0:03:FC:FD:26:6B:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/3130332e3133342e3232322e302f32342d3234203d3e20313338383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.222.0/24 Signature Algorithm: sha256WithRSAEncryption 71:a4:04:f3:f7:5b:4e:cc:e1:71:83:3a:37:20:21:09:66:15: 1a:b4:aa:41:cc:50:24:22:0c:b9:05:25:96:7c:93:b0:43:2e: 6b:da:4a:6a:3b:cb:6e:c9:1f:7a:d6:e8:a8:8d:36:03:89:46: 96:13:1b:30:c0:ec:4f:e8:9c:d8:f3:09:b6:e9:d8:ed:98:4e: 2f:b3:69:7b:42:51:2b:20:e4:f3:08:33:bc:f4:67:69:6e:4a: 2f:31:cd:31:44:a1:32:18:0a:74:d2:f9:ee:b7:cd:fc:53:b3: 33:dc:bd:cc:3e:6e:ef:ad:13:3f:6b:ff:19:e9:67:b8:ce:74: 6c:ca:5b:7a:bc:f1:59:e1:63:7e:dd:45:53:b9:c2:d1:98:19: b3:cc:1a:13:6c:24:16:b7:df:2f:4f:a1:ac:5a:95:b4:36:95: bc:d8:df:f0:38:b0:bd:e7:e3:92:0d:5e:28:95:88:4f:45:11: 81:52:d4:2a:c0:bd:6b:dc:30:88:f5:6d:27:04:65:2d:c9:0c: 67:b4:63:e9:4d:eb:f8:95:c2:ca:e3:6e:de:7c:04:a4:63:4a: ca:22:31:0e:23:29:f2:4f:d9:8a:21:eb:fe:6b:c5:98:0a:47: f3:2f:81:4e:bd:94:5c:df:a7:8e:a9:16:ef:3b:8d:44:77:e8: e4:dc:a1:2b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYXH6ez83H9aw6UtTQ21Jrl7IWtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMyNjNENjg3RDVCREZCMkZCNEU4MDJBQjNCMDAzRkNG RDI2NkI1QzAeFw0yNTEwMjUwMTU0MTVaFw0yNjEwMjQwMTU5MTVaMDMxMTAvBgNV BAMTKDhCNDQzNkVFNkNGNzkxODZFRTg0Rjc5OTM0NzMxQTMyOTZCMzQ3QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxbgiFtKSv48zYh8j4FoIlGv/z AG3tygNkOa3AaSw+L/9zsSXZPqdOXTwjmioq1/LQiK9v9c/LHjzTLGu5YFC4wgsL KunyOvjiBDhWYO/I2SrCHX2FPa+DJYgNZmoNOM4keUOP6nNGyUZmRI0G7yV3/mBU NbqXcw/KfH1yhG4xjmWmvGGp/FS4o8MImKGGVJHrYMOvlKKpH8tzpXvYR/KrDp4T DkKI8peIlivIs+Z/7iGoOnBMVHRIk5T++If27+oAE5lStPZs7R0R/4DRCsuYqRbH ubg23bYQVYpRbnrqk75WHmORn+4VjNbcV/VEGFLGalNzp8RDdvrXtsIoKtPpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi0Q27mz3kYbuhPeZNHMaMpazR6gwHwYDVR0j BBgwFoAUsyY9aH1b37L7ToAqs7AD/P0ma1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjM2ZTg4ZC1kNTczLTRjYmItYjQ2MC1hMGI5NjlhYTg0ZDUvMC9CMzI2M0Q2ODdE NUJERkIyRkI0RTgwMkFCM0IwMDNGQ0ZEMjY2QjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMyNjNENjg3RDVCREZCMkZCNEU4MDJBQjNCMDAzRkNGRDI2 NkI1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMzZlODhkLWQ1NzMtNGNiYi1i NDYwLWEwYjk2OWFhODRkNS8wLzMxMzAzMzJlMzEzMzM0MmUzMjMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnht4wDQYJ KoZIhvcNAQELBQADggEBAHGkBPP3W07M4XGDOjcgIQlmFRq0qkHMUCQiDLkFJZZ8 k7BDLmvaSmo7y27JH3rW6KiNNgOJRpYTGzDA7E/onNjzCbbp2O2YTi+zaXtCUSsg 5PMIM7z0Z2luSi8xzTFEoTIYCnTS+e63zfxTszPcvcw+bu+tEz9r/xnpZ7jOdGzK W3q88VnhY37dRVO5wtGYGbPMGhNsJBa33y9PoaxalbQ2lbzY3/A4sL3n45INXiiV iE9FEYFS1CrAvWvcMIj1bScEZS3JDGe0Y+lN6/iVwsrjbt58BKRjSsoiMQ4jKfJP 2Yoh6/5rxZgKR/MvgU69lFzfp46pFu87jUR36OTcoSs= -----END CERTIFICATE-----Generated at Wed Nov 5 14:48:25 2025 by rpki-client