$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa File: 3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa (raw, json) Hash identifier: l8Og1lwkQAH4gQfk3H3firj2CW23m1CTXYf/zpu+3Ek= Subject key identifier: FD:C6:BD:A7:A6:3D:C9:A4:7C:2B:EF:85:B4:F7:74:6D:E2:FE:D6:74 Certificate issuer: /CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C Certificate serial: 21B9B1D1798BEDE195EFF6ADA52C133685A26E6A Authority key identifier: 09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa Signing time: Tue 28 Oct 2025 14:00:02 +0000 ROA not before: Tue 28 Oct 2025 13:55:02 +0000 ROA not after: Tue 27 Oct 2026 14:00:02 +0000 asID: 137334 IP address blocks: 103.112.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 09:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b9:b1:d1:79:8b:ed:e1:95:ef:f6:ad:a5:2c:13:36:85:a2:6e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C Validity Not Before: Oct 28 13:55:02 2025 GMT Not After : Oct 27 14:00:02 2026 GMT Subject: CN=FDC6BDA7A63DC9A47C2BEF85B4F7746DE2FED674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:2a:72:96:98:33:3a:4b:3b:62:f9:68:da: 3c:cc:2d:07:16:da:d6:d5:61:16:83:6c:6e:8c:98: 25:02:cb:50:12:cb:68:4c:04:80:ea:a6:ec:97:b0: bf:bf:4f:45:5e:e5:50:d3:12:26:e5:9a:39:cc:ea: cd:99:9d:d9:13:54:cf:92:50:e4:f5:51:e1:c3:f3: b4:0a:6c:15:b2:98:04:65:16:2b:ab:04:c9:30:51: 7d:be:a2:22:d8:03:38:84:97:18:73:21:c7:d9:8f: ea:06:b0:10:0e:b9:2c:33:72:2b:dd:4d:39:17:bc: 94:30:42:a3:c8:86:8e:00:cb:af:03:44:b4:35:d8: 57:05:0b:b7:2c:4d:d6:14:a9:63:30:2f:da:e9:f8: bc:69:40:35:37:98:63:c1:02:e3:70:15:63:64:cb: 72:f6:04:38:73:09:81:f0:38:df:8b:d5:4e:63:6e: 59:e0:84:ea:ef:48:ec:ac:52:06:d0:68:a4:50:40: 95:9b:df:3c:ed:b3:ed:09:63:14:d0:77:97:f2:86: d8:af:e1:6c:c8:37:20:13:b3:1b:74:c3:e9:b9:d0: a4:00:2d:a2:52:b0:78:54:b6:11:ab:c8:40:cb:28: ee:cf:01:a7:2d:00:92:4c:02:74:f1:11:c8:a6:46: 9f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C6:BD:A7:A6:3D:C9:A4:7C:2B:EF:85:B4:F7:74:6D:E2:FE:D6:74 X509v3 Authority Key Identifier: keyid:09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.144.0/24 Signature Algorithm: sha256WithRSAEncryption 73:bd:19:2f:75:1b:0a:86:01:99:dd:8b:4d:45:46:0a:bf:a6: 4b:21:74:d8:cb:f4:17:79:98:27:78:a5:73:62:51:14:82:c9: 6b:db:c4:85:6a:c8:8c:ec:c9:97:eb:fe:fb:f5:84:9e:6f:9e: e9:22:af:b0:39:de:0b:83:f7:61:01:d4:04:a1:1c:e6:0a:6f: 40:57:91:27:1a:91:5d:db:8c:b2:df:02:bf:d4:58:de:5c:66: db:e7:5b:db:ae:9c:48:c4:6c:68:a9:9d:ee:be:29:16:0b:fd: 3e:fa:39:7e:fa:0b:c1:f2:7a:9f:38:65:26:be:00:b6:d3:b6: f5:31:51:ff:7c:33:ba:b4:77:71:b7:6e:41:d9:b6:59:c4:c4: bd:7d:ea:71:4c:c2:66:67:42:a9:d9:ff:f1:b0:be:46:ae:28: 9d:80:66:d8:ad:64:5d:98:50:eb:52:13:d0:71:fc:81:f4:51: db:70:b6:3d:27:db:b0:97:e4:77:f2:ee:9d:db:a4:61:95:73: 18:50:34:f5:6c:b2:42:f9:c0:6b:80:ef:c7:30:07:22:14:fc: 85:cf:c6:11:0f:3d:b9:30:e5:28:2e:f0:69:15:23:8b:e6:1e: c4:7b:8e:9f:04:32:32:ea:1c:ed:3a:2c:4b:c2:eb:8f:4b:bc: 4c:b8:23:5d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIbmx0XmL7eGV7/atpSwTNoWibmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk0RDU1NkNBMEI1NUFGNEE2MzY4NzNBMUIxRTcwMzJC MkM5ODEzQzAeFw0yNTEwMjgxMzU1MDJaFw0yNjEwMjcxNDAwMDJaMDMxMTAvBgNV BAMTKEZEQzZCREE3QTYzREM5QTQ3QzJCRUY4NUI0Rjc3NDZERTJGRUQ2NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp0CpylpgzOks7Yvlo2jzMLQcW 2tbVYRaDbG6MmCUCy1ASy2hMBIDqpuyXsL+/T0Ve5VDTEiblmjnM6s2ZndkTVM+S UOT1UeHD87QKbBWymARlFiurBMkwUX2+oiLYAziElxhzIcfZj+oGsBAOuSwzcivd TTkXvJQwQqPIho4Ay68DRLQ12FcFC7csTdYUqWMwL9rp+LxpQDU3mGPBAuNwFWNk y3L2BDhzCYHwON+L1U5jblnghOrvSOysUgbQaKRQQJWb3zzts+0JYxTQd5fyhtiv 4WzINyATsxt0w+m50KQALaJSsHhUthGryEDLKO7PAactAJJMAnTxEcimRp9PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/ca9p6Y9yaR8K++FtPd0beL+1nQwHwYDVR0j BBgwFoAUCU1VbKC1WvSmNoc6Gx5wMrLJgTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwOGViMy05MzdkLTQzMDQtOTE2Ny00NjNkN2M1OGQ1ZTQvMC8wOTRENTU2Q0Ew QjU1QUY0QTYzNjg3M0ExQjFFNzAzMkIyQzk4MTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDk0RDU1NkNBMEI1NUFGNEE2MzY4NzNBMUIxRTcwMzJCMkM5 ODEzQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDA4ZWIzLTkzN2QtNDMwNC05 MTY3LTQ2M2Q3YzU4ZDVlNC8wLzMxMzAzMzJlMzEzMTMyMmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncJAwDQYJ KoZIhvcNAQELBQADggEBAHO9GS91GwqGAZndi01FRgq/pkshdNjL9Bd5mCd4pXNi URSCyWvbxIVqyIzsyZfr/vv1hJ5vnukir7A53guD92EB1AShHOYKb0BXkScakV3b jLLfAr/UWN5cZtvnW9uunEjEbGipne6+KRYL/T76OX76C8Hyep84ZSa+ALbTtvUx Uf98M7q0d3G3bkHZtlnExL196nFMwmZnQqnZ//GwvkauKJ2AZtitZF2YUOtSE9Bx /IH0Udtwtj0n27CX5Hfy7p3bpGGVcxhQNPVsskL5wGuA78cwByIU/IXPxhEPPbkw 5Sgu8GkVI4vmHsR7jp8EMjLqHO06LEvC649LvEy4I10= -----END CERTIFICATE-----Generated at Tue Nov 4 08:26:14 2025 by rpki-client