$ rpki-client -vvf repo-rpki.idnic.net/repo/8ff09584-9110-4b0d-8f6d-2ce5258e846b/0/3130332e3136362e3232362e302f32342d3234203d3e20313431393539.roa File: 3130332e3136362e3232362e302f32342d3234203d3e20313431393539.roa (raw, json) Hash identifier: 6F2YD7bfpsvy9ZCzb1NRXMUO3qP13tF9eyDHsH0IzEg= Subject key identifier: BF:8D:6A:9D:16:9C:2D:6B:0B:09:2E:04:45:7E:99:20:BC:5C:D7:F5 Certificate issuer: /CN=2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E Certificate serial: 62E88A9DAD5B84823A82BFA84346F486F0A454F3 Authority key identifier: 2C:27:A0:D9:DD:25:31:EB:EF:1E:2E:C5:6A:CB:CB:CE:B2:1C:49:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ff09584-9110-4b0d-8f6d-2ce5258e846b/0/3130332e3136362e3232362e302f32342d3234203d3e20313431393539.roa Signing time: Fri 24 Oct 2025 23:41:09 +0000 ROA not before: Fri 24 Oct 2025 23:36:09 +0000 ROA not after: Fri 23 Oct 2026 23:41:09 +0000 asID: 141959 IP address blocks: 103.166.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ff09584-9110-4b0d-8f6d-2ce5258e846b/0/2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E.crl rsync://repo-rpki.idnic.net/repo/8ff09584-9110-4b0d-8f6d-2ce5258e846b/0/2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 09:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e8:8a:9d:ad:5b:84:82:3a:82:bf:a8:43:46:f4:86:f0:a4:54:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E Validity Not Before: Oct 24 23:36:09 2025 GMT Not After : Oct 23 23:41:09 2026 GMT Subject: CN=BF8D6A9D169C2D6B0B092E04457E9920BC5CD7F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0d:e8:7c:9f:9a:73:7e:6c:fa:85:cc:b0:37: a9:b9:70:cf:8f:41:04:46:b4:d6:92:40:25:ce:e9: 71:c3:9b:dd:85:a6:a1:75:f4:3f:52:15:64:c5:84: 79:3f:2d:4b:32:4d:5d:76:23:b9:4b:83:ac:a3:bf: 4f:45:f4:2e:67:24:cd:df:38:58:5a:cf:41:42:fd: 3e:08:4b:24:15:00:f5:89:1d:a8:66:25:61:dc:e5: c6:4d:35:18:16:72:ae:ce:30:d6:2e:f8:9f:5b:e2: 60:b2:7d:64:cb:36:a7:2e:07:26:12:42:da:93:b7: 0e:de:00:51:0e:b3:91:82:03:b6:1f:9c:57:31:8e: b8:1a:1d:3a:2c:db:b4:a1:3a:07:ac:4b:e6:d2:bb: 27:18:94:d2:f2:16:99:f1:18:71:5c:06:ad:06:b1: a5:e1:7f:e2:b4:f6:f8:a8:9f:24:e3:b8:44:0c:d2: 00:6f:45:35:20:7a:75:5c:59:b9:44:b8:ab:91:89: 3b:5b:34:68:b2:12:df:d7:66:a8:70:59:1c:d4:92: be:20:29:62:d2:15:9c:30:84:12:2c:e1:e9:bd:4a: 63:ce:8c:88:35:cd:bd:2a:41:54:84:16:3b:95:c7: d2:15:65:03:c5:41:36:98:ea:d7:45:62:68:1e:4c: 53:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8D:6A:9D:16:9C:2D:6B:0B:09:2E:04:45:7E:99:20:BC:5C:D7:F5 X509v3 Authority Key Identifier: keyid:2C:27:A0:D9:DD:25:31:EB:EF:1E:2E:C5:6A:CB:CB:CE:B2:1C:49:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ff09584-9110-4b0d-8f6d-2ce5258e846b/0/2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2C27A0D9DD2531EBEF1E2EC56ACBCBCEB21C498E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ff09584-9110-4b0d-8f6d-2ce5258e846b/0/3130332e3136362e3232362e302f32342d3234203d3e20313431393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.226.0/24 Signature Algorithm: sha256WithRSAEncryption 76:8c:82:47:f4:4c:50:48:2d:9e:55:b8:99:d5:b7:fb:d4:49: bc:7f:e0:c3:49:b6:15:79:4c:ba:ac:93:c3:12:5e:37:64:78: 9b:c2:97:78:5c:01:1b:ec:23:0b:a5:2e:f2:47:9e:53:e7:2b: 4e:6a:da:40:23:02:f2:b4:4f:d9:5d:a7:eb:20:d6:e5:6d:24: 1f:bf:96:59:fb:0a:78:df:d3:96:92:7a:9f:d3:d0:ac:f0:c3: c2:27:fb:a8:f8:4e:70:42:f7:78:43:e6:9b:f7:ab:b7:71:4b: 58:92:2c:8a:ab:a1:98:28:f8:0e:4f:26:a8:7d:e9:98:db:bb: 91:c7:be:30:18:9e:5b:e9:2b:f5:f9:94:bb:bb:78:40:ed:9e: 5c:57:69:3b:24:c6:e7:56:27:64:15:00:51:a2:3f:a9:62:d8: 9b:d1:6c:67:fc:84:7e:bd:4b:47:87:a7:86:61:d8:da:f4:5d: 6f:38:99:3f:a5:ee:b8:73:ae:12:1c:01:07:46:a7:bb:08:14: 03:df:1b:04:5c:d1:62:f5:cd:43:36:41:c8:10:ab:7f:f4:d9: 8b:b0:56:68:43:82:f0:cc:0e:4c:19:0f:fa:c1:ce:44:53:70: 6b:08:21:7c:f8:62:c8:a4:80:c0:35:78:de:f0:68:75:c5:b6: d6:2a:56:98 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYuiKna1bhII6gr+oQ0b0hvCkVPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkMyN0EwRDlERDI1MzFFQkVGMUUyRUM1NkFDQkNCQ0VC MjFDNDk4RTAeFw0yNTEwMjQyMzM2MDlaFw0yNjEwMjMyMzQxMDlaMDMxMTAvBgNV BAMTKEJGOEQ2QTlEMTY5QzJENkIwQjA5MkUwNDQ1N0U5OTIwQkM1Q0Q3RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeDeh8n5pzfmz6hcywN6m5cM+P QQRGtNaSQCXO6XHDm92FpqF19D9SFWTFhHk/LUsyTV12I7lLg6yjv09F9C5nJM3f OFhaz0FC/T4ISyQVAPWJHahmJWHc5cZNNRgWcq7OMNYu+J9b4mCyfWTLNqcuByYS QtqTtw7eAFEOs5GCA7YfnFcxjrgaHTos27ShOgesS+bSuycYlNLyFpnxGHFcBq0G saXhf+K09vionyTjuEQM0gBvRTUgenVcWblEuKuRiTtbNGiyEt/XZqhwWRzUkr4g KWLSFZwwhBIs4em9SmPOjIg1zb0qQVSEFjuVx9IVZQPFQTaY6tdFYmgeTFPVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv41qnRacLWsLCS4ERX6ZILxc1/UwHwYDVR0j BBgwFoAULCeg2d0lMevvHi7FasvLzrIcSY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZmYwOTU4NC05MTEwLTRiMGQtOGY2ZC0yY2U1MjU4ZTg0NmIvMC8yQzI3QTBEOURE MjUzMUVCRUYxRTJFQzU2QUNCQ0JDRUIyMUM0OThFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkMyN0EwRDlERDI1MzFFQkVGMUUyRUM1NkFDQkNCQ0VCMjFD NDk4RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmZjA5NTg0LTkxMTAtNGIwZC04 ZjZkLTJjZTUyNThlODQ2Yi8wLzMxMzAzMzJlMzEzNjM2MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpuIwDQYJ KoZIhvcNAQELBQADggEBAHaMgkf0TFBILZ5VuJnVt/vUSbx/4MNJthV5TLqsk8MS XjdkeJvCl3hcARvsIwulLvJHnlPnK05q2kAjAvK0T9ldp+sg1uVtJB+/lln7Cnjf 05aSep/T0Kzww8In+6j4TnBC93hD5pv3q7dxS1iSLIqroZgo+A5PJqh96Zjbu5HH vjAYnlvpK/X5lLu7eEDtnlxXaTskxudWJ2QVAFGiP6li2JvRbGf8hH69S0eHp4Zh 2Nr0XW84mT+l7rhzrhIcAQdGp7sIFAPfGwRc0WL1zUM2QcgQq3/02YuwVmhDgvDM DkwZD/rBzkRTcGsIIXz4YsikgMA1eN7waHXFttYqVpg= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:43 2025 by rpki-client