$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa File: 3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa (raw, json) Hash identifier: X75Y1ke9EhYYnMWTmSs9YygENE9XIc8HW5QtbaF4szA= Subject key identifier: 56:C8:99:1F:F6:AB:66:A4:F4:8A:8E:CF:02:FA:8C:8F:8E:EB:CC:17 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 51F14FB02C4EAFC60ADC14A32601CE2A4A8CE7E9 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa Signing time: Sat 25 Oct 2025 02:00:01 +0000 ROA not before: Sat 25 Oct 2025 01:55:01 +0000 ROA not after: Sat 24 Oct 2026 02:00:01 +0000 asID: 141968 IP address blocks: 103.167.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 08:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f1:4f:b0:2c:4e:af:c6:0a:dc:14:a3:26:01:ce:2a:4a:8c:e7:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 25 01:55:01 2025 GMT Not After : Oct 24 02:00:01 2026 GMT Subject: CN=56C8991FF6AB66A4F48A8ECF02FA8C8F8EEBCC17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e9:73:14:27:3e:41:93:9d:23:9e:f2:c6:ea: 34:b2:81:e5:9f:b6:4f:f8:cc:c7:a1:7a:4c:03:21: ed:53:4e:d4:59:d7:1d:f2:c7:be:b1:d1:19:94:ef: db:51:cd:17:d1:ad:db:79:a7:73:38:60:18:21:9e: c6:df:7c:18:6f:96:27:65:42:e1:9b:78:4d:b1:70: e1:81:84:56:19:c0:a7:98:1b:97:d7:83:b9:44:51: e6:d0:05:11:2e:48:9b:63:c2:e7:a2:01:53:de:b0: 0f:e6:ca:45:2b:48:dc:6d:ff:bb:5b:8d:78:d3:86: b2:a8:fe:bb:cd:c5:17:be:44:7a:6b:9f:57:db:b6: de:47:c6:00:10:8f:d7:4a:10:8d:2d:a2:57:be:1f: ce:f9:3d:3d:47:78:ba:73:3b:72:e3:dd:4f:8e:b0: 70:cb:62:9b:56:17:28:a7:a8:2f:50:1a:45:a6:97: 92:b5:c9:9f:56:5c:0b:30:a1:13:47:79:87:8d:6d: b6:70:b2:d4:b9:2e:ad:94:27:2e:25:cf:b2:80:24: e0:ae:fa:9f:78:6c:cb:50:4e:d0:82:d9:83:00:9a: c3:f7:e1:ea:29:4d:a9:cf:57:55:33:91:f8:de:5a: ae:03:b3:fa:14:da:ae:7c:0a:8a:29:c4:a9:09:f5: b1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C8:99:1F:F6:AB:66:A4:F4:8A:8E:CF:02:FA:8C:8F:8E:EB:CC:17 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.35.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:21:6a:1e:76:7a:23:26:56:59:76:12:01:4b:30:13:ea:22: f7:43:b8:49:e3:a8:c1:12:94:83:e3:6e:41:b2:14:74:23:af: 03:14:21:2b:10:90:65:bf:cb:0e:86:24:89:24:22:85:d0:cc: 21:ca:38:a5:6d:03:1b:fb:21:e4:cd:4e:97:65:b8:27:e0:c5: 3a:41:3f:d4:87:67:8c:93:d6:bb:aa:00:07:65:3c:b9:b1:a0: c8:3f:30:01:fa:ef:40:5f:ed:0d:f2:17:12:3c:b9:66:4f:5d: ea:d9:cb:5d:d8:b6:41:de:88:d2:9e:1a:96:65:cc:c2:4d:82: 70:44:12:df:f2:a7:8c:2d:a1:0c:d6:a3:f7:db:9e:4b:02:99: a3:d6:bb:f0:dc:be:a3:9a:c5:f4:5f:62:97:33:ab:94:df:2a: 66:47:1b:7a:51:63:8f:e0:ac:27:b5:df:72:35:e3:54:8c:6a: 1e:49:d5:22:6a:77:22:8e:77:9f:d3:ad:77:1c:78:59:e5:8e: 9d:93:5e:9d:9a:df:f4:07:ef:21:62:fd:52:f2:f7:9c:99:80: aa:a3:2d:9c:7b:95:65:60:68:44:10:ec:34:f8:9e:52:d3:c3: 16:e6:1d:61:49:a3:aa:12:6c:69:d0:d5:a4:63:4c:54:fd:54: 4e:27:e3:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUfFPsCxOr8YK3BSjJgHOKkqM5+kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNTEwMjUwMTU1MDFaFw0yNjEwMjQwMjAwMDFaMDMxMTAvBgNV BAMTKDU2Qzg5OTFGRjZBQjY2QTRGNDhBOEVDRjAyRkE4QzhGOEVFQkNDMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX6XMUJz5Bk50jnvLG6jSygeWf tk/4zMehekwDIe1TTtRZ1x3yx76x0RmU79tRzRfRrdt5p3M4YBghnsbffBhvlidl QuGbeE2xcOGBhFYZwKeYG5fXg7lEUebQBREuSJtjwueiAVPesA/mykUrSNxt/7tb jXjThrKo/rvNxRe+RHprn1fbtt5HxgAQj9dKEI0tole+H875PT1HeLpzO3Lj3U+O sHDLYptWFyinqC9QGkWml5K1yZ9WXAswoRNHeYeNbbZwstS5Lq2UJy4lz7KAJOCu +p94bMtQTtCC2YMAmsP34eopTanPV1UzkfjeWq4Ds/oU2q58CoopxKkJ9bGVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVsiZH/arZqT0io7PAvqMj47rzBcwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMxMzAzMzJlMzEzNjM3MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6cjMA0GCSqG SIb3DQEBCwUAA4IBAQAcIWoednojJlZZdhIBSzAT6iL3Q7hJ46jBEpSD425BshR0 I68DFCErEJBlv8sOhiSJJCKF0MwhyjilbQMb+yHkzU6XZbgn4MU6QT/Uh2eMk9a7 qgAHZTy5saDIPzAB+u9AX+0N8hcSPLlmT13q2ctd2LZB3ojSnhqWZczCTYJwRBLf 8qeMLaEM1qP3255LApmj1rvw3L6jmsX0X2KXM6uU3ypmRxt6UWOP4Kwntd9yNeNU jGoeSdUiancijnef0613HHhZ5Y6dk16dmt/0B+8hYv1S8vecmYCqoy2ce5VlYGhE EOw0+J5S08MW5h1hSaOqEmxp0NWkY0xU/VROJ+OR -----END CERTIFICATE-----Generated at Tue Nov 4 12:56:37 2025 by rpki-client