$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e203137393232.roa File: 3130332e39362e3134342e302f32332d3234203d3e203137393232.roa (raw, json) Hash identifier: In7/y6k0tKU1onXjk4QJUAhlh710hxTg1r3tOp5IDjs= Subject key identifier: D1:E3:1E:E6:9E:A3:9B:69:97:82:D8:0D:4C:C1:8B:59:1F:CE:4D:EB Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 1CB9744D6A31FFC2DC1BF75BB325A82CDBFCF5BC Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e203137393232.roa Signing time: Thu 23 Oct 2025 03:02:56 +0000 ROA not before: Thu 23 Oct 2025 02:57:56 +0000 ROA not after: Thu 22 Oct 2026 03:02:56 +0000 asID: 17922 IP address blocks: 103.96.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 21:42:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b9:74:4d:6a:31:ff:c2:dc:1b:f7:5b:b3:25:a8:2c:db:fc:f5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Oct 23 02:57:56 2025 GMT Not After : Oct 22 03:02:56 2026 GMT Subject: CN=D1E31EE69EA39B699782D80D4CC18B591FCE4DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:11:03:92:cc:6d:3f:ac:10:28:26:e1:07:d4: ee:84:d1:e7:44:85:75:3d:c2:76:ce:d4:d4:56:41: 77:18:1e:a4:90:60:38:a2:ab:60:ce:9c:69:d2:b3: 30:26:3f:06:ec:9f:b2:60:82:fa:74:9c:8a:f9:f8: 30:40:0e:03:8c:ef:37:7d:0e:bc:37:b9:6f:6b:d2: 0f:4d:e3:68:3a:04:c7:1a:33:be:4a:b2:81:10:16: 0e:33:85:22:fd:5c:f9:61:69:ac:6d:97:86:cb:86: 68:f8:bf:1a:4e:29:87:84:63:e2:5b:c4:0b:eb:64: a8:35:5b:6e:58:3c:a8:11:7e:e9:3d:f1:c2:89:dd: 70:e9:54:59:6f:b2:ce:fb:db:54:56:b4:63:89:eb: 89:1c:95:72:c5:d6:57:86:b8:4b:12:70:4e:94:cb: 02:8f:9d:99:d1:1d:9f:bf:52:4f:c7:f3:1d:9e:be: 7d:73:df:a4:c6:76:9d:1b:93:16:b2:05:86:4d:9c: 32:7c:95:57:90:96:2e:25:fe:4d:f4:48:86:95:4d: 18:f3:09:b0:99:e6:0e:d8:26:08:a1:b4:3d:3c:84: df:0a:34:bc:25:b6:4b:f6:9f:8d:91:df:01:c3:e1: d3:c6:91:82:e3:5e:a9:08:61:1a:88:35:61:f9:60: 04:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E3:1E:E6:9E:A3:9B:69:97:82:D8:0D:4C:C1:8B:59:1F:CE:4D:EB X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e203137393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.144.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:c0:c5:1d:41:87:16:a8:cf:a4:75:13:65:89:06:8e:da:5b: ef:fa:24:9b:e0:96:a1:de:4b:de:82:a5:b9:70:d3:84:47:52: 33:11:a8:94:af:53:c1:6d:b5:c9:19:04:8d:5e:ce:50:0f:08: 95:10:83:1c:21:6c:f1:ab:70:00:ca:ba:1e:92:a1:b8:4a:9b: f5:9c:53:1d:44:9c:0f:a5:c1:dc:85:17:7c:c8:0e:bf:e2:9c: 62:16:f1:d1:60:79:42:78:f5:f4:ae:c3:0b:88:77:db:1b:ab: f0:2b:c5:54:56:19:22:8e:7e:c9:63:06:6b:5c:54:fb:da:d0: eb:0c:ab:1c:d9:cb:30:2c:7c:9c:b9:94:11:2b:42:55:5d:a7: cb:2d:49:e4:e8:34:e0:95:ee:7e:d7:e1:ad:76:5c:1b:bb:c4: 90:f2:b9:e0:8c:4c:d8:c7:fb:85:30:fc:7b:ab:1e:59:91:7a: 88:82:7b:55:e0:5a:d0:cc:83:80:2e:f3:b5:6f:d7:08:7d:88: 3b:04:15:c7:ef:8d:b2:96:06:47:bb:d4:c3:63:fe:eb:df:6b: cb:b4:44:71:3e:e6:72:07:df:bc:61:96:bc:3a:d6:f4:b5:b7: a8:05:20:2f:48:fd:38:0a:5d:ce:08:41:c7:43:4f:5e:0b:07: ba:58:ee:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHLl0TWox/8LcG/dbsyWoLNv89bwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNTEwMjMwMjU3NTZaFw0yNjEwMjIwMzAyNTZaMDMxMTAvBgNV BAMTKEQxRTMxRUU2OUVBMzlCNjk5NzgyRDgwRDRDQzE4QjU5MUZDRTRERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnEQOSzG0/rBAoJuEH1O6E0edE hXU9wnbO1NRWQXcYHqSQYDiiq2DOnGnSszAmPwbsn7Jggvp0nIr5+DBADgOM7zd9 Drw3uW9r0g9N42g6BMcaM75KsoEQFg4zhSL9XPlhaaxtl4bLhmj4vxpOKYeEY+Jb xAvrZKg1W25YPKgRfuk98cKJ3XDpVFlvss7721RWtGOJ64kclXLF1leGuEsScE6U ywKPnZnRHZ+/Uk/H8x2evn1z36TGdp0bkxayBYZNnDJ8lVeQli4l/k30SIaVTRjz CbCZ5g7YJgihtD08hN8KNLwltkv2n42R3wHD4dPGkYLjXqkIYRqINWH5YAS5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0eMe5p6jm2mXgtgNTMGLWR/OTeswHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNzM5MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdgkDANBgkqhkiG 9w0BAQsFAAOCAQEATcDFHUGHFqjPpHUTZYkGjtpb7/okm+CWod5L3oKluXDThEdS MxGolK9TwW21yRkEjV7OUA8IlRCDHCFs8atwAMq6HpKhuEqb9ZxTHUScD6XB3IUX fMgOv+KcYhbx0WB5Qnj19K7DC4h32xur8CvFVFYZIo5+yWMGa1xU+9rQ6wyrHNnL MCx8nLmUEStCVV2nyy1J5Og04JXuftfhrXZcG7vEkPK54IxM2Mf7hTD8e6seWZF6 iIJ7VeBa0MyDgC7ztW/XCH2IOwQVx++NspYGR7vUw2P+699ry7REcT7mcgffvGGW vDrW9LW3qAUgL0j9OApdzghBx0NPXgsHuljuzQ== -----END CERTIFICATE-----Generated at Wed Nov 5 03:01:41 2025 by rpki-client