$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e2034373631.roa File: 3130332e39362e3134342e302f32332d3234203d3e2034373631.roa (raw, json) Hash identifier: 89uLp70du3ndPcZNl1H5Nk2O6ZHn9JMvGjuVHTSWLsE= Subject key identifier: 5F:CA:D9:28:50:33:B3:54:2C:E2:55:1F:1F:2E:B7:A3:D3:40:E4:A1 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 59D9701901E541B57FEF972A7D9245C86306097D Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e2034373631.roa Signing time: Thu 23 Oct 2025 03:02:56 +0000 ROA not before: Thu 23 Oct 2025 02:57:56 +0000 ROA not after: Thu 22 Oct 2026 03:02:56 +0000 asID: 4761 IP address blocks: 103.96.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 21:42:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:d9:70:19:01:e5:41:b5:7f:ef:97:2a:7d:92:45:c8:63:06:09:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Oct 23 02:57:56 2025 GMT Not After : Oct 22 03:02:56 2026 GMT Subject: CN=5FCAD9285033B3542CE2551F1F2EB7A3D340E4A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:04:1d:00:38:d4:a1:e0:11:47:03:bf:47:0b: 60:49:f0:d2:91:fd:da:03:b9:ac:00:12:97:7e:1e: 23:01:3c:16:97:f1:31:68:c6:db:77:3f:6c:92:30: 62:f1:dd:f0:3b:b2:be:7b:47:a5:08:c9:1e:99:b6: 11:96:cd:aa:87:24:00:85:61:13:77:7d:ef:1c:49: 41:4d:a1:93:fc:de:3d:b7:1c:38:92:66:88:bc:f8: fe:00:92:51:84:8d:70:0b:26:44:70:24:7a:31:bd: e6:99:92:cd:68:45:b8:1a:55:e4:e8:6f:ca:43:33: d1:f1:31:32:ba:eb:e8:a7:3b:47:87:a1:de:b9:e0: 63:4f:71:6d:85:48:bf:ae:ce:1e:0e:e2:12:a7:14: fa:93:a4:21:a6:01:f1:52:cb:5e:db:38:f4:43:f7: e6:05:06:78:de:11:4e:b1:9c:55:49:4e:38:0c:ff: 2a:ea:6f:73:8d:ba:50:67:0f:b2:6e:5c:5f:b8:57: 2c:7f:4a:e9:c2:5e:e9:8c:05:c0:34:05:51:ea:f4: 80:eb:5a:01:26:1d:26:11:a1:80:e1:b4:cc:e6:2e: 74:60:e6:7f:60:eb:40:f6:d1:38:06:4a:d4:dc:c3: 39:07:d1:9c:ca:60:58:48:53:86:a2:5c:a9:22:72: b9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:CA:D9:28:50:33:B3:54:2C:E2:55:1F:1F:2E:B7:A3:D3:40:E4:A1 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e2034373631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.144.0/23 Signature Algorithm: sha256WithRSAEncryption 08:be:3e:0e:40:6a:51:1a:0f:f2:9e:bc:98:00:a7:a7:9c:32: 1c:3a:13:40:bc:a0:06:1b:1a:b5:6d:4b:81:a4:aa:e9:d2:b1: 85:cf:29:e1:42:ba:14:5e:89:cf:6d:e1:a9:ba:d0:e0:cc:4d: f9:d2:36:9b:f2:2a:c4:0a:3f:ce:83:94:72:f8:2a:31:04:76: ee:3c:2f:c3:dc:6b:2d:33:3b:a2:5a:f2:f0:b1:44:b8:24:a7: b4:ae:58:73:64:f4:97:d7:55:b2:15:10:a1:69:51:d4:c9:cb: 03:de:fc:a9:3f:2c:bf:29:f8:7a:72:96:55:23:89:1e:3d:5e: d4:cc:40:99:7f:58:89:f2:cd:87:f5:b4:34:b3:bc:46:d5:a5: cb:0b:77:76:e4:b3:1f:4f:e7:8b:1b:4b:23:28:b0:99:43:43: 5e:32:63:3b:e0:b2:a5:9c:3f:8e:1c:3f:53:45:89:88:7c:9b: 98:8f:59:3f:c4:6f:60:53:91:81:64:35:71:86:d9:fe:95:3d: c1:8a:96:20:c5:a5:1f:55:93:89:6a:f5:d7:28:be:79:1c:84: ba:68:a7:30:2e:d3:5c:98:22:c6:6f:db:bf:3c:f7:71:9a:91: ab:51:2f:3d:bd:9c:f1:a1:ea:5e:ba:45:fa:f1:5f:ce:41:2d: a7:66:58:21 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWdlwGQHlQbV/75cqfZJFyGMGCX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNTEwMjMwMjU3NTZaFw0yNjEwMjIwMzAyNTZaMDMxMTAvBgNV BAMTKDVGQ0FEOTI4NTAzM0IzNTQyQ0UyNTUxRjFGMkVCN0EzRDM0MEU0QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCBB0AONSh4BFHA79HC2BJ8NKR /doDuawAEpd+HiMBPBaX8TFoxtt3P2ySMGLx3fA7sr57R6UIyR6ZthGWzaqHJACF YRN3fe8cSUFNoZP83j23HDiSZoi8+P4AklGEjXALJkRwJHoxveaZks1oRbgaVeTo b8pDM9HxMTK66+inO0eHod654GNPcW2FSL+uzh4O4hKnFPqTpCGmAfFSy17bOPRD 9+YFBnjeEU6xnFVJTjgM/yrqb3ONulBnD7JuXF+4Vyx/SunCXumMBcA0BVHq9IDr WgEmHSYRoYDhtMzmLnRg5n9g60D20TgGStTcwzkH0ZzKYFhIU4aiXKkicrlvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUX8rZKFAzs1Qs4lUfHy63o9NA5KEwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNzM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnYJAwDQYJKoZIhvcN AQELBQADggEBAAi+Pg5AalEaD/KevJgAp6ecMhw6E0C8oAYbGrVtS4GkqunSsYXP KeFCuhReic9t4am60ODMTfnSNpvyKsQKP86DlHL4KjEEdu48L8Pcay0zO6Ja8vCx RLgkp7SuWHNk9JfXVbIVEKFpUdTJywPe/Kk/LL8p+HpyllUjiR49XtTMQJl/WIny zYf1tDSzvEbVpcsLd3bksx9P54sbSyMosJlDQ14yYzvgsqWcP44cP1NFiYh8m5iP WT/Eb2BTkYFkNXGG2f6VPcGKliDFpR9Vk4lq9dcovnkchLpopzAu01yYIsZv2788 93GakatRLz29nPGh6l66RfrxX85BLadmWCE= -----END CERTIFICATE-----Generated at Wed Nov 5 12:13:17 2025 by rpki-client