$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa File: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (raw, json) Hash identifier: pAsXLpsnvtFY9CiLQfO4MgBTQXdXjfq9fjmjjZL7V7Y= Subject key identifier: 1F:C2:EE:38:95:EB:69:53:EF:0D:42:72:17:C1:48:42:72:CE:32:D2 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 2B3A37B181CC226A8171D6E1A6743995953C0388 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa Signing time: Wed 09 Jul 2025 05:02:22 +0000 ROA not before: Wed 09 Jul 2025 04:57:22 +0000 ROA not after: Wed 08 Jul 2026 05:02:22 +0000 asID: 59278 IP address blocks: 103.227.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 14:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:3a:37:b1:81:cc:22:6a:81:71:d6:e1:a6:74:39:95:95:3c:03:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Jul 9 04:57:22 2025 GMT Not After : Jul 8 05:02:22 2026 GMT Subject: CN=1FC2EE3895EB6953EF0D427217C1484272CE32D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:e9:28:cb:73:9e:16:ce:43:dd:78:15:ac: 7a:41:02:18:d5:e1:b6:62:d5:70:2c:84:9d:3b:12: ed:b1:b0:e2:80:24:9a:09:23:ed:ef:f7:9d:86:8d: 76:f8:e2:b2:4b:37:da:be:28:ed:48:dd:c0:41:cc: bd:51:9f:a3:75:ef:6c:df:d4:18:89:dd:3a:4a:56: 09:65:18:54:ba:48:da:ec:c1:3d:96:f6:28:b7:03: a4:bb:35:bf:6d:59:52:fa:f3:fa:b2:d6:32:37:65: a8:1d:db:69:08:f1:65:80:97:07:94:0c:2f:3a:b1: f6:59:2c:00:af:d3:4d:6c:61:93:f3:40:96:30:df: c6:7a:cf:18:81:29:40:5a:12:a1:9e:67:ec:16:ce: 51:c3:13:63:d0:95:9b:a3:8a:30:d1:dd:96:b0:e5: 1f:45:0b:3d:e6:c2:71:6f:ce:1c:46:47:53:e9:ca: 9b:a3:21:49:77:13:f2:6b:cc:0e:ff:57:1b:e0:e3: 3f:7a:26:b0:ff:ed:12:84:5d:0a:e5:af:84:a2:cb: 83:9f:64:ae:3f:be:25:67:8f:d2:0f:e9:b8:fd:ae: 83:23:86:d3:17:6b:ca:b9:8b:48:8e:3e:0f:e3:3e: 08:ad:d5:71:69:30:29:0c:c8:b0:ae:8d:f5:ce:af: 38:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C2:EE:38:95:EB:69:53:EF:0D:42:72:17:C1:48:42:72:CE:32:D2 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.240.0/22 Signature Algorithm: sha256WithRSAEncryption 85:e3:1b:e4:19:ae:6e:62:ff:4c:93:e3:ab:99:97:f9:2a:0c: 96:0f:39:62:0f:6c:20:af:8e:6b:cf:cc:98:24:62:fa:0e:be: 9a:01:ce:b4:e2:bd:aa:cc:61:f2:ce:fc:3f:24:3b:52:2b:e7: a4:f3:35:49:1a:b9:a4:bb:a5:49:31:08:a9:cd:5f:e3:15:30: 2e:86:8c:db:40:dc:e0:ce:1c:2a:d5:5d:3c:72:1d:7c:db:97: 6b:f8:1e:2e:c0:df:48:a2:58:0c:0a:69:bd:e7:6c:97:ef:c8: 09:51:c4:e9:5f:30:26:4e:70:45:28:50:02:90:03:65:83:05: c6:02:d1:df:a7:c3:bc:3d:a2:4b:d0:c7:ee:c5:0f:65:2c:c2: b9:e3:cc:c7:e8:56:52:96:c7:2f:1f:9a:d8:61:f7:54:a5:a0: 65:dc:0b:1b:78:fa:47:f0:f1:ac:e2:91:42:f0:37:dd:22:b6: 15:2e:af:ff:a4:44:98:3c:06:80:ea:42:fe:69:73:03:81:e6: a3:38:d6:17:f2:a5:43:47:a1:7c:f4:98:eb:f3:40:55:04:ac: 7e:bd:26:87:90:3f:9e:c0:8d:5a:dd:67:b8:14:e1:e7:f5:02: a1:01:91:41:1d:9c:70:4d:df:ba:63:ef:5e:6d:9c:23:6a:71: ac:92:b2:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKzo3sYHMImqBcdbhpnQ5lZU8A4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTA3MDkwNDU3MjJaFw0yNjA3MDgwNTAyMjJaMDMxMTAvBgNV BAMTKDFGQzJFRTM4OTVFQjY5NTNFRjBENDI3MjE3QzE0ODQyNzJDRTMyRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFsukoy3OeFs5D3XgVrHpBAhjV 4bZi1XAshJ07Eu2xsOKAJJoJI+3v952GjXb44rJLN9q+KO1I3cBBzL1Rn6N172zf 1BiJ3TpKVgllGFS6SNrswT2W9ii3A6S7Nb9tWVL68/qy1jI3Zagd22kI8WWAlweU DC86sfZZLACv001sYZPzQJYw38Z6zxiBKUBaEqGeZ+wWzlHDE2PQlZujijDR3Zaw 5R9FCz3mwnFvzhxGR1PpypujIUl3E/JrzA7/Vxvg4z96JrD/7RKEXQrlr4Siy4Of ZK4/viVnj9IP6bj9roMjhtMXa8q5i0iOPg/jPgit1XFpMCkMyLCujfXOrzhxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH8LuOJXraVPvDUJyF8FIQnLOMtIwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMxMzAzMzJlMzIzMjM3MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+PwMA0GCSqG SIb3DQEBCwUAA4IBAQCF4xvkGa5uYv9Mk+OrmZf5KgyWDzliD2wgr45rz8yYJGL6 Dr6aAc604r2qzGHyzvw/JDtSK+ek8zVJGrmku6VJMQipzV/jFTAuhozbQNzgzhwq 1V08ch1825dr+B4uwN9IolgMCmm952yX78gJUcTpXzAmTnBFKFACkANlgwXGAtHf p8O8PaJL0MfuxQ9lLMK548zH6FZSlscvH5rYYfdUpaBl3AsbePpH8PGs4pFC8Dfd IrYVLq//pESYPAaA6kL+aXMDgeajONYX8qVDR6F89Jjr80BVBKx+vSaHkD+ewI1a 3We4FOHn9QKhAZFBHZxwTd+6Y+9ebZwjanGskrI/ -----END CERTIFICATE-----Generated at Wed Nov 5 14:04:55 2025 by rpki-client