$ rpki-client -vvf repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa File: 3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa (raw, json) Hash identifier: ibNTSX4YXpvUj4AJgfecXLMI8i0TnCNMvaVKKjw+4v8= Subject key identifier: 79:74:26:2A:46:56:E6:D4:E7:C8:B4:61:61:48:DA:F4:04:77:4A:89 Certificate issuer: /CN=4F679A207D2588B709C82CDAB000736182F881E1 Certificate serial: 0455E4A1ADF099EEA5B131325C42562AEEDEFF5D Authority key identifier: 4F:67:9A:20:7D:25:88:B7:09:C8:2C:DA:B0:00:73:61:82:F8:81:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa Signing time: Thu 24 Jul 2025 04:31:33 +0000 ROA not before: Thu 24 Jul 2025 04:26:33 +0000 ROA not after: Thu 23 Jul 2026 04:31:33 +0000 asID: 149971 IP address blocks: 103.194.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.crl rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 00:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:55:e4:a1:ad:f0:99:ee:a5:b1:31:32:5c:42:56:2a:ee:de:ff:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F679A207D2588B709C82CDAB000736182F881E1 Validity Not Before: Jul 24 04:26:33 2025 GMT Not After : Jul 23 04:31:33 2026 GMT Subject: CN=7974262A4656E6D4E7C8B4616148DAF404774A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7b:5b:bf:b0:86:59:41:e6:cc:65:a7:27:5b: 06:c4:11:1f:aa:6b:d6:7e:4d:89:af:a9:db:69:ef: 4f:2c:6e:dc:85:01:0c:28:33:ef:f8:83:2b:7f:4d: 83:a6:72:a6:1f:f3:ab:d9:36:fe:dd:cc:3d:02:11: 6a:a0:d0:62:ce:ec:a7:40:4e:cf:37:3a:ae:d4:4c: c9:37:19:3b:dd:e3:51:69:bc:d2:8b:1e:d6:33:71: 59:43:e9:c6:ff:eb:b7:4f:0a:70:ff:f3:40:41:9e: d0:8b:74:8b:10:d0:16:4d:be:af:4e:37:98:83:1c: 98:a6:46:a5:b9:9d:f9:81:66:54:8a:1e:31:03:fa: 7c:ef:9d:09:bd:b1:db:2d:42:41:82:95:b8:52:7b: 95:74:c4:ee:47:a2:f6:70:e7:56:ae:2b:89:7e:7a: 68:89:39:de:c0:11:57:b3:76:ae:cb:31:bc:03:f0: 2c:eb:94:58:34:e3:8b:00:04:63:4e:2e:9f:64:42: fb:94:0f:d6:38:84:27:37:c5:74:c8:a4:5c:2c:d8: e2:62:03:b8:7f:45:aa:a0:ff:b6:75:f3:7d:d5:44: 31:4f:ee:69:e3:36:dd:96:36:36:47:ce:74:85:6b: 06:c0:ee:87:fe:b8:c3:47:fb:2f:9c:42:46:f4:bb: 18:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:74:26:2A:46:56:E6:D4:E7:C8:B4:61:61:48:DA:F4:04:77:4A:89 X509v3 Authority Key Identifier: keyid:4F:67:9A:20:7D:25:88:B7:09:C8:2C:DA:B0:00:73:61:82:F8:81:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34362e302f32332d3234203d3e20313439393731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.194.46.0/23 Signature Algorithm: sha256WithRSAEncryption 03:70:d4:58:be:1d:16:d7:b8:69:d4:9e:14:75:98:c3:2d:9f: d9:16:a8:41:e9:91:9c:4e:bb:bf:fa:34:ab:5c:8e:c8:41:a5: ec:fd:50:83:90:80:14:14:4e:eb:eb:38:70:59:1c:6c:a2:45: 19:ae:13:6d:95:89:52:4f:0f:df:d9:74:e9:7c:1d:2e:a4:e9: b3:e5:4e:a6:5d:2d:f8:c9:af:d7:21:00:82:16:d2:4b:90:9b: e5:28:4d:b7:e3:64:ac:2c:bf:a7:e4:4b:4c:e1:a5:3c:e9:6e: ed:f7:aa:68:82:0a:be:80:81:21:17:8c:21:71:9c:72:f5:b8: 88:f8:fd:07:17:9e:cf:b8:19:0a:50:80:6d:ea:66:3c:67:99: 2c:e0:78:5a:d6:08:5e:fe:d0:be:6d:2f:ef:ec:9c:ec:58:71: 47:aa:02:7d:bc:94:76:74:29:97:16:30:db:9f:90:e1:ef:e2: ad:2c:be:c8:8b:84:86:71:d6:91:47:5d:88:2f:7c:f8:fa:b2: 4e:4e:f2:59:cc:4f:62:5d:a0:ed:1f:4a:a8:e1:f0:39:91:ed: 40:c0:15:02:f8:5c:79:46:74:a5:07:cf:ed:c2:b1:82:bf:31: 70:dd:30:00:da:b6:08:0e:07:29:0f:8c:83:58:3b:81:8d:68: 16:d3:ed:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBFXkoa3wme6lsTEyXEJWKu7e/10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEY2NzlBMjA3RDI1ODhCNzA5QzgyQ0RBQjAwMDczNjE4 MkY4ODFFMTAeFw0yNTA3MjQwNDI2MzNaFw0yNjA3MjMwNDMxMzNaMDMxMTAvBgNV BAMTKDc5NzQyNjJBNDY1NkU2RDRFN0M4QjQ2MTYxNDhEQUY0MDQ3NzRBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDle1u/sIZZQebMZacnWwbEER+q a9Z+TYmvqdtp708sbtyFAQwoM+/4gyt/TYOmcqYf86vZNv7dzD0CEWqg0GLO7KdA Ts83Oq7UTMk3GTvd41FpvNKLHtYzcVlD6cb/67dPCnD/80BBntCLdIsQ0BZNvq9O N5iDHJimRqW5nfmBZlSKHjED+nzvnQm9sdstQkGClbhSe5V0xO5HovZw51auK4l+ emiJOd7AEVezdq7LMbwD8CzrlFg044sABGNOLp9kQvuUD9Y4hCc3xXTIpFws2OJi A7h/Raqg/7Z1833VRDFP7mnjNt2WNjZHznSFawbA7of+uMNH+y+cQkb0uxjLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeXQmKkZW5tTnyLRhYUja9AR3SokwHwYDVR0j BBgwFoAUT2eaIH0liLcJyCzasABzYYL4geEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5M2E5My01ODg5LTRlMDItOWU5NS03NjljYjg5ZTAwMzUvMC80RjY3OUEyMDdE MjU4OEI3MDlDODJDREFCMDAwNzM2MTgyRjg4MUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEY2NzlBMjA3RDI1ODhCNzA5QzgyQ0RBQjAwMDczNjE4MkY4 ODFFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTkzYTkzLTU4ODktNGUwMi05 ZTk1LTc2OWNiODllMDAzNS8wLzMxMzAzMzJlMzEzOTM0MmUzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ8IuMA0GCSqG SIb3DQEBCwUAA4IBAQADcNRYvh0W17hp1J4UdZjDLZ/ZFqhB6ZGcTru/+jSrXI7I QaXs/VCDkIAUFE7r6zhwWRxsokUZrhNtlYlSTw/f2XTpfB0upOmz5U6mXS34ya/X IQCCFtJLkJvlKE2342SsLL+n5EtM4aU86W7t96poggq+gIEhF4whcZxy9biI+P0H F57PuBkKUIBt6mY8Z5ks4Hha1ghe/tC+bS/v7JzsWHFHqgJ9vJR2dCmXFjDbn5Dh 7+KtLL7Ii4SGcdaRR12IL3z4+rJOTvJZzE9iXaDtH0qo4fA5ke1AwBUC+Fx5RnSl B8/twrGCvzFw3TAA2rYIDgcpD4yDWDuBjWgW0+2M -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:50 2025 by rpki-client