$ rpki-client -vvf repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa File: 3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: I5vk4CZVaOAQSTZi+mpaPTk3GaYie2KrNjsP/ZfsCsY= Subject key identifier: 4F:E8:9B:AA:E4:61:62:6F:48:E9:0D:30:27:20:42:FA:0F:99:B5:32 Certificate issuer: /CN=687247CE80E62AD4B40F0B9915A1B6F3020F684C Certificate serial: 321CA92E12F6685772C3F6F073E75432A39C0D26 Authority key identifier: 68:72:47:CE:80:E6:2A:D4:B4:0F:0B:99:15:A1:B6:F3:02:0F:68:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 11:00:00 +0000 ROA not before: Fri 04 Jul 2025 10:55:00 +0000 ROA not after: Fri 03 Jul 2026 11:00:00 +0000 asID: 17995 IP address blocks: 103.165.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.crl rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 15:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:1c:a9:2e:12:f6:68:57:72:c3:f6:f0:73:e7:54:32:a3:9c:0d:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687247CE80E62AD4B40F0B9915A1B6F3020F684C Validity Not Before: Jul 4 10:55:00 2025 GMT Not After : Jul 3 11:00:00 2026 GMT Subject: CN=4FE89BAAE461626F48E90D30272042FA0F99B532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e0:ef:37:6c:d2:d6:b8:85:93:1d:ba:9f:4a: e1:7f:fe:fd:5b:a0:15:50:b5:59:a7:36:40:77:7e: 85:e9:58:8b:02:c9:3c:a9:1b:4b:13:1d:93:b5:1c: c1:3f:2b:65:c5:74:a4:de:3f:34:2f:88:1a:8e:24: ed:cf:2c:5a:78:d5:8f:df:0e:f9:7c:40:cd:8f:85: c3:dc:d7:d4:00:2e:69:8f:1d:d9:5c:39:d3:2b:fe: 80:4a:1c:5a:6e:6f:19:0e:44:f2:a3:4b:f1:89:7f: 01:42:d0:4f:06:1e:49:0d:9d:b7:25:03:f0:e3:6a: cc:01:a9:ce:c4:db:54:4a:fd:a4:dd:2e:e1:bd:c8: 2c:8c:23:76:29:c4:33:92:f7:54:44:44:22:f5:e3: 84:0b:34:5e:a0:cd:cd:16:f3:bc:7e:a2:ad:06:3d: b7:df:f4:3e:ad:9d:66:4b:c5:33:e5:80:35:6b:0f: 77:ac:7b:31:da:2f:96:85:a3:2b:b7:07:3b:aa:bd: 17:96:34:df:d5:8e:73:2d:7b:46:e5:69:3c:55:75: f4:ff:68:70:0d:d6:7a:66:c6:07:78:df:ba:98:8b: ec:78:a1:03:5c:e9:03:50:72:b3:5b:ed:53:01:e1: 41:9d:63:b6:0d:44:5b:6b:bb:36:6f:24:5e:a4:2e: da:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E8:9B:AA:E4:61:62:6F:48:E9:0D:30:27:20:42:FA:0F:99:B5:32 X509v3 Authority Key Identifier: keyid:68:72:47:CE:80:E6:2A:D4:B4:0F:0B:99:15:A1:B6:F3:02:0F:68:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.254.0/23 Signature Algorithm: sha256WithRSAEncryption ae:23:fe:da:cb:65:98:07:35:a4:b4:c8:24:7c:2b:cf:b3:ba: 0d:2c:77:9f:24:97:74:ce:2e:73:c6:58:40:0f:37:ba:c8:13: c3:8e:d6:15:4b:8c:fc:93:1f:29:40:31:c8:30:24:9b:2b:57: 2f:34:60:cb:63:0b:06:d7:bb:62:c8:04:85:84:f6:29:fa:47: 9d:e9:bc:8b:c8:32:77:dd:b1:79:63:d6:0a:79:93:48:8a:8b: 69:4a:b5:ac:19:39:eb:f2:f8:4d:85:93:e7:15:c3:ee:cb:ee: 85:d9:3f:2a:af:b3:1d:fd:bd:59:02:d6:03:60:32:48:bb:fa: f9:a3:e4:ff:b0:b2:41:e3:bb:4b:a3:e6:99:2e:6d:93:2a:d3: 59:df:bc:dc:e1:e7:a5:48:5e:48:0d:83:27:27:b6:3a:d4:98: 38:aa:66:7e:43:c9:ed:fe:19:92:a9:3a:2b:09:05:9f:93:b6: e0:6b:55:a5:7f:8f:0d:cb:55:ad:e3:bd:9b:33:95:59:7f:a1: b2:95:9d:91:3a:e3:03:a1:64:b0:0d:08:f1:7b:14:6b:76:e7: 05:10:de:b9:32:bf:3a:d4:cb:04:54:df:1e:8e:97:77:96:42: 77:a6:cb:c8:28:29:7c:fb:12:08:90:b1:dc:fb:ea:4a:9a:a3: c1:30:a4:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMhypLhL2aFdyw/bwc+dUMqOcDSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg3MjQ3Q0U4MEU2MkFENEI0MEYwQjk5MTVBMUI2RjMw MjBGNjg0QzAeFw0yNTA3MDQxMDU1MDBaFw0yNjA3MDMxMTAwMDBaMDMxMTAvBgNV BAMTKDRGRTg5QkFBRTQ2MTYyNkY0OEU5MEQzMDI3MjA0MkZBMEY5OUI1MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh4O83bNLWuIWTHbqfSuF//v1b oBVQtVmnNkB3foXpWIsCyTypG0sTHZO1HME/K2XFdKTePzQviBqOJO3PLFp41Y/f Dvl8QM2PhcPc19QALmmPHdlcOdMr/oBKHFpubxkORPKjS/GJfwFC0E8GHkkNnbcl A/DjaswBqc7E21RK/aTdLuG9yCyMI3YpxDOS91RERCL144QLNF6gzc0W87x+oq0G Pbff9D6tnWZLxTPlgDVrD3esezHaL5aFoyu3BzuqvReWNN/VjnMte0blaTxVdfT/ aHAN1npmxgd437qYi+x4oQNc6QNQcrNb7VMB4UGdY7YNRFtruzZvJF6kLtqXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT+ibquRhYm9I6Q0wJyBC+g+ZtTIwHwYDVR0j BBgwFoAUaHJHzoDmKtS0DwuZFaG28wIPaEwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWU1NDY4Yy0wYWM3LTQ0YTktODgyMS0yODI1N2M1YTg2MDcvMC82ODcyNDdDRTgw RTYyQUQ0QjQwRjBCOTkxNUExQjZGMzAyMEY2ODRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg3MjQ3Q0U4MEU2MkFENEI0MEYwQjk5MTVBMUI2RjMwMjBG Njg0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZTU0NjhjLTBhYzctNDRhOS04 ODIxLTI4MjU3YzVhODYwNy8wLzMxMzAzMzJlMzEzNjM1MmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6X+MA0GCSqG SIb3DQEBCwUAA4IBAQCuI/7ay2WYBzWktMgkfCvPs7oNLHefJJd0zi5zxlhADze6 yBPDjtYVS4z8kx8pQDHIMCSbK1cvNGDLYwsG17tiyASFhPYp+ked6byLyDJ33bF5 Y9YKeZNIiotpSrWsGTnr8vhNhZPnFcPuy+6F2T8qr7Md/b1ZAtYDYDJIu/r5o+T/ sLJB47tLo+aZLm2TKtNZ37zc4eelSF5IDYMnJ7Y61Jg4qmZ+Q8nt/hmSqTorCQWf k7bga1Wlf48Ny1Wt472bM5VZf6GylZ2ROuMDoWSwDQjxexRrducFEN65Mr861MsE VN8ejpd3lkJ3psvIKCl8+xIIkLHc++pKmqPBMKTk -----END CERTIFICATE-----Generated at Wed Nov 5 07:56:12 2025 by rpki-client