$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa File: 3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa (raw, json) Hash identifier: K7I7X7V48aE6/5u83vWBkZ5nD0P/zd145TmQLmzpqzo= Subject key identifier: 12:E8:B2:34:8C:3B:47:34:D2:92:1E:E2:80:07:82:EF:AD:8F:E3:B0 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 672BE47BED907711F2E208375C195A576E9384D8 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa Signing time: Sun 02 Nov 2025 09:00:01 +0000 ROA not before: Sun 02 Nov 2025 08:55:01 +0000 ROA not after: Sun 01 Nov 2026 09:00:01 +0000 asID: 135439 IP address blocks: 103.214.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 03:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2b:e4:7b:ed:90:77:11:f2:e2:08:37:5c:19:5a:57:6e:93:84:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Nov 2 08:55:01 2025 GMT Not After : Nov 1 09:00:01 2026 GMT Subject: CN=12E8B2348C3B4734D2921EE2800782EFAD8FE3B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:61:68:7d:03:69:6b:15:7d:92:9b:1c:c3:bb: b8:05:cb:18:ab:fd:40:28:ca:25:5a:86:e1:38:3b: 2e:35:d9:dc:bd:f1:3b:b6:1b:35:10:6d:60:72:6a: 84:15:75:42:36:d6:20:77:5c:de:7f:2e:6c:cb:5c: bb:35:6d:db:96:a9:77:f5:e3:65:8b:66:97:4c:ee: e0:b3:1d:77:fb:e0:33:36:d5:66:1d:79:c2:88:e8: 55:fb:1c:54:76:b7:ab:f9:08:b6:3a:6d:d4:d5:6d: 58:63:de:3b:c1:58:ef:1f:90:4d:68:e4:7e:52:83: 50:13:b3:20:6a:56:58:c5:d1:76:3b:d2:e8:bb:4a: 2b:d3:74:aa:86:51:6b:6e:b3:79:bf:70:2f:bf:40: de:e7:9c:f0:d1:20:bb:7f:35:31:37:cc:95:2c:7a: 51:f3:2e:8b:27:00:27:03:cf:0f:92:b0:5d:2c:e4: af:05:12:86:b6:21:70:6d:d4:46:e5:9f:7d:ae:43: 20:6b:13:e9:a2:e0:93:90:91:c7:71:b7:8b:5d:26: dc:a3:26:7a:96:4e:5b:2e:4e:e3:52:01:bd:bc:d3: 4c:ea:67:b0:7b:7c:b6:48:5d:60:1c:41:01:62:33: 94:21:cf:dc:78:5c:ab:d7:0d:4b:c9:a8:a7:91:0c: d1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E8:B2:34:8C:3B:47:34:D2:92:1E:E2:80:07:82:EF:AD:8F:E3:B0 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.236.0/22 Signature Algorithm: sha256WithRSAEncryption 96:6f:b5:53:66:cb:32:67:f1:2b:de:ce:1d:3a:ae:4e:60:5a: 99:eb:e8:8d:8c:bb:d8:23:ce:fc:16:51:ff:d8:fb:08:50:ea: 81:df:46:94:25:bc:f6:56:b4:53:fa:d3:38:97:77:65:77:40: 7e:cf:be:ab:47:a2:81:00:1a:a0:ef:70:b2:8a:8e:de:a7:40: 79:35:d1:df:cc:df:87:0d:2a:9a:fc:9e:e5:8d:28:b3:c7:da: 62:4b:67:9d:77:d0:88:0b:df:03:d0:c8:0f:fa:02:9a:a4:6d: e6:4e:ea:05:c2:29:f0:e8:92:b1:f1:96:61:e5:65:18:e9:93: fe:90:40:49:40:7d:fc:9d:4a:2b:3a:b6:b8:a9:ec:32:02:bb: 24:94:02:bb:c6:9a:76:56:be:b1:79:bc:c0:a7:c9:ed:0e:d7: b5:4a:85:69:01:b7:3f:1f:5c:0c:66:4d:9c:cc:b2:a2:6b:3b: a1:6a:df:4d:69:8f:a8:5b:b0:43:c2:1a:99:57:da:43:de:c9: c9:57:0b:7d:98:be:97:4d:5b:e8:72:4c:48:ac:01:33:5c:f4: 0a:68:1d:4f:22:2a:47:47:46:18:04:58:dd:ba:82:e4:b0:18: fc:47:6e:98:9c:2e:1d:1f:a6:9c:03:2e:d3:30:17:62:3e:8f: 09:74:42:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZyvke+2QdxHy4gg3XBlaV26ThNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yNTExMDIwODU1MDFaFw0yNjExMDEwOTAwMDFaMDMxMTAvBgNV BAMTKDEyRThCMjM0OEMzQjQ3MzREMjkyMUVFMjgwMDc4MkVGQUQ4RkUzQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/YWh9A2lrFX2SmxzDu7gFyxir /UAoyiVahuE4Oy412dy98Tu2GzUQbWByaoQVdUI21iB3XN5/LmzLXLs1bduWqXf1 42WLZpdM7uCzHXf74DM21WYdecKI6FX7HFR2t6v5CLY6bdTVbVhj3jvBWO8fkE1o 5H5Sg1ATsyBqVljF0XY70ui7SivTdKqGUWtus3m/cC+/QN7nnPDRILt/NTE3zJUs elHzLosnACcDzw+SsF0s5K8FEoa2IXBt1Ebln32uQyBrE+mi4JOQkcdxt4tdJtyj JnqWTlsuTuNSAb2800zqZ7B7fLZIXWAcQQFiM5Qhz9x4XKvXDUvJqKeRDNHrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEuiyNIw7RzTSkh7igAeC762P47AwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn1uwwDQYJ KoZIhvcNAQELBQADggEBAJZvtVNmyzJn8Svezh06rk5gWpnr6I2Mu9gjzvwWUf/Y +whQ6oHfRpQlvPZWtFP60ziXd2V3QH7PvqtHooEAGqDvcLKKjt6nQHk10d/M34cN Kpr8nuWNKLPH2mJLZ5130IgL3wPQyA/6ApqkbeZO6gXCKfDokrHxlmHlZRjpk/6Q QElAffydSis6trip7DICuySUArvGmnZWvrF5vMCnye0O17VKhWkBtz8fXAxmTZzM sqJrO6Fq301pj6hbsEPCGplX2kPeyclXC32YvpdNW+hyTEisATNc9ApoHU8iKkdH RhgEWN26guSwGPxHbpicLh0fppwDLtMwF2I+jwl0QmA= -----END CERTIFICATE-----Generated at Wed Nov 5 22:14:00 2025 by rpki-client