$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: wwz6ba6TxyJFQBFDyZrzQvQsc6tcIn83i8QBsYFEwr4= Subject key identifier: 8F:F1:1F:3F:DB:08:87:FC:5A:FB:75:9E:C3:4F:E8:9C:B1:0D:63:B1 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 482B6610B8216AD4836493C8CF1F709733939050 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa Signing time: Sun 02 Nov 2025 09:00:01 +0000 ROA not before: Sun 02 Nov 2025 08:55:01 +0000 ROA not after: Sun 01 Nov 2026 09:00:01 +0000 asID: 135439 IP address blocks: 103.214.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 03:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:2b:66:10:b8:21:6a:d4:83:64:93:c8:cf:1f:70:97:33:93:90:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Nov 2 08:55:01 2025 GMT Not After : Nov 1 09:00:01 2026 GMT Subject: CN=8FF11F3FDB0887FC5AFB759EC34FE89CB10D63B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f0:f5:60:f1:d8:16:91:8b:44:c2:b0:ba:1c: 87:f1:af:fd:13:d2:61:b2:03:67:39:ca:56:69:9f: 84:7c:fc:c8:f3:7c:be:72:dd:78:bf:6c:32:93:ff: 31:74:fa:06:7d:12:e3:f3:7a:9d:30:0a:3a:99:a8: c3:4e:c4:52:43:74:97:62:fc:0b:8b:12:2c:20:91: 95:6b:a1:8e:bc:ab:65:c4:94:8f:ad:e6:c5:fc:26: 3e:d1:2e:a3:1d:9c:d2:e8:1b:03:1c:95:4b:06:9d: d6:ec:aa:e2:ca:f7:69:7c:de:61:30:59:5f:24:d0: 40:96:8a:fa:a0:3a:48:e9:2b:ec:e2:60:f0:38:bf: 28:5a:a9:4f:82:c2:df:5b:15:d6:fa:99:c6:6c:02: c4:72:fd:24:3b:ef:42:cd:e5:51:63:07:2d:fd:0c: 3b:4d:5b:e0:ce:1a:3e:80:86:c6:89:f3:ce:4e:47: 20:fb:da:f0:d7:53:c6:c7:58:e0:08:68:a0:93:04: 50:76:ad:75:4b:d3:f2:f8:d7:93:a5:e6:89:da:9c: 8e:25:c0:70:b0:d7:4c:14:bb:86:88:d4:39:c8:1d: 15:29:51:d4:8e:d3:c6:95:c1:8d:c0:42:f6:73:70: b7:aa:ed:1f:b1:27:83:9e:21:e1:7e:dd:e1:10:a5: 5c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F1:1F:3F:DB:08:87:FC:5A:FB:75:9E:C3:4F:E8:9C:B1:0D:63:B1 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.236.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:ce:b1:90:29:fe:e6:af:39:14:7a:07:39:90:22:61:6c:87: 64:bd:bb:e9:67:48:01:3f:89:f8:75:b0:41:95:70:63:5f:6e: 74:8b:74:8a:35:69:5f:4f:c4:39:af:9d:02:a3:7c:d2:a2:c0: 4b:8d:18:a2:44:57:fb:83:fb:1a:c7:28:15:3d:09:63:6d:e4: 57:90:19:67:6c:3d:aa:67:9f:cc:73:4b:6c:43:40:cd:df:36: 4e:5c:90:93:10:84:50:93:b7:7a:56:88:e9:10:a3:04:61:cd: 2a:cf:ac:ce:a1:7b:7d:e4:9e:90:4c:11:87:9d:90:dd:cf:23: 63:a2:f0:83:66:66:d9:a0:16:34:ef:f5:7a:be:0f:ec:79:5c: 7c:53:f2:65:bc:09:d7:d2:82:3b:7c:a4:c8:1a:5e:5c:1b:91: ec:e2:03:38:41:9f:fd:49:0d:44:fb:5c:01:a1:9d:ed:12:96: 26:f1:5f:b5:a6:39:dc:c7:d8:84:c7:c2:5d:25:f2:5f:ed:1c: 07:58:22:24:fb:4d:72:05:60:65:19:a9:34:18:7b:04:cf:72: 0d:23:4e:a4:40:28:58:fa:1c:0f:1b:51:0f:a9:6a:7d:a2:29: b7:0a:9a:ce:9f:65:37:18:11:6a:92:17:60:1f:33:f4:43:62: 3d:94:fc:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSCtmELghatSDZJPIzx9wlzOTkFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yNTExMDIwODU1MDFaFw0yNjExMDEwOTAwMDFaMDMxMTAvBgNV BAMTKDhGRjExRjNGREIwODg3RkM1QUZCNzU5RUMzNEZFODlDQjEwRDYzQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT8PVg8dgWkYtEwrC6HIfxr/0T 0mGyA2c5ylZpn4R8/MjzfL5y3Xi/bDKT/zF0+gZ9EuPzep0wCjqZqMNOxFJDdJdi /AuLEiwgkZVroY68q2XElI+t5sX8Jj7RLqMdnNLoGwMclUsGndbsquLK92l83mEw WV8k0ECWivqgOkjpK+ziYPA4vyhaqU+Cwt9bFdb6mcZsAsRy/SQ770LN5VFjBy39 DDtNW+DOGj6AhsaJ885ORyD72vDXU8bHWOAIaKCTBFB2rXVL0/L415Ol5onanI4l wHCw10wUu4aI1DnIHRUpUdSO08aVwY3AQvZzcLeq7R+xJ4OeIeF+3eEQpVx5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUj/EfP9sIh/xa+3Wew0/onLENY7EwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1uwwDQYJ KoZIhvcNAQELBQADggEBAA7OsZAp/uavORR6BzmQImFsh2S9u+lnSAE/ifh1sEGV cGNfbnSLdIo1aV9PxDmvnQKjfNKiwEuNGKJEV/uD+xrHKBU9CWNt5FeQGWdsPapn n8xzS2xDQM3fNk5ckJMQhFCTt3pWiOkQowRhzSrPrM6he33knpBMEYedkN3PI2Oi 8INmZtmgFjTv9Xq+D+x5XHxT8mW8CdfSgjt8pMgaXlwbkeziAzhBn/1JDUT7XAGh ne0SlibxX7WmOdzH2ITHwl0l8l/tHAdYIiT7TXIFYGUZqTQYewTPcg0jTqRAKFj6 HA8bUQ+pan2iKbcKms6fZTcYEWqSF2AfM/RDYj2U/CU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:45 2025 by rpki-client