$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: ud0rm7NJrw3tkHGHEKsf4SnTq3zWIy8EUz6TubCb2Gs= Subject key identifier: A5:72:77:07:1F:CA:45:6D:8C:64:00:86:83:2A:3E:49:76:AE:7C:10 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 7AE06D87EF54E3A302ABBE44C627BB7463601881 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa Signing time: Sun 02 Nov 2025 09:00:01 +0000 ROA not before: Sun 02 Nov 2025 08:55:01 +0000 ROA not after: Sun 01 Nov 2026 09:00:01 +0000 asID: 135439 IP address blocks: 103.214.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 03:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e0:6d:87:ef:54:e3:a3:02:ab:be:44:c6:27:bb:74:63:60:18:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Nov 2 08:55:01 2025 GMT Not After : Nov 1 09:00:01 2026 GMT Subject: CN=A57277071FCA456D8C640086832A3E4976AE7C10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:34:9c:a1:e7:c6:8c:d6:30:39:13:2d:40: 49:fb:96:0f:b0:9a:e7:bd:c8:56:71:d6:8c:47:0d: 6d:4f:1f:57:d6:04:99:39:78:ec:ee:c7:e9:ff:c0: 9e:85:09:5d:06:84:61:a8:34:b1:b9:5f:4d:5f:68: bd:39:df:5a:bd:69:01:16:17:e6:6b:ed:2c:2d:04: a6:11:04:b4:b2:ab:28:94:fe:89:dd:01:b6:05:06: 68:e5:b3:66:9a:1c:9e:e6:1d:f2:9d:bd:32:43:8f: bf:c4:c5:14:a2:81:ad:ad:4e:40:c2:c7:07:a9:8a: 3f:9d:58:c6:b8:b4:32:23:90:00:1b:58:d8:93:ee: 51:46:c1:9a:39:54:90:29:45:ff:f5:87:3b:f8:e4: 7a:65:97:6d:3f:eb:37:12:6e:ab:6b:64:35:1d:5b: 44:0a:41:bd:fc:22:3d:86:c3:95:5d:09:20:76:bd: 77:e3:12:cf:69:a0:62:07:eb:84:4f:aa:9e:41:a6: c4:14:54:14:71:63:76:6b:1f:46:91:72:c8:03:14: fa:19:a4:80:ce:21:90:d6:0f:10:35:ba:3e:8c:e6: 48:4a:d2:77:61:73:29:57:c8:ac:d1:2c:08:5b:08: 35:8f:af:8b:f0:4e:6a:b2:02:59:ca:f9:85:db:32: aa:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:72:77:07:1F:CA:45:6D:8C:64:00:86:83:2A:3E:49:76:AE:7C:10 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.237.0/24 Signature Algorithm: sha256WithRSAEncryption 64:5a:2a:ef:ef:9b:ff:51:e2:7c:8d:b0:9b:bd:c5:df:0b:c5: 47:f5:59:e3:dd:0e:eb:85:71:e6:13:89:f5:3d:bd:23:40:39: d8:87:e7:50:e7:98:a0:9e:c9:32:de:6b:79:05:f5:cb:1d:64: 1d:9c:c3:7b:1b:ac:b8:95:55:86:ae:57:1f:7e:16:a2:62:63: 4c:3c:ca:f8:d3:d6:30:3f:5e:e2:e1:c0:ff:ab:9f:d1:88:12: d1:85:89:cc:f2:d6:db:02:b3:9b:2e:e5:e3:6e:3b:82:56:5a: 8e:42:8c:84:61:a1:e6:35:5e:03:ab:14:54:1a:12:68:a5:94: d9:cb:cf:b5:ae:a4:24:27:60:03:76:c6:a1:e0:b5:57:b4:3d: ff:36:b4:7c:76:75:76:69:9b:33:d9:63:8f:17:e7:c9:c5:f7: db:3e:93:d5:66:0f:f9:80:a5:3a:9f:b8:b3:f5:d0:2b:7d:07: c3:ad:0a:94:6b:13:8f:9e:d5:6f:ce:61:b1:33:ea:e9:f3:7e: c5:a8:00:0d:fe:ab:f7:6d:3d:ba:eb:66:13:69:83:e4:2e:bf: 72:59:18:01:2c:20:cb:f2:42:b4:bf:91:de:e7:a0:65:5e:01: 2a:f0:25:1c:98:8e:29:ee:38:c4:cd:d6:04:ad:01:e8:c9:6c: af:44:19:a2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeuBth+9U46MCq75Exie7dGNgGIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yNTExMDIwODU1MDFaFw0yNjExMDEwOTAwMDFaMDMxMTAvBgNV BAMTKEE1NzI3NzA3MUZDQTQ1NkQ4QzY0MDA4NjgzMkEzRTQ5NzZBRTdDMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UjScoefGjNYwORMtQEn7lg+w mue9yFZx1oxHDW1PH1fWBJk5eOzux+n/wJ6FCV0GhGGoNLG5X01faL0531q9aQEW F+Zr7SwtBKYRBLSyqyiU/ondAbYFBmjls2aaHJ7mHfKdvTJDj7/ExRSiga2tTkDC xwepij+dWMa4tDIjkAAbWNiT7lFGwZo5VJApRf/1hzv45Hpll20/6zcSbqtrZDUd W0QKQb38Ij2Gw5VdCSB2vXfjEs9poGIH64RPqp5BpsQUVBRxY3ZrH0aRcsgDFPoZ pIDOIZDWDxA1uj6M5khK0ndhcylXyKzRLAhbCDWPr4vwTmqyAlnK+YXbMqoHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpXJ3Bx/KRW2MZACGgyo+SXaufBAwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u0wDQYJ KoZIhvcNAQELBQADggEBAGRaKu/vm/9R4nyNsJu9xd8LxUf1WePdDuuFceYTifU9 vSNAOdiH51DnmKCeyTLea3kF9csdZB2cw3sbrLiVVYauVx9+FqJiY0w8yvjT1jA/ XuLhwP+rn9GIEtGFiczy1tsCs5su5eNuO4JWWo5CjIRhoeY1XgOrFFQaEmillNnL z7WupCQnYAN2xqHgtVe0Pf82tHx2dXZpmzPZY48X58nF99s+k9VmD/mApTqfuLP1 0Ct9B8OtCpRrE4+e1W/OYbEz6unzfsWoAA3+q/dtPbrrZhNpg+Quv3JZGAEsIMvy QrS/kd7noGVeASrwJRyYjinuOMTN1gStAejJbK9EGaI= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:08 2025 by rpki-client