$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: D08BFYTRnMd/bNThD9Kffk2jZOcvuFviPOLMtrY2nyM= Subject key identifier: 4C:AA:76:BD:B2:4A:1C:BC:C9:48:4D:DC:11:B8:1B:F9:1D:8E:E7:30 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 14C571F1880C4813B64C9508E8CFCFBD4AEF892E Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa Signing time: Sun 02 Nov 2025 09:00:01 +0000 ROA not before: Sun 02 Nov 2025 08:55:01 +0000 ROA not after: Sun 01 Nov 2026 09:00:01 +0000 asID: 135439 IP address blocks: 103.214.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 03:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c5:71:f1:88:0c:48:13:b6:4c:95:08:e8:cf:cf:bd:4a:ef:89:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Nov 2 08:55:01 2025 GMT Not After : Nov 1 09:00:01 2026 GMT Subject: CN=4CAA76BDB24A1CBCC9484DDC11B81BF91D8EE730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8d:34:8d:80:34:4e:39:96:ee:2a:ab:2f:b2: 80:55:7b:67:bc:7a:87:9f:2e:6d:9e:1a:7c:f0:63: 4a:58:c7:b8:7e:ff:2e:3a:93:64:80:22:2b:49:5f: 3f:88:83:20:eb:54:ac:67:ea:f1:14:16:47:15:27: 6c:12:44:71:c6:ed:c4:05:3e:6c:83:bf:98:94:80: 0d:5b:12:52:4c:e5:af:15:2f:68:27:20:05:5d:4d: 09:2a:0f:d7:c5:ca:8e:01:83:e4:2b:0b:ac:00:e8: bc:c8:ee:10:6f:a3:b6:2c:29:4e:d8:69:f7:be:e4: 31:ab:07:c5:49:49:42:6c:c5:19:a7:77:34:82:2b: 28:d5:4d:b0:f2:ee:c4:f2:9c:08:08:8e:ce:b8:1b: 64:c0:fd:ee:75:7d:0d:e4:c4:2c:da:72:b4:26:ce: 9c:28:43:1e:0a:24:07:41:47:5d:41:1b:86:99:24: 8a:a0:dd:28:d2:3b:a0:7f:60:30:2e:c0:00:78:22: 71:4a:3f:17:75:c6:c9:ce:22:1c:0f:71:96:36:bb: 15:94:02:55:73:95:39:45:88:10:af:9c:88:f6:62: 82:c9:90:55:4e:a3:8a:ed:12:8b:9e:d3:6e:e4:d6: 74:39:87:e0:9b:27:c9:99:21:c9:0e:45:e5:f4:f6: 04:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AA:76:BD:B2:4A:1C:BC:C9:48:4D:DC:11:B8:1B:F9:1D:8E:E7:30 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.239.0/24 Signature Algorithm: sha256WithRSAEncryption 16:ab:ad:5e:7b:d5:08:f6:73:b9:10:ee:23:26:72:c3:66:35: d2:8f:bd:d7:2d:87:ee:ab:d9:93:54:76:71:32:50:57:af:f6: 3f:41:5a:65:b8:e1:c4:cf:60:69:04:a7:eb:fd:83:8f:e9:5a: fd:bd:0a:e1:be:3e:92:29:5a:05:4e:d8:5b:eb:e5:8b:96:e1: 79:5f:ad:46:d1:cd:55:0a:aa:3d:d5:3d:58:0e:4e:98:a4:2c: 27:c5:34:d6:c5:a9:02:23:b9:06:52:27:f1:37:71:5a:22:d4: ef:54:27:a3:78:f0:8f:7e:5b:ef:9d:a8:9b:4b:b9:a7:67:1a: 50:4e:9c:ed:43:e0:99:18:6f:05:4b:06:a7:2c:db:07:d5:76: db:48:7c:03:18:e4:da:14:fa:84:15:6f:2c:7c:00:d4:27:92: de:46:e5:45:4b:fa:18:d3:bc:c8:5a:f2:3d:c9:79:0c:ab:74: 42:23:4d:a3:5e:ec:2d:d0:13:f9:2a:59:dc:13:6c:16:ea:d8: 47:b9:b5:3f:7a:e0:ea:bf:7f:73:a6:f6:30:6d:1a:bc:56:99: f9:0e:c3:c9:1d:68:76:b1:61:21:ba:90:72:b1:d7:31:cd:55: 61:15:09:84:b4:3a:86:47:48:84:14:c8:71:02:a4:94:bd:a4: 75:30:56:cd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFMVx8YgMSBO2TJUI6M/PvUrviS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yNTExMDIwODU1MDFaFw0yNjExMDEwOTAwMDFaMDMxMTAvBgNV BAMTKDRDQUE3NkJEQjI0QTFDQkNDOTQ4NEREQzExQjgxQkY5MUQ4RUU3MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVjTSNgDROOZbuKqsvsoBVe2e8 eoefLm2eGnzwY0pYx7h+/y46k2SAIitJXz+IgyDrVKxn6vEUFkcVJ2wSRHHG7cQF PmyDv5iUgA1bElJM5a8VL2gnIAVdTQkqD9fFyo4Bg+QrC6wA6LzI7hBvo7YsKU7Y afe+5DGrB8VJSUJsxRmndzSCKyjVTbDy7sTynAgIjs64G2TA/e51fQ3kxCzacrQm zpwoQx4KJAdBR11BG4aZJIqg3SjSO6B/YDAuwAB4InFKPxd1xsnOIhwPcZY2uxWU AlVzlTlFiBCvnIj2YoLJkFVOo4rtEoue027k1nQ5h+CbJ8mZIckOReX09gQxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTKp2vbJKHLzJSE3cEbgb+R2O5zAwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u8wDQYJ KoZIhvcNAQELBQADggEBABarrV571Qj2c7kQ7iMmcsNmNdKPvdcth+6r2ZNUdnEy UFev9j9BWmW44cTPYGkEp+v9g4/pWv29CuG+PpIpWgVO2Fvr5YuW4XlfrUbRzVUK qj3VPVgOTpikLCfFNNbFqQIjuQZSJ/E3cVoi1O9UJ6N48I9+W++dqJtLuadnGlBO nO1D4JkYbwVLBqcs2wfVdttIfAMY5NoU+oQVbyx8ANQnkt5G5UVL+hjTvMha8j3J eQyrdEIjTaNe7C3QE/kqWdwTbBbq2Ee5tT964Oq/f3Om9jBtGrxWmfkOw8kdaHax YSG6kHKx1zHNVWEVCYS0OoZHSIQUyHECpJS9pHUwVs0= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:37 2025 by rpki-client