$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32342d3234203d3e20313530343837.roa File: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (raw, json) Hash identifier: s4D3k54ePgFL3DJuO1+sPM7ighm+hIZ0dRBFdpACJIQ= Subject key identifier: C9:EB:3F:AF:0F:3C:45:E3:DC:67:30:DD:B1:EB:1B:7F:B1:1D:6E:32 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 51782B07AA711809C7C5C04C7B30E5FECBAA2622 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32342d3234203d3e20313530343837.roa Signing time: Sun 02 Nov 2025 05:00:02 +0000 ROA not before: Sun 02 Nov 2025 04:55:02 +0000 ROA not after: Sun 01 Nov 2026 05:00:02 +0000 asID: 150487 IP address blocks: 103.55.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 17:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:78:2b:07:aa:71:18:09:c7:c5:c0:4c:7b:30:e5:fe:cb:aa:26:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Nov 2 04:55:02 2025 GMT Not After : Nov 1 05:00:02 2026 GMT Subject: CN=C9EB3FAF0F3C45E3DC6730DDB1EB1B7FB11D6E32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:01:7e:d8:e9:f1:75:b6:a5:f7:82:53:1f:68: f8:db:ed:9b:1b:e4:ac:ec:69:b5:b9:33:c2:5f:d0: ad:1e:5f:31:0b:77:3d:f8:66:10:fd:66:22:d1:a6: c3:4a:25:32:47:ee:4a:34:b6:08:16:c0:f4:05:f0: 45:54:93:f3:34:8f:1d:fa:85:fe:cd:71:a9:ed:3e: 3b:74:10:99:b1:c9:0f:4c:fe:71:85:f0:0a:2f:03: 7e:76:51:70:f1:a5:c0:fd:de:54:fb:fb:04:e5:f6: c9:6e:d9:e9:c1:e4:87:0c:53:2f:e9:92:b0:ff:e4: f2:3b:9d:a5:fb:39:6b:c3:10:dc:6b:07:7b:66:79: a0:a2:2e:da:0a:e0:51:4a:11:bd:59:5d:22:9a:f9: 7f:02:e5:5d:c6:ab:94:7f:91:d3:04:ad:32:77:22: e8:9f:94:84:ab:6a:d9:80:6f:5c:10:c5:b1:08:51: f9:a1:01:b0:80:26:21:47:40:bd:51:ad:00:6f:4d: ed:dc:48:fa:84:b3:90:68:48:7b:73:0a:01:a9:a3: f2:88:59:72:2b:4e:a4:7b:88:c6:ec:25:54:9b:07: 1a:5c:bf:fd:a3:c7:7d:4e:60:5e:ca:2b:b0:7e:e7: ea:eb:d0:ac:0f:bc:f6:e1:d2:0a:07:f2:13:b7:5b: a8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EB:3F:AF:0F:3C:45:E3:DC:67:30:DD:B1:EB:1B:7F:B1:1D:6E:32 X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32342d3234203d3e20313530343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.28.0/24 Signature Algorithm: sha256WithRSAEncryption 64:7c:25:8f:7d:02:3a:77:f4:c5:91:fd:c5:53:10:03:a9:fb: d5:b9:63:39:e9:f3:c8:2c:18:01:4a:b4:18:f9:2f:d6:00:0e: a6:39:40:16:b5:44:b5:15:ee:2c:ec:a3:c4:98:05:69:cb:3d: e4:98:9d:66:f0:b8:46:cd:4f:68:cf:4b:a5:a5:ad:c4:ba:90: 23:a6:06:5f:d4:0b:85:37:9a:7d:45:04:6e:fb:a7:23:7d:1a: 71:f3:e4:eb:52:6e:17:27:36:a7:be:8a:d0:cd:d2:b5:70:4f: 73:46:49:c8:0d:c2:83:e9:6f:39:58:6d:4f:5f:f7:16:2b:81: c2:8c:c2:53:04:c1:c0:54:98:43:ae:ba:ea:23:9b:75:7c:b0: 4f:2a:a7:2d:ed:9b:45:4e:a6:d8:92:28:59:4b:6b:db:2e:3e: fd:36:f8:6c:bb:fa:4b:15:47:a5:fc:e2:08:7a:55:ca:d8:44: e8:4e:8a:62:c2:18:ae:18:48:29:2f:6f:c9:f5:e4:96:7e:bb: 9f:3d:ed:0d:03:7b:8c:d1:40:d4:fe:c1:00:8c:97:56:c5:c6: 6f:4e:dd:1b:d7:86:84:57:fb:7e:76:ab:93:7e:4a:26:3a:b4: 2a:47:82:97:80:16:fa:7e:39:3e:9d:d8:72:22:0a:3a:4b:97: 16:20:98:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUXgrB6pxGAnHxcBMezDl/suqJiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNTExMDIwNDU1MDJaFw0yNjExMDEwNTAwMDJaMDMxMTAvBgNV BAMTKEM5RUIzRkFGMEYzQzQ1RTNEQzY3MzBEREIxRUIxQjdGQjExRDZFMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFAX7Y6fF1tqX3glMfaPjb7Zsb 5KzsabW5M8Jf0K0eXzELdz34ZhD9ZiLRpsNKJTJH7ko0tggWwPQF8EVUk/M0jx36 hf7NcantPjt0EJmxyQ9M/nGF8AovA352UXDxpcD93lT7+wTl9slu2enB5IcMUy/p krD/5PI7naX7OWvDENxrB3tmeaCiLtoK4FFKEb1ZXSKa+X8C5V3Gq5R/kdMErTJ3 IuiflISratmAb1wQxbEIUfmhAbCAJiFHQL1RrQBvTe3cSPqEs5BoSHtzCgGpo/KI WXIrTqR7iMbsJVSbBxpcv/2jx31OYF7KK7B+5+rr0KwPvPbh0goH8hO3W6hpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyes/rw88RePcZzDdsesbf7EdbjIwHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MDQ3OTNjLWMyMDktNDY5YS04 ZTNjLWViM2Y1YTgzODYzZi8wLzMxMzAzMzJlMzUzNTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc3HDANBgkqhkiG 9w0BAQsFAAOCAQEAZHwlj30COnf0xZH9xVMQA6n71bljOenzyCwYAUq0GPkv1gAO pjlAFrVEtRXuLOyjxJgFacs95JidZvC4Rs1PaM9LpaWtxLqQI6YGX9QLhTeafUUE bvunI30acfPk61JuFyc2p76K0M3StXBPc0ZJyA3Cg+lvOVhtT1/3FiuBwozCUwTB wFSYQ6666iObdXywTyqnLe2bRU6m2JIoWUtr2y4+/Tb4bLv6SxVHpfziCHpVythE 6E6KYsIYrhhIKS9vyfXkln67nz3tDQN7jNFA1P7BAIyXVsXGb07dG9eGhFf7fnar k35KJjq0KkeCl4AW+n45Pp3YciIKOkuXFiCYqQ== -----END CERTIFICATE-----Generated at Wed Nov 5 00:53:15 2025 by rpki-client