$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e38332e3134302e302f32322d3234203d3e203338313635.roa File: 3130332e38332e3134302e302f32322d3234203d3e203338313635.roa (raw, json) Hash identifier: KKSy+XDouAUgJbaoa4jfI4vfKonyBd4p51sIS5GMWFo= Subject key identifier: FE:6C:EB:39:67:A6:FB:76:2D:5F:1E:55:72:EF:27:82:0A:C4:6D:09 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 03DFCAAB76846BC495ED10865BFE73A81278041A Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e38332e3134302e302f32322d3234203d3e203338313635.roa Signing time: Sun 01 Jun 2025 15:00:01 +0000 ROA not before: Sun 01 Jun 2025 14:55:01 +0000 ROA not after: Sun 31 May 2026 15:00:01 +0000 asID: 38165 IP address blocks: 103.83.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 08:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:df:ca:ab:76:84:6b:c4:95:ed:10:86:5b:fe:73:a8:12:78:04:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Jun 1 14:55:01 2025 GMT Not After : May 31 15:00:01 2026 GMT Subject: CN=FE6CEB3967A6FB762D5F1E5572EF27820AC46D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e3:71:2c:6e:07:7c:28:40:bb:e8:da:db:71: 9d:a3:2e:4b:be:93:b3:f4:7e:71:59:c2:95:fc:d9: 82:6a:d9:85:82:bd:db:bc:96:28:0c:95:5d:1d:b8: a8:55:31:51:0d:32:77:fb:1b:cf:15:58:62:a1:58: 10:4c:0e:00:3d:60:0e:74:96:2d:56:18:a2:07:6a: 42:e1:80:e1:57:ef:be:76:cc:00:d9:c8:11:93:a3: 91:6f:4b:1c:f1:2f:c6:55:80:77:4a:e4:d5:7b:87: a9:d4:42:8e:dc:ff:c8:1b:2b:aa:d5:98:32:60:12: 3e:80:08:4b:f3:fe:a8:ce:5c:7b:3e:26:53:54:94: b6:26:c3:eb:5a:ea:5d:92:09:a6:88:e5:df:1c:a4: 7f:4c:f7:7f:53:66:1e:4d:f7:f8:e1:1f:2d:cf:6e: 15:62:51:3e:f8:06:c9:9c:d9:41:01:d8:26:c6:37: b0:08:a5:1c:d3:96:d1:64:10:28:ca:fd:29:23:89: 8a:21:b2:79:d8:d1:98:2f:0e:0b:e3:50:34:53:5a: 1f:bc:58:7a:27:0e:d0:f8:f1:5a:8b:13:49:3d:d3: 1c:41:6a:2e:4d:83:7a:ee:a2:24:b3:b3:bb:8b:4f: fe:3a:2f:e8:e2:71:1b:41:89:61:ab:a9:ba:9c:4b: 64:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6C:EB:39:67:A6:FB:76:2D:5F:1E:55:72:EF:27:82:0A:C4:6D:09 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e38332e3134302e302f32322d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.140.0/22 Signature Algorithm: sha256WithRSAEncryption 63:11:e3:0d:a3:f0:e6:89:31:c0:83:b7:ab:5c:7f:5a:c9:a9: b0:9d:ec:ed:4e:8b:f5:0a:d7:74:b7:a5:df:b1:a7:42:f9:21: 91:ab:36:41:1a:c4:40:d3:ee:68:08:8d:bc:6f:7f:52:00:5a: e5:21:c0:65:31:40:5f:97:46:b6:1c:ba:38:eb:3f:42:20:e6: 1d:31:32:40:2a:99:c1:f8:ec:8d:c5:bb:0c:30:62:fc:e0:02: 6a:41:b6:6e:42:f3:3f:bf:ca:65:df:0a:61:d8:30:c6:e1:3f: 2e:3e:40:9e:60:dd:a4:4d:c9:3e:bb:b3:41:a7:bb:5e:d7:36: 5c:ae:91:90:53:2f:6d:41:a3:ef:9d:1c:9a:2e:c3:47:80:0f: 4c:c3:1c:8f:0d:92:14:8c:89:8c:43:61:2c:12:77:14:42:98: ea:94:7b:f9:c5:16:ec:a9:8a:68:30:1e:dd:02:ec:25:6f:d8: 12:4e:7a:65:13:ce:73:f6:a4:37:cf:25:58:f2:45:b3:66:d7: ac:d2:1b:4c:9c:99:40:af:cb:52:51:20:e2:42:37:06:84:71: cf:eb:08:88:c1:34:e7:c6:6e:c1:70:cb:80:64:a9:42:3b:46: d2:01:6e:cc:99:d3:d1:0a:9b:cb:58:ae:e5:f6:c5:05:cd:cb: c8:e2:03:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA9/Kq3aEa8SV7RCGW/5zqBJ4BBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNTA2MDExNDU1MDFaFw0yNjA1MzExNTAwMDFaMDMxMTAvBgNV BAMTKEZFNkNFQjM5NjdBNkZCNzYyRDVGMUU1NTcyRUYyNzgyMEFDNDZEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/43Esbgd8KEC76NrbcZ2jLku+ k7P0fnFZwpX82YJq2YWCvdu8ligMlV0duKhVMVENMnf7G88VWGKhWBBMDgA9YA50 li1WGKIHakLhgOFX7752zADZyBGTo5FvSxzxL8ZVgHdK5NV7h6nUQo7c/8gbK6rV mDJgEj6ACEvz/qjOXHs+JlNUlLYmw+ta6l2SCaaI5d8cpH9M939TZh5N9/jhHy3P bhViUT74Bsmc2UEB2CbGN7AIpRzTltFkECjK/SkjiYohsnnY0ZgvDgvjUDRTWh+8 WHonDtD48VqLE0k90xxBai5Ng3ruoiSzs7uLT/46L+jicRtBiWGrqbqcS2QzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/mzrOWem+3YtXx5Vcu8nggrEbQkwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzAzMzJlMzgzMzJlMzEzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzMzODMxMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdTjDANBgkqhkiG 9w0BAQsFAAOCAQEAYxHjDaPw5okxwIO3q1x/WsmpsJ3s7U6L9QrXdLel37GnQvkh kas2QRrEQNPuaAiNvG9/UgBa5SHAZTFAX5dGthy6OOs/QiDmHTEyQCqZwfjsjcW7 DDBi/OACakG2bkLzP7/KZd8KYdgwxuE/Lj5AnmDdpE3JPruzQae7Xtc2XK6RkFMv bUGj750cmi7DR4APTMMcjw2SFIyJjENhLBJ3FEKY6pR7+cUW7KmKaDAe3QLsJW/Y Ek56ZRPOc/akN88lWPJFs2bXrNIbTJyZQK/LUlEg4kI3BoRxz+sIiME058ZuwXDL gGSpQjtG0gFuzJnT0Qqby1iu5fbFBc3LyOIDOw== -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:30 2025 by rpki-client