$ rpki-client -vvf repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/3130332e3135362e3231372e302f32342d3234203d3e203538333639.roa File: 3130332e3135362e3231372e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: pwYW2LCd9vtI3mAJLlLqxnIjIDbhrNEv0Psd4I3TSks= Subject key identifier: 82:EA:FA:D2:DF:E7:C8:E7:57:C5:F6:7B:1B:F7:B0:D3:90:51:44:C9 Certificate issuer: /CN=5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0 Certificate serial: 6DA9F5B5763340BAF1829D82C56DD2D3AE8446CD Authority key identifier: 5E:68:3D:8B:34:5B:B6:E0:F6:3C:D1:A8:F3:2C:3B:5E:CC:B2:B9:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/3130332e3135362e3231372e302f32342d3234203d3e203538333639.roa Signing time: Sat 06 Sep 2025 08:00:02 +0000 ROA not before: Sat 06 Sep 2025 07:55:02 +0000 ROA not after: Sat 05 Sep 2026 08:00:02 +0000 asID: 58369 IP address blocks: 103.156.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.crl rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a9:f5:b5:76:33:40:ba:f1:82:9d:82:c5:6d:d2:d3:ae:84:46:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0 Validity Not Before: Sep 6 07:55:02 2025 GMT Not After : Sep 5 08:00:02 2026 GMT Subject: CN=82EAFAD2DFE7C8E757C5F67B1BF7B0D3905144C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:75:2b:1a:7a:04:48:9c:a5:ce:52:7e:cc:81: b7:c6:97:de:cc:da:bc:c1:1d:1c:8f:57:e8:8c:7e: 64:67:27:42:87:ce:ba:cb:bc:f1:50:0c:f5:2f:62: d0:13:4f:27:19:cd:47:65:ac:9d:af:3f:eb:c2:c8: 60:38:40:5f:6d:a8:de:fc:1d:83:32:b0:c0:37:44: a2:5a:cc:dc:9d:de:e2:09:1a:02:f5:3e:8a:e8:10: a4:fb:3e:62:51:ea:74:61:1d:e2:ef:fb:be:62:fe: da:c6:94:bf:e8:46:81:d2:3d:25:e9:d0:b7:cb:c9: d5:bf:62:ab:66:3b:61:50:58:d4:1a:df:66:82:83: 5a:9d:80:d0:cf:fc:84:0e:69:79:30:b9:bf:2d:f0: 1e:20:df:a0:76:db:72:52:e4:b0:4d:91:83:ac:db: cb:de:b9:3c:ff:ed:f1:75:43:69:9b:2d:76:b8:87: 19:6d:de:06:10:24:aa:2b:25:32:36:5a:76:20:1a: fc:fc:3c:2d:70:f4:c1:6e:6e:3a:42:d6:30:2d:2a: 36:30:8b:ce:30:25:2e:94:23:9c:c6:65:84:06:93: 8d:47:74:db:56:69:f9:e3:e2:fb:27:da:8a:4d:01: 8f:8e:49:da:00:ae:48:99:b1:1d:97:19:d5:cc:fd: ee:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:EA:FA:D2:DF:E7:C8:E7:57:C5:F6:7B:1B:F7:B0:D3:90:51:44:C9 X509v3 Authority Key Identifier: keyid:5E:68:3D:8B:34:5B:B6:E0:F6:3C:D1:A8:F3:2C:3B:5E:CC:B2:B9:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E683D8B345BB6E0F63CD1A8F32C3B5ECCB2B9B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93a7f34c-63b8-4973-8226-e10695b25d94/0/3130332e3135362e3231372e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.217.0/24 Signature Algorithm: sha256WithRSAEncryption e0:3e:a2:d7:b8:ab:53:db:31:0e:07:9c:16:c0:50:f9:d2:a5: 6e:85:07:c0:22:47:5d:ab:25:ed:43:e9:58:b7:a6:24:9f:0e: 5a:19:fe:43:90:a6:49:97:5a:17:c5:47:cd:c9:5b:21:db:23: 27:66:af:40:66:bd:ac:7e:79:e0:7e:3e:16:d3:e5:cf:03:f4: 78:df:d1:09:df:0c:ec:4f:42:7e:95:9e:a1:83:ed:dd:26:2f: 0e:70:0d:17:e7:39:92:c7:56:0d:80:98:4e:31:16:f5:4d:5a: 0f:c5:96:a1:30:5c:2f:42:e1:3e:03:d3:42:7a:8e:1a:c2:be: f8:87:d5:a3:94:8e:ae:dd:f6:24:d6:c9:9e:d0:e4:ae:a9:a2: 67:fb:0f:76:fe:c4:88:08:94:ad:2d:2a:09:c6:34:c7:bb:dc: bc:1d:fe:39:3b:bd:d4:3f:50:24:e1:2a:22:d2:a0:74:f6:ef: 2a:45:5f:72:e6:cf:94:90:30:b1:e4:f7:e1:56:70:74:14:6e: a1:82:88:ed:e0:b7:8b:0a:75:56:e6:da:f2:19:19:59:78:f4: 3c:f3:36:c7:88:e9:b0:41:4d:38:56:93:4b:4d:4c:43:18:ad: 80:65:b6:d1:bb:a5:dd:69:bc:c6:f0:b8:3d:00:ec:e9:a6:bf: 45:6b:b1:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUban1tXYzQLrxgp2CxW3S066ERs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU2ODNEOEIzNDVCQjZFMEY2M0NEMUE4RjMyQzNCNUVD Q0IyQjlCMDAeFw0yNTA5MDYwNzU1MDJaFw0yNjA5MDUwODAwMDJaMDMxMTAvBgNV BAMTKDgyRUFGQUQyREZFN0M4RTc1N0M1RjY3QjFCRjdCMEQzOTA1MTQ0QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrdSsaegRInKXOUn7MgbfGl97M 2rzBHRyPV+iMfmRnJ0KHzrrLvPFQDPUvYtATTycZzUdlrJ2vP+vCyGA4QF9tqN78 HYMysMA3RKJazNyd3uIJGgL1PoroEKT7PmJR6nRhHeLv+75i/trGlL/oRoHSPSXp 0LfLydW/YqtmO2FQWNQa32aCg1qdgNDP/IQOaXkwub8t8B4g36B223JS5LBNkYOs 28veuTz/7fF1Q2mbLXa4hxlt3gYQJKorJTI2WnYgGvz8PC1w9MFubjpC1jAtKjYw i84wJS6UI5zGZYQGk41HdNtWafnj4vsn2opNAY+OSdoArkiZsR2XGdXM/e5fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgur60t/nyOdXxfZ7G/ew05BRRMkwHwYDVR0j BBgwFoAUXmg9izRbtuD2PNGo8yw7XsyyubAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2E3ZjM0Yy02M2I4LTQ5NzMtODIyNi1lMTA2OTViMjVkOTQvMC81RTY4M0Q4QjM0 NUJCNkUwRjYzQ0QxQThGMzJDM0I1RUNDQjJCOUIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU2ODNEOEIzNDVCQjZFMEY2M0NEMUE4RjMyQzNCNUVDQ0Iy QjlCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzYTdmMzRjLTYzYjgtNDk3My04 MjI2LWUxMDY5NWIyNWQ5NC8wLzMxMzAzMzJlMzEzNTM2MmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5zZMA0GCSqG SIb3DQEBCwUAA4IBAQDgPqLXuKtT2zEOB5wWwFD50qVuhQfAIkddqyXtQ+lYt6Yk nw5aGf5DkKZJl1oXxUfNyVsh2yMnZq9AZr2sfnngfj4W0+XPA/R439EJ3wzsT0J+ lZ6hg+3dJi8OcA0X5zmSx1YNgJhOMRb1TVoPxZahMFwvQuE+A9NCeo4awr74h9Wj lI6u3fYk1sme0OSuqaJn+w92/sSICJStLSoJxjTHu9y8Hf45O73UP1Ak4Soi0qB0 9u8qRV9y5s+UkDCx5PfhVnB0FG6hgojt4LeLCnVW5tryGRlZePQ88zbHiOmwQU04 VpNLTUxDGK2AZbbRu6XdabzG8Lg9AOzppr9Fa7Ej -----END CERTIFICATE-----Generated at Sat Sep 13 19:38:01 2025 by rpki-client