$ rpki-client -vvf repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa File: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (raw, json) Hash identifier: QFsczwBLYtZasUqtJF/xZ2xkrtCRnC+5l41701uTMq4= Subject key identifier: A6:B1:59:C4:DB:B5:EC:AD:C2:6C:88:C5:81:39:1A:1D:7F:9F:AB:67 Certificate issuer: /CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Certificate serial: 31C5D6F9B22800632665A00A26AC1EB7F1CF52EB Authority key identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa Signing time: Thu 28 Aug 2025 09:00:44 +0000 ROA not before: Thu 28 Aug 2025 08:55:44 +0000 ROA not after: Thu 27 Aug 2026 09:00:44 +0000 asID: 151556 IP address blocks: 103.250.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.crl rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 09:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c5:d6:f9:b2:28:00:63:26:65:a0:0a:26:ac:1e:b7:f1:cf:52:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Validity Not Before: Aug 28 08:55:44 2025 GMT Not After : Aug 27 09:00:44 2026 GMT Subject: CN=A6B159C4DBB5ECADC26C88C581391A1D7F9FAB67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:29:bc:a5:87:43:1c:4e:77:dd:dd:1b:07:04: e9:cd:57:02:c1:b5:96:d1:06:1b:d6:bb:b2:ff:b6: 4b:9c:17:eb:48:31:95:97:d6:5d:49:44:1b:fc:4b: b9:7c:33:a4:61:9e:1d:16:50:c6:e3:f6:9c:d2:3b: e6:7a:00:b7:da:57:5f:08:98:44:cb:ee:30:a2:7c: e8:b1:80:78:f5:b1:c2:a8:5a:3c:ff:9e:e0:db:34: e4:42:32:48:d6:c7:ab:95:14:b2:17:5f:84:07:53: 05:73:32:73:2f:d1:07:83:60:cd:85:67:bc:bd:4b: ef:c3:94:3b:61:33:0a:98:ef:d0:35:42:3f:8d:a7: da:bf:08:24:e8:07:6b:14:45:bd:01:61:7d:8d:aa: ae:85:22:bb:83:a6:62:5d:d9:36:53:12:1a:4b:31: e9:fa:2f:a1:bc:8a:f3:f5:cd:97:f3:9e:00:5f:3f: 39:d6:ed:da:5f:86:e0:6b:65:2d:86:7f:b7:11:62: 5d:8d:9c:4c:d3:63:19:85:04:7c:03:73:18:13:f0: 11:91:7b:98:32:1d:b2:c9:46:5d:7f:d2:30:7b:13: 4a:10:1a:52:04:0e:56:6b:8b:71:ed:81:50:56:fe: 21:67:ab:3a:9b:41:37:2d:6b:34:2c:ef:d9:44:64: 40:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B1:59:C4:DB:B5:EC:AD:C2:6C:88:C5:81:39:1A:1D:7F:9F:AB:67 X509v3 Authority Key Identifier: keyid:5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:cd:2a:fe:88:26:fa:67:ba:49:2a:07:a9:6d:db:19:52:da: fc:52:69:63:ac:f8:02:8f:ff:19:4e:5e:61:8d:2a:90:f5:63: e6:36:3b:21:83:cc:68:47:99:48:66:5f:8e:23:e9:d4:5b:3f: 04:07:85:28:97:95:0a:f6:5b:0f:9f:b1:44:80:10:55:5f:e4: 27:83:7c:82:14:a6:00:28:ba:58:6b:61:a2:fe:61:46:41:93: a2:61:8a:dd:4c:36:0a:4c:02:89:00:1c:45:18:6e:3f:f4:64: 87:a8:a9:9e:53:40:3d:80:ed:0d:46:48:59:b6:bc:dc:35:65: 19:62:07:3e:37:f2:4f:d7:78:be:db:b5:ad:7f:57:17:8b:65: 4c:23:8e:49:71:95:65:5f:68:f6:b9:13:7d:65:7f:3f:ae:ba: 20:96:79:52:99:b1:78:e9:1c:e5:1a:0c:b8:8c:04:1e:be:53: 5f:35:06:ec:5d:72:4a:17:66:03:42:3a:0e:8a:ab:42:cd:a4: 39:fc:0f:05:58:46:f4:ec:0a:4e:82:9f:34:ea:bf:b8:a6:80: 8d:4d:74:fd:6f:7c:17:da:9f:4b:90:5d:a6:77:00:6b:ea:eb: f3:66:4a:bc:ec:92:15:52:cb:5b:cc:49:8f:06:d8:36:0c:4f: 44:97:23:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMcXW+bIoAGMmZaAKJqwet/HPUuswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM1NTkxODEzMDY5ODZFRTg5QUFERjBBMUNGQzc4RUE4 QTA5MzUzMDAeFw0yNTA4MjgwODU1NDRaFw0yNjA4MjcwOTAwNDRaMDMxMTAvBgNV BAMTKEE2QjE1OUM0REJCNUVDQURDMjZDODhDNTgxMzkxQTFEN0Y5RkFCNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxKbylh0McTnfd3RsHBOnNVwLB tZbRBhvWu7L/tkucF+tIMZWX1l1JRBv8S7l8M6Rhnh0WUMbj9pzSO+Z6ALfaV18I mETL7jCifOixgHj1scKoWjz/nuDbNORCMkjWx6uVFLIXX4QHUwVzMnMv0QeDYM2F Z7y9S+/DlDthMwqY79A1Qj+Np9q/CCToB2sURb0BYX2Nqq6FIruDpmJd2TZTEhpL Men6L6G8ivP1zZfzngBfPznW7dpfhuBrZS2Gf7cRYl2NnEzTYxmFBHwDcxgT8BGR e5gyHbLJRl1/0jB7E0oQGlIEDlZri3HtgVBW/iFnqzqbQTctazQs79lEZECFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUprFZxNu17K3CbIjFgTkaHX+fq2cwHwYDVR0j BBgwFoAUXFWRgTBphu6Jqt8KHPx46ooJNTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZmE4MWU2ZS00YjE2LTRiNjItOGYxOC01Mjg5MmU1NGI5MGQvMC81QzU1OTE4MTMw Njk4NkVFODlBQURGMEExQ0ZDNzhFQThBMDkzNTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM1NTkxODEzMDY5ODZFRTg5QUFERjBBMUNGQzc4RUE4QTA5 MzUzMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmYTgxZTZlLTRiMTYtNGI2Mi04 ZjE4LTUyODkyZTU0YjkwZC8wLzMxMzAzMzJlMzIzNTMwMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+oEwDQYJ KoZIhvcNAQELBQADggEBABzNKv6IJvpnukkqB6lt2xlS2vxSaWOs+AKP/xlOXmGN KpD1Y+Y2OyGDzGhHmUhmX44j6dRbPwQHhSiXlQr2Ww+fsUSAEFVf5CeDfIIUpgAo ulhrYaL+YUZBk6Jhit1MNgpMAokAHEUYbj/0ZIeoqZ5TQD2A7Q1GSFm2vNw1ZRli Bz438k/XeL7bta1/VxeLZUwjjklxlWVfaPa5E31lfz+uuiCWeVKZsXjpHOUaDLiM BB6+U181BuxdckoXZgNCOg6Kq0LNpDn8DwVYRvTsCk6CnzTqv7imgI1NdP1vfBfa n0uQXaZ3AGvq6/NmSrzskhVSy1vMSY8G2DYMT0SXIzM= -----END CERTIFICATE-----Generated at Tue Sep 9 09:26:30 2025 by rpki-client