$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa File: 3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa (raw, json) Hash identifier: bZM4rUbr/5eo/XLmWgfcXg1DbTPNYjhGuHArrlKmdos= Subject key identifier: 70:41:38:3F:1E:93:A4:CB:E3:21:5D:58:F7:37:F8:50:21:49:03:26 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 50ED2F82C53470FE036600080804D4C09F782F18 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa Signing time: Mon 08 Sep 2025 07:03:22 +0000 ROA not before: Mon 08 Sep 2025 06:58:22 +0000 ROA not after: Mon 07 Sep 2026 07:03:22 +0000 asID: 140413 IP address blocks: 103.151.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 12:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ed:2f:82:c5:34:70:fe:03:66:00:08:08:04:d4:c0:9f:78:2f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Sep 8 06:58:22 2025 GMT Not After : Sep 7 07:03:22 2026 GMT Subject: CN=7041383F1E93A4CBE3215D58F737F85021490326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d0:6a:52:97:16:23:0e:ec:25:5c:3c:af:89: 37:3e:03:91:bc:f4:dc:71:ed:6c:a2:d4:82:3f:fc: 97:a6:40:94:6c:30:ea:be:73:4b:e9:20:3c:ff:55: ac:53:b1:e4:e8:b9:c1:1c:c7:44:8f:21:92:13:a1: 08:2c:77:28:e4:b6:7d:23:f8:dd:b0:2c:13:7e:f5: 66:e8:bd:95:23:33:b0:cc:d4:5e:b6:bc:f1:41:45: b3:44:50:7e:9a:39:7b:c2:dc:0e:d5:f5:9f:e6:99: ef:72:7e:5e:cd:93:ac:ca:20:65:9b:c4:1a:55:b8: 71:82:d2:f4:9b:a6:3c:25:42:86:9a:b6:5d:9a:b2: 3b:22:bb:54:cf:95:0c:3d:58:16:9b:b6:7f:70:a3: 7c:65:4f:ba:88:eb:4c:eb:1c:65:eb:81:64:72:0d: a8:e1:cb:f2:46:20:13:f5:fa:b3:4e:e9:07:f2:7d: 83:0e:87:2e:8b:fa:b0:c9:8a:36:9e:4f:01:8b:90: af:6d:c0:f5:b5:a4:52:83:d7:db:62:ac:f6:ec:09: 2e:18:c0:cd:2f:26:74:9a:10:d7:2c:08:09:0f:79: 0c:38:46:b6:2e:11:fb:5e:a4:58:75:9f:e5:d8:d3: 8e:0b:4c:90:3e:1f:21:e6:80:a9:b5:c0:2a:76:37: 4d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:41:38:3F:1E:93:A4:CB:E3:21:5D:58:F7:37:F8:50:21:49:03:26 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32342d3234203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.34.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:a3:c5:77:fb:32:08:0b:8c:79:f9:f1:9a:fb:11:0c:c8:77: 47:76:ce:85:2d:95:d7:78:74:8e:ed:8e:65:d0:37:75:ad:a1: ba:a9:ee:f9:98:25:1c:ce:3b:70:f1:06:4c:61:73:e6:4b:a2: f4:c7:c6:c6:78:88:ac:d7:05:f7:fc:f7:68:b0:a2:65:02:3b: 57:7e:45:38:f8:52:9a:cc:60:8d:fd:1e:49:d4:ae:39:d9:bf: cd:48:97:65:8e:29:a3:8c:7f:64:b0:91:d4:70:91:9e:d8:62: 78:1c:06:bf:81:5d:45:43:77:25:cd:3a:1b:0d:76:28:7e:e0: ef:ef:54:00:62:63:6f:7e:1e:d9:c5:f1:96:cc:8c:58:a3:9c: 31:e8:4b:07:de:08:54:8f:c3:b6:df:d4:e7:f3:92:2e:2b:c2: 3d:34:10:55:30:cb:81:d6:4c:61:eb:db:7d:d6:1f:91:87:d4: c2:2c:c1:ec:db:01:97:c1:ab:b5:a3:51:d6:21:61:90:19:29: c8:9e:30:8e:71:b0:f5:12:e9:55:39:3c:70:d8:2e:58:d2:e3: b7:bd:37:eb:bf:c2:1b:4a:b1:f0:01:fc:0a:9a:a1:1d:09:ff: 45:c9:22:8f:6e:ad:27:f7:b9:81:7b:5d:bd:5a:42:79:03:6b: 29:05:a0:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUO0vgsU0cP4DZgAICATUwJ94LxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA5MDgwNjU4MjJaFw0yNjA5MDcwNzAzMjJaMDMxMTAvBgNV BAMTKDcwNDEzODNGMUU5M0E0Q0JFMzIxNUQ1OEY3MzdGODUwMjE0OTAzMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC10GpSlxYjDuwlXDyviTc+A5G8 9Nxx7Wyi1II//JemQJRsMOq+c0vpIDz/VaxTseToucEcx0SPIZIToQgsdyjktn0j +N2wLBN+9WbovZUjM7DM1F62vPFBRbNEUH6aOXvC3A7V9Z/mme9yfl7Nk6zKIGWb xBpVuHGC0vSbpjwlQoaatl2asjsiu1TPlQw9WBabtn9wo3xlT7qI60zrHGXrgWRy Dajhy/JGIBP1+rNO6QfyfYMOhy6L+rDJijaeTwGLkK9twPW1pFKD19tirPbsCS4Y wM0vJnSaENcsCAkPeQw4RrYuEftepFh1n+XY044LTJA+HyHmgKm1wCp2N02BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcEE4Px6TpMvjIV1Y9zf4UCFJAyYwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMxMzAzMzJlMzEzNTMxMmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5ciMA0GCSqG SIb3DQEBCwUAA4IBAQCMo8V3+zIIC4x5+fGa+xEMyHdHds6FLZXXeHSO7Y5l0Dd1 raG6qe75mCUczjtw8QZMYXPmS6L0x8bGeIis1wX3/PdosKJlAjtXfkU4+FKazGCN /R5J1K452b/NSJdljimjjH9ksJHUcJGe2GJ4HAa/gV1FQ3clzTobDXYofuDv71QA YmNvfh7ZxfGWzIxYo5wx6EsH3ghUj8O239Tn85IuK8I9NBBVMMuB1kxh69t91h+R h9TCLMHs2wGXwau1o1HWIWGQGSnInjCOcbD1EulVOTxw2C5Y0uO3vTfrv8IbSrHw AfwKmqEdCf9FySKPbq0n97mBe129WkJ5A2spBaBm -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:26 2025 by rpki-client