$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33352e302f32342d3234203d3e20313430343133.roa File: 3130332e3135312e33352e302f32342d3234203d3e20313430343133.roa (raw, json) Hash identifier: EILyPmlWJ7Ald971q91eFzzx7IL4/UbfGOvQ+dEFrSA= Subject key identifier: CE:CC:62:A2:C2:95:3B:67:CA:5B:1B:88:8C:26:8D:F2:1D:1C:35:85 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 48D0D0CAC3D969FD7343C8BD82AD0C818DBACCE0 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33352e302f32342d3234203d3e20313430343133.roa Signing time: Mon 08 Sep 2025 07:03:22 +0000 ROA not before: Mon 08 Sep 2025 06:58:22 +0000 ROA not after: Mon 07 Sep 2026 07:03:22 +0000 asID: 140413 IP address blocks: 103.151.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 12:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d0:d0:ca:c3:d9:69:fd:73:43:c8:bd:82:ad:0c:81:8d:ba:cc:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Sep 8 06:58:22 2025 GMT Not After : Sep 7 07:03:22 2026 GMT Subject: CN=CECC62A2C2953B67CA5B1B888C268DF21D1C3585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:55:71:95:78:9f:ae:3e:d5:a8:6c:da:5c:77: 25:ee:f6:b5:75:ea:e4:9f:34:88:e5:63:f7:64:9a: 84:d1:76:f6:b2:64:65:02:9a:e2:c7:b3:e9:1a:04: f7:f5:50:f1:f2:08:eb:b3:92:3e:0b:ac:5a:1a:42: 49:11:4f:0a:6b:20:f0:4a:21:66:14:e9:15:00:a4: ad:65:fd:c5:9c:12:22:a1:a2:0a:f3:8d:e9:c5:3f: d0:a4:bc:e1:e8:d4:43:6a:b3:f5:25:1d:42:7d:d2: cd:90:70:0f:66:11:da:02:4a:1d:9e:14:09:25:c5: 1c:e5:4f:1d:95:69:c5:f8:24:ce:2a:9a:a0:8d:67: b2:9d:7b:75:db:68:52:f5:46:f6:7e:ad:64:89:9b: 69:ed:52:ee:7f:3a:66:e4:b7:75:7e:f1:8b:75:ae: 46:44:e3:43:39:a9:ab:f5:b5:d6:b1:0c:1b:ed:0c: 85:db:ca:44:68:e6:94:06:a6:58:99:1a:a7:b5:fd: 71:4f:97:bd:b9:76:82:45:2b:56:4a:4e:12:c6:8f: 2b:2c:47:7e:5a:ae:93:6d:27:dc:91:1a:48:dd:23: 15:b5:85:b5:91:1d:db:b1:46:aa:43:39:17:51:fe: e7:23:7c:e4:d9:6e:85:b6:81:93:f0:6f:b9:cb:c8: 2a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CC:62:A2:C2:95:3B:67:CA:5B:1B:88:8C:26:8D:F2:1D:1C:35:85 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33352e302f32342d3234203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.35.0/24 Signature Algorithm: sha256WithRSAEncryption a4:60:94:a2:09:e8:2b:16:51:6c:f3:e6:bd:a8:e1:61:18:1e: b8:9b:27:90:0d:84:83:b5:3c:1c:e7:b6:63:60:36:b1:64:c6: 3a:4a:b4:7e:16:17:0f:0e:78:04:56:4b:25:80:70:a2:b4:7b: 6f:36:cd:4f:ab:85:72:fb:94:3a:e1:3d:95:49:47:12:6b:1b: 8d:e9:ef:5a:f6:65:3d:4d:0d:89:cd:de:0c:90:3c:6f:b6:f9: 50:d1:24:07:02:cf:de:07:9b:2c:fe:70:26:af:90:44:94:d9: 0e:71:b2:4c:9e:92:3f:71:ac:26:f7:ba:f2:b8:de:ae:b2:a3: 05:31:de:81:56:d6:2f:10:7d:3d:e4:99:b7:b4:e8:85:42:70: e1:16:c4:dc:7f:97:e5:67:e0:61:54:f5:cb:36:60:50:73:1f: 39:5c:fb:83:d3:8a:65:42:06:9e:1b:a7:1c:60:fe:85:e5:88: bf:63:3a:cd:fe:84:1e:a2:f4:2e:6b:d3:b1:92:72:33:eb:09: 04:84:c7:7b:63:95:8a:35:86:42:e1:5d:e4:19:13:02:9a:fb: 07:98:c1:a6:7b:49:c4:83:b6:f8:4d:ab:fe:79:9b:ad:7d:df: 03:e4:3b:b3:f0:89:fa:16:e4:ad:7f:ab:48:f3:82:a2:87:b5: 8d:a9:cc:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSNDQysPZaf1zQ8i9gq0MgY26zOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA5MDgwNjU4MjJaFw0yNjA5MDcwNzAzMjJaMDMxMTAvBgNV BAMTKENFQ0M2MkEyQzI5NTNCNjdDQTVCMUI4ODhDMjY4REYyMUQxQzM1ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+VXGVeJ+uPtWobNpcdyXu9rV1 6uSfNIjlY/dkmoTRdvayZGUCmuLHs+kaBPf1UPHyCOuzkj4LrFoaQkkRTwprIPBK IWYU6RUApK1l/cWcEiKhogrzjenFP9CkvOHo1ENqs/UlHUJ90s2QcA9mEdoCSh2e FAklxRzlTx2VacX4JM4qmqCNZ7Kde3XbaFL1RvZ+rWSJm2ntUu5/Ombkt3V+8Yt1 rkZE40M5qav1tdaxDBvtDIXbykRo5pQGpliZGqe1/XFPl725doJFK1ZKThLGjyss R35arpNtJ9yRGkjdIxW1hbWRHduxRqpDORdR/ucjfOTZboW2gZPwb7nLyCqzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzsxiosKVO2fKWxuIjCaN8h0cNYUwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMxMzAzMzJlMzEzNTMxMmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cjMA0GCSqG SIb3DQEBCwUAA4IBAQCkYJSiCegrFlFs8+a9qOFhGB64myeQDYSDtTwc57ZjYDax ZMY6SrR+FhcPDngEVkslgHCitHtvNs1Pq4Vy+5Q64T2VSUcSaxuN6e9a9mU9TQ2J zd4MkDxvtvlQ0SQHAs/eB5ss/nAmr5BElNkOcbJMnpI/cawm97ryuN6usqMFMd6B VtYvEH095Jm3tOiFQnDhFsTcf5flZ+BhVPXLNmBQcx85XPuD04plQgaeG6ccYP6F 5Yi/YzrN/oQeovQua9OxknIz6wkEhMd7Y5WKNYZC4V3kGRMCmvsHmMGme0nEg7b4 Tav+eZutfd8D5Duz8In6FuStf6tI84Kih7WNqcws -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:50 2025 by rpki-client