$ rpki-client -vvf repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa File: 3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa (raw, json) Hash identifier: bltZi0XDvzmwgyzEl66AozT5pKIvx60Z1RNoNEbNdrk= Subject key identifier: 46:EC:CD:32:B9:7C:B8:51:08:58:B5:6F:49:C6:C8:C8:BE:40:D1:A1 Certificate issuer: /CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Certificate serial: 2C5A89B185325D47C9874CF40A6E5102569D88E2 Authority key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa Signing time: Thu 12 Jun 2025 14:02:24 +0000 ROA not before: Thu 12 Jun 2025 13:57:24 +0000 ROA not after: Thu 11 Jun 2026 14:02:24 +0000 asID: 138860 IP address blocks: 103.152.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 15:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5a:89:b1:85:32:5d:47:c9:87:4c:f4:0a:6e:51:02:56:9d:88:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Validity Not Before: Jun 12 13:57:24 2025 GMT Not After : Jun 11 14:02:24 2026 GMT Subject: CN=46ECCD32B97CB8510858B56F49C6C8C8BE40D1A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:b9:6b:71:5f:f9:66:7c:8f:de:a9:8f:b4: 00:9e:b2:4d:4f:e7:c0:51:3d:00:4c:5d:c6:7c:69: de:6e:c1:67:9e:9c:d7:82:c8:0c:b8:46:49:b8:37: db:c7:17:c2:47:01:6a:d6:9c:62:9a:8f:d3:7e:b1: b8:a1:ae:b3:eb:22:21:41:ba:04:1e:34:e7:7f:b1: d8:43:be:c1:51:3f:83:8a:e2:10:6d:55:92:ae:50: c3:77:d5:8a:85:52:fb:3f:71:6d:e1:f6:3c:85:6c: 8f:b4:c1:1a:bb:0e:a5:e9:71:db:09:4c:b4:6c:22: 66:41:91:7e:9c:1f:1c:95:39:1d:e2:8a:cd:e9:b9: d2:bf:9e:55:62:b8:9f:91:8c:a7:66:53:7d:80:ef: 01:30:09:b5:77:54:00:e3:17:a2:2a:fd:7a:c8:f4: 15:42:1f:eb:ad:c4:34:d2:f2:7d:63:fc:e3:6f:90: 40:d9:7c:1e:ff:d0:e7:1f:eb:24:7d:6d:aa:cd:5d: 87:c2:bd:a0:98:9b:0a:5b:79:7e:f1:4b:70:8e:a6: 77:34:06:ff:53:52:88:0e:44:b3:5c:77:0d:66:f8: 1f:ab:9f:5c:5c:dd:bc:d2:f1:96:1f:11:b5:34:48: d1:e6:5e:ed:4a:e1:31:0a:89:7e:af:a8:41:e6:ab: 53:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EC:CD:32:B9:7C:B8:51:08:58:B5:6F:49:C6:C8:C8:BE:40:D1:A1 X509v3 Authority Key Identifier: keyid:C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/3130332e3135322e39322e302f32332d3234203d3e20313338383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.92.0/23 Signature Algorithm: sha256WithRSAEncryption 08:c2:25:67:8c:e3:d4:9f:d0:b5:17:a2:d3:d3:9e:58:64:31: 3e:ba:c9:3a:7d:57:93:d7:a8:c5:c9:7a:36:49:1b:d9:0d:da: 30:19:54:d6:df:fe:e6:0e:c1:74:42:99:37:f8:d3:6b:66:b5: 3a:d5:d6:84:b9:85:5b:1c:60:ae:ec:56:ae:29:44:c0:4e:19: 0d:f9:ab:ed:ba:ed:07:f8:8f:30:39:59:3d:9a:d0:97:5a:9a: 2e:7a:38:a1:6b:a5:d2:f3:42:a2:d9:4d:98:4e:cb:b3:58:81: 3c:b5:a2:71:b4:e5:89:c9:61:b5:60:69:d1:99:ee:6f:c7:ff: 01:e0:b4:f8:90:6a:00:fb:07:71:21:a3:bb:4c:90:f5:af:52: 29:76:33:a0:01:4d:5f:05:ff:df:ec:2b:1a:84:df:10:3f:2a: 2c:27:0c:e0:e2:b5:58:55:1a:37:13:f6:28:a1:8b:84:a4:cd: ed:58:4f:1e:1e:0f:46:ed:51:a4:4e:0b:83:d9:5b:97:1e:7b: aa:c6:a2:8a:d3:d4:13:65:4e:83:8a:dd:8f:f5:51:f4:5a:69: fd:17:4f:c8:cc:35:ad:32:27:f5:5c:d9:2f:fa:3c:bf:02:38: a4:9d:0e:e5:19:6c:ca:1a:72:14:68:e6:4d:76:57:ce:56:33: 99:bc:04:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULFqJsYUyXUfJh0z0Cm5RAladiOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZF RDdGNUZCQjAeFw0yNTA2MTIxMzU3MjRaFw0yNjA2MTExNDAyMjRaMDMxMTAvBgNV BAMTKDQ2RUNDRDMyQjk3Q0I4NTEwODU4QjU2RjQ5QzZDOEM4QkU0MEQxQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFRrlrcV/5ZnyP3qmPtACesk1P 58BRPQBMXcZ8ad5uwWeenNeCyAy4Rkm4N9vHF8JHAWrWnGKaj9N+sbihrrPrIiFB ugQeNOd/sdhDvsFRP4OK4hBtVZKuUMN31YqFUvs/cW3h9jyFbI+0wRq7DqXpcdsJ TLRsImZBkX6cHxyVOR3iis3pudK/nlViuJ+RjKdmU32A7wEwCbV3VADjF6Iq/XrI 9BVCH+utxDTS8n1j/ONvkEDZfB7/0Ocf6yR9barNXYfCvaCYmwpbeX7xS3COpnc0 Bv9TUogORLNcdw1m+B+rn1xc3bzS8ZYfEbU0SNHmXu1K4TEKiX6vqEHmq1MdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURuzNMrl8uFEIWLVvScbIyL5A0aEwHwYDVR0j BBgwFoAUwcAjPcBzAuhtEUq3cqtlZu1/X7swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMC9DMUMwMjMzREMw NzMwMkU4NkQxMTRBQjc3MkFCNjU2NkVEN0Y1RkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZFRDdG NUZCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMxMzAzMzJlMzEzNTMyMmUzOTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5hcMA0GCSqG SIb3DQEBCwUAA4IBAQAIwiVnjOPUn9C1F6LT055YZDE+usk6fVeT16jFyXo2SRvZ DdowGVTW3/7mDsF0Qpk3+NNrZrU61daEuYVbHGCu7FauKUTAThkN+avtuu0H+I8w OVk9mtCXWpouejiha6XS80Ki2U2YTsuzWIE8taJxtOWJyWG1YGnRme5vx/8B4LT4 kGoA+wdxIaO7TJD1r1IpdjOgAU1fBf/f7CsahN8QPyosJwzg4rVYVRo3E/YooYuE pM3tWE8eHg9G7VGkTguD2VuXHnuqxqKK09QTZU6Dit2P9VH0Wmn9F0/IzDWtMif1 XNkv+jy/AjiknQ7lGWzKGnIUaOZNdlfOVjOZvATa -----END CERTIFICATE-----Generated at Sun Nov 2 09:32:13 2025 by rpki-client