$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa File: 3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa (raw, json) Hash identifier: VvBdfRoXJdspZfeWpUDljLmbCHnzMGWW+ov3JCtu9WA= Subject key identifier: 67:7B:0B:DD:DA:03:93:48:40:A2:51:FD:3C:54:6F:87:90:24:FB:0E Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 2ACD5674F446373F609923627FE1672C830268AB Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa Signing time: Sat 25 Oct 2025 17:00:01 +0000 ROA not before: Sat 25 Oct 2025 16:55:01 +0000 ROA not after: Sat 24 Oct 2026 17:00:01 +0000 asID: 150465 IP address blocks: 103.161.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 02:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cd:56:74:f4:46:37:3f:60:99:23:62:7f:e1:67:2c:83:02:68:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Oct 25 16:55:01 2025 GMT Not After : Oct 24 17:00:01 2026 GMT Subject: CN=677B0BDDDA03934840A251FD3C546F879024FB0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7e:a9:70:85:12:d1:5e:d3:40:97:d1:06:6a: 73:06:e6:ba:01:b0:d1:95:40:0b:8d:c0:2b:ae:9b: d7:3d:74:4c:d2:1b:e7:80:c4:fe:05:ad:8c:19:9d: 96:70:f5:e5:15:d4:69:98:88:4c:37:9a:68:7b:da: 70:ee:d5:76:20:fc:66:89:2c:f0:c8:f3:1b:25:83: a9:9d:f4:af:81:e2:29:03:fb:ab:9a:3e:eb:d8:ef: 4f:38:2e:e4:e1:8d:09:7d:1e:40:c2:7e:05:29:9d: c0:6d:d5:37:c1:b6:a5:06:d7:87:25:25:7f:75:f9: 81:b7:5c:46:e7:b6:f9:db:ef:13:cc:f2:7e:89:af: da:72:e0:df:c4:6e:e6:14:a1:0e:55:8e:7d:38:8e: 13:f3:b1:93:3c:de:0d:62:8d:08:c3:2c:94:5f:37: e5:4b:b6:60:34:b5:d9:8b:ae:7a:ef:a8:34:24:c0: e3:36:c0:98:f3:ac:87:17:32:df:f8:fb:84:c5:43: 91:32:a4:70:3b:69:30:a1:d5:f1:be:f4:13:bb:b7: ec:66:3b:4a:ee:a6:b4:af:90:b5:31:8e:db:4b:83: fe:34:5b:0e:ef:60:61:c8:00:56:a4:b6:7e:3f:c8: cc:9b:50:3d:09:64:ba:c0:49:9b:7a:ae:a5:02:69: 0c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:7B:0B:DD:DA:03:93:48:40:A2:51:FD:3C:54:6F:87:90:24:FB:0E X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:e4:28:0c:9a:e3:ed:e8:5c:d9:76:a3:de:79:8e:cd:c0:ce: 03:3d:10:f8:23:45:79:58:1a:2f:3f:8e:74:59:19:92:94:87: fd:27:6b:5c:c7:44:8d:79:2b:3a:37:85:36:21:69:ee:14:8f: 8e:c4:01:38:7c:6c:cf:76:a0:2b:24:dc:7f:74:e9:cb:89:55: 71:d3:c1:c3:54:8f:44:ab:8c:db:6d:ff:05:82:8a:22:e3:8c: 8a:7f:20:51:86:9b:09:b0:9a:f1:77:84:62:e4:ce:65:68:97: 0e:b5:2e:19:d0:79:0c:d3:b0:7d:5f:d3:ec:ed:4b:9c:87:2c: c8:f2:49:d6:df:c1:00:48:93:6e:b9:6d:a9:08:51:38:94:88: 3f:de:3a:3e:6c:68:1e:9b:4a:58:75:0f:22:f4:8f:b7:b0:c9: ea:20:54:46:10:b8:0d:10:6f:c0:d0:41:fe:c8:55:23:58:27: 5a:27:22:c8:0f:3e:61:f9:3c:78:de:db:c1:2e:d0:01:9d:da: c3:2e:0c:db:92:bd:da:68:e0:58:5b:1b:32:f3:2b:68:fd:cb: f7:fc:cc:cc:d2:5d:5f:08:fb:80:47:bf:c4:1e:39:c3:14:7a: f1:60:08:e3:2a:69:56:4f:87:49:a9:3e:37:94:b8:47:35:5e: 2e:d2:8b:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKs1WdPRGNz9gmSNif+FnLIMCaKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNTEwMjUxNjU1MDFaFw0yNjEwMjQxNzAwMDFaMDMxMTAvBgNV BAMTKDY3N0IwQkREREEwMzkzNDg0MEEyNTFGRDNDNTQ2Rjg3OTAyNEZCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlfqlwhRLRXtNAl9EGanMG5roB sNGVQAuNwCuum9c9dEzSG+eAxP4FrYwZnZZw9eUV1GmYiEw3mmh72nDu1XYg/GaJ LPDI8xslg6md9K+B4ikD+6uaPuvY7084LuThjQl9HkDCfgUpncBt1TfBtqUG14cl JX91+YG3XEbntvnb7xPM8n6Jr9py4N/EbuYUoQ5Vjn04jhPzsZM83g1ijQjDLJRf N+VLtmA0tdmLrnrvqDQkwOM2wJjzrIcXMt/4+4TFQ5EypHA7aTCh1fG+9BO7t+xm O0ruprSvkLUxjttLg/40Ww7vYGHIAFaktn4/yMybUD0JZLrASZt6rqUCaQzrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ3sL3doDk0hAolH9PFRvh5Ak+w4wHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnoYYwDQYJ KoZIhvcNAQELBQADggEBAGvkKAya4+3oXNl2o955js3AzgM9EPgjRXlYGi8/jnRZ GZKUh/0na1zHRI15Kzo3hTYhae4Uj47EATh8bM92oCsk3H906cuJVXHTwcNUj0Sr jNtt/wWCiiLjjIp/IFGGmwmwmvF3hGLkzmVolw61LhnQeQzTsH1f0+ztS5yHLMjy SdbfwQBIk265bakIUTiUiD/eOj5saB6bSlh1DyL0j7ewyeogVEYQuA0Qb8DQQf7I VSNYJ1onIsgPPmH5PHje28Eu0AGd2sMuDNuSvdpo4FhbGzLzK2j9y/f8zMzSXV8I +4BHv8QeOcMUevFgCOMqaVZPh0mpPjeUuEc1Xi7Si1I= -----END CERTIFICATE-----Generated at Mon Oct 27 12:12:29 2025 by rpki-client