$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa File: 3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa (raw, json) Hash identifier: 7cjr2Mf8da23M7780NOwEQz2pNcc6LU8HdKHbP3bqXY= Subject key identifier: 5E:1C:D5:28:33:E9:2A:48:A5:22:9E:C5:50:AB:F3:4D:68:2D:E6:46 Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 67BFA43AC0D3119E509156B5D9CA152289EB09E3 Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa Signing time: Fri 24 Oct 2025 12:00:01 +0000 ROA not before: Fri 24 Oct 2025 11:55:01 +0000 ROA not after: Fri 23 Oct 2026 12:00:01 +0000 asID: 150465 IP address blocks: 103.161.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 02:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:bf:a4:3a:c0:d3:11:9e:50:91:56:b5:d9:ca:15:22:89:eb:09:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Oct 24 11:55:01 2025 GMT Not After : Oct 23 12:00:01 2026 GMT Subject: CN=5E1CD52833E92A48A5229EC550ABF34D682DE646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e2:6d:60:34:10:31:d2:17:d4:8a:42:4e:1e: cb:c1:eb:d7:dd:c2:53:84:65:95:c2:d3:b0:fe:60: 71:36:3f:fd:5b:5a:68:8a:a1:60:92:24:83:24:77: 81:4d:09:16:af:ce:bd:dd:56:47:4b:67:8f:8b:8b: b4:98:c9:1b:e0:2e:e2:0b:e2:d1:c5:2f:b6:21:ae: 97:4a:47:cb:68:b5:f4:c7:52:5e:54:a9:e5:8f:52: e6:9b:37:c5:d4:37:a6:69:88:d7:a5:00:e3:34:4b: 82:61:46:91:85:70:4c:e9:3b:17:eb:7c:ad:24:c2: 7c:ca:65:8e:b8:a3:35:09:1b:79:e4:b2:9f:cb:36: 12:d6:ed:20:10:5c:5c:12:eb:fd:0d:57:93:0b:f3: 3e:ca:d2:6d:e8:38:d7:ac:ca:f4:a8:9f:92:46:4c: 86:80:a6:92:3d:20:67:30:f7:7e:87:85:23:4e:2a: a6:a2:80:70:52:a2:2d:0a:45:e4:4b:49:e9:dc:31: d9:ac:87:89:a2:cd:39:2c:14:9e:26:c2:7c:84:6b: ea:98:4f:26:7f:2a:21:e9:64:51:a5:2c:52:37:6b: 2e:8b:d6:83:b4:5d:4a:f1:7d:16:db:db:97:e9:10: a8:15:3a:9f:90:a0:99:4e:06:ec:72:97:06:34:56: 68:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1C:D5:28:33:E9:2A:48:A5:22:9E:C5:50:AB:F3:4D:68:2D:E6:46 X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.135.0/24 Signature Algorithm: sha256WithRSAEncryption 32:66:3c:65:3a:df:21:8c:2b:95:8a:82:5f:5c:b6:f9:40:55: 0b:e2:5e:07:7f:a2:c4:25:f0:c9:21:f6:38:f5:33:e7:58:7f: 47:0d:68:45:0e:c9:e1:f7:54:d9:f5:c0:ff:b6:57:68:cc:74: 6c:26:df:b8:e9:10:3a:e7:d1:c7:cf:9c:61:e9:c9:38:2f:2f: 55:e8:7d:b2:ab:38:87:e1:21:6e:7e:a2:18:df:f9:a0:1e:31: ed:d5:d6:7d:32:40:01:53:62:b4:64:89:c8:62:29:52:e3:e8: d1:7c:ac:2b:9a:00:54:07:11:11:4e:e2:f6:b9:a7:bf:50:ff: 2c:ce:34:a1:38:df:af:23:19:02:88:70:5c:21:0f:23:7f:f9: 6d:b0:92:58:8b:fb:5b:70:e4:e5:51:6e:c7:25:f4:1a:93:68: d2:04:49:d2:48:9e:4d:76:72:30:8a:dc:3b:38:95:5b:9a:4c: 7c:a7:ab:fe:63:97:3a:4c:a3:fc:1c:87:86:b1:af:63:2f:96: db:2d:ae:cd:7f:03:a8:db:c9:16:82:b2:0c:1f:84:d2:aa:6f: 7d:89:73:18:2c:f3:4a:ae:ba:8d:e6:99:03:46:7b:10:c3:7c: 30:7a:f1:74:28:79:9b:b2:fb:4b:4f:a1:77:d7:df:da:17:8e: 31:4a:83:50 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ7+kOsDTEZ5QkVa12coVIonrCeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNTEwMjQxMTU1MDFaFw0yNjEwMjMxMjAwMDFaMDMxMTAvBgNV BAMTKDVFMUNENTI4MzNFOTJBNDhBNTIyOUVDNTUwQUJGMzRENjgyREU2NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu4m1gNBAx0hfUikJOHsvB69fd wlOEZZXC07D+YHE2P/1bWmiKoWCSJIMkd4FNCRavzr3dVkdLZ4+Li7SYyRvgLuIL 4tHFL7YhrpdKR8totfTHUl5UqeWPUuabN8XUN6ZpiNelAOM0S4JhRpGFcEzpOxfr fK0kwnzKZY64ozUJG3nksp/LNhLW7SAQXFwS6/0NV5ML8z7K0m3oONesyvSon5JG TIaAppI9IGcw936HhSNOKqaigHBSoi0KReRLSencMdmsh4mizTksFJ4mwnyEa+qY TyZ/KiHpZFGlLFI3ay6L1oO0XUrxfRbb25fpEKgVOp+QoJlOBuxylwY0VmglAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXhzVKDPpKkilIp7FUKvzTWgt5kYwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYcwDQYJ KoZIhvcNAQELBQADggEBADJmPGU63yGMK5WKgl9ctvlAVQviXgd/osQl8Mkh9jj1 M+dYf0cNaEUOyeH3VNn1wP+2V2jMdGwm37jpEDrn0cfPnGHpyTgvL1XofbKrOIfh IW5+ohjf+aAeMe3V1n0yQAFTYrRkichiKVLj6NF8rCuaAFQHERFO4va5p79Q/yzO NKE4368jGQKIcFwhDyN/+W2wkliL+1tw5OVRbscl9BqTaNIESdJInk12cjCK3Ds4 lVuaTHynq/5jlzpMo/wch4axr2Mvltstrs1/A6jbyRaCsgwfhNKqb32Jcxgs80qu uo3mmQNGexDDfDB68XQoeZuy+0tPoXfX39oXjjFKg1A= -----END CERTIFICATE-----Generated at Mon Oct 27 12:09:18 2025 by rpki-client