$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa File: 3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa (raw, json) Hash identifier: VerBshfKSbDiG4ilBKzo2++FEnDv7+7VU/P4UtUMaSI= Subject key identifier: 15:B9:52:57:13:6E:04:E0:04:AA:DC:03:D3:55:34:80:97:F2:7C:3D Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 4129C43FE440F935A2E43650F37A4C1827AC375A Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa Signing time: Mon 01 Sep 2025 02:00:02 +0000 ROA not before: Mon 01 Sep 2025 01:55:02 +0000 ROA not after: Mon 31 Aug 2026 02:00:02 +0000 asID: 141132 IP address blocks: 103.158.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 00:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:29:c4:3f:e4:40:f9:35:a2:e4:36:50:f3:7a:4c:18:27:ac:37:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Sep 1 01:55:02 2025 GMT Not After : Aug 31 02:00:02 2026 GMT Subject: CN=15B95257136E04E004AADC03D355348097F27C3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c7:51:a5:d2:7e:a8:77:4b:90:0c:6b:e8:9c: d6:e0:93:09:bb:e4:67:da:b0:b3:08:3a:b2:14:97: 07:8e:1c:6b:4a:85:c7:19:39:e2:04:fe:21:56:21: 2e:2c:7a:c4:1e:10:04:0e:06:e9:10:30:60:ce:35: 05:46:75:32:fe:7d:4a:00:19:2c:c9:d1:aa:86:05: e8:f3:9e:5e:e4:02:b5:56:84:93:0c:ae:3e:a1:de: d5:58:70:87:6f:a2:06:8f:66:b1:58:ef:35:a3:72: e6:63:5b:66:b9:fb:63:56:c8:15:33:65:1d:5a:dc: 44:27:b3:d1:3b:33:d6:58:4c:12:f3:30:c9:28:17: 11:20:97:d0:7d:c7:c5:28:b6:34:9c:a6:a5:91:bf: 82:c1:5f:bc:bd:16:9d:b8:e7:ce:20:5d:3c:f1:53: 48:9e:e8:b6:8a:e6:dd:e6:bf:06:71:63:1e:0b:f9: 27:6b:64:7f:49:d5:54:77:03:bf:29:fd:e7:f2:b6: 95:e4:17:2a:c7:7e:0f:e0:ff:a5:37:71:33:66:1e: b6:4e:d0:73:85:97:bd:46:66:f3:d3:96:26:3c:e5: 70:b3:7b:ec:6e:29:52:00:c4:b6:c4:ab:17:b9:f1: ad:d6:0b:a6:33:04:9c:2a:2a:48:2a:9b:bc:c1:80: 48:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B9:52:57:13:6E:04:E0:04:AA:DC:03:D3:55:34:80:97:F2:7C:3D X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.234.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:15:42:01:29:a3:1c:39:4e:a6:9d:e0:4a:19:5f:d5:8c:6b: ea:16:dd:14:b7:b0:a2:74:b8:58:b3:5b:32:ba:b3:20:af:4b: 08:c6:16:89:2c:c8:17:96:c6:9f:d5:ec:c2:66:06:43:8b:33: 8f:4d:9a:cb:0b:0e:a8:45:cb:46:a6:d7:ea:d8:9c:c8:78:18: 9c:5c:c3:ca:8d:b2:4f:f7:82:63:f0:86:a7:45:b4:a5:64:19: 2b:ec:24:0c:66:ef:10:c2:56:e1:9d:50:22:dd:71:5e:c0:40: 25:c3:2e:8e:ad:83:8e:6f:05:86:ec:80:fd:bc:47:fc:97:bc: ed:f1:90:2b:c4:0f:11:91:84:ad:c1:4c:c8:aa:47:40:28:fa: 8b:3d:5c:a2:fe:26:08:4b:5d:fb:1f:4e:5a:01:30:55:cb:4a: 17:0a:98:17:ef:fb:d5:20:5d:87:81:87:5f:4b:ac:d9:79:e8: 6f:ec:eb:b9:a9:6a:7d:64:e4:de:52:7f:cc:57:e8:32:5c:d3: ab:1b:ce:0f:58:d4:be:ab:95:14:01:80:6b:9e:78:d6:af:3f: 67:72:cd:a8:d5:e5:33:0a:0e:4a:2a:f6:69:07:3c:41:a8:23: 36:d0:b3:46:66:d1:25:05:30:c7:4c:a0:83:c4:a2:65:01:fb: 52:81:8b:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQSnEP+RA+TWi5DZQ83pMGCesN1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yNTA5MDEwMTU1MDJaFw0yNjA4MzEwMjAwMDJaMDMxMTAvBgNV BAMTKDE1Qjk1MjU3MTM2RTA0RTAwNEFBREMwM0QzNTUzNDgwOTdGMjdDM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtx1Gl0n6od0uQDGvonNbgkwm7 5GfasLMIOrIUlweOHGtKhccZOeIE/iFWIS4sesQeEAQOBukQMGDONQVGdTL+fUoA GSzJ0aqGBejznl7kArVWhJMMrj6h3tVYcIdvogaPZrFY7zWjcuZjW2a5+2NWyBUz ZR1a3EQns9E7M9ZYTBLzMMkoFxEgl9B9x8UotjScpqWRv4LBX7y9Fp24584gXTzx U0ie6LaK5t3mvwZxYx4L+SdrZH9J1VR3A78p/efytpXkFyrHfg/g/6U3cTNmHrZO 0HOFl71GZvPTliY85XCze+xuKVIAxLbEqxe58a3WC6YzBJwqKkgqm7zBgEiHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFblSVxNuBOAEqtwD01U0gJfyfD0wHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnuowDQYJ KoZIhvcNAQELBQADggEBADwVQgEpoxw5Tqad4EoZX9WMa+oW3RS3sKJ0uFizWzK6 syCvSwjGFoksyBeWxp/V7MJmBkOLM49NmssLDqhFy0am1+rYnMh4GJxcw8qNsk/3 gmPwhqdFtKVkGSvsJAxm7xDCVuGdUCLdcV7AQCXDLo6tg45vBYbsgP28R/yXvO3x kCvEDxGRhK3BTMiqR0Ao+os9XKL+JghLXfsfTloBMFXLShcKmBfv+9UgXYeBh19L rNl56G/s67mpan1k5N5Sf8xX6DJc06sbzg9Y1L6rlRQBgGueeNavP2dyzajV5TMK Dkoq9mkHPEGoIzbQs0Zm0SUFMMdMoIPEomUB+1KBi1w= -----END CERTIFICATE-----Generated at Sat Sep 6 01:43:35 2025 by rpki-client