$ rpki-client -vvf repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa File: 3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa (raw, json) Hash identifier: 6M2tSRAEtO4icIKg0WJOGaj3E1zsgEWIzLxTXHoBXWE= Subject key identifier: 3A:47:0C:6F:7C:3D:14:E7:B5:D3:CA:8B:A3:52:DD:DB:88:78:3F:BB Certificate issuer: /CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Certificate serial: 0C5E5877E97D7717943FE398877E646FC3706BD3 Authority key identifier: 9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa Signing time: Fri 29 Aug 2025 23:00:00 +0000 ROA not before: Fri 29 Aug 2025 22:55:00 +0000 ROA not after: Fri 28 Aug 2026 23:00:00 +0000 asID: 149883 IP address blocks: 103.156.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 07:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5e:58:77:e9:7d:77:17:94:3f:e3:98:87:7e:64:6f:c3:70:6b:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Validity Not Before: Aug 29 22:55:00 2025 GMT Not After : Aug 28 23:00:00 2026 GMT Subject: CN=3A470C6F7C3D14E7B5D3CA8BA352DDDB88783FBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b7:e4:9e:eb:10:2e:19:02:2f:4f:7b:4a:f5: 4a:e3:3e:59:6b:f4:4f:0e:40:4f:3d:11:b0:65:6a: 22:b6:7e:44:8c:fa:d7:6e:b2:04:b8:2f:23:b4:87: d4:cc:af:40:40:67:1c:31:c9:43:8b:d9:8c:c0:b0: 6f:97:0c:fc:09:98:77:01:da:5a:a8:94:91:bd:ed: b6:a9:35:70:3e:d4:92:53:57:2d:51:8d:ad:41:b3: 9f:8d:f5:a6:dc:a6:37:8e:49:3b:39:1b:bd:e8:ae: c3:d1:af:4a:ef:3e:5e:fe:b1:79:13:7c:11:53:65: d0:25:31:e6:c1:fb:75:c6:ee:3a:04:ec:3f:4f:02: dd:fd:d4:c0:41:4d:c4:8c:2b:ea:23:3b:cc:8a:59: 10:95:d1:94:f6:9e:5a:8e:39:ff:44:84:22:88:af: 0f:17:b8:69:8a:f6:97:f1:f2:6f:a7:87:5b:ef:79: a9:b9:f0:a8:a7:94:7d:b8:f5:d7:67:12:5c:ba:39: 2e:0e:2c:b6:b4:28:9a:c4:ab:ab:0c:9d:8d:5b:11: db:06:c8:29:b8:9b:fd:2c:ae:82:03:a3:b7:95:3c: 4c:5d:88:0c:7c:f6:94:69:2c:e5:4e:16:ad:00:0e: a6:9a:1d:75:bc:1d:68:79:de:d5:ec:bd:e8:39:ce: be:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:47:0C:6F:7C:3D:14:E7:B5:D3:CA:8B:A3:52:DD:DB:88:78:3F:BB X509v3 Authority Key Identifier: keyid:9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:41:76:12:ee:12:56:88:f4:23:e9:b3:f1:3e:24:fe:a1:61: 14:a7:56:b6:d2:ce:03:9e:c6:1a:c8:01:37:f1:50:fe:55:47: 21:c2:87:66:ad:b6:79:63:14:61:54:fd:4b:fc:c3:a4:32:dd: 3c:e9:25:ba:fe:e5:52:a5:11:62:b5:e1:c5:27:9c:33:82:e8: d3:6b:d4:05:43:ac:6b:a6:bf:b9:cc:f5:ea:e7:b1:ce:cd:87: d5:04:40:95:59:f4:18:cd:0a:6d:b3:22:63:e0:1d:07:76:36: d8:06:f2:26:af:6a:a8:21:e7:04:a5:c3:c0:93:45:01:37:ef: 90:cf:ff:fb:3f:70:c9:05:73:fc:c4:df:6d:9d:f7:7d:9d:ca: 86:bb:1a:f9:42:43:27:93:a8:3f:a0:f7:e3:8d:21:ed:1c:a5: d5:4a:f4:01:c1:8a:9d:fe:c5:00:fa:b5:ac:78:51:fd:2b:af: 99:fb:ea:dc:56:77:4b:8b:ac:13:17:a3:f3:94:00:1d:03:fa: 8c:e7:15:17:ba:d5:f9:af:7a:02:c3:c1:f3:46:ab:83:37:c2: b0:61:e3:3f:17:32:ac:46:a3:8f:3f:2e:6d:e8:74:e6:8c:1e: 22:0e:66:b4:05:9b:f3:85:ee:b6:b7:f9:46:c4:09:a7:99:a8: 0a:3a:2f:0c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDF5Yd+l9dxeUP+OYh35kb8Nwa9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVC MTFCMjYzMzAeFw0yNTA4MjkyMjU1MDBaFw0yNjA4MjgyMzAwMDBaMDMxMTAvBgNV BAMTKDNBNDcwQzZGN0MzRDE0RTdCNUQzQ0E4QkEzNTJERERCODg3ODNGQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDft+Se6xAuGQIvT3tK9UrjPllr 9E8OQE89EbBlaiK2fkSM+tdusgS4LyO0h9TMr0BAZxwxyUOL2YzAsG+XDPwJmHcB 2lqolJG97bapNXA+1JJTVy1Rja1Bs5+N9abcpjeOSTs5G73orsPRr0rvPl7+sXkT fBFTZdAlMebB+3XG7joE7D9PAt391MBBTcSMK+ojO8yKWRCV0ZT2nlqOOf9EhCKI rw8XuGmK9pfx8m+nh1vveam58KinlH249ddnEly6OS4OLLa0KJrEq6sMnY1bEdsG yCm4m/0sroIDo7eVPExdiAx89pRpLOVOFq0ADqaaHXW8HWh53tXsveg5zr4/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOkcMb3w9FOe108qLo1Ld24h4P7swHwYDVR0j BBgwFoAUnmi3D35WsbqG8QUV8q6N9bEbJjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDkxNzkzZS1iZDY5LTQ1YTQtOTdhOC1jNjhhYTNkZDQ3YTMvMC85RTY4QjcwRjdF NTZCMUJBODZGMTA1MTVGMkFFOERGNUIxMUIyNjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVCMTFC MjYzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwOTE3OTNlLWJkNjktNDVhNC05 N2E4LWM2OGFhM2RkNDdhMy8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnIwwDQYJ KoZIhvcNAQELBQADggEBABxBdhLuElaI9CPps/E+JP6hYRSnVrbSzgOexhrIATfx UP5VRyHCh2attnljFGFU/Uv8w6Qy3TzpJbr+5VKlEWK14cUnnDOC6NNr1AVDrGum v7nM9ernsc7Nh9UEQJVZ9BjNCm2zImPgHQd2NtgG8iavaqgh5wSlw8CTRQE375DP //s/cMkFc/zE322d932dyoa7GvlCQyeTqD+g9+ONIe0cpdVK9AHBip3+xQD6tax4 Uf0rr5n76txWd0uLrBMXo/OUAB0D+oznFRe61fmvegLDwfNGq4M3wrBh4z8XMqxG o48/Lm3odOaMHiIOZrQFm/OF7ra3+UbECaeZqAo6Lww= -----END CERTIFICATE-----Generated at Sun Oct 19 20:37:12 2025 by rpki-client