$ rpki-client -vvf repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa File: 3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa (raw, json) Hash identifier: 5crcrbB/LN7ILCPXkvbBRWMtAP/t3GajDPBToG3xT7s= Subject key identifier: 82:55:70:F3:FB:A6:FF:8A:43:E9:33:06:87:38:0D:5C:C4:FD:6A:BA Certificate issuer: /CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Certificate serial: 425D341E4188785ADE5BB3A46025E70E83BDBC6E Authority key identifier: BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa Signing time: Fri 29 Aug 2025 06:00:00 +0000 ROA not before: Fri 29 Aug 2025 05:55:00 +0000 ROA not after: Fri 28 Aug 2026 06:00:00 +0000 asID: 141583 IP address blocks: 103.158.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 16:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:5d:34:1e:41:88:78:5a:de:5b:b3:a4:60:25:e7:0e:83:bd:bc:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Validity Not Before: Aug 29 05:55:00 2025 GMT Not After : Aug 28 06:00:00 2026 GMT Subject: CN=825570F3FBA6FF8A43E9330687380D5CC4FD6ABA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5f:17:fc:08:35:6d:96:90:c0:27:b3:49:0e: 35:0e:2b:67:8c:13:ed:bd:a5:75:fb:4a:08:ae:de: 2f:8e:cf:ea:68:32:aa:c9:b4:8b:02:a4:37:9d:21: 76:82:62:2d:3a:7c:fe:03:9d:a5:ff:73:4e:6c:ed: 17:dd:b6:2d:4b:4d:8f:e5:45:c6:b0:72:24:f1:99: 9d:df:5a:b9:7a:d5:6d:cc:77:26:53:bb:48:de:6a: a0:98:6e:8e:5a:80:d5:2e:e4:53:ac:8c:22:e5:e4: 87:4e:af:28:68:e0:c3:4b:d8:04:3e:c2:0b:d1:fe: e8:37:ab:b0:a7:9b:0f:61:f1:03:81:22:35:2f:51: ba:d4:2d:a0:55:d0:8f:86:97:5b:f8:f9:8d:6d:12: 05:c6:5f:0d:0d:c7:ac:5f:2a:73:c3:20:71:cc:a6: 3c:ad:70:d6:91:31:84:18:8a:77:24:f6:58:ff:dd: 23:e6:ff:3a:2f:5a:51:07:bc:93:21:57:86:8f:2a: 9b:a4:8a:2c:ba:07:3e:74:a8:74:f9:2a:06:ed:8d: 41:3f:00:02:b8:48:84:19:3e:33:17:74:e7:b5:3c: 1c:f6:75:be:04:ec:3d:e2:76:5b:89:c2:0c:95:11: 83:36:96:41:1e:0a:f6:5d:8e:9d:a0:26:87:e3:21: 3c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:55:70:F3:FB:A6:FF:8A:43:E9:33:06:87:38:0D:5C:C4:FD:6A:BA X509v3 Authority Key Identifier: keyid:BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.20.0/23 Signature Algorithm: sha256WithRSAEncryption 02:ff:cd:c9:68:1b:c0:a5:f8:54:b8:90:03:44:da:e1:52:27: 14:36:cb:71:c7:9c:f7:92:5b:47:db:a6:5b:b6:d8:fe:4e:33: 04:97:54:c4:9f:9b:1c:45:59:10:6d:69:86:bd:9b:0f:87:e8: 07:d1:1c:8a:24:ea:af:d9:e3:2d:dc:c2:16:b3:f9:08:cb:d2: ec:a6:b0:31:7e:9f:bd:d8:ba:77:07:7a:2e:e7:5f:9b:9e:97: 58:45:8d:5a:95:30:49:57:63:25:b5:f6:ae:5c:2d:4c:38:c1: 0c:6b:2d:35:73:1b:94:a8:a6:8f:38:aa:10:73:33:70:c9:86: c2:d3:0a:eb:e6:ea:d5:34:f8:ec:f3:48:00:b3:fd:9e:2d:20: e7:25:45:f3:e4:c2:41:0b:8a:42:40:c0:d4:87:4d:c4:bf:3d: 7e:24:66:fd:f2:35:dd:a1:8a:68:19:8d:13:0b:37:27:98:18: 17:3d:b5:f1:83:6d:ec:54:8a:f1:e6:f7:da:65:07:33:a3:7f: a9:68:62:cf:a5:73:3f:e5:c4:dc:63:50:98:97:7b:6b:df:52: 53:94:2f:d5:0b:6c:42:5f:fc:b7:f2:11:04:64:4d:39:1f:d2: 8b:a0:3f:b1:b5:22:d1:25:53:c8:aa:94:25:92:b0:d7:29:c7: f0:74:51:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQl00HkGIeFreW7OkYCXnDoO9vG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1 MzVBMUFENDAeFw0yNTA4MjkwNTU1MDBaFw0yNjA4MjgwNjAwMDBaMDMxMTAvBgNV BAMTKDgyNTU3MEYzRkJBNkZGOEE0M0U5MzMwNjg3MzgwRDVDQzRGRDZBQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwXxf8CDVtlpDAJ7NJDjUOK2eM E+29pXX7Sgiu3i+Oz+poMqrJtIsCpDedIXaCYi06fP4DnaX/c05s7Rfdti1LTY/l RcawciTxmZ3fWrl61W3MdyZTu0jeaqCYbo5agNUu5FOsjCLl5IdOryho4MNL2AQ+ wgvR/ug3q7Cnmw9h8QOBIjUvUbrULaBV0I+Gl1v4+Y1tEgXGXw0Nx6xfKnPDIHHM pjytcNaRMYQYinck9lj/3SPm/zovWlEHvJMhV4aPKpukiiy6Bz50qHT5KgbtjUE/ AAK4SIQZPjMXdOe1PBz2db4E7D3idluJwgyVEYM2lkEeCvZdjp2gJofjITzPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUglVw8/um/4pD6TMGhzgNXMT9arowHwYDVR0j BBgwFoAUvoK0aZmKnoKfiCZVyZpaBVNaGtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDgxYWMwMS1mMzAyLTQ2ZWQtOWUxYi02NTkzNDU2ZjJkNTkvMC9CRTgyQjQ2OTk5 OEE5RTgyOUY4ODI2NTVDOTlBNUEwNTUzNUExQUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1MzVB MUFENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0ODFhYzAxLWYzMDItNDZlZC05 ZTFiLTY1OTM0NTZmMmQ1OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ54UMA0GCSqG SIb3DQEBCwUAA4IBAQAC/83JaBvApfhUuJADRNrhUicUNstxx5z3kltH26Zbttj+ TjMEl1TEn5scRVkQbWmGvZsPh+gH0RyKJOqv2eMt3MIWs/kIy9LsprAxfp+92Lp3 B3ou51+bnpdYRY1alTBJV2MltfauXC1MOMEMay01cxuUqKaPOKoQczNwyYbC0wrr 5urVNPjs80gAs/2eLSDnJUXz5MJBC4pCQMDUh03Evz1+JGb98jXdoYpoGY0TCzcn mBgXPbXxg23sVIrx5vfaZQczo3+paGLPpXM/5cTcY1CYl3tr31JTlC/VC2xCX/y3 8hEEZE05H9KLoD+xtSLRJVPIqpQlkrDXKcfwdFEw -----END CERTIFICATE-----Generated at Sat Sep 20 10:25:44 2025 by rpki-client