$ rpki-client -vvf repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e203236353631.roa File: 3130332e3135382e32302e302f32332d3234203d3e203236353631.roa (raw, json) Hash identifier: g+ewJ+/FWnlKat+gPQr1tVTj8PjlEaEamMvWQs+8H98= Subject key identifier: 59:83:AA:9A:2C:6F:58:E1:9B:5F:9F:6D:12:4D:1B:6C:7F:00:B7:A6 Certificate issuer: /CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Certificate serial: 0861ED11540B6265D8CE99942DD57E141BE73693 Authority key identifier: BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e203236353631.roa Signing time: Sun 14 Sep 2025 20:00:00 +0000 ROA not before: Sun 14 Sep 2025 19:55:00 +0000 ROA not after: Sun 13 Sep 2026 20:00:00 +0000 asID: 26561 IP address blocks: 103.158.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 16:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:61:ed:11:54:0b:62:65:d8:ce:99:94:2d:d5:7e:14:1b:e7:36:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Validity Not Before: Sep 14 19:55:00 2025 GMT Not After : Sep 13 20:00:00 2026 GMT Subject: CN=5983AA9A2C6F58E19B5F9F6D124D1B6C7F00B7A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:50:0d:9d:af:1b:c0:5c:d0:ee:6b:67:47:9c: 6a:ac:5f:76:2e:99:19:0f:17:2e:36:60:82:73:f6: 6a:01:43:30:95:08:6e:67:db:dc:44:a2:e2:0d:8f: b0:f2:12:60:a9:04:64:44:ab:10:f4:f2:fa:7b:9f: 13:c1:ee:f9:25:9a:c6:0d:8f:18:1b:27:c8:7a:4e: da:9f:fe:10:92:c6:a5:ae:0c:24:82:cb:39:a3:d2: 90:a9:5d:4c:9b:f7:fb:ad:1b:5b:94:2a:2f:d6:16: dc:5c:6a:22:ea:14:13:e8:d4:7c:d0:52:c9:59:67: 55:2a:8b:08:1d:fd:bf:ca:82:d6:14:2c:80:bd:0a: 03:c3:02:78:c0:9f:72:40:db:10:bf:cd:a8:d8:f2: fa:9f:14:88:8b:b5:5f:50:84:46:d8:77:81:e8:cb: 7a:ff:ea:a6:bd:f9:24:6f:ee:c2:45:4c:56:25:99: 5e:a3:24:2e:d1:6f:54:41:a1:fb:eb:75:a6:b4:21: 0d:72:4c:82:6b:24:dc:52:fb:a6:e4:ea:9b:c2:aa: 1e:46:41:9c:40:17:0d:97:77:52:e4:2b:b4:28:d6: 41:17:ee:a4:a7:d0:cd:0c:cd:ad:6a:c2:68:ff:4a: 19:3f:af:dc:91:31:a2:da:62:3e:70:1d:ef:5a:a1: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:83:AA:9A:2C:6F:58:E1:9B:5F:9F:6D:12:4D:1B:6C:7F:00:B7:A6 X509v3 Authority Key Identifier: keyid:BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e203236353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.20.0/23 Signature Algorithm: sha256WithRSAEncryption 36:c5:32:ca:7b:81:93:48:24:07:0a:ee:d0:2d:5f:e3:5d:c5: 7b:31:76:8f:2a:b0:be:98:7b:0b:94:99:eb:c3:13:a7:bb:64: a0:e6:8f:28:34:96:06:c8:9c:92:cb:77:0c:f0:dd:da:d2:fb: 25:15:e6:24:05:e4:2d:20:4a:13:0f:6d:3e:dc:3f:27:b0:5f: c9:00:cb:78:47:46:7c:39:8d:85:1c:90:2e:52:15:4e:e2:e1: f9:50:51:7e:71:cb:cd:16:be:3c:0c:cb:d4:96:4d:6a:a6:ed: f5:00:0b:04:7f:2f:72:24:c0:3e:5d:f0:7c:f1:30:de:3e:1d: 1f:ed:14:5c:02:8e:b2:c2:85:d1:6e:74:bf:30:8a:a6:9a:9c: 24:54:4b:9d:93:e5:ce:9f:6a:ed:b6:eb:f6:94:b6:94:a9:41: 90:98:55:4a:da:aa:08:b6:38:5f:ff:60:ce:26:0e:96:71:5e: 7d:56:23:59:56:27:71:4b:79:e0:dd:d2:8b:31:ba:ab:34:7b: 2d:04:bd:0f:80:57:00:b1:89:c5:95:c0:ba:d7:3b:e7:37:ad: 5b:8b:3d:b9:44:23:c4:a8:c7:66:08:e2:b7:d1:01:28:6d:54: 11:46:3f:87:43:12:99:9e:c2:c5:77:80:c1:61:7c:53:ec:96: b3:cc:34:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCGHtEVQLYmXYzpmULdV+FBvnNpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1 MzVBMUFENDAeFw0yNTA5MTQxOTU1MDBaFw0yNjA5MTMyMDAwMDBaMDMxMTAvBgNV BAMTKDU5ODNBQTlBMkM2RjU4RTE5QjVGOUY2RDEyNEQxQjZDN0YwMEI3QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiUA2drxvAXNDua2dHnGqsX3Yu mRkPFy42YIJz9moBQzCVCG5n29xEouINj7DyEmCpBGREqxD08vp7nxPB7vklmsYN jxgbJ8h6Ttqf/hCSxqWuDCSCyzmj0pCpXUyb9/utG1uUKi/WFtxcaiLqFBPo1HzQ UslZZ1Uqiwgd/b/KgtYULIC9CgPDAnjAn3JA2xC/zajY8vqfFIiLtV9QhEbYd4Ho y3r/6qa9+SRv7sJFTFYlmV6jJC7Rb1RBofvrdaa0IQ1yTIJrJNxS+6bk6pvCqh5G QZxAFw2Xd1LkK7Qo1kEX7qSn0M0Mza1qwmj/Shk/r9yRMaLaYj5wHe9aoTBnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWYOqmixvWOGbX59tEk0bbH8At6YwHwYDVR0j BBgwFoAUvoK0aZmKnoKfiCZVyZpaBVNaGtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDgxYWMwMS1mMzAyLTQ2ZWQtOWUxYi02NTkzNDU2ZjJkNTkvMC9CRTgyQjQ2OTk5 OEE5RTgyOUY4ODI2NTVDOTlBNUEwNTUzNUExQUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1MzVB MUFENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0ODFhYzAxLWYzMDItNDZlZC05 ZTFiLTY1OTM0NTZmMmQ1OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzNjM1MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeeFDANBgkqhkiG 9w0BAQsFAAOCAQEANsUyynuBk0gkBwru0C1f413FezF2jyqwvph7C5SZ68MTp7tk oOaPKDSWBsickst3DPDd2tL7JRXmJAXkLSBKEw9tPtw/J7BfyQDLeEdGfDmNhRyQ LlIVTuLh+VBRfnHLzRa+PAzL1JZNaqbt9QALBH8vciTAPl3wfPEw3j4dH+0UXAKO ssKF0W50vzCKppqcJFRLnZPlzp9q7bbr9pS2lKlBkJhVStqqCLY4X/9gziYOlnFe fVYjWVYncUt54N3SizG6qzR7LQS9D4BXALGJxZXAutc75zetW4s9uUQjxKjHZgji t9EBKG1UEUY/h0MSmZ7CxXeAwWF8U+yWs8w0hQ== -----END CERTIFICATE-----Generated at Sat Sep 20 07:03:01 2025 by rpki-client