$ rpki-client -vvf repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32342d3234203d3e203438343635.roa File: 3130332e3135382e32302e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: 2W1FqoGYBbRpSENvlyzwmtu3q2K4HpvO3Z6Fc5DZvEU= Subject key identifier: 5C:AB:E7:92:E4:7E:1B:46:60:D5:04:B7:D6:E1:6D:76:C9:0D:87:BF Certificate issuer: /CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Certificate serial: 40934BC9712AD0E879D60F488F34D7BBA645F4F2 Authority key identifier: BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32342d3234203d3e203438343635.roa Signing time: Mon 16 Jun 2025 03:02:51 +0000 ROA not before: Mon 16 Jun 2025 02:57:51 +0000 ROA not after: Mon 15 Jun 2026 03:02:51 +0000 asID: 48465 IP address blocks: 103.158.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 18:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:93:4b:c9:71:2a:d0:e8:79:d6:0f:48:8f:34:d7:bb:a6:45:f4:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Validity Not Before: Jun 16 02:57:51 2025 GMT Not After : Jun 15 03:02:51 2026 GMT Subject: CN=5CABE792E47E1B4660D504B7D6E16D76C90D87BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c2:71:4f:73:38:4e:cd:a0:bf:a6:48:2c:71: 01:ec:99:ef:b6:f1:4d:7c:19:aa:bb:11:89:32:3c: 5e:10:d9:04:eb:4f:5e:76:9e:94:a0:7f:44:45:65: 0e:9a:38:1f:7f:4d:25:31:1c:14:a4:9d:88:3c:dc: 95:29:9b:bc:7f:85:53:f9:c0:5d:56:7f:cc:b0:c6: ff:9f:ac:94:18:65:44:7c:93:76:34:e7:fc:c5:d3: e6:95:3d:6d:0d:25:64:8d:11:26:ce:5c:90:30:e7: 1b:39:8f:a9:29:43:90:f6:74:95:e8:0e:cf:95:2a: 9d:53:d7:85:72:5b:85:67:65:f0:34:6c:eb:e0:2f: 65:3d:95:60:f6:6a:46:24:bf:01:8c:72:55:55:01: 10:33:e8:15:89:c0:11:cc:8e:11:7f:44:b0:64:46: 80:38:5a:5e:ca:b4:08:97:a8:73:07:af:c8:a8:d1: 44:35:18:eb:4c:df:0c:38:e8:72:d8:62:f9:5e:a6: bf:bd:cd:44:26:2f:a9:fe:d3:3a:8a:82:db:12:b2: 0d:6a:b8:df:14:74:d0:65:6f:91:1b:16:cb:cd:4a: 7f:b3:aa:4a:9a:75:9f:7c:98:84:9c:ce:01:24:14: 1f:69:cc:4f:90:e0:27:6a:a3:76:55:d3:2d:96:76: d0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AB:E7:92:E4:7E:1B:46:60:D5:04:B7:D6:E1:6D:76:C9:0D:87:BF X509v3 Authority Key Identifier: keyid:BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.20.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:ba:6a:1b:04:f1:51:6d:f1:f1:b3:d4:b8:40:cd:08:66:3e: f2:50:93:e6:4a:bd:3f:fb:03:42:30:ae:af:61:fe:a0:df:02: f6:76:14:d0:86:d0:48:b0:5c:f5:65:f1:e7:e3:e2:28:60:bf: 67:34:72:51:96:8f:f1:c5:08:cd:e5:44:45:13:43:ad:7e:e1: fe:2e:44:0e:1c:a0:50:ca:7c:85:82:86:23:90:5b:d0:a1:6e: 14:a1:68:cd:20:ff:11:4c:49:c2:f0:16:d7:3b:09:d4:ac:eb: 6f:96:04:f5:16:b0:bc:43:d9:7c:64:6e:53:1a:ea:b8:01:2f: 84:d5:99:9e:df:56:cf:3c:60:ff:3b:40:ee:99:4c:7d:02:32: 65:a4:46:d6:73:ef:4f:95:3e:6a:2d:6e:f8:69:4c:da:a8:65: 0e:63:67:f7:10:4f:f8:66:74:25:49:a4:bb:12:a3:c2:29:c8: 08:17:1c:a4:be:b9:ff:78:a6:38:3b:f1:69:2d:f8:88:a1:00: 8e:97:53:cf:93:d6:c7:ba:bd:84:1c:0e:eb:10:43:2a:48:00: a0:92:b5:d3:f4:62:1e:4d:c2:27:15:7c:81:aa:d3:72:8c:66: c0:71:7a:32:94:0e:d6:87:54:b1:09:c8:62:2c:67:9f:aa:d8: 12:84:bc:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQJNLyXEq0Oh51g9IjzTXu6ZF9PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1 MzVBMUFENDAeFw0yNTA2MTYwMjU3NTFaFw0yNjA2MTUwMzAyNTFaMDMxMTAvBgNV BAMTKDVDQUJFNzkyRTQ3RTFCNDY2MEQ1MDRCN0Q2RTE2RDc2QzkwRDg3QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7wnFPczhOzaC/pkgscQHsme+2 8U18Gaq7EYkyPF4Q2QTrT152npSgf0RFZQ6aOB9/TSUxHBSknYg83JUpm7x/hVP5 wF1Wf8ywxv+frJQYZUR8k3Y05/zF0+aVPW0NJWSNESbOXJAw5xs5j6kpQ5D2dJXo Ds+VKp1T14VyW4VnZfA0bOvgL2U9lWD2akYkvwGMclVVARAz6BWJwBHMjhF/RLBk RoA4Wl7KtAiXqHMHr8io0UQ1GOtM3ww46HLYYvlepr+9zUQmL6n+0zqKgtsSsg1q uN8UdNBlb5EbFsvNSn+zqkqadZ98mISczgEkFB9pzE+Q4Cdqo3ZV0y2WdtALAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXKvnkuR+G0Zg1QS31uFtdskNh78wHwYDVR0j BBgwFoAUvoK0aZmKnoKfiCZVyZpaBVNaGtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDgxYWMwMS1mMzAyLTQ2ZWQtOWUxYi02NTkzNDU2ZjJkNTkvMC9CRTgyQjQ2OTk5 OEE5RTgyOUY4ODI2NTVDOTlBNUEwNTUzNUExQUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1MzVB MUFENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0ODFhYzAxLWYzMDItNDZlZC05 ZTFiLTY1OTM0NTZmMmQ1OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeeFDANBgkqhkiG 9w0BAQsFAAOCAQEAnrpqGwTxUW3x8bPUuEDNCGY+8lCT5kq9P/sDQjCur2H+oN8C 9nYU0IbQSLBc9WXx5+PiKGC/ZzRyUZaP8cUIzeVERRNDrX7h/i5EDhygUMp8hYKG I5Bb0KFuFKFozSD/EUxJwvAW1zsJ1Kzrb5YE9RawvEPZfGRuUxrquAEvhNWZnt9W zzxg/ztA7plMfQIyZaRG1nPvT5U+ai1u+GlM2qhlDmNn9xBP+GZ0JUmkuxKjwinI CBccpL65/3imODvxaS34iKEAjpdTz5PWx7q9hBwO6xBDKkgAoJK10/RiHk3CJxV8 garTcoxmwHF6MpQO1odUsQnIYixnn6rYEoS8ew== -----END CERTIFICATE-----Generated at Mon Oct 27 06:52:09 2025 by rpki-client