$ rpki-client -vvf repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa File: 3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa (raw, json) Hash identifier: 86YZqKEPm3VWmd4mc9aNYxNuN2xUPglyyCjijX0pxoI= Subject key identifier: C4:0A:13:B7:9B:05:E7:BE:A7:58:5C:5E:60:68:F2:27:5D:12:23:0E Certificate issuer: /CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Certificate serial: 47986419EBB50B6BA2B2362F71021B545CC43592 Authority key identifier: 56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa Signing time: Thu 28 Aug 2025 12:00:00 +0000 ROA not before: Thu 28 Aug 2025 11:55:00 +0000 ROA not after: Thu 27 Aug 2026 12:00:00 +0000 asID: 141052 IP address blocks: 103.152.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 20:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:98:64:19:eb:b5:0b:6b:a2:b2:36:2f:71:02:1b:54:5c:c4:35:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Validity Not Before: Aug 28 11:55:00 2025 GMT Not After : Aug 27 12:00:00 2026 GMT Subject: CN=C40A13B79B05E7BEA7585C5E6068F2275D12230E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6c:cc:3c:35:20:20:e1:6c:6e:16:14:3b:b2: 83:1a:a7:b6:e9:d7:61:bd:3f:8d:d8:48:b2:13:46: 3e:d1:f7:21:fe:a7:33:53:69:47:54:57:d9:07:3c: 35:a7:77:24:9b:a2:1d:d0:77:a0:59:06:1c:59:b1: b1:63:c2:d4:e8:eb:8c:51:7c:7e:8b:f1:61:e6:28: 68:9c:8b:ef:f8:4e:66:0a:57:8c:e1:79:be:2b:c1: 0b:a7:dd:d4:33:58:46:c1:59:18:f8:37:a1:e0:46: d8:0a:76:7d:c7:7d:b0:84:7b:77:a1:e9:a9:00:06: 3a:53:ff:ba:0d:eb:fb:4c:0b:8a:fb:3f:71:86:ec: 28:73:66:83:f9:3e:cf:6f:ee:ef:19:8a:53:22:4d: 29:30:7b:54:b5:b5:8d:ab:2b:ae:b7:ed:ee:d8:99: 38:b4:a3:6c:2b:2d:f1:49:e4:c9:e4:1a:88:ed:29: fa:dd:5b:cf:d8:18:d0:69:ab:ab:5e:13:12:06:26: bd:61:b4:ee:ee:f8:aa:05:56:cc:38:d6:0e:a7:e8: e4:7a:71:13:4f:c8:53:48:74:9f:b7:45:ae:de:3b: 7c:94:ad:dd:ff:75:97:39:9f:cc:e4:cd:36:30:11: 54:0d:4b:d1:9a:5d:09:fe:8b:76:f5:a6:d4:63:b6: 41:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:0A:13:B7:9B:05:E7:BE:A7:58:5C:5E:60:68:F2:27:5D:12:23:0E X509v3 Authority Key Identifier: keyid:56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.52.0/24 Signature Algorithm: sha256WithRSAEncryption 61:e6:3f:dd:63:98:77:94:23:63:58:d1:a7:48:03:e8:43:6c: fd:31:bd:1f:03:0d:08:00:c0:9c:7f:c7:d2:f5:2f:9f:a5:61: 4f:8e:e6:50:2e:82:1a:f6:64:a5:f6:ec:4b:95:39:7a:ad:12: c7:c9:63:45:86:d5:1b:67:e6:e9:b1:0b:9c:81:72:c7:96:98: 96:dc:34:df:a7:93:d2:97:27:49:86:23:68:21:d9:01:36:46: bf:37:f8:9d:9c:11:7b:6e:19:e8:c5:5d:3a:5a:b1:8b:da:9f: 19:78:9f:28:d0:2c:fd:e4:73:1f:23:b8:28:a4:91:84:fa:2b: d0:d0:49:ce:42:4c:95:65:09:ab:c9:15:e7:96:8d:4b:78:b2: 34:67:31:6b:bc:59:e6:52:45:96:3b:c2:8f:5a:de:62:fa:56: 31:6d:bb:17:3a:5c:73:86:95:a7:3d:2d:5f:6a:2b:6e:1e:66: 49:e1:87:0a:e1:51:4a:a6:f0:9d:d0:8f:54:33:7c:aa:ca:63: c5:e5:e0:1c:03:9f:57:23:c9:7b:bd:86:a8:68:c9:8b:01:a8: 50:97:e1:51:7d:ee:8b:25:88:e4:06:76:1b:3f:84:3a:09:18: d0:78:3f:c4:4e:7f:b7:d4:32:4f:32:48:d4:fe:70:c4:2e:dd: f2:9d:44:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR5hkGeu1C2uisjYvcQIbVFzENZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2 QzQ2MzkzNDAeFw0yNTA4MjgxMTU1MDBaFw0yNjA4MjcxMjAwMDBaMDMxMTAvBgNV BAMTKEM0MEExM0I3OUIwNUU3QkVBNzU4NUM1RTYwNjhGMjI3NUQxMjIzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBbMw8NSAg4WxuFhQ7soMap7bp 12G9P43YSLITRj7R9yH+pzNTaUdUV9kHPDWndySboh3Qd6BZBhxZsbFjwtTo64xR fH6L8WHmKGici+/4TmYKV4zheb4rwQun3dQzWEbBWRj4N6HgRtgKdn3HfbCEe3eh 6akABjpT/7oN6/tMC4r7P3GG7ChzZoP5Ps9v7u8ZilMiTSkwe1S1tY2rK6637e7Y mTi0o2wrLfFJ5MnkGojtKfrdW8/YGNBpq6teExIGJr1htO7u+KoFVsw41g6n6OR6 cRNPyFNIdJ+3Ra7eO3yUrd3/dZc5n8zkzTYwEVQNS9GaXQn+i3b1ptRjtkHhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxAoTt5sF576nWFxeYGjyJ10SIw4wHwYDVR0j BBgwFoAUVgkcEGdgHuk9PE0lzaBx3GxGOTQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ0ZTFiMi05M2M2LTQ4YWUtOTZjYy1lZDgzODI5ZjVhMjAvMC81NjA5MUMxMDY3 NjAxRUU5M0QzQzREMjVDREEwNzFEQzZDNDYzOTM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2QzQ2 MzkzNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDRlMWIyLTkzYzYtNDhhZS05 NmNjLWVkODM4MjlmNWEyMC8wLzMxMzAzMzJlMzEzNTMyMmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5g0MA0GCSqG SIb3DQEBCwUAA4IBAQBh5j/dY5h3lCNjWNGnSAPoQ2z9Mb0fAw0IAMCcf8fS9S+f pWFPjuZQLoIa9mSl9uxLlTl6rRLHyWNFhtUbZ+bpsQucgXLHlpiW3DTfp5PSlydJ hiNoIdkBNka/N/idnBF7bhnoxV06WrGL2p8ZeJ8o0Cz95HMfI7gopJGE+ivQ0EnO QkyVZQmryRXnlo1LeLI0ZzFrvFnmUkWWO8KPWt5i+lYxbbsXOlxzhpWnPS1faitu HmZJ4YcK4VFKpvCd0I9UM3yqymPF5eAcA59XI8l7vYaoaMmLAahQl+FRfe6LJYjk BnYbP4Q6CRjQeD/ETn+31DJPMkjU/nDELt3ynUSO -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:16 2025 by rpki-client