$ rpki-client -vvf repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa File: 3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: OkMPQza0tirm+lkEvMo+wQnirw7z1P7FKUQAEdz/Gek= Subject key identifier: 69:36:CD:5A:87:BD:97:75:B2:79:C5:5E:3A:B0:6F:9D:18:A8:70:74 Certificate issuer: /CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Certificate serial: 62139B2F51001AE9B17E215C6AB03FF2E174D132 Authority key identifier: 6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa Signing time: Tue 02 Sep 2025 01:00:01 +0000 ROA not before: Tue 02 Sep 2025 00:55:01 +0000 ROA not after: Tue 01 Sep 2026 01:00:01 +0000 asID: 45701 IP address blocks: 103.156.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 22:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:13:9b:2f:51:00:1a:e9:b1:7e:21:5c:6a:b0:3f:f2:e1:74:d1:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Validity Not Before: Sep 2 00:55:01 2025 GMT Not After : Sep 1 01:00:01 2026 GMT Subject: CN=6936CD5A87BD9775B279C55E3AB06F9D18A87074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f7:a5:29:46:6d:85:d6:95:b9:b8:93:9b:40: f3:fd:29:dc:63:59:f5:66:62:27:1c:29:c6:78:a6: 9a:39:35:f9:19:02:30:c3:4f:3d:0a:08:3a:89:22: 83:04:2e:ed:4a:28:1f:76:41:1d:d1:44:df:42:39: 01:ba:3d:e5:1e:b7:23:5f:89:aa:18:ae:d0:5c:e4: ce:db:19:ec:30:70:2e:1e:45:60:97:62:41:42:3a: fe:5f:43:2c:db:e7:83:a9:bc:e9:69:63:94:06:1a: b0:39:2e:71:62:27:3b:aa:42:a9:2a:5e:ff:68:d4: 03:8e:30:c8:88:09:04:7a:64:57:5f:77:c2:aa:de: 74:04:7f:c8:65:f0:d0:f0:46:86:fe:49:ee:4f:c1: d0:26:82:52:25:b3:e6:ff:70:6e:52:8a:f1:70:39: 44:d0:2b:92:e9:ba:75:ca:bb:21:84:47:dd:11:05: 41:09:89:96:e4:6e:a9:c6:58:09:02:f3:2f:44:1e: c7:68:5f:e6:d1:48:df:47:0d:6a:a9:ef:80:dd:8e: 3e:b1:02:f8:83:98:e4:04:22:c7:61:b0:75:56:1c: 3f:51:56:14:31:0c:85:38:6c:6c:f3:f4:6a:97:4a: b3:93:30:60:88:c0:1c:17:b1:db:dc:4c:3c:d8:24: a8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:36:CD:5A:87:BD:97:75:B2:79:C5:5E:3A:B0:6F:9D:18:A8:70:74 X509v3 Authority Key Identifier: keyid:6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.226.0/24 Signature Algorithm: sha256WithRSAEncryption 28:a7:45:41:67:61:1b:9c:df:a8:cd:de:a4:90:0c:79:32:de: 18:b5:5e:3b:61:20:da:5c:d1:2c:69:e7:cc:9a:cd:a1:fb:ac: 9e:07:6b:5c:f1:ee:33:18:50:41:96:bc:be:8b:68:ef:0d:6c: 64:cd:6a:54:22:82:00:ad:82:e3:13:f7:72:f8:ac:83:65:d6: 12:01:bf:38:1b:ca:5e:e6:42:0c:fa:ca:da:14:bd:b1:41:26: b2:77:62:17:d7:05:d5:2c:4d:06:af:61:c0:0b:ef:1f:1c:32: 02:a6:fd:43:df:1a:b2:f7:ba:33:b7:e8:9c:d9:99:4c:7d:79: 07:ea:10:df:ae:15:64:30:72:b2:98:81:43:bd:49:0e:d7:c2: 55:05:4a:eb:d0:ae:45:da:5e:7f:89:57:01:c3:10:bf:fe:a4: 88:84:3f:6c:e8:21:6d:4b:69:a3:cd:c8:bf:fa:ca:e2:f7:23: 95:de:ba:0f:95:5c:f7:13:bc:94:03:e3:0c:46:b3:ee:40:28: ec:d7:fe:1c:ef:81:6f:c2:4a:a5:d5:d9:50:6d:91:3c:e5:93: 2a:26:f7:04:55:6e:a0:85:48:02:5d:84:ed:19:0f:b7:40:95: 28:b7:2c:2f:4f:a3:34:8d:7a:c2:57:84:45:c3:ce:b6:66:e9: e1:b7:44:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYhObL1EAGumxfiFcarA/8uF00TIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2 M0M1RDRFNzAeFw0yNTA5MDIwMDU1MDFaFw0yNjA5MDEwMTAwMDFaMDMxMTAvBgNV BAMTKDY5MzZDRDVBODdCRDk3NzVCMjc5QzU1RTNBQjA2RjlEMThBODcwNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr96UpRm2F1pW5uJObQPP9Kdxj WfVmYiccKcZ4ppo5NfkZAjDDTz0KCDqJIoMELu1KKB92QR3RRN9COQG6PeUetyNf iaoYrtBc5M7bGewwcC4eRWCXYkFCOv5fQyzb54OpvOlpY5QGGrA5LnFiJzuqQqkq Xv9o1AOOMMiICQR6ZFdfd8Kq3nQEf8hl8NDwRob+Se5PwdAmglIls+b/cG5SivFw OUTQK5LpunXKuyGER90RBUEJiZbkbqnGWAkC8y9EHsdoX+bRSN9HDWqp74Ddjj6x AviDmOQEIsdhsHVWHD9RVhQxDIU4bGzz9GqXSrOTMGCIwBwXsdvcTDzYJKjxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaTbNWoe9l3WyecVeOrBvnRiocHQwHwYDVR0j BBgwFoAUbhI1yPw/LvbZ0kXQYHqm12PF1OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTM1NWM1YS1lZmM4LTQ4ZjctOTAyZi02ZTMxZmM0Mjk5NWEvMC82RTEyMzVDOEZD M0YyRUY2RDlEMjQ1RDA2MDdBQTZENzYzQzVENEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2M0M1 RDRFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMxMzAzMzJlMzEzNTM2MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5ziMA0GCSqG SIb3DQEBCwUAA4IBAQAop0VBZ2EbnN+ozd6kkAx5Mt4YtV47YSDaXNEsaefMms2h +6yeB2tc8e4zGFBBlry+i2jvDWxkzWpUIoIArYLjE/dy+KyDZdYSAb84G8pe5kIM +sraFL2xQSayd2IX1wXVLE0Gr2HAC+8fHDICpv1D3xqy97ozt+ic2ZlMfXkH6hDf rhVkMHKymIFDvUkO18JVBUrr0K5F2l5/iVcBwxC//qSIhD9s6CFtS2mjzci/+sri 9yOV3roPlVz3E7yUA+MMRrPuQCjs1/4c74Fvwkql1dlQbZE85ZMqJvcEVW6ghUgC XYTtGQ+3QJUotywvT6M0jXrCV4RFw862Zunht0SE -----END CERTIFICATE-----Generated at Wed Nov 5 19:59:56 2025 by rpki-client