$ rpki-client -vvf repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa File: 3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: znHE6AD5Lm1YZC2YGdLN2BPXoosYaoUkOA2ryqU5ZV8= Subject key identifier: 91:FE:96:4A:87:35:0B:E4:7B:C2:AC:E6:E5:49:3B:51:AC:C5:F1:B6 Certificate issuer: /CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Certificate serial: 43C23BB46F3DF937A4ACADB839FCF985BA1FB727 Authority key identifier: 6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa Signing time: Tue 02 Sep 2025 01:00:01 +0000 ROA not before: Tue 02 Sep 2025 00:55:01 +0000 ROA not after: Tue 01 Sep 2026 01:00:01 +0000 asID: 45701 IP address blocks: 103.156.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 15:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c2:3b:b4:6f:3d:f9:37:a4:ac:ad:b8:39:fc:f9:85:ba:1f:b7:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Validity Not Before: Sep 2 00:55:01 2025 GMT Not After : Sep 1 01:00:01 2026 GMT Subject: CN=91FE964A87350BE47BC2ACE6E5493B51ACC5F1B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9b:a8:8f:46:d7:28:aa:5a:fa:7e:c7:9a:58: 45:8a:62:b4:97:ad:9e:c1:c9:b9:01:fa:82:24:f3: b9:23:1a:4f:a3:d4:a9:2f:1a:af:34:d5:6c:3b:ad: 3c:77:30:f3:af:cc:7c:73:97:f0:aa:5c:0b:85:47: ad:6d:4b:9b:96:6b:e4:1b:32:d9:c0:62:f5:da:27: 84:e5:1f:9d:9e:89:8a:7b:b5:91:a6:16:a4:dc:09: a6:53:72:fe:01:4a:ab:07:9c:f3:d2:f7:ff:0c:2a: 92:80:54:b6:20:4f:62:49:3e:a1:89:a4:ec:9d:45: 2d:d8:7a:ad:c3:d3:5e:f8:9e:31:9d:e4:9f:ab:d6: 20:40:60:b3:9c:80:63:c3:05:0d:03:4f:bc:3c:51: 6e:34:75:f6:87:7a:98:66:f1:91:6f:a8:8d:90:af: f4:a4:44:bd:73:28:73:78:e3:da:5d:82:b2:ae:18: 76:01:7e:e3:ff:bf:ee:05:8f:1f:de:05:71:cf:81: c7:fe:4b:15:41:29:55:1d:6c:74:7c:6a:8e:6e:cd: e3:df:ee:98:f7:86:50:9d:d4:83:64:25:41:1a:c8: 9f:22:08:00:34:d8:30:02:0f:6c:c0:fa:16:7d:4c: 13:20:9a:50:e4:ef:3f:82:9c:c7:ef:99:e7:60:c9: b8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FE:96:4A:87:35:0B:E4:7B:C2:AC:E6:E5:49:3B:51:AC:C5:F1:B6 X509v3 Authority Key Identifier: keyid:6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.227.0/24 Signature Algorithm: sha256WithRSAEncryption 58:fc:18:a8:ff:d3:41:c2:38:9a:e7:71:da:ef:81:93:91:0f: 87:11:82:b6:46:70:bc:b9:74:20:ca:fb:ff:08:9e:64:64:50: eb:bc:9d:b5:c7:87:d6:15:b3:13:f8:fc:34:53:e5:fa:9c:a7: fa:25:24:09:1f:93:3f:fd:cb:d1:a3:8f:3c:70:4a:d7:d5:4f: 7a:91:7d:c2:cd:36:6c:62:c5:60:87:f9:25:83:90:88:71:2b: f9:d7:85:63:ca:7b:5f:68:a6:d8:7b:25:6f:31:48:b9:51:6d: d8:95:84:d5:45:87:8c:ce:1b:76:e6:55:fe:77:06:78:2a:dd: 22:3c:ed:91:a2:59:88:02:d4:02:b5:9d:ac:21:c2:c7:8c:63: be:aa:7c:c8:a0:74:26:ae:18:38:2d:a1:9b:cf:bc:47:f6:41: 55:25:dd:f2:71:4d:2d:f4:6d:90:c1:02:c7:01:68:10:5a:2a: 49:c2:79:f3:5c:4f:8a:c0:d3:e3:9c:00:e6:5e:b3:93:16:07: 85:eb:af:9c:ab:05:73:2d:e0:56:f2:c4:d2:d4:1d:e5:25:14: 30:4e:00:2e:b6:1c:1c:45:74:a7:18:e5:e3:f1:25:33:85:44: 0f:0c:9c:1b:7d:be:c3:2d:a0:8d:64:ab:a2:e0:df:f8:7f:26: 20:6e:1e:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ8I7tG89+TekrK24Ofz5hboftycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2 M0M1RDRFNzAeFw0yNTA5MDIwMDU1MDFaFw0yNjA5MDEwMTAwMDFaMDMxMTAvBgNV BAMTKDkxRkU5NjRBODczNTBCRTQ3QkMyQUNFNkU1NDkzQjUxQUNDNUYxQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkm6iPRtcoqlr6fseaWEWKYrSX rZ7BybkB+oIk87kjGk+j1KkvGq801Ww7rTx3MPOvzHxzl/CqXAuFR61tS5uWa+Qb MtnAYvXaJ4TlH52eiYp7tZGmFqTcCaZTcv4BSqsHnPPS9/8MKpKAVLYgT2JJPqGJ pOydRS3Yeq3D0174njGd5J+r1iBAYLOcgGPDBQ0DT7w8UW40dfaHephm8ZFvqI2Q r/SkRL1zKHN449pdgrKuGHYBfuP/v+4Fjx/eBXHPgcf+SxVBKVUdbHR8ao5uzePf 7pj3hlCd1INkJUEayJ8iCAA02DACD2zA+hZ9TBMgmlDk7z+CnMfvmedgybiPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkf6WSoc1C+R7wqzm5Uk7UazF8bYwHwYDVR0j BBgwFoAUbhI1yPw/LvbZ0kXQYHqm12PF1OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTM1NWM1YS1lZmM4LTQ4ZjctOTAyZi02ZTMxZmM0Mjk5NWEvMC82RTEyMzVDOEZD M0YyRUY2RDlEMjQ1RDA2MDdBQTZENzYzQzVENEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2M0M1 RDRFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMxMzAzMzJlMzEzNTM2MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5zjMA0GCSqG SIb3DQEBCwUAA4IBAQBY/Bio/9NBwjia53Ha74GTkQ+HEYK2RnC8uXQgyvv/CJ5k ZFDrvJ21x4fWFbMT+Pw0U+X6nKf6JSQJH5M//cvRo488cErX1U96kX3CzTZsYsVg h/klg5CIcSv514VjyntfaKbYeyVvMUi5UW3YlYTVRYeMzht25lX+dwZ4Kt0iPO2R olmIAtQCtZ2sIcLHjGO+qnzIoHQmrhg4LaGbz7xH9kFVJd3ycU0t9G2QwQLHAWgQ WipJwnnzXE+KwNPjnADmXrOTFgeF66+cqwVzLeBW8sTS1B3lJRQwTgAuthwcRXSn GOXj8SUzhUQPDJwbfb7DLaCNZKui4N/4fyYgbh7k -----END CERTIFICATE-----Generated at Mon Sep 8 12:15:38 2025 by rpki-client