$ rpki-client -vvf repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa File: 3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa (raw, json) Hash identifier: Rw+pxwTJP+hvGj9PdU0j+wE54RfccGnIIDVVcYYdmUc= Subject key identifier: B7:DA:9E:A4:82:1F:B4:D7:40:C0:F8:32:17:EA:1D:18:E1:5E:46:3B Certificate issuer: /CN=556F35148B9935659C1FE70B505B1D8D79838EFA Certificate serial: 3334BEDD8F188ED0A54250DAA9F9838190EBB8A8 Authority key identifier: 55:6F:35:14:8B:99:35:65:9C:1F:E7:0B:50:5B:1D:8D:79:83:8E:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa Signing time: Tue 23 Sep 2025 09:02:25 +0000 ROA not before: Tue 23 Sep 2025 08:57:25 +0000 ROA not after: Tue 22 Sep 2026 09:02:25 +0000 asID: 150468 IP address blocks: 103.101.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.crl rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:34:be:dd:8f:18:8e:d0:a5:42:50:da:a9:f9:83:81:90:eb:b8:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556F35148B9935659C1FE70B505B1D8D79838EFA Validity Not Before: Sep 23 08:57:25 2025 GMT Not After : Sep 22 09:02:25 2026 GMT Subject: CN=B7DA9EA4821FB4D740C0F83217EA1D18E15E463B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:17:6b:06:d6:b5:ac:b6:0a:e9:75:cb:34:60: 5e:af:32:28:59:6b:98:12:9f:2b:d8:6f:ae:f2:ac: 01:7b:9f:5e:da:89:45:7b:fd:6f:ec:eb:38:12:f0: 76:16:00:06:7a:a7:36:47:b6:ac:7f:15:26:c4:c9: 53:73:d7:7b:89:3c:47:2a:ea:14:5a:c7:53:e3:e4: 34:21:5c:a9:02:50:d7:c3:cc:97:5f:18:97:a3:e2: 71:6e:49:59:37:11:38:b8:76:5d:41:0a:d2:28:41: 26:25:53:db:33:c8:56:a8:1e:ae:f9:8a:b0:a4:c4: bf:d4:35:d0:46:a3:80:83:26:11:28:5a:ef:9b:ac: 85:5d:aa:71:a2:ea:53:d9:51:81:d2:f8:3f:7d:9c: 8a:ae:99:b4:d5:3a:4b:c4:2b:92:2d:ae:1a:7d:46: 93:32:75:62:0c:88:3c:61:87:e6:81:e5:8f:b3:7c: 25:72:31:d0:5c:79:2a:ac:ef:49:23:cb:25:56:5b: ab:f3:64:7a:29:6c:c4:7d:c7:2b:96:d9:63:3a:89: 3c:52:c3:d0:6d:0a:69:ae:26:ba:05:38:35:d6:87: 4a:71:de:fe:4c:72:25:73:38:e1:96:a0:f9:e4:74: c8:dd:f5:dc:f6:b0:63:e7:9e:8f:5a:1d:9a:b3:a8: 0b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:DA:9E:A4:82:1F:B4:D7:40:C0:F8:32:17:EA:1D:18:E1:5E:46:3B X509v3 Authority Key Identifier: keyid:55:6F:35:14:8B:99:35:65:9C:1F:E7:0B:50:5B:1D:8D:79:83:8E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.193.0/24 Signature Algorithm: sha256WithRSAEncryption 35:f3:05:1c:91:e5:5b:65:b8:8a:04:46:ba:95:c2:d3:db:2c: e7:b3:49:79:5c:c4:f3:a4:d2:52:f4:d0:65:6a:04:b2:38:10: a4:8d:8a:cb:45:ca:53:8d:77:90:55:75:b7:1d:b8:e5:83:4b: ed:c8:34:3a:1d:ef:f7:ce:16:51:1d:16:92:95:7b:9b:a3:4f: b1:20:6b:dd:74:22:d0:cd:e5:4d:e1:42:72:2d:c9:ba:27:4a: 5f:cf:83:be:4d:c1:35:50:43:dd:4d:5e:31:5a:7e:00:fe:9f: da:cf:d6:0b:14:bf:cd:de:e3:f8:62:04:08:22:55:48:e1:61: 20:4d:a6:d6:c2:88:1a:ba:f5:a1:ec:56:10:54:47:41:50:c2: a4:7e:c3:1e:e9:50:90:6f:83:31:01:49:d2:59:61:7e:31:49: a1:33:f1:67:ce:9d:c0:3d:b6:69:cf:e0:db:e5:37:9f:04:7d: db:ef:f4:ea:5a:be:0c:f0:42:bd:b2:df:1e:34:03:89:5a:3f: b0:94:ef:e7:23:7c:48:12:b1:8e:22:c5:6f:17:c6:a6:6d:31: d1:4f:77:ce:2d:81:73:e0:e4:39:a5:dd:18:b5:0f:bb:e6:8e: 07:9d:48:c3:bc:9e:71:98:62:c9:28:7c:0e:18:ce:a3:db:b1: 64:b5:54:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMzS+3Y8YjtClQlDaqfmDgZDruKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2RjM1MTQ4Qjk5MzU2NTlDMUZFNzBCNTA1QjFEOEQ3 OTgzOEVGQTAeFw0yNTA5MjMwODU3MjVaFw0yNjA5MjIwOTAyMjVaMDMxMTAvBgNV BAMTKEI3REE5RUE0ODIxRkI0RDc0MEMwRjgzMjE3RUExRDE4RTE1RTQ2M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSF2sG1rWstgrpdcs0YF6vMihZ a5gSnyvYb67yrAF7n17aiUV7/W/s6zgS8HYWAAZ6pzZHtqx/FSbEyVNz13uJPEcq 6hRax1Pj5DQhXKkCUNfDzJdfGJej4nFuSVk3ETi4dl1BCtIoQSYlU9szyFaoHq75 irCkxL/UNdBGo4CDJhEoWu+brIVdqnGi6lPZUYHS+D99nIqumbTVOkvEK5Itrhp9 RpMydWIMiDxhh+aB5Y+zfCVyMdBceSqs70kjyyVWW6vzZHopbMR9xyuW2WM6iTxS w9BtCmmuJroFODXWh0px3v5MciVzOOGWoPnkdMjd9dz2sGPnno9aHZqzqAv3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUt9qepIIftNdAwPgyF+odGOFeRjswHwYDVR0j BBgwFoAUVW81FIuZNWWcH+cLUFsdjXmDjvowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzQyNDgwYS04ZTBmLTQ3N2EtYmQ0YS1hYTgwODk5MjdiYTgvMC81NTZGMzUxNDhC OTkzNTY1OUMxRkU3MEI1MDVCMUQ4RDc5ODM4RUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2RjM1MTQ4Qjk5MzU2NTlDMUZFNzBCNTA1QjFEOEQ3OTgz OEVGQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjNDI0ODBhLThlMGYtNDc3YS1i ZDRhLWFhODA4OTkyN2JhOC8wLzMxMzAzMzJlMzEzMDMxMmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNDM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZcEwDQYJ KoZIhvcNAQELBQADggEBADXzBRyR5VtluIoERrqVwtPbLOezSXlcxPOk0lL00GVq BLI4EKSNistFylONd5BVdbcduOWDS+3INDod7/fOFlEdFpKVe5ujT7Ega910ItDN 5U3hQnItybonSl/Pg75NwTVQQ91NXjFafgD+n9rP1gsUv83e4/hiBAgiVUjhYSBN ptbCiBq69aHsVhBUR0FQwqR+wx7pUJBvgzEBSdJZYX4xSaEz8WfOncA9tmnP4Nvl N58Efdvv9OpavgzwQr2y3x40A4laP7CU7+cjfEgSsY4ixW8XxqZtMdFPd84tgXPg 5Dml3Ri1D7vmjgedSMO8nnGYYskofA4YzqPbsWS1VOI= -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:58 2025 by rpki-client