$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa File: 3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: 9d7XfsrnfpJJqX9nZsXt1hskjbe4qjeQ8U4bAFN72jc= Subject key identifier: 49:2F:43:F3:A2:3B:B4:C9:B2:16:10:3F:F0:58:04:A4:FC:B2:AF:B2 Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 03A42B31AC72CDF17AF0486EAFD4B99FBC38F44B Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa Signing time: Sat 06 Sep 2025 10:00:01 +0000 ROA not before: Sat 06 Sep 2025 09:55:01 +0000 ROA not after: Sat 05 Sep 2026 10:00:01 +0000 asID: 141071 IP address blocks: 103.155.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 02:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a4:2b:31:ac:72:cd:f1:7a:f0:48:6e:af:d4:b9:9f:bc:38:f4:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Sep 6 09:55:01 2025 GMT Not After : Sep 5 10:00:01 2026 GMT Subject: CN=492F43F3A23BB4C9B216103FF05804A4FCB2AFB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:34:09:e2:af:b7:9f:e8:ad:84:ff:25:ff:aa: 53:d3:df:67:f8:6e:fd:cd:e2:df:35:93:da:fd:a0: 3f:6f:40:47:bd:b2:f0:b3:fa:bb:0d:ff:4f:01:eb: 36:7e:d9:14:89:44:c3:11:30:80:37:06:49:52:82: b9:67:80:34:da:e1:55:e2:1d:46:c7:15:05:20:c0: a0:f0:5e:db:f3:76:43:50:fc:26:a5:5a:54:d8:fb: 8f:92:17:44:eb:60:21:cf:32:10:3e:d9:46:f0:ed: 05:db:15:8c:c3:5b:84:a9:db:05:81:89:9f:91:ff: be:4a:01:9f:b7:bf:78:a4:d3:7e:f7:29:de:a1:1a: ab:94:4b:5c:48:b3:36:a7:b2:78:08:3c:da:65:49: f8:12:cf:55:d3:94:ea:6f:96:2b:13:99:77:0b:6f: 69:a8:93:7e:f6:d2:ad:65:4b:9c:a3:f2:49:64:31: 72:31:a1:47:54:6d:1b:24:67:d1:86:25:e5:47:44: 41:d4:dd:f9:15:e2:dd:10:39:55:cc:10:8f:e7:f5: ad:36:1a:35:40:be:c4:34:51:d8:a6:f4:50:f4:c8: bc:96:52:50:89:05:be:38:29:bc:a4:fd:90:68:2a: f9:cb:e1:9d:28:8c:98:c3:f6:1c:3b:11:39:16:c2: 0c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2F:43:F3:A2:3B:B4:C9:B2:16:10:3F:F0:58:04:A4:FC:B2:AF:B2 X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.196.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:20:54:c7:bf:53:f0:d8:1a:b0:74:2b:03:37:f7:d8:4c:c4: 40:53:b0:73:6a:6f:36:a7:2f:ae:bf:f4:26:a9:00:bc:46:6d: a8:a3:94:37:69:8f:00:1e:b0:aa:63:b5:d4:f5:10:ed:3f:60: 70:46:9f:53:28:b5:22:98:cf:4e:83:21:97:3c:ab:b7:f3:10: 7b:32:53:42:e4:74:6c:8b:12:fa:c8:97:98:91:0b:97:0a:96: 81:45:3d:7a:8e:ff:ef:b2:a8:4b:74:a4:24:ae:41:b3:77:aa: 51:54:5a:e4:d1:d1:6e:ae:59:5e:1a:db:26:9e:33:4e:ed:98: a1:44:6c:be:18:46:de:3e:a1:c0:cb:5f:9d:58:f9:4f:29:3e: a2:e0:a8:bd:48:00:51:a9:3f:98:49:22:a1:8c:c7:0f:02:45: 27:8f:57:75:32:0b:92:5b:21:6c:29:fa:4f:90:04:18:f6:50: 7d:3f:e0:fe:d7:88:08:40:57:54:66:cd:8c:1a:50:fc:d2:ae: 85:eb:48:98:3a:b5:c1:fd:9e:0b:32:17:f9:9c:bb:d8:ea:1e: 27:55:79:86:4a:80:91:23:87:70:5a:92:bd:8b:3d:97:5b:50: 6a:a2:52:36:8e:3e:2f:09:16:22:06:14:9b:d6:3f:65:df:71: 53:0c:e7:d2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA6QrMaxyzfF68Ehur9S5n7w49EswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yNTA5MDYwOTU1MDFaFw0yNjA5MDUxMDAwMDFaMDMxMTAvBgNV BAMTKDQ5MkY0M0YzQTIzQkI0QzlCMjE2MTAzRkYwNTgwNEE0RkNCMkFGQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdNAnir7ef6K2E/yX/qlPT32f4 bv3N4t81k9r9oD9vQEe9svCz+rsN/08B6zZ+2RSJRMMRMIA3BklSgrlngDTa4VXi HUbHFQUgwKDwXtvzdkNQ/CalWlTY+4+SF0TrYCHPMhA+2Ubw7QXbFYzDW4Sp2wWB iZ+R/75KAZ+3v3ik0373Kd6hGquUS1xIszansngIPNplSfgSz1XTlOpvlisTmXcL b2mok3720q1lS5yj8klkMXIxoUdUbRskZ9GGJeVHREHU3fkV4t0QOVXMEI/n9a02 GjVAvsQ0Udim9FD0yLyWUlCJBb44Kbyk/ZBoKvnL4Z0ojJjD9hw7ETkWwgxRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSS9D86I7tMmyFhA/8FgEpPyyr7IwHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm8QwDQYJ KoZIhvcNAQELBQADggEBACsgVMe/U/DYGrB0KwM399hMxEBTsHNqbzanL66/9Cap ALxGbaijlDdpjwAesKpjtdT1EO0/YHBGn1MotSKYz06DIZc8q7fzEHsyU0LkdGyL EvrIl5iRC5cKloFFPXqO/++yqEt0pCSuQbN3qlFUWuTR0W6uWV4a2yaeM07tmKFE bL4YRt4+ocDLX51Y+U8pPqLgqL1IAFGpP5hJIqGMxw8CRSePV3UyC5JbIWwp+k+Q BBj2UH0/4P7XiAhAV1RmzYwaUPzSroXrSJg6tcH9ngsyF/mcu9jqHidVeYZKgJEj h3Bakr2LPZdbUGqiUjaOPi8JFiIGFJvWP2XfcVMM59I= -----END CERTIFICATE-----Generated at Fri Sep 19 19:39:10 2025 by rpki-client