$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa File: 3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: giT40O2wWmvxV65/dwsGgg901Qzr1+BEnGc0lAnFIDY= Subject key identifier: A7:29:31:F3:B6:78:D6:CF:6A:AE:65:EB:9B:AE:1E:27:1D:94:27:38 Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 2C65B5A2E37B9EA11DB510B46D6791192D53DD98 Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa Signing time: Sat 06 Sep 2025 10:00:02 +0000 ROA not before: Sat 06 Sep 2025 09:55:02 +0000 ROA not after: Sat 05 Sep 2026 10:00:02 +0000 asID: 141071 IP address blocks: 103.155.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 02:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:65:b5:a2:e3:7b:9e:a1:1d:b5:10:b4:6d:67:91:19:2d:53:dd:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Sep 6 09:55:02 2025 GMT Not After : Sep 5 10:00:02 2026 GMT Subject: CN=A72931F3B678D6CF6AAE65EB9BAE1E271D942738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:9c:71:46:23:99:81:db:45:a3:3f:b2:32: 14:ec:3e:64:ab:8d:68:1e:53:11:86:41:c2:fb:3b: f0:95:1a:1f:15:32:ae:e3:b0:13:cf:97:d7:ba:69: bf:13:00:21:97:9a:83:b8:cd:18:fe:92:23:62:52: 50:71:a1:8c:8a:50:83:45:43:9b:1f:fb:96:c7:fe: 87:95:9a:a6:01:cc:79:93:cd:5f:bc:4c:a8:eb:f6: 53:7d:3b:3e:ed:c8:ad:54:0b:92:e4:32:d7:53:11: 2c:28:a8:92:b7:c5:47:0b:2e:db:87:0f:94:08:80: 54:df:4b:60:48:23:3f:2a:e4:f4:04:dd:ea:c3:fd: 7b:9c:73:48:cb:f2:58:2a:6f:67:4b:ae:e9:5f:ce: 36:1a:73:1a:e8:ac:72:e7:40:f4:b0:11:3b:53:4b: 17:53:3f:40:ae:66:1b:15:08:5d:c9:67:c8:9a:8f: 17:9b:55:cb:d4:9f:ff:fe:ba:38:94:7f:10:f8:c1: ae:80:ed:04:28:57:c2:e9:92:59:cb:11:38:1a:2b: 2c:85:4d:43:d7:2d:e8:df:83:48:39:e2:60:12:02: 5a:6d:c7:87:8e:eb:d8:ef:6a:3c:8e:f2:1f:1a:75: 19:fb:fc:9c:b9:1c:3e:df:cb:a2:3c:41:55:55:73: 3b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:29:31:F3:B6:78:D6:CF:6A:AE:65:EB:9B:AE:1E:27:1D:94:27:38 X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.197.0/24 Signature Algorithm: sha256WithRSAEncryption 53:cc:cf:0a:7e:f4:fe:e5:1b:66:41:45:e9:29:37:37:53:07: 7a:e2:9b:8d:29:07:d3:11:09:fb:89:36:71:62:02:4f:bc:d7: 27:f4:2f:8d:46:a0:6d:b6:ac:89:0a:a1:83:f7:dc:dc:c9:46: 65:ea:ce:0e:08:7b:f7:79:24:96:f7:9b:f3:59:9d:30:75:bb: b7:95:9c:af:29:29:4d:61:89:77:e0:17:02:e8:cd:72:93:fe: 1e:e0:0d:da:8f:21:86:91:1c:27:37:a5:04:40:48:c7:a3:59: a6:35:7f:e4:9a:6b:90:ea:42:89:f9:f7:f8:b2:23:9a:ca:ef: 39:66:2b:86:e4:a3:27:b9:17:f8:dd:25:bb:05:39:ec:41:98: 80:d3:e1:ff:70:6f:8a:cf:7d:1f:f5:03:12:ed:88:aa:0e:56: dc:28:dd:3a:f6:3f:05:54:49:51:2c:79:16:ae:6d:04:42:49: 19:16:35:d9:c6:e6:f2:61:27:af:37:c2:9b:f4:68:a0:a9:e7: fd:14:d8:3e:31:26:0f:4f:56:ec:df:12:c3:8c:45:4f:ae:80: 57:e7:72:db:f9:bb:39:84:9c:92:18:a1:4c:26:45:76:78:b4: 9f:d9:11:8d:70:02:43:a4:06:5e:41:bc:b4:ce:c8:1a:7d:95: 79:82:a7:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULGW1ouN7nqEdtRC0bWeRGS1T3ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yNTA5MDYwOTU1MDJaFw0yNjA5MDUxMDAwMDJaMDMxMTAvBgNV BAMTKEE3MjkzMUYzQjY3OEQ2Q0Y2QUFFNjVFQjlCQUUxRTI3MUQ5NDI3MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPS5xxRiOZgdtFoz+yMhTsPmSr jWgeUxGGQcL7O/CVGh8VMq7jsBPPl9e6ab8TACGXmoO4zRj+kiNiUlBxoYyKUINF Q5sf+5bH/oeVmqYBzHmTzV+8TKjr9lN9Oz7tyK1UC5LkMtdTESwoqJK3xUcLLtuH D5QIgFTfS2BIIz8q5PQE3erD/Xucc0jL8lgqb2dLrulfzjYacxrorHLnQPSwETtT SxdTP0CuZhsVCF3JZ8iajxebVcvUn//+ujiUfxD4wa6A7QQoV8LpklnLETgaKyyF TUPXLejfg0g54mASAlptx4eO69jvajyO8h8adRn7/Jy5HD7fy6I8QVVVczvhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpykx87Z41s9qrmXrm64eJx2UJzgwHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm8UwDQYJ KoZIhvcNAQELBQADggEBAFPMzwp+9P7lG2ZBRekpNzdTB3rim40pB9MRCfuJNnFi Ak+81yf0L41GoG22rIkKoYP33NzJRmXqzg4Ie/d5JJb3m/NZnTB1u7eVnK8pKU1h iXfgFwLozXKT/h7gDdqPIYaRHCc3pQRASMejWaY1f+Saa5DqQon59/iyI5rK7zlm K4bkoye5F/jdJbsFOexBmIDT4f9wb4rPfR/1AxLtiKoOVtwo3Tr2PwVUSVEseRau bQRCSRkWNdnG5vJhJ683wpv0aKCp5/0U2D4xJg9PVuzfEsOMRU+ugFfnctv5uzmE nJIYoUwmRXZ4tJ/ZEY1wAkOkBl5BvLTOyBp9lXmCpzY= -----END CERTIFICATE-----Generated at Fri Sep 19 19:37:01 2025 by rpki-client