$ rpki-client -vvf repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa File: 3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa (raw, json) Hash identifier: IrZeFe8SEJi6FKjU0mpLrOwQUSU/84BjfZY+z57Jm7k= Subject key identifier: FE:66:C3:C5:0B:A6:0C:62:3E:E8:95:B0:21:84:82:65:24:7E:8C:93 Certificate issuer: /CN=230A81B283314BA79BFA024FDF9FF4DA66B424BE Certificate serial: 57C7B725486029E9456BCA91C292C5CFB2DF2C35 Authority key identifier: 23:0A:81:B2:83:31:4B:A7:9B:FA:02:4F:DF:9F:F4:DA:66:B4:24:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa Signing time: Wed 24 Sep 2025 15:00:00 +0000 ROA not before: Wed 24 Sep 2025 14:55:00 +0000 ROA not after: Wed 23 Sep 2026 15:00:00 +0000 asID: 140448 IP address blocks: 103.152.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.crl rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:c7:b7:25:48:60:29:e9:45:6b:ca:91:c2:92:c5:cf:b2:df:2c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230A81B283314BA79BFA024FDF9FF4DA66B424BE Validity Not Before: Sep 24 14:55:00 2025 GMT Not After : Sep 23 15:00:00 2026 GMT Subject: CN=FE66C3C50BA60C623EE895B021848265247E8C93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:36:75:73:56:df:c0:6c:a1:a3:79:0c:9a:32: b2:20:f2:2c:a4:52:a3:a7:44:26:0a:a9:02:99:2d: f6:93:a7:cf:3a:9c:9d:20:cb:40:50:03:ab:b5:e9: 57:9a:0b:51:1d:84:a4:8b:bc:09:11:29:10:df:10: 1f:ee:be:5f:4e:f1:94:f5:03:c3:d6:14:58:4c:cc: d1:e0:8c:33:4b:3f:de:44:31:70:99:71:9c:9b:15: 86:14:a3:5e:a5:25:f7:1e:d9:cc:a0:0c:7b:25:84: 9b:8b:0e:83:49:09:bd:63:c9:92:6e:69:94:e6:86: 63:bc:34:1a:f9:5f:e6:75:03:5f:2f:4c:2e:4e:b5: a2:73:fa:fa:a4:c1:9b:e9:f8:b9:eb:de:c4:47:06: bd:31:2f:20:5a:54:d9:06:61:b8:24:b0:bb:10:df: 7f:a1:27:c7:e6:49:4e:31:43:ec:cc:76:49:21:20: 5f:41:2e:2f:38:e9:29:91:65:a9:8b:8f:4c:31:54: 29:48:40:7d:b2:36:4e:64:c3:e4:bb:73:67:85:a7: 9f:46:c9:03:a9:7c:bc:3a:fb:6e:8f:51:6f:47:9c: 89:79:6a:54:c4:ee:f1:a5:41:7a:c1:c7:7e:5c:7f: d2:7a:27:d1:9f:9f:fe:8f:4a:48:11:84:30:8c:eb: 57:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:66:C3:C5:0B:A6:0C:62:3E:E8:95:B0:21:84:82:65:24:7E:8C:93 X509v3 Authority Key Identifier: keyid:23:0A:81:B2:83:31:4B:A7:9B:FA:02:4F:DF:9F:F4:DA:66:B4:24:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.238.0/23 Signature Algorithm: sha256WithRSAEncryption c5:e0:e5:7b:47:1e:2b:4d:67:13:f8:1c:8e:08:20:2c:c9:7c: 35:68:8d:55:91:f8:c0:41:2c:ad:02:38:9c:aa:a7:89:2d:3c: aa:c9:f8:fe:0e:03:88:ee:29:46:f2:2a:06:5b:b9:37:d5:62: 59:f5:9b:f6:ce:a7:e0:d5:32:fe:63:dd:ca:b3:4c:0b:78:be: 7d:c6:b6:e1:2c:46:9e:c6:65:21:39:8f:5d:7c:29:4a:ba:95: e4:8e:28:e2:08:e2:05:d6:79:b6:7f:a3:9a:05:cf:e0:55:84: 7f:59:04:59:ab:98:a5:06:da:4a:1d:17:ee:a0:e9:fb:89:a9: d7:e9:2a:23:d9:06:27:23:5f:fd:9d:77:d6:8d:71:60:12:b7: 72:9e:d6:a9:e4:fe:8c:c5:dc:d3:98:8e:ef:b1:63:93:1d:fa: 95:be:38:be:df:b3:18:71:79:7a:14:1d:64:7e:fc:1c:76:c8: b1:39:a0:59:28:6e:7d:c9:4a:f0:1a:bb:fd:dd:7c:3b:0f:d8: 61:c5:73:72:b6:d4:10:b3:2b:23:f8:1d:ac:ac:78:47:d0:c0: 0e:06:b2:0e:d2:bf:1e:3a:25:3b:85:74:57:fa:4a:04:c7:b1: 0b:7e:9a:b0:bc:30:b1:e7:56:2a:62:c2:b7:be:3d:3a:9d:f0: 35:27:61:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV8e3JUhgKelFa8qRwpLFz7LfLDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMwQTgxQjI4MzMxNEJBNzlCRkEwMjRGREY5RkY0REE2 NkI0MjRCRTAeFw0yNTA5MjQxNDU1MDBaFw0yNjA5MjMxNTAwMDBaMDMxMTAvBgNV BAMTKEZFNjZDM0M1MEJBNjBDNjIzRUU4OTVCMDIxODQ4MjY1MjQ3RThDOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtNnVzVt/AbKGjeQyaMrIg8iyk UqOnRCYKqQKZLfaTp886nJ0gy0BQA6u16VeaC1EdhKSLvAkRKRDfEB/uvl9O8ZT1 A8PWFFhMzNHgjDNLP95EMXCZcZybFYYUo16lJfce2cygDHslhJuLDoNJCb1jyZJu aZTmhmO8NBr5X+Z1A18vTC5OtaJz+vqkwZvp+Lnr3sRHBr0xLyBaVNkGYbgksLsQ 33+hJ8fmSU4xQ+zMdkkhIF9BLi846SmRZamLj0wxVClIQH2yNk5kw+S7c2eFp59G yQOpfLw6+26PUW9HnIl5alTE7vGlQXrBx35cf9J6J9Gfn/6PSkgRhDCM61cHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/mbDxQumDGI+6JWwIYSCZSR+jJMwHwYDVR0j BBgwFoAUIwqBsoMxS6eb+gJP35/02ma0JL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2ExY2U0ZS01OWM4LTQxY2MtYjVlNi1iZDdiN2E3MDQzNTYvMC8yMzBBODFCMjgz MzE0QkE3OUJGQTAyNEZERjlGRjREQTY2QjQyNEJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMwQTgxQjI4MzMxNEJBNzlCRkEwMjRGREY5RkY0REE2NkI0 MjRCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3YTFjZTRlLTU5YzgtNDFjYy1i NWU2LWJkN2I3YTcwNDM1Ni8wLzMxMzAzMzJlMzEzNTMyMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmO4wDQYJ KoZIhvcNAQELBQADggEBAMXg5XtHHitNZxP4HI4IICzJfDVojVWR+MBBLK0COJyq p4ktPKrJ+P4OA4juKUbyKgZbuTfVYln1m/bOp+DVMv5j3cqzTAt4vn3GtuEsRp7G ZSE5j118KUq6leSOKOII4gXWebZ/o5oFz+BVhH9ZBFmrmKUG2kodF+6g6fuJqdfp KiPZBicjX/2dd9aNcWASt3Ke1qnk/ozF3NOYju+xY5Md+pW+OL7fsxhxeXoUHWR+ /Bx2yLE5oFkobn3JSvAau/3dfDsP2GHFc3K21BCzKyP4HayseEfQwA4Gsg7Svx46 JTuFdFf6SgTHsQt+mrC8MLHnVipiwre+PTqd8DUnYSo= -----END CERTIFICATE-----Generated at Mon Oct 20 15:57:43 2025 by rpki-client