$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35332e302f32342d3234203d3e20313430343739.roa File: 3130332e3135342e35332e302f32342d3234203d3e20313430343739.roa (raw, json) Hash identifier: XMfcxb2cyU/BTawAea91z/0xjspg0vqpK5L29ZTTMeY= Subject key identifier: D4:09:4F:82:E2:12:4A:06:C8:26:68:3D:94:51:AE:0E:89:BB:68:A0 Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 5B9CA84258EF79BE26E4B2144F020142FA7111A4 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35332e302f32342d3234203d3e20313430343739.roa Signing time: Tue 07 Oct 2025 11:02:26 +0000 ROA not before: Tue 07 Oct 2025 10:57:26 +0000 ROA not after: Tue 06 Oct 2026 11:02:26 +0000 asID: 140479 IP address blocks: 103.154.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:9c:a8:42:58:ef:79:be:26:e4:b2:14:4f:02:01:42:fa:71:11:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Oct 7 10:57:26 2025 GMT Not After : Oct 6 11:02:26 2026 GMT Subject: CN=D4094F82E2124A06C826683D9451AE0E89BB68A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:aa:fc:12:4d:a0:a5:a7:ba:8d:ca:64:f1:58: 8d:67:44:6d:48:20:1a:e4:ee:19:f0:e6:ae:0f:67: c0:e6:9f:12:30:3f:85:16:0a:4e:51:85:21:4b:75: 68:50:42:35:53:2d:d0:8e:46:cb:2b:89:e3:08:b3: 32:3f:e4:cd:16:48:18:a6:3c:3d:59:0c:ab:a4:bd: 5c:8c:aa:c9:46:bd:02:98:ec:13:aa:5d:59:b7:86: 2f:85:9c:c8:94:9c:88:53:f9:d3:92:76:42:0d:c7: 3a:d1:fe:e7:09:37:a7:00:a1:8f:90:9c:34:4f:1d: ee:17:91:01:3b:d9:63:98:74:48:ba:bb:74:c8:9f: ed:19:22:e0:b5:9a:a2:d7:85:f1:71:23:8f:94:c1: 8b:b8:e3:4e:91:79:1b:fc:01:a7:ac:3a:96:55:7d: 39:fe:12:9c:00:49:4d:ac:d5:e3:cc:a5:5c:81:09: a3:ab:ac:5e:18:01:19:3c:c9:a9:f5:07:7c:3f:77: f6:85:59:89:7d:9e:ee:41:20:6c:7d:98:38:8b:0c: f4:9a:76:c3:01:0c:8d:0e:8d:4c:9e:b5:64:9f:6f: 8a:07:22:2b:ed:16:b7:af:3a:04:6b:60:d6:fa:17: 8f:48:73:a2:1f:7c:d7:27:d4:ca:18:9e:b4:e9:52: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:09:4F:82:E2:12:4A:06:C8:26:68:3D:94:51:AE:0E:89:BB:68:A0 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35332e302f32342d3234203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.53.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:1a:68:7d:53:cb:e4:20:5c:35:9c:11:ae:22:84:12:d1:a1: 62:f8:13:d3:61:86:71:54:3d:8d:12:af:cf:93:2c:89:56:ce: 50:52:1e:da:c5:b3:49:6a:27:53:c1:97:c4:7e:c5:c8:81:9d: 0c:ae:7d:33:8d:65:c0:f3:47:e7:b9:05:ab:a7:ff:91:63:8d: a6:a2:0c:50:20:19:b8:29:0f:a7:d0:f8:39:c5:d0:0a:53:cb: 28:d8:e6:11:24:72:09:71:ac:44:e1:6a:6c:5c:c8:ea:f9:21: 0c:70:bf:dc:2e:85:eb:8e:51:ae:58:51:05:12:1b:04:e4:8f: 58:c6:d1:02:0c:54:90:0d:cc:a6:e9:81:82:91:86:e9:0a:3d: 7d:4b:a8:29:17:e3:f8:4c:d8:bf:b5:32:8f:4e:d1:06:98:55: 99:70:8a:88:e4:e8:dc:b9:8d:08:a0:e0:e9:30:75:6b:ae:26: a0:ea:b3:c0:1e:42:4c:72:d4:b3:02:37:92:bb:c2:b2:57:2f: c1:2e:4e:3c:87:4e:e9:94:89:ae:2b:44:c9:0e:80:eb:6f:92: a4:9b:f9:b4:56:49:10:26:6e:49:4d:88:90:5a:70:2f:98:1a: dc:e1:7c:86:1c:e9:e2:64:ce:74:a6:9b:f4:4e:6f:11:40:90: 77:a9:5c:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW5yoQljveb4m5LIUTwIBQvpxEaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNTEwMDcxMDU3MjZaFw0yNjEwMDYxMTAyMjZaMDMxMTAvBgNV BAMTKEQ0MDk0RjgyRTIxMjRBMDZDODI2NjgzRDk0NTFBRTBFODlCQjY4QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCqvwSTaClp7qNymTxWI1nRG1I IBrk7hnw5q4PZ8DmnxIwP4UWCk5RhSFLdWhQQjVTLdCORssrieMIszI/5M0WSBim PD1ZDKukvVyMqslGvQKY7BOqXVm3hi+FnMiUnIhT+dOSdkINxzrR/ucJN6cAoY+Q nDRPHe4XkQE72WOYdEi6u3TIn+0ZIuC1mqLXhfFxI4+UwYu4406ReRv8AaesOpZV fTn+EpwASU2s1ePMpVyBCaOrrF4YARk8yan1B3w/d/aFWYl9nu5BIGx9mDiLDPSa dsMBDI0OjUyetWSfb4oHIivtFrevOgRrYNb6F49Ic6IffNcn1MoYnrTpUuItAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1AlPguISSgbIJmg9lFGuDom7aKAwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMxMzAzMzJlMzEzNTM0MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5o1MA0GCSqG SIb3DQEBCwUAA4IBAQBrGmh9U8vkIFw1nBGuIoQS0aFi+BPTYYZxVD2NEq/PkyyJ Vs5QUh7axbNJaidTwZfEfsXIgZ0Mrn0zjWXA80fnuQWrp/+RY42mogxQIBm4KQ+n 0Pg5xdAKU8so2OYRJHIJcaxE4WpsXMjq+SEMcL/cLoXrjlGuWFEFEhsE5I9YxtEC DFSQDcym6YGCkYbpCj19S6gpF+P4TNi/tTKPTtEGmFWZcIqI5OjcuY0IoODpMHVr riag6rPAHkJMctSzAjeSu8KyVy/BLk48h07plImuK0TJDoDrb5Kkm/m0VkkQJm5J TYiQWnAvmBrc4XyGHOniZM50ppv0Tm8RQJB3qVxC -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:59 2025 by rpki-client