$ rpki-client -vvf repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa File: 3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa (raw, json) Hash identifier: /IMjB2zzS/R4jg1G0u5f9Z9fEjTEZBoII5eQSPdhRUM= Subject key identifier: AC:42:BF:1D:A1:28:F2:8F:75:5A:EA:E5:D5:5A:55:71:48:C7:CF:84 Certificate issuer: /CN=923816C042C964B6465A7BA06B2D44BDAF28D827 Certificate serial: 650000922235601B1AC26BE6852E383E70EBE923 Authority key identifier: 92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer Subject info access: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa Signing time: Mon 15 Sep 2025 10:00:01 +0000 ROA not before: Mon 15 Sep 2025 09:55:01 +0000 ROA not after: Mon 14 Sep 2026 10:00:01 +0000 asID: 149758 IP address blocks: 103.189.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.crl rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 10:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:00:00:92:22:35:60:1b:1a:c2:6b:e6:85:2e:38:3e:70:eb:e9:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923816C042C964B6465A7BA06B2D44BDAF28D827 Validity Not Before: Sep 15 09:55:01 2025 GMT Not After : Sep 14 10:00:01 2026 GMT Subject: CN=AC42BF1DA128F28F755AEAE5D55A557148C7CF84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:20:3b:fd:5a:e4:9e:69:ab:ed:7b:7b:c8:d8: 7c:92:ea:30:73:e3:db:1a:01:3d:df:02:9a:84:d5: d0:e6:92:1e:25:24:11:a3:41:23:7c:25:94:6c:4d: bd:2c:e6:86:85:c6:bc:90:39:64:58:e6:c4:0f:79: ab:51:9e:26:9a:32:66:22:23:d8:46:7a:c0:c2:93: 57:1f:94:e7:ff:d9:cd:13:03:59:0e:19:cf:7b:ee: bf:52:60:92:1c:83:6f:d5:ab:28:a7:e3:86:89:3b: 6f:ca:ce:3d:26:22:1e:08:05:06:0d:90:56:91:9b: 8a:a2:95:85:e0:5a:b1:ec:0d:b9:5f:8b:24:ce:95: b6:2d:d9:13:1d:95:40:42:1b:e2:76:64:2b:19:2e: db:e2:2d:ab:ec:f4:67:74:3b:6e:a1:4a:22:4a:52: 1f:52:e5:c0:62:3e:ac:0a:4a:eb:8d:99:ff:10:e1: 28:3f:fb:61:85:ef:5b:76:16:a9:1b:81:9c:8e:e6: 7e:9b:88:58:be:6e:d2:3a:19:a3:63:09:a9:1b:88: 3f:43:95:17:1b:de:b0:d6:5d:8c:39:f3:cc:cf:4e: 49:ae:4b:83:68:43:45:f1:e1:27:41:1c:9c:df:13: b3:b2:7c:4f:2c:d0:d3:7d:be:e5:63:3d:1e:f6:fa: 5f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:42:BF:1D:A1:28:F2:8F:75:5A:EA:E5:D5:5A:55:71:48:C7:CF:84 X509v3 Authority Key Identifier: keyid:92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.59.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:17:50:d9:eb:65:e0:03:9b:04:e0:7e:2c:0d:ee:86:a9:12: 59:34:2e:34:d1:56:55:62:43:6e:1c:cb:52:70:d1:84:02:d2: 0b:2d:4f:88:4e:69:89:7a:1f:85:c8:f5:16:d3:a4:27:e1:45: 8b:e1:94:d2:99:5d:0d:e6:03:9c:4c:dd:38:b6:95:82:a1:20: ec:ac:14:1b:bf:3b:de:2b:95:57:ae:b7:d6:da:53:c6:4c:5e: 84:74:b5:ec:91:ff:6b:10:4a:53:c6:12:c6:93:33:b1:91:d3: 66:02:1d:f7:37:b5:11:33:5d:04:42:f5:3c:4f:ff:02:25:03: 4d:f9:3d:76:ee:ac:3f:d5:3a:6a:cf:b0:bb:f7:45:d9:eb:37: 0e:d5:fb:da:a6:c6:35:11:b9:9a:b6:43:55:e4:91:dd:40:d3: e6:f3:03:b7:54:83:d9:50:2c:49:6a:1d:34:85:9b:d7:fd:9c: 8a:6e:94:49:eb:dc:b1:97:b5:da:1c:53:94:bc:5a:7e:53:be: 67:54:18:37:8d:e8:65:ff:aa:61:66:d2:ca:50:57:6d:ca:73: 87:36:57:14:f1:1a:c9:dd:ac:ba:55:39:cb:b3:de:5b:3a:43: 29:82:56:5f:cf:2b:39:6b:0f:c7:22:d9:4b:9a:5c:17:83:60: 0c:78:a9:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZQAAkiI1YBsawmvmhS44PnDr6SMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzODE2QzA0MkM5NjRCNjQ2NUE3QkEwNkIyRDQ0QkRB RjI4RDgyNzAeFw0yNTA5MTUwOTU1MDFaFw0yNjA5MTQxMDAwMDFaMDMxMTAvBgNV BAMTKEFDNDJCRjFEQTEyOEYyOEY3NTVBRUFFNUQ1NUE1NTcxNDhDN0NGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaIDv9WuSeaavte3vI2HyS6jBz 49saAT3fApqE1dDmkh4lJBGjQSN8JZRsTb0s5oaFxryQOWRY5sQPeatRniaaMmYi I9hGesDCk1cflOf/2c0TA1kOGc977r9SYJIcg2/Vqyin44aJO2/Kzj0mIh4IBQYN kFaRm4qilYXgWrHsDblfiyTOlbYt2RMdlUBCG+J2ZCsZLtviLavs9Gd0O26hSiJK Uh9S5cBiPqwKSuuNmf8Q4Sg/+2GF71t2FqkbgZyO5n6biFi+btI6GaNjCakbiD9D lRcb3rDWXYw588zPTkmuS4NoQ0Xx4SdBHJzfE7OyfE8s0NN9vuVjPR72+l+RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrEK/HaEo8o91Wurl1VpVcUjHz4QwHwYDVR0j BBgwFoAUkjgWwELJZLZGWnugay1Eva8o2CcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzdkZmI4OC1mYjUwLTQ4ZDEtYjkwZC1lNTI1MTAyZjRmNWUvMC85MjM4MTZDMDQy Qzk2NEI2NDY1QTdCQTA2QjJENDRCREFGMjhEODI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzODE2QzA0MkM5NjRCNjQ2NUE3QkEwNkIyRDQ0QkRBRjI4 RDgyNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzN2RmYjg4LWZiNTAtNDhkMS1i OTBkLWU1MjUxMDJmNGY1ZS8wLzMxMzAzMzJlMzEzODM5MmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ707MA0GCSqG SIb3DQEBCwUAA4IBAQCaF1DZ62XgA5sE4H4sDe6GqRJZNC400VZVYkNuHMtScNGE AtILLU+ITmmJeh+FyPUW06Qn4UWL4ZTSmV0N5gOcTN04tpWCoSDsrBQbvzveK5VX rrfW2lPGTF6EdLXskf9rEEpTxhLGkzOxkdNmAh33N7URM10EQvU8T/8CJQNN+T12 7qw/1Tpqz7C790XZ6zcO1fvapsY1EbmatkNV5JHdQNPm8wO3VIPZUCxJah00hZvX /ZyKbpRJ69yxl7XaHFOUvFp+U75nVBg3jehl/6phZtLKUFdtynOHNlcU8RrJ3ay6 VTnLs95bOkMpglZfzys5aw/HItlLmlwXg2AMeKnG -----END CERTIFICATE-----Generated at Mon Oct 20 14:22:02 2025 by rpki-client