$ rpki-client -vvf repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa File: 3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: 0V++vp92hNCIFYG550YB/yE4XMO9oRZJXstb8V8vA9I= Subject key identifier: 55:F3:02:ED:2F:E2:90:83:37:A8:E4:95:20:09:4E:5D:93:46:B5:30 Certificate issuer: /CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D Certificate serial: 60256E224591BAF092E37377F9CFC599EB26FBB1 Authority key identifier: 15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa Signing time: Sun 28 Sep 2025 15:02:26 +0000 ROA not before: Sun 28 Sep 2025 14:57:26 +0000 ROA not after: Sun 27 Sep 2026 15:02:26 +0000 asID: 149409 IP address blocks: 103.164.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:25:6e:22:45:91:ba:f0:92:e3:73:77:f9:cf:c5:99:eb:26:fb:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D Validity Not Before: Sep 28 14:57:26 2025 GMT Not After : Sep 27 15:02:26 2026 GMT Subject: CN=55F302ED2FE2908337A8E49520094E5D9346B530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:93:09:b3:a3:14:06:e2:b6:ab:12:1f:6d:78: a6:7b:63:ee:a4:df:d1:53:06:2e:a7:de:82:7e:a4: 2a:0f:22:6c:ee:c3:30:e6:bd:ce:0e:a5:a6:f2:ee: fe:a9:a5:b7:a7:09:d0:cf:a9:5f:8a:64:ce:79:24: c7:db:6b:c8:c7:0f:c0:b3:82:73:23:e7:5f:fe:38: 0d:e4:0a:b5:72:df:1e:d2:4b:65:28:93:9d:17:55: 5e:88:33:4b:6c:69:e0:32:74:7d:33:e3:c9:bf:df: 24:5c:08:f7:fa:32:4c:3a:bb:2f:63:3e:42:ba:e4: 36:6d:ea:9e:7a:51:59:40:5e:49:5f:ca:f0:f5:29: ce:72:a7:8c:4b:ec:5e:c0:98:57:7b:7a:bd:75:3b: 3f:3f:bf:d3:21:d8:dd:66:9d:45:03:40:84:2a:89: 90:58:86:2f:26:63:bd:4f:30:c9:72:11:f8:d9:75: b6:d4:fe:82:f9:5f:4c:51:9a:f7:89:c6:6f:1a:d6: a5:63:db:95:7f:39:06:d4:82:7d:d9:48:78:00:1f: af:67:2b:a7:89:bc:39:8e:c3:9b:f4:99:64:2a:32: 00:fa:76:aa:92:2e:c5:0e:be:16:56:b1:84:18:43: 1d:1b:92:76:13:58:2b:af:82:07:33:5f:66:ea:4d: f2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F3:02:ED:2F:E2:90:83:37:A8:E4:95:20:09:4E:5D:93:46:B5:30 X509v3 Authority Key Identifier: keyid:15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.69.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:31:f5:f4:81:b2:a9:5f:ab:d5:bd:01:62:3a:57:59:4a:64: 5e:3b:45:e4:0a:7c:cf:e4:c9:b8:60:88:c5:4d:e4:dc:14:92: ab:08:79:c3:53:e6:03:9c:6c:1b:43:13:39:4b:39:e4:3e:cb: 00:1a:25:ee:df:93:10:f9:e3:e2:71:c4:a9:e4:50:14:14:74: ff:03:b2:84:bb:7c:1e:39:73:69:e2:92:39:8f:fe:3d:c0:78: 82:3a:fd:a5:02:81:18:29:59:1e:db:02:03:25:e1:9a:1c:23: eb:33:85:65:d3:56:b9:af:ea:8c:f1:5f:d1:0a:9f:d8:8f:33: 38:37:70:35:d3:00:f7:05:a8:3e:68:cc:5f:47:2a:fc:7f:32: 95:e8:54:8b:ca:80:31:88:2f:cc:a7:13:12:12:37:f2:97:ac: 71:df:d1:63:89:19:67:79:c4:8a:2a:4e:37:23:f8:f4:1e:9d: 74:50:79:b4:7a:52:7e:cb:e4:6e:4f:e2:25:d6:a3:ec:1e:bb: 0c:cf:3a:9e:4c:3b:39:55:4a:cb:a1:d5:d2:b1:78:71:1e:00: 6a:75:cd:86:b1:95:2e:15:18:1e:8d:61:5d:4c:aa:08:51:57: 94:7b:d3:c7:f8:62:0f:b7:22:d0:c7:ef:1d:58:c2:0e:d4:61: 8a:8d:b9:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYCVuIkWRuvCS43N3+c/Fmesm+7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3QTI1RDE3MUUxQUQyRkFCNjk1RjQ5QkRDMjU1NTc1 NUI2RUQ3RDAeFw0yNTA5MjgxNDU3MjZaFw0yNjA5MjcxNTAyMjZaMDMxMTAvBgNV BAMTKDU1RjMwMkVEMkZFMjkwODMzN0E4RTQ5NTIwMDk0RTVEOTM0NkI1MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCkwmzoxQG4rarEh9teKZ7Y+6k 39FTBi6n3oJ+pCoPImzuwzDmvc4Opaby7v6ppbenCdDPqV+KZM55JMfba8jHD8Cz gnMj51/+OA3kCrVy3x7SS2Uok50XVV6IM0tsaeAydH0z48m/3yRcCPf6Mkw6uy9j PkK65DZt6p56UVlAXklfyvD1Kc5yp4xL7F7AmFd7er11Oz8/v9Mh2N1mnUUDQIQq iZBYhi8mY71PMMlyEfjZdbbU/oL5X0xRmveJxm8a1qVj25V/OQbUgn3ZSHgAH69n K6eJvDmOw5v0mWQqMgD6dqqSLsUOvhZWsYQYQx0bknYTWCuvggczX2bqTfIzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVfMC7S/ikIM3qOSVIAlOXZNGtTAwHwYDVR0j BBgwFoAUFXol0XHhrS+raV9JvcJVV1W27X0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGI2YjNiYy1mYTY1LTQ5ZjMtYWY2MS0wZDVkYzM5MzM0YTEvMC8xNTdBMjVEMTcx RTFBRDJGQUI2OTVGNDlCREMyNTU1NzU1QjZFRDdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3QTI1RDE3MUUxQUQyRkFCNjk1RjQ5QkRDMjU1NTc1NUI2 RUQ3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkYjZiM2JjLWZhNjUtNDlmMy1h ZjYxLTBkNWRjMzkzMzRhMS8wLzMxMzAzMzJlMzEzNjM0MmUzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6RFMA0GCSqG SIb3DQEBCwUAA4IBAQCKMfX0gbKpX6vVvQFiOldZSmReO0XkCnzP5Mm4YIjFTeTc FJKrCHnDU+YDnGwbQxM5SznkPssAGiXu35MQ+ePiccSp5FAUFHT/A7KEu3weOXNp 4pI5j/49wHiCOv2lAoEYKVke2wIDJeGaHCPrM4Vl01a5r+qM8V/RCp/YjzM4N3A1 0wD3Bag+aMxfRyr8fzKV6FSLyoAxiC/MpxMSEjfyl6xx39FjiRlnecSKKk43I/j0 Hp10UHm0elJ+y+RuT+Il1qPsHrsMzzqeTDs5VUrLodXSsXhxHgBqdc2GsZUuFRge jWFdTKoIUVeUe9PH+GIPtyLQx+8dWMIO1GGKjbll -----END CERTIFICATE-----Generated at Tue Oct 21 00:01:25 2025 by rpki-client