$ rpki-client -vvf repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa File: 3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa (raw, json) Hash identifier: 6h4OUe35cAilH9aTLCHLFwR0jWsvbybacQ9mi2j6ujA= Subject key identifier: D9:B7:CE:0B:26:03:DF:BF:C5:98:CD:39:6D:60:41:FB:7E:15:AC:74 Certificate issuer: /CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Certificate serial: 20506C056C2BBC6C7F056E63E262F79DD2CB39CE Authority key identifier: 94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa Signing time: Thu 18 Sep 2025 10:00:01 +0000 ROA not before: Thu 18 Sep 2025 09:55:01 +0000 ROA not after: Thu 17 Sep 2026 10:00:01 +0000 asID: 136121 IP address blocks: 103.154.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:50:6c:05:6c:2b:bc:6c:7f:05:6e:63:e2:62:f7:9d:d2:cb:39:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Validity Not Before: Sep 18 09:55:01 2025 GMT Not After : Sep 17 10:00:01 2026 GMT Subject: CN=D9B7CE0B2603DFBFC598CD396D6041FB7E15AC74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:34:0d:39:b5:89:4f:73:16:f1:5b:a2:8f:d8: 84:98:5b:b6:f4:ff:20:50:0f:07:81:d6:14:10:46: 1f:9b:e3:72:95:64:08:c1:c6:18:e8:39:62:12:7a: 61:ef:d2:96:d3:a9:cd:c0:fe:ae:72:4f:ab:ca:24: 04:98:7e:a0:6a:7f:65:5d:83:44:21:96:9c:64:5a: f2:2e:2c:d0:2a:c5:7f:1f:c7:3c:9f:9d:7d:97:d0: 4c:8f:82:cb:2a:06:4f:90:69:07:a8:29:d9:09:98: 33:bc:e1:56:b7:11:63:39:cf:bd:03:23:d0:ca:10: b0:e1:e7:01:ae:13:16:ca:11:ae:5e:66:e4:a1:23: e5:9e:7a:25:bb:7c:38:f4:7f:d7:1d:61:51:bc:4b: 63:95:92:cc:fc:19:30:7e:49:6f:79:23:89:62:b3: af:01:b3:1f:4a:bd:5c:78:2e:62:3f:59:4d:76:7f: 17:70:ac:8c:d3:a9:3e:8c:dd:a7:cb:7d:09:ba:56: a3:28:6d:30:1d:68:63:62:4e:50:6f:91:f2:84:7f: a1:07:90:f5:c8:f4:4a:ee:30:49:e0:8c:58:3f:25: 6b:c7:11:01:49:73:2e:e0:01:39:cd:41:04:79:58: 9c:3b:4e:15:56:26:78:7f:dc:50:98:18:c5:66:c5: e9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B7:CE:0B:26:03:DF:BF:C5:98:CD:39:6D:60:41:FB:7E:15:AC:74 X509v3 Authority Key Identifier: keyid:94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.231.0/24 Signature Algorithm: sha256WithRSAEncryption c4:de:91:72:52:c3:35:6c:bc:bb:e9:5f:f7:5e:22:df:c1:2d: ff:21:38:81:a0:c1:fa:c5:e3:8a:28:80:b1:aa:7f:de:47:c2: 29:7e:45:25:27:70:94:2d:3f:1f:ee:b0:02:52:97:23:0c:a9: 68:e2:16:49:af:15:9d:b1:57:a5:70:1a:1a:f5:bb:b8:55:e9: 1f:bd:06:3e:f6:b1:66:d5:eb:c6:bf:ea:c2:77:2c:1e:08:f0: 7f:d3:8d:f4:5b:b9:eb:49:66:ab:e8:f9:f7:7c:e2:22:1a:dd: 00:ab:56:e9:7b:ed:49:63:19:8e:2a:d1:96:b1:c2:49:ca:d1: 69:d6:2f:41:9e:0d:b2:b2:84:23:8d:f7:5e:b3:0d:84:23:f9: 49:e0:0a:44:3d:a8:81:21:e5:91:f1:49:70:b7:5c:03:fe:bd: d0:01:e0:3b:cf:f8:4a:9f:5e:c8:77:6f:7b:04:f6:c4:81:f8: 9d:13:3a:9a:d7:7c:4a:1f:66:5a:f9:36:2c:d3:39:1c:86:aa: 0f:8e:3b:ef:86:7d:69:dc:ff:1c:8d:18:93:02:75:22:50:79: 66:21:73:be:db:d7:81:d6:4e:3b:a5:ae:ec:57:11:26:a2:e0: fb:fd:51:45:87:56:f8:12:3d:ab:39:65:43:66:6a:3b:2f:2c: 1b:8b:81:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIFBsBWwrvGx/BW5j4mL3ndLLOc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMx Mzk5MjM4MzAeFw0yNTA5MTgwOTU1MDFaFw0yNjA5MTcxMDAwMDFaMDMxMTAvBgNV BAMTKEQ5QjdDRTBCMjYwM0RGQkZDNTk4Q0QzOTZENjA0MUZCN0UxNUFDNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDINA05tYlPcxbxW6KP2ISYW7b0 /yBQDweB1hQQRh+b43KVZAjBxhjoOWISemHv0pbTqc3A/q5yT6vKJASYfqBqf2Vd g0QhlpxkWvIuLNAqxX8fxzyfnX2X0EyPgssqBk+QaQeoKdkJmDO84Va3EWM5z70D I9DKELDh5wGuExbKEa5eZuShI+WeeiW7fDj0f9cdYVG8S2OVksz8GTB+SW95I4li s68Bsx9KvVx4LmI/WU12fxdwrIzTqT6M3afLfQm6VqMobTAdaGNiTlBvkfKEf6EH kPXI9EruMEngjFg/JWvHEQFJcy7gATnNQQR5WJw7ThVWJnh/3FCYGMVmxemfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2bfOCyYD37/FmM05bWBB+34VrHQwHwYDVR0j BBgwFoAUlPdbBM6+DfHQuSTs8a2cnBOZI4MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjEyN2ZlYi05NjE1LTRjNTgtYTNiYi1lZWY3YjdhNjU0N2UvMC85NEY3NUIwNENF QkUwREYxRDBCOTI0RUNGMUFEOUM5QzEzOTkyMzgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMxMzk5 MjM4My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyMTI3ZmViLTk2MTUtNGM1OC1h M2JiLWVlZjdiN2E2NTQ3ZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmucwDQYJ KoZIhvcNAQELBQADggEBAMTekXJSwzVsvLvpX/deIt/BLf8hOIGgwfrF44oogLGq f95Hwil+RSUncJQtPx/usAJSlyMMqWjiFkmvFZ2xV6VwGhr1u7hV6R+9Bj72sWbV 68a/6sJ3LB4I8H/TjfRbuetJZqvo+fd84iIa3QCrVul77UljGY4q0ZaxwknK0WnW L0GeDbKyhCON916zDYQj+UngCkQ9qIEh5ZHxSXC3XAP+vdAB4DvP+EqfXsh3b3sE 9sSB+J0TOprXfEofZlr5NizTORyGqg+OO++GfWnc/xyNGJMCdSJQeWYhc77b14HW TjulruxXESai4Pv9UUWHVvgSPas5ZUNmajsvLBuLgcM= -----END CERTIFICATE-----Generated at Tue Oct 21 11:40:39 2025 by rpki-client