$ rpki-client -vvf repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa File: 3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: KGskRiaq/+lRAEP6f41FobsVw96uMstK/fLzsAVB4eg= Subject key identifier: EA:08:EB:48:CC:7B:4E:47:A1:9A:62:EA:18:50:3E:57:47:61:29:85 Certificate issuer: /CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Certificate serial: 7180426F6A2542A1338BBFE4FFF33AC7DD29818E Authority key identifier: 71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa Signing time: Sat 11 Oct 2025 07:00:04 +0000 ROA not before: Sat 11 Oct 2025 06:55:04 +0000 ROA not after: Sat 10 Oct 2026 07:00:04 +0000 asID: 133823 IP address blocks: 103.161.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 08:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:80:42:6f:6a:25:42:a1:33:8b:bf:e4:ff:f3:3a:c7:dd:29:81:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Validity Not Before: Oct 11 06:55:04 2025 GMT Not After : Oct 10 07:00:04 2026 GMT Subject: CN=EA08EB48CC7B4E47A19A62EA18503E5747612985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:18:a9:20:a2:0f:3b:b6:b0:6a:62:d0:59:53: 4f:54:a6:8c:ed:b7:0c:ea:9c:09:85:bd:f9:4e:a9: 65:b4:e4:ef:c8:49:e8:eb:c4:27:ee:ea:8f:29:7b: f0:b7:96:7a:aa:cf:30:52:7f:3a:0d:b0:b5:79:63: 36:71:21:9f:0f:37:13:0b:fb:90:9b:6e:5d:d7:4a: 98:09:41:0c:dc:91:46:20:e8:52:3e:7f:eb:52:3c: 23:8e:15:f0:14:b4:6c:45:bd:17:22:46:91:e6:7e: 7d:9a:3c:0d:16:72:ea:5e:39:fa:8b:ae:75:f6:60: e2:7c:d3:1b:88:ce:22:c2:18:8c:9c:87:57:d6:37: 4c:f4:d2:bd:0e:c8:47:dd:4e:ae:f8:87:b9:01:85: bc:34:47:74:51:a9:84:17:0c:f9:8b:cf:5b:4e:af: 56:e2:12:ed:9a:a4:f5:05:f5:a3:d2:47:38:9b:02: 3e:cc:c0:66:82:1b:84:03:4f:26:1c:f6:36:1d:5e: b6:83:22:90:05:31:76:67:77:0d:fc:35:6b:20:cd: 47:7e:55:61:37:8d:0b:a9:a9:53:49:20:00:fc:d2: 07:49:ca:40:77:ec:f8:3d:b9:72:f2:78:cc:70:5c: 77:8b:6a:cc:4e:74:35:4e:e9:4c:78:96:3b:62:8a: 49:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:08:EB:48:CC:7B:4E:47:A1:9A:62:EA:18:50:3E:57:47:61:29:85 X509v3 Authority Key Identifier: keyid:71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139312e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.191.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:e4:47:8c:d7:7d:18:3b:15:32:e6:1b:98:4e:1d:68:79:42: b8:e3:99:36:d9:9d:f1:d1:f7:8d:fb:03:33:dd:76:a5:c6:f1: 64:aa:14:f6:af:0b:fc:95:c7:b0:48:72:bc:ef:7e:93:c2:66: 24:00:25:75:7e:99:65:99:08:71:fa:42:ff:cc:20:fd:65:17: 8b:e4:44:ae:2d:eb:ed:58:11:49:40:ac:e3:f6:7c:82:b5:20: 80:dd:80:6a:5e:b9:30:97:32:5a:08:fd:c0:92:19:3a:79:d8: 9d:78:c5:32:c5:bc:d5:78:56:f7:1c:a9:ef:06:e5:36:da:6d: 56:5e:09:a2:6b:aa:52:12:81:66:78:51:41:5d:ba:fa:85:f4: c8:ca:72:9e:2e:89:9a:f4:c2:16:20:3b:44:67:39:5b:f3:2e: 04:82:cd:bb:af:c7:ec:de:2a:6d:47:08:63:5a:10:6d:5f:81: b8:78:83:16:55:f3:bc:59:e5:d5:ea:3a:99:0b:78:ca:02:67: 2d:ef:f3:98:39:79:b2:e3:89:ef:11:92:bd:58:77:3b:ed:00: 83:72:fe:75:41:85:5e:40:74:36:25:84:a5:d6:64:02:64:ab: 01:2c:4d:cb:88:49:52:7a:8b:93:a9:1f:15:05:fa:6a:df:85: 98:da:51:7d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcYBCb2olQqEzi7/k//M6x90pgY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1 Qzc3RTJDMTAeFw0yNTEwMTEwNjU1MDRaFw0yNjEwMTAwNzAwMDRaMDMxMTAvBgNV BAMTKEVBMDhFQjQ4Q0M3QjRFNDdBMTlBNjJFQTE4NTAzRTU3NDc2MTI5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCGKkgog87trBqYtBZU09Upozt twzqnAmFvflOqWW05O/ISejrxCfu6o8pe/C3lnqqzzBSfzoNsLV5YzZxIZ8PNxML +5Cbbl3XSpgJQQzckUYg6FI+f+tSPCOOFfAUtGxFvRciRpHmfn2aPA0WcupeOfqL rnX2YOJ80xuIziLCGIych1fWN0z00r0OyEfdTq74h7kBhbw0R3RRqYQXDPmLz1tO r1biEu2apPUF9aPSRzibAj7MwGaCG4QDTyYc9jYdXraDIpAFMXZndw38NWsgzUd+ VWE3jQupqVNJIAD80gdJykB37Pg9uXLyeMxwXHeLasxOdDVO6Ux4ljtiikmVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6gjrSMx7TkehmmLqGFA+V0dhKYUwHwYDVR0j BBgwFoAUcV3G3qgP5dif3GgsGcezD1x34sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTkxYjU5Yi0xY2E1LTQ0NjQtOTk4Mi1iZjZmNmQ4YTFjOTQvMC83MTVEQzZERUE4 MEZFNUQ4OUZEQzY4MkMxOUM3QjMwRjVDNzdFMkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1Qzc3 RTJDMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1OTFiNTliLTFjYTUtNDQ2NC05 OTgyLWJmNmY2ZDhhMWM5NC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnob8wDQYJ KoZIhvcNAQELBQADggEBACvkR4zXfRg7FTLmG5hOHWh5QrjjmTbZnfHR9437AzPd dqXG8WSqFPavC/yVx7BIcrzvfpPCZiQAJXV+mWWZCHH6Qv/MIP1lF4vkRK4t6+1Y EUlArOP2fIK1IIDdgGpeuTCXMloI/cCSGTp52J14xTLFvNV4Vvccqe8G5TbabVZe CaJrqlISgWZ4UUFduvqF9MjKcp4uiZr0whYgO0RnOVvzLgSCzbuvx+zeKm1HCGNa EG1fgbh4gxZV87xZ5dXqOpkLeMoCZy3v85g5ebLjie8Rkr1YdzvtAINy/nVBhV5A dDYlhKXWZAJkqwEsTcuISVJ6i5OpHxUF+mrfhZjaUX0= -----END CERTIFICATE-----Generated at Mon Oct 20 18:08:13 2025 by rpki-client