$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa File: 3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa (raw, json) Hash identifier: HilnfBfyMvNFPQVFJ8bMdWO7V80Cp99wsDpOjOBytPM= Subject key identifier: D8:33:9B:68:F5:2C:83:3D:DF:9C:D1:2F:19:9A:6C:9F:CD:41:8B:9E Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 47E5A54CDD757D0AE5A0997B32DC73A1A4CC57BB Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa Signing time: Wed 01 Oct 2025 11:02:23 +0000 ROA not before: Wed 01 Oct 2025 10:57:23 +0000 ROA not after: Wed 30 Sep 2026 11:02:23 +0000 asID: 24198 IP address blocks: 103.155.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:47:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e5:a5:4c:dd:75:7d:0a:e5:a0:99:7b:32:dc:73:a1:a4:cc:57:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Oct 1 10:57:23 2025 GMT Not After : Sep 30 11:02:23 2026 GMT Subject: CN=D8339B68F52C833DDF9CD12F199A6C9FCD418B9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9d:0c:4d:c5:b9:0f:91:97:b2:f8:65:22:0a: 27:d0:25:8d:20:8b:7c:57:cd:88:45:67:1e:b7:47: dc:d5:aa:2c:57:24:3e:54:55:07:86:16:5e:3b:ce: 5f:a6:f2:96:47:af:fc:f8:15:bd:67:3f:01:aa:ed: 69:cb:4b:e5:d8:97:f6:c5:32:8d:45:8c:b6:17:b1: bc:52:04:a7:1f:5e:23:af:61:18:45:05:92:85:4c: e9:2a:35:92:a8:07:8e:e6:5e:c9:40:0c:10:e3:28: 00:bd:89:48:a5:68:63:79:e0:21:e1:f6:dc:9b:17: d6:bb:c7:87:28:bb:31:71:84:bf:74:36:a8:dc:93: 0c:a5:3a:b3:19:5f:76:1c:1a:c6:ee:02:26:38:a9: 51:c1:1f:d4:ee:0c:2e:8b:a2:1b:6c:fa:22:0b:43: b7:b7:14:16:52:7a:4a:a8:ad:08:ea:96:e3:3e:6e: c9:c2:af:10:4d:2f:a0:48:77:a4:a0:56:7a:ae:7e: 3e:4f:18:f8:6b:b3:82:1c:4f:91:b3:35:07:97:1d: c9:6c:79:20:e8:d1:a7:98:cf:cb:b9:a7:b0:b8:eb: 28:ad:39:10:0b:f7:a7:f4:65:a4:7b:78:36:24:2f: c3:03:d9:25:96:13:bc:5c:03:20:a6:72:bd:db:dd: 75:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:33:9B:68:F5:2C:83:3D:DF:9C:D1:2F:19:9A:6C:9F:CD:41:8B:9E X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.186.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:37:e3:67:ec:59:0e:a4:f0:f4:fb:e1:98:cc:e8:6e:4e:5b: 95:55:cd:05:b7:b7:a4:5e:fb:e3:e3:e2:f4:a7:e9:46:19:c2: 69:32:f6:cc:4e:9e:f0:5f:77:52:8f:28:46:1f:52:c7:28:b6: 5e:a1:8f:2d:e6:35:8d:3f:d8:12:35:3a:c8:bd:95:55:20:5a: a6:89:8e:f4:d2:3f:5f:58:0b:c8:32:32:34:ea:84:f3:25:89: d1:88:a3:b0:e6:ee:a3:b6:eb:7a:a5:47:fd:7c:f1:c7:21:8f: 2c:3f:50:16:5b:eb:16:55:53:c8:0d:9f:fc:0f:bf:a0:c1:cd: c5:92:2b:fd:c5:b6:31:c4:95:0b:8b:e1:0b:b5:66:01:8e:1f: 25:d8:c2:77:6c:78:7d:5b:65:00:7d:90:dc:25:b2:bc:9b:3c: 29:ed:28:9d:aa:86:f2:e7:ac:46:7d:f8:02:bf:45:c7:ef:c8: c6:c9:6c:a9:36:59:21:c3:9b:98:55:75:f7:5a:df:84:0d:12: 13:ea:45:66:7c:5e:50:4a:d3:fd:96:e9:09:75:b1:7b:62:dc: 21:8a:87:91:70:9d:d9:f6:81:52:cc:f8:f9:cb:7c:80:e3:3c: 81:87:64:77:65:8e:bf:a6:f1:d9:e7:2a:aa:c5:a1:ac:f2:ec: 6d:4b:b5:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR+WlTN11fQrloJl7MtxzoaTMV7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNTEwMDExMDU3MjNaFw0yNjA5MzAxMTAyMjNaMDMxMTAvBgNV BAMTKEQ4MzM5QjY4RjUyQzgzM0RERjlDRDEyRjE5OUE2QzlGQ0Q0MThCOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZnQxNxbkPkZey+GUiCifQJY0g i3xXzYhFZx63R9zVqixXJD5UVQeGFl47zl+m8pZHr/z4Fb1nPwGq7WnLS+XYl/bF Mo1FjLYXsbxSBKcfXiOvYRhFBZKFTOkqNZKoB47mXslADBDjKAC9iUilaGN54CHh 9tybF9a7x4couzFxhL90NqjckwylOrMZX3YcGsbuAiY4qVHBH9TuDC6Lohts+iIL Q7e3FBZSekqorQjqluM+bsnCrxBNL6BId6SgVnqufj5PGPhrs4IcT5GzNQeXHcls eSDo0aeYz8u5p7C46yitORAL96f0ZaR7eDYkL8MD2SWWE7xcAyCmcr3b3XUjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2DObaPUsgz3fnNEvGZpsn81Bi54wHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMjM0MzEzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5u6MA0GCSqG SIb3DQEBCwUAA4IBAQBeN+Nn7FkOpPD0++GYzOhuTluVVc0Ft7ekXvvj4+L0p+lG GcJpMvbMTp7wX3dSjyhGH1LHKLZeoY8t5jWNP9gSNTrIvZVVIFqmiY700j9fWAvI MjI06oTzJYnRiKOw5u6jtut6pUf9fPHHIY8sP1AWW+sWVVPIDZ/8D7+gwc3Fkiv9 xbYxxJULi+ELtWYBjh8l2MJ3bHh9W2UAfZDcJbK8mzwp7Sidqoby56xGffgCv0XH 78jGyWypNlkhw5uYVXX3Wt+EDRIT6kVmfF5QStP9lukJdbF7YtwhioeRcJ3Z9oFS zPj5y3yA4zyBh2R3ZY6/pvHZ5yqqxaGs8uxtS7Uj -----END CERTIFICATE-----Generated at Mon Oct 20 21:34:13 2025 by rpki-client