$ rpki-client -vvf repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234302e302f32342d3234203d3e20313339333832.roa File: 3130332e3134322e3234302e302f32342d3234203d3e20313339333832.roa (raw, json) Hash identifier: r9SVfRPCCO6Vtp/Ep+AtielHzNI3IGy4ov5IgZ3sTaU= Subject key identifier: 27:9E:39:6A:5A:AD:54:A9:62:A3:4E:3F:59:63:C8:2A:5F:39:C6:10 Certificate issuer: /CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Certificate serial: 52DF948FE4B0E7F11287C4FCBC3AD25DFA94A235 Authority key identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234302e302f32342d3234203d3e20313339333832.roa Signing time: Wed 17 Sep 2025 09:03:21 +0000 ROA not before: Wed 17 Sep 2025 08:58:21 +0000 ROA not after: Wed 16 Sep 2026 09:03:21 +0000 asID: 139382 IP address blocks: 103.142.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.crl rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 10:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:df:94:8f:e4:b0:e7:f1:12:87:c4:fc:bc:3a:d2:5d:fa:94:a2:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Validity Not Before: Sep 17 08:58:21 2025 GMT Not After : Sep 16 09:03:21 2026 GMT Subject: CN=279E396A5AAD54A962A34E3F5963C82A5F39C610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9b:6c:c4:cf:83:c9:f4:41:10:ad:54:4b:68: d2:4c:9f:e6:e9:67:1f:b9:2a:28:6e:55:d2:54:df: e8:af:96:f8:e2:88:ee:5a:d7:98:e4:88:48:19:17: 1f:ba:b8:ac:6e:e3:7c:9c:d0:1f:cf:0c:d9:71:c8: ba:c6:65:dc:eb:de:79:17:73:2a:87:31:76:83:1f: 24:37:58:f0:57:0d:fb:8c:0b:f0:40:5c:64:98:10: eb:ed:70:45:f3:f9:9e:54:ce:dd:b5:9c:cb:24:d0: df:41:85:4a:15:90:bc:66:49:1b:34:7c:eb:aa:17: 80:b7:94:22:64:c6:a5:e8:75:d0:c9:8d:96:8b:27: 84:fb:d4:4d:7d:7a:1d:70:5b:57:c7:78:36:31:f5: 27:7d:bf:38:ce:bc:fd:58:d6:6e:3b:fd:1b:78:8d: c4:52:61:23:6e:e8:35:5b:a9:8f:95:2d:fa:4a:8c: 87:41:e8:fa:50:b2:7c:8d:25:36:7d:5c:1d:56:d8: 3d:c7:e9:a4:16:61:a9:f9:98:0e:1e:46:18:5e:0e: 96:b2:49:e3:06:ec:7d:38:d7:ef:d2:e1:8d:13:4b: 04:14:16:9e:59:9b:49:c8:56:d6:cc:13:a2:d3:5b: 89:c8:c9:8e:fb:a8:c6:29:5b:de:d1:d7:ba:9f:0f: 31:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9E:39:6A:5A:AD:54:A9:62:A3:4E:3F:59:63:C8:2A:5F:39:C6:10 X509v3 Authority Key Identifier: keyid:5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234302e302f32342d3234203d3e20313339333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.240.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:d1:ee:8a:b7:9a:c4:7e:14:a8:0a:39:60:42:45:f1:c0:e8: c6:11:fa:e8:da:d6:65:76:a6:3f:b1:95:12:40:a4:6f:78:47: 2a:73:82:d8:08:99:07:1a:d6:58:93:14:e0:3a:e7:62:4e:11: 8c:71:56:60:25:70:ab:b7:95:7e:f3:c4:fc:b4:82:f6:ac:bc: be:fc:ed:2d:5c:3c:79:d8:90:62:f0:a4:05:aa:e7:4c:fd:84: 09:c6:55:28:0d:ec:cc:25:4c:2b:28:c3:51:e6:39:c0:ee:d9: 72:9a:a3:0d:3c:87:03:b0:82:a9:7d:6a:ac:7f:37:6e:76:ed: 5f:7d:1e:5d:b4:d6:c6:00:d3:43:4f:23:42:01:cd:1c:48:16: d4:41:f6:54:b4:13:20:b0:c2:b5:5a:cc:31:44:91:a0:21:0b: 9c:db:47:e1:00:3e:64:5c:d3:e2:41:d1:38:89:67:63:af:e3: be:ad:49:8e:91:4f:8e:37:18:97:3c:02:a7:0a:ee:0d:79:38: c8:91:08:59:d7:d2:6f:fa:6b:81:c4:4c:61:ee:18:03:85:89: ff:65:b3:52:78:e6:8c:50:5e:17:f2:6a:79:47:96:65:24:d7: 26:a6:3b:e7:3a:ee:cd:11:92:53:77:b2:88:b1:fe:e1:22:86: 2f:41:0b:48 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUt+Uj+Sw5/ESh8T8vDrSXfqUojUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEzM0U2QjgyMDAwNDg3QjIwNEQyRTI4NEJDQTEwQUYy OTNDQjQxRTAeFw0yNTA5MTcwODU4MjFaFw0yNjA5MTYwOTAzMjFaMDMxMTAvBgNV BAMTKDI3OUUzOTZBNUFBRDU0QTk2MkEzNEUzRjU5NjNDODJBNUYzOUM2MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcm2zEz4PJ9EEQrVRLaNJMn+bp Zx+5KihuVdJU3+ivlvjiiO5a15jkiEgZFx+6uKxu43yc0B/PDNlxyLrGZdzr3nkX cyqHMXaDHyQ3WPBXDfuMC/BAXGSYEOvtcEXz+Z5Uzt21nMsk0N9BhUoVkLxmSRs0 fOuqF4C3lCJkxqXoddDJjZaLJ4T71E19eh1wW1fHeDYx9Sd9vzjOvP1Y1m47/Rt4 jcRSYSNu6DVbqY+VLfpKjIdB6PpQsnyNJTZ9XB1W2D3H6aQWYan5mA4eRhheDpay SeMG7H041+/S4Y0TSwQUFp5Zm0nIVtbME6LTW4nIyY77qMYpW97R17qfDzEdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJ545alqtVKlio04/WWPIKl85xhAwHwYDVR0j BBgwFoAUWjPmuCAASHsgTS4oS8oQryk8tB4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTQxYmE3ZS02YzQyLTRjMjItYjEzYy01NDhmYzcyNzJhM2QvMC81QTMzRTZCODIw MDA0ODdCMjA0RDJFMjg0QkNBMTBBRjI5M0NCNDFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEzM0U2QjgyMDAwNDg3QjIwNEQyRTI4NEJDQTEwQUYyOTND QjQxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlNDFiYTdlLTZjNDItNGMyMi1i MTNjLTU0OGZjNzI3MmEzZC8wLzMxMzAzMzJlMzEzNDMyMmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjvAwDQYJ KoZIhvcNAQELBQADggEBAI/R7oq3msR+FKgKOWBCRfHA6MYR+uja1mV2pj+xlRJA pG94RypzgtgImQca1liTFOA652JOEYxxVmAlcKu3lX7zxPy0gvasvL787S1cPHnY kGLwpAWq50z9hAnGVSgN7MwlTCsow1HmOcDu2XKaow08hwOwgql9aqx/N2527V99 Hl201sYA00NPI0IBzRxIFtRB9lS0EyCwwrVazDFEkaAhC5zbR+EAPmRc0+JB0TiJ Z2Ov476tSY6RT443GJc8AqcK7g15OMiRCFnX0m/6a4HETGHuGAOFif9ls1J45oxQ XhfyanlHlmUk1yamO+c67s0RklN3soix/uEihi9BC0g= -----END CERTIFICATE-----Generated at Mon Oct 20 15:33:25 2025 by rpki-client