$ rpki-client -vvf repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa File: 3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa (raw, json) Hash identifier: BM3/ntG2tCXetdLzUXN2Dv36rJzRqgaPhlxdrf1W2CU= Subject key identifier: 3C:07:8D:63:9A:DC:90:D5:62:5E:B0:F5:0A:2B:0B:F1:F6:33:4E:6F Certificate issuer: /CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Certificate serial: 27F35D5623BF6F6167AF080B23FC5AE674B76DC3 Authority key identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa Signing time: Wed 17 Sep 2025 09:03:21 +0000 ROA not before: Wed 17 Sep 2025 08:58:21 +0000 ROA not after: Wed 16 Sep 2026 09:03:21 +0000 asID: 139382 IP address blocks: 103.142.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.crl rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 10:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f3:5d:56:23:bf:6f:61:67:af:08:0b:23:fc:5a:e6:74:b7:6d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Validity Not Before: Sep 17 08:58:21 2025 GMT Not After : Sep 16 09:03:21 2026 GMT Subject: CN=3C078D639ADC90D5625EB0F50A2B0BF1F6334E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8c:e7:d2:35:2c:da:fe:70:0e:2c:02:e0:f8: b2:28:7e:a2:01:4e:82:a3:47:57:00:a5:22:3b:7f: a7:01:80:da:4f:f2:0e:8e:18:0b:1e:88:57:c9:a2: 9d:88:c7:04:5a:c1:93:3a:5d:26:5d:4c:02:15:81: 7c:ef:2c:4b:82:49:d4:2f:49:a0:23:6a:62:6b:b9: 8f:66:44:b0:60:12:10:9c:a5:fe:99:c9:a4:2e:9e: d7:c5:f4:85:a9:24:42:a9:b3:0a:df:29:52:6d:e6: 66:4d:73:3f:a1:a2:3b:b7:77:fc:81:1c:79:64:ab: 0b:9f:3f:4d:85:c5:78:74:f1:a6:66:ed:a8:43:3e: d6:57:ae:e5:b6:19:b4:6e:72:92:67:38:86:20:4f: 6f:73:ff:69:55:65:15:06:17:57:0f:58:e8:67:2c: b0:b4:78:bd:7d:ab:03:35:b4:ad:21:34:54:35:f9: d8:0f:e6:fa:3a:bb:7f:99:ed:af:19:07:b8:9a:0c: ff:0a:cf:85:6d:8e:38:2f:24:14:bb:ee:43:42:b6: 72:84:a6:e2:7f:26:70:87:53:e7:8b:e6:f7:44:fe: fe:a4:25:21:8f:18:9c:93:6c:b9:57:73:d4:87:1d: 96:13:a9:f7:48:5d:96:b8:1c:bd:93:97:a2:07:f9: b6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:07:8D:63:9A:DC:90:D5:62:5E:B0:F5:0A:2B:0B:F1:F6:33:4E:6F X509v3 Authority Key Identifier: keyid:5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.241.0/24 Signature Algorithm: sha256WithRSAEncryption 63:2f:e8:a1:98:c1:31:4f:c8:ea:c6:60:b3:fa:89:f3:23:f4: 9e:ce:af:f4:c0:2b:d6:34:23:2e:0b:29:37:4d:d7:74:61:c8: ed:ed:f0:7b:98:77:5a:77:b8:31:67:b2:3a:d5:0e:e3:bb:2f: 12:a1:da:26:45:43:4d:36:b1:bc:ce:27:4f:37:43:87:90:4b: bc:a9:72:e0:3c:85:78:90:ee:5b:3e:f8:99:96:cc:7b:b1:b2: 56:aa:d9:c4:22:da:70:c6:cc:79:32:89:91:78:2d:f1:fb:99: e3:75:39:0b:85:a3:34:1c:44:ee:56:da:f4:be:53:1f:de:2f: be:32:67:4f:ab:9d:b9:4c:e4:a5:e9:2f:9e:84:74:f3:91:09: 3b:f5:fa:01:5b:64:ca:6f:cd:bb:7a:68:cc:b3:6a:c5:e2:f3: 55:a0:e6:73:60:87:4d:91:b7:ed:a5:8b:91:a6:07:65:62:9e: 89:1f:f1:e7:f9:a5:98:72:97:98:53:75:f7:c0:0f:49:f3:f0: ad:19:44:95:fe:ca:55:ef:5f:59:29:f3:5c:b0:be:a3:39:be: e3:4b:e5:65:6e:07:62:cb:11:d4:8f:a6:0c:f1:f5:66:63:52: 8e:2b:24:82:cc:26:45:3f:57:95:f9:0e:98:50:bb:8e:bd:bf: b5:62:db:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ/NdViO/b2FnrwgLI/xa5nS3bcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEzM0U2QjgyMDAwNDg3QjIwNEQyRTI4NEJDQTEwQUYy OTNDQjQxRTAeFw0yNTA5MTcwODU4MjFaFw0yNjA5MTYwOTAzMjFaMDMxMTAvBgNV BAMTKDNDMDc4RDYzOUFEQzkwRDU2MjVFQjBGNTBBMkIwQkYxRjYzMzRFNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqjOfSNSza/nAOLALg+LIofqIB ToKjR1cApSI7f6cBgNpP8g6OGAseiFfJop2IxwRawZM6XSZdTAIVgXzvLEuCSdQv SaAjamJruY9mRLBgEhCcpf6ZyaQuntfF9IWpJEKpswrfKVJt5mZNcz+hoju3d/yB HHlkqwufP02FxXh08aZm7ahDPtZXruW2GbRucpJnOIYgT29z/2lVZRUGF1cPWOhn LLC0eL19qwM1tK0hNFQ1+dgP5vo6u3+Z7a8ZB7iaDP8Kz4VtjjgvJBS77kNCtnKE puJ/JnCHU+eL5vdE/v6kJSGPGJyTbLlXc9SHHZYTqfdIXZa4HL2Tl6IH+bYZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPAeNY5rckNViXrD1CisL8fYzTm8wHwYDVR0j BBgwFoAUWjPmuCAASHsgTS4oS8oQryk8tB4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTQxYmE3ZS02YzQyLTRjMjItYjEzYy01NDhmYzcyNzJhM2QvMC81QTMzRTZCODIw MDA0ODdCMjA0RDJFMjg0QkNBMTBBRjI5M0NCNDFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEzM0U2QjgyMDAwNDg3QjIwNEQyRTI4NEJDQTEwQUYyOTND QjQxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlNDFiYTdlLTZjNDItNGMyMi1i MTNjLTU0OGZjNzI3MmEzZC8wLzMxMzAzMzJlMzEzNDMyMmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjvEwDQYJ KoZIhvcNAQELBQADggEBAGMv6KGYwTFPyOrGYLP6ifMj9J7Or/TAK9Y0Iy4LKTdN 13RhyO3t8HuYd1p3uDFnsjrVDuO7LxKh2iZFQ002sbzOJ083Q4eQS7ypcuA8hXiQ 7ls++JmWzHuxslaq2cQi2nDGzHkyiZF4LfH7meN1OQuFozQcRO5W2vS+Ux/eL74y Z0+rnblM5KXpL56EdPORCTv1+gFbZMpvzbt6aMyzasXi81Wg5nNgh02Rt+2li5Gm B2Vinokf8ef5pZhyl5hTdffAD0nz8K0ZRJX+ylXvX1kp81ywvqM5vuNL5WVuB2LL EdSPpgzx9WZjUo4rJILMJkU/V5X5DphQu469v7Vi2zk= -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:43 2025 by rpki-client