$ rpki-client -vvf repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa File: 3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa (raw, json) Hash identifier: Vrmcu03T647sbP3GWEBBWylAAxqciaCOgVn/2H7+uB8= Subject key identifier: AB:98:5C:AE:93:E8:98:0D:25:D9:21:EE:4D:C0:2D:4B:4F:BB:21:CA Certificate issuer: /CN=5AE19AE3FA86591042AE694640539C9669DEC801 Certificate serial: 283EDA8F5FB7E78997392FC9DB49349E753B1173 Authority key identifier: 5A:E1:9A:E3:FA:86:59:10:42:AE:69:46:40:53:9C:96:69:DE:C8:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa Signing time: Thu 02 Oct 2025 03:05:28 +0000 ROA not before: Thu 02 Oct 2025 03:00:28 +0000 ROA not after: Thu 01 Oct 2026 03:05:28 +0000 asID: 150199 IP address blocks: 103.220.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.crl rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3e:da:8f:5f:b7:e7:89:97:39:2f:c9:db:49:34:9e:75:3b:11:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AE19AE3FA86591042AE694640539C9669DEC801 Validity Not Before: Oct 2 03:00:28 2025 GMT Not After : Oct 1 03:05:28 2026 GMT Subject: CN=AB985CAE93E8980D25D921EE4DC02D4B4FBB21CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ee:f2:f2:46:48:d5:7a:3e:f9:fb:7c:5e:5a: a1:a1:3f:b7:ad:78:23:7d:f5:ca:ee:ee:9a:58:42: d3:b1:13:a9:08:d8:df:82:b5:93:a3:f3:96:99:68: 99:0a:23:59:f9:73:a5:ed:f3:fa:5b:54:45:11:06: 52:53:63:3a:26:c8:b8:bc:a6:46:38:63:03:07:aa: 13:ed:d3:71:d8:14:73:66:8b:d6:6f:02:fc:ad:06: 63:e5:6b:1e:92:c2:28:07:c7:4f:6c:a8:e3:23:dc: 32:49:b3:6f:80:e8:b4:41:9e:1b:67:63:a4:33:39: cd:99:e1:f2:d9:de:1d:a5:ff:14:5a:50:8f:bc:9d: 84:9f:6e:b6:12:06:a9:97:aa:82:12:bf:83:12:cc: af:69:f0:73:5b:f2:d8:96:e5:1a:65:66:53:f3:7d: d2:3b:f7:02:09:05:45:91:11:b3:7a:2c:01:f9:19: 69:35:cf:30:25:4a:12:c6:de:6c:81:ae:1f:0f:29: 54:32:38:95:83:19:72:67:57:c6:9c:b5:48:3d:da: fe:63:98:52:b2:f1:13:99:5a:8a:64:3c:f1:a6:69: 2c:28:9b:13:7e:c4:ff:32:04:6b:09:58:df:62:26: 27:e1:7a:97:27:02:b5:db:71:e6:f0:7e:4d:0d:78: 16:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:98:5C:AE:93:E8:98:0D:25:D9:21:EE:4D:C0:2D:4B:4F:BB:21:CA X509v3 Authority Key Identifier: keyid:5A:E1:9A:E3:FA:86:59:10:42:AE:69:46:40:53:9C:96:69:DE:C8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.45.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:62:2e:c1:4d:ec:6e:d8:9a:03:61:54:0e:58:e2:dc:7a:e1: f5:34:a3:51:ef:e0:d6:99:ad:73:af:95:01:32:b6:27:b2:ab: e5:b8:1d:0e:0d:27:68:b7:d7:5b:9f:b5:1a:eb:ec:9a:65:45: 33:b0:fb:f6:ab:69:06:c1:f0:2e:e0:85:a9:13:51:1c:07:65: 0e:e6:23:1e:f2:2f:b0:0c:9e:b9:ce:03:fa:cb:2d:15:76:b8: 92:f8:d5:cc:8c:5a:04:9a:ca:a0:b0:ea:5d:db:26:f2:b6:02: 37:c2:b5:da:30:07:2f:df:6f:ab:8e:dc:33:96:e4:fd:42:2a: 61:5f:61:61:af:55:4f:0d:4c:51:2d:13:94:4b:5c:fc:fc:fe: ee:be:5f:fc:c0:41:de:bd:71:2e:ff:3b:31:2a:77:97:70:ce: bd:54:39:14:cb:68:6a:4d:6a:7b:60:94:90:f1:23:8c:7d:ab: 72:32:cb:bc:16:a8:d5:65:b5:a3:8f:73:74:b6:a5:1b:da:58: 5d:6a:8f:61:56:02:bd:70:50:42:4f:c5:c0:8d:d7:02:36:ac: dc:71:fd:bb:86:e9:95:71:f0:68:1c:42:c3:b9:f7:75:98:52: 7c:72:cb:91:42:0f:6e:85:3b:d9:28:f1:cb:fb:24:cf:6b:d9: 0a:21:8d:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKD7aj1+354mXOS/J20k0nnU7EXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFFMTlBRTNGQTg2NTkxMDQyQUU2OTQ2NDA1MzlDOTY2 OURFQzgwMTAeFw0yNTEwMDIwMzAwMjhaFw0yNjEwMDEwMzA1MjhaMDMxMTAvBgNV BAMTKEFCOTg1Q0FFOTNFODk4MEQyNUQ5MjFFRTREQzAyRDRCNEZCQjIxQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57vLyRkjVej75+3xeWqGhP7et eCN99cru7ppYQtOxE6kI2N+CtZOj85aZaJkKI1n5c6Xt8/pbVEURBlJTYzomyLi8 pkY4YwMHqhPt03HYFHNmi9ZvAvytBmPlax6SwigHx09sqOMj3DJJs2+A6LRBnhtn Y6QzOc2Z4fLZ3h2l/xRaUI+8nYSfbrYSBqmXqoISv4MSzK9p8HNb8tiW5RplZlPz fdI79wIJBUWREbN6LAH5GWk1zzAlShLG3myBrh8PKVQyOJWDGXJnV8actUg92v5j mFKy8ROZWopkPPGmaSwomxN+xP8yBGsJWN9iJifhepcnArXbcebwfk0NeBZdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUq5hcrpPomA0l2SHuTcAtS0+7IcowHwYDVR0j BBgwFoAUWuGa4/qGWRBCrmlGQFOclmneyAEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTcyOTI5MS1hMWE3LTRiMTktOTNmNi0xZDg0NTc0YTY3YWUvMC81QUUxOUFFM0ZB ODY1OTEwNDJBRTY5NDY0MDUzOUM5NjY5REVDODAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFFMTlBRTNGQTg2NTkxMDQyQUU2OTQ2NDA1MzlDOTY2OURF QzgwMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1NzI5MjkxLWExYTctNGIxOS05 M2Y2LTFkODQ1NzRhNjdhZS8wLzMxMzAzMzJlMzIzMjMwMmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wtMA0GCSqG SIb3DQEBCwUAA4IBAQAsYi7BTexu2JoDYVQOWOLceuH1NKNR7+DWma1zr5UBMrYn sqvluB0ODSdot9dbn7Ua6+yaZUUzsPv2q2kGwfAu4IWpE1EcB2UO5iMe8i+wDJ65 zgP6yy0VdriS+NXMjFoEmsqgsOpd2ybytgI3wrXaMAcv32+rjtwzluT9QiphX2Fh r1VPDUxRLROUS1z8/P7uvl/8wEHevXEu/zsxKneXcM69VDkUy2hqTWp7YJSQ8SOM fatyMsu8FqjVZbWjj3N0tqUb2lhdao9hVgK9cFBCT8XAjdcCNqzccf27humVcfBo HELDufd1mFJ8csuRQg9uhTvZKPHL+yTPa9kKIY1x -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:52 2025 by rpki-client