$ rpki-client -vvf repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/3130332e3136372e3133322e302f32332d3234203d3e20313339343536.roa File: 3130332e3136372e3133322e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: JhgF1MSWlQxw36SgZrQfFzd6pgr9ZX5Xk0n79qTJS9I= Subject key identifier: 5B:3A:63:83:69:DD:4E:16:8B:74:73:50:E7:7C:07:A8:60:5E:F4:69 Certificate issuer: /CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE Certificate serial: 5653749D649B70DEEA1154AB829A1919EDF7EC1F Authority key identifier: 15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/3130332e3136372e3133322e302f32332d3234203d3e20313339343536.roa Signing time: Tue 23 Sep 2025 07:00:01 +0000 ROA not before: Tue 23 Sep 2025 06:55:01 +0000 ROA not after: Tue 22 Sep 2026 07:00:01 +0000 asID: 139456 IP address blocks: 103.167.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:53:74:9d:64:9b:70:de:ea:11:54:ab:82:9a:19:19:ed:f7:ec:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE Validity Not Before: Sep 23 06:55:01 2025 GMT Not After : Sep 22 07:00:01 2026 GMT Subject: CN=5B3A638369DD4E168B747350E77C07A8605EF469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:99:3b:de:2a:85:62:45:1e:6f:b3:c7:39:5a: e6:60:90:e3:e7:c6:cb:bf:44:29:f7:d5:09:d8:8a: 6f:f7:b8:5d:2a:d3:a0:e2:c2:2a:2c:05:83:9a:ea: 8a:63:b4:f1:f8:88:31:ee:84:a2:e7:fd:74:5e:fd: 2b:e8:79:d9:f4:e8:d6:5f:cd:f6:a8:ec:59:53:65: 4e:bd:74:0e:13:bb:32:d4:da:6c:d3:4b:79:3b:b2: ea:4d:7e:89:95:6c:77:6b:69:b7:1b:00:7a:ff:dd: da:38:ca:c6:85:fa:a9:28:94:7c:7d:fc:ab:e2:3e: ee:32:1c:ef:09:5d:b5:e7:77:12:9f:67:4d:b3:f8: 62:3a:e0:47:a9:4b:6e:ca:1a:4c:58:f2:a1:df:64: b6:60:72:51:6d:4b:1f:77:25:78:4f:27:96:6f:43: 17:6f:21:4f:73:25:3a:17:8c:7f:44:51:89:f5:6d: 51:b4:d1:a7:96:f3:7e:78:4a:14:31:bb:fe:ce:90: 1e:81:d2:77:cd:79:11:6d:53:4e:b7:eb:5b:90:df: c5:83:92:64:1d:84:7a:3a:ef:3f:ab:51:19:b7:aa: 88:1a:fd:31:47:0c:a5:ed:8b:b1:35:04:59:e6:96: b3:02:4d:2e:36:8d:48:3b:ee:f8:55:ac:c6:37:15: 86:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3A:63:83:69:DD:4E:16:8B:74:73:50:E7:7C:07:A8:60:5E:F4:69 X509v3 Authority Key Identifier: keyid:15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/3130332e3136372e3133322e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.132.0/23 Signature Algorithm: sha256WithRSAEncryption 70:5d:61:12:c4:25:81:c1:3c:e6:39:80:6f:30:16:ae:20:5a: 3e:1a:48:3a:46:93:02:2b:ac:ba:96:17:44:88:4f:22:c1:6d: 42:01:6e:50:f3:ba:2d:36:d8:47:12:3d:b6:51:2a:aa:a4:ae: 23:84:7d:cc:5e:e0:2e:47:8b:f1:f5:76:e1:7d:b4:06:24:19: df:bc:df:64:23:ee:b1:b8:63:2c:61:b3:92:6e:e8:37:ef:0a: 2b:f4:fe:ca:86:70:ac:50:43:71:17:a3:b0:84:58:36:5e:4e: cf:69:8e:14:2e:7f:32:58:b6:9a:aa:85:77:4d:cf:d2:4f:c3: e9:31:d4:49:f6:4f:86:d5:d6:d7:41:b9:af:b2:10:a5:eb:a5: 19:5e:44:f9:44:e0:cd:d9:b1:f3:00:9d:ef:cc:60:0c:4d:9e: 0b:b1:cd:bf:76:27:34:b5:1d:df:88:f9:f7:23:0c:8d:95:df: 1a:99:f7:8f:99:82:28:0e:a7:d1:77:64:11:01:b8:b2:e3:3b: b0:c8:d4:b4:3b:b1:52:83:04:25:b8:07:15:d3:6b:38:47:8e: 3c:0f:6b:a9:d0:9f:b9:8a:e2:a8:65:30:bc:f8:29:b3:6d:dd: c6:04:9e:e6:2c:a6:28:2e:7d:21:c8:71:a0:97:63:f8:9d:41: 90:27:ee:00 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVlN0nWSbcN7qEVSrgpoZGe337B8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUxQUI3NTREOEQ1RjE3MUZFNjM2RDVEQjdDODlEMDgy RTFBOTBDRTAeFw0yNTA5MjMwNjU1MDFaFw0yNjA5MjIwNzAwMDFaMDMxMTAvBgNV BAMTKDVCM0E2MzgzNjlERDRFMTY4Qjc0NzM1MEU3N0MwN0E4NjA1RUY0NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCmTveKoViRR5vs8c5WuZgkOPn xsu/RCn31QnYim/3uF0q06DiwiosBYOa6opjtPH4iDHuhKLn/XRe/Svoedn06NZf zfao7FlTZU69dA4TuzLU2mzTS3k7supNfomVbHdrabcbAHr/3do4ysaF+qkolHx9 /KviPu4yHO8JXbXndxKfZ02z+GI64EepS27KGkxY8qHfZLZgclFtSx93JXhPJ5Zv QxdvIU9zJToXjH9EUYn1bVG00aeW8354ShQxu/7OkB6B0nfNeRFtU06361uQ38WD kmQdhHo67z+rURm3qoga/TFHDKXti7E1BFnmlrMCTS42jUg77vhVrMY3FYYZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWzpjg2ndThaLdHNQ53wHqGBe9GkwHwYDVR0j BBgwFoAUFRq3VNjV8XH+Y21dt8idCC4akM4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWQ0NzIwMi1kZTYwLTQ3ZjMtYTJhNy02MDhhNzRhMWU4NzQvMC8xNTFBQjc1NEQ4 RDVGMTcxRkU2MzZENURCN0M4OUQwODJFMUE5MENFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTUxQUI3NTREOEQ1RjE3MUZFNjM2RDVEQjdDODlEMDgyRTFB OTBDRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZDQ3MjAyLWRlNjAtNDdmMy1h MmE3LTYwOGE3NGExZTg3NC8wLzMxMzAzMzJlMzEzNjM3MmUzMTMzMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp4QwDQYJ KoZIhvcNAQELBQADggEBAHBdYRLEJYHBPOY5gG8wFq4gWj4aSDpGkwIrrLqWF0SI TyLBbUIBblDzui022EcSPbZRKqqkriOEfcxe4C5Hi/H1duF9tAYkGd+832Qj7rG4 Yyxhs5Ju6DfvCiv0/sqGcKxQQ3EXo7CEWDZeTs9pjhQufzJYtpqqhXdNz9JPw+kx 1En2T4bV1tdBua+yEKXrpRleRPlE4M3ZsfMAne/MYAxNnguxzb92JzS1Hd+I+fcj DI2V3xqZ94+ZgigOp9F3ZBEBuLLjO7DI1LQ7sVKDBCW4BxXTazhHjjwPa6nQn7mK 4qhlMLz4KbNt3cYEnuYspigufSHIcaCXY/idQZAn7gA= -----END CERTIFICATE-----Generated at Mon Oct 20 21:09:47 2025 by rpki-client