$ rpki-client -vvf repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa File: 3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: M+WZc7qSf2CmAB/JGuGAm2J24ap4dhEUP+j6m1qwiAs= Subject key identifier: 49:60:D8:9F:5A:EA:4B:AD:2D:38:3A:F0:71:1A:70:1C:26:EE:39:4E Certificate issuer: /CN=C8175E7E9E15E565FE697292A37E14BFE067CAF7 Certificate serial: 05D0B613983DCC4638368FDC7D15449CD9F7DF0D Authority key identifier: C8:17:5E:7E:9E:15:E5:65:FE:69:72:92:A3:7E:14:BF:E0:67:CA:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8175E7E9E15E565FE697292A37E14BFE067CAF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa Signing time: Thu 25 Sep 2025 01:00:01 +0000 ROA not before: Thu 25 Sep 2025 00:55:01 +0000 ROA not after: Thu 24 Sep 2026 01:00:01 +0000 asID: 138089 IP address blocks: 103.158.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/C8175E7E9E15E565FE697292A37E14BFE067CAF7.crl rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/C8175E7E9E15E565FE697292A37E14BFE067CAF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8175E7E9E15E565FE697292A37E14BFE067CAF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 15:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d0:b6:13:98:3d:cc:46:38:36:8f:dc:7d:15:44:9c:d9:f7:df:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8175E7E9E15E565FE697292A37E14BFE067CAF7 Validity Not Before: Sep 25 00:55:01 2025 GMT Not After : Sep 24 01:00:01 2026 GMT Subject: CN=4960D89F5AEA4BAD2D383AF0711A701C26EE394E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7a:7b:74:ba:2a:c4:2f:0a:4b:00:17:b1:ed: 76:09:15:a9:da:eb:61:57:43:80:e6:4d:d1:10:9e: 77:a6:08:b8:59:5c:47:d1:00:71:b3:53:04:da:11: ba:4e:1b:ea:c2:81:e5:5b:14:82:37:e1:b7:3a:e2: be:0e:aa:75:a4:c6:fa:b1:6f:e2:04:4f:e6:f9:bf: f2:29:9a:c2:1b:5e:71:54:c8:5d:c6:7f:7c:bc:ad: 2e:d8:e9:5f:4f:5c:89:8d:af:e6:c0:f0:35:7c:c1: a2:dd:26:04:98:ea:3c:18:6a:ae:80:07:ec:33:87: 33:66:a2:e2:d8:9a:92:18:a3:dc:a4:48:a0:90:49: ab:d7:7b:4c:87:84:6b:4a:da:eb:77:f0:f2:12:20: 2e:48:1d:a8:76:9f:a2:6f:0c:d1:52:16:21:96:05: 35:cf:68:e7:fe:50:3a:7f:fc:c2:d1:f6:4c:c1:9b: 2e:43:c2:45:67:70:18:b7:ac:60:28:0e:52:1c:da: 51:94:20:11:9c:6d:81:36:e6:32:33:6a:8b:a1:f9: 3b:7c:81:da:4b:ab:5f:53:25:c3:62:5c:94:10:da: f1:e2:12:6c:c6:8e:b8:21:2f:7d:d2:18:ce:bb:13: b5:db:e9:08:a3:ea:8b:78:dc:3e:3e:b9:46:c8:79: b4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:60:D8:9F:5A:EA:4B:AD:2D:38:3A:F0:71:1A:70:1C:26:EE:39:4E X509v3 Authority Key Identifier: keyid:C8:17:5E:7E:9E:15:E5:65:FE:69:72:92:A3:7E:14:BF:E0:67:CA:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/C8175E7E9E15E565FE697292A37E14BFE067CAF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8175E7E9E15E565FE697292A37E14BFE067CAF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/836fd551-6aba-4222-8a26-986346825b38/0/3130332e3135382e31332e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.13.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:d0:f8:0b:9e:5b:af:e1:1e:df:ab:f3:b5:50:ea:f2:12:32: 6f:62:66:7c:4a:0f:96:f1:f9:c3:f8:dc:fa:af:87:fe:e8:b8: 02:21:6e:85:ba:1a:a2:b5:61:a8:9d:3b:48:ad:f3:a9:91:0e: f2:53:4f:18:30:5d:a4:5d:90:aa:05:12:f0:93:5a:ef:c1:bc: 61:9e:8b:b6:f8:98:2f:57:f8:e8:27:ec:3b:34:f5:07:73:7f: ae:68:72:fe:4b:8f:5f:2b:47:c1:c0:db:68:3c:1d:59:6c:23: 24:af:ef:f5:40:96:19:0e:43:38:7f:f6:99:ed:77:ba:f7:d8: a7:76:7d:4b:7e:75:f7:8a:c1:b4:98:3a:5e:66:ec:02:ee:d3: c8:ae:dd:c9:7e:66:2c:ea:0d:5f:ff:80:db:63:fe:38:7c:be: 3d:c2:9f:c8:31:df:5e:29:d7:ad:17:5a:52:6a:4a:b1:5a:2c: e3:56:56:6a:fc:c2:4f:77:76:49:dd:1c:d4:32:3f:ee:5e:22: 82:ae:6c:95:f1:67:c5:fd:de:0b:a0:1d:69:a3:36:90:ca:f5: 1b:37:a0:bb:7c:4c:73:19:e0:6d:aa:cb:8b:f9:46:26:ac:1f: fc:15:45:c2:ca:8e:02:a5:49:61:c3:f3:90:68:3d:a1:d4:07: 7d:7d:8f:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBdC2E5g9zEY4No/cfRVEnNn33w0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzgxNzVFN0U5RTE1RTU2NUZFNjk3MjkyQTM3RTE0QkZF MDY3Q0FGNzAeFw0yNTA5MjUwMDU1MDFaFw0yNjA5MjQwMTAwMDFaMDMxMTAvBgNV BAMTKDQ5NjBEODlGNUFFQTRCQUQyRDM4M0FGMDcxMUE3MDFDMjZFRTM5NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNent0uirELwpLABex7XYJFana 62FXQ4DmTdEQnnemCLhZXEfRAHGzUwTaEbpOG+rCgeVbFII34bc64r4OqnWkxvqx b+IET+b5v/IpmsIbXnFUyF3Gf3y8rS7Y6V9PXImNr+bA8DV8waLdJgSY6jwYaq6A B+wzhzNmouLYmpIYo9ykSKCQSavXe0yHhGtK2ut38PISIC5IHah2n6JvDNFSFiGW BTXPaOf+UDp//MLR9kzBmy5DwkVncBi3rGAoDlIc2lGUIBGcbYE25jIzaouh+Tt8 gdpLq19TJcNiXJQQ2vHiEmzGjrghL33SGM67E7Xb6Qij6ot43D4+uUbIebQ1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSWDYn1rqS60tODrwcRpwHCbuOU4wHwYDVR0j BBgwFoAUyBdefp4V5WX+aXKSo34Uv+BnyvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzZmZDU1MS02YWJhLTQyMjItOGEyNi05ODYzNDY4MjViMzgvMC9DODE3NUU3RTlF MTVFNTY1RkU2OTcyOTJBMzdFMTRCRkUwNjdDQUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzgxNzVFN0U5RTE1RTU2NUZFNjk3MjkyQTM3RTE0QkZFMDY3 Q0FGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzNmZkNTUxLTZhYmEtNDIyMi04 YTI2LTk4NjM0NjgyNWIzOC8wLzMxMzAzMzJlMzEzNTM4MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ54NMA0GCSqG SIb3DQEBCwUAA4IBAQCe0PgLnluv4R7fq/O1UOryEjJvYmZ8Sg+W8fnD+Nz6r4f+ 6LgCIW6FuhqitWGonTtIrfOpkQ7yU08YMF2kXZCqBRLwk1rvwbxhnou2+JgvV/jo J+w7NPUHc3+uaHL+S49fK0fBwNtoPB1ZbCMkr+/1QJYZDkM4f/aZ7Xe699indn1L fnX3isG0mDpeZuwC7tPIrt3JfmYs6g1f/4DbY/44fL49wp/IMd9eKdetF1pSakqx WizjVlZq/MJPd3ZJ3RzUMj/uXiKCrmyV8WfF/d4LoB1pozaQyvUbN6C7fExzGeBt qsuL+UYmrB/8FUXCyo4CpUlhw/OQaD2h1Ad9fY+x -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:05 2025 by rpki-client