$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32342d3234203d3e20313431313332.roa File: 3130332e3135382e3233342e302f32342d3234203d3e20313431313332.roa (raw, json) Hash identifier: LFN1lWDxbZdPzNeB6sbVhDvJLLQcsJmGzjZZihSsn1w= Subject key identifier: F5:F0:CD:75:95:61:22:7E:A8:93:F1:EA:09:65:34:1C:3C:B5:D7:EB Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 1BFA641B3835EDFD29960C5F92B31FECB38C3BE4 Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32342d3234203d3e20313431313332.roa Signing time: Wed 15 Oct 2025 14:00:02 +0000 ROA not before: Wed 15 Oct 2025 13:55:02 +0000 ROA not after: Wed 14 Oct 2026 14:00:02 +0000 asID: 141132 IP address blocks: 103.158.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:fa:64:1b:38:35:ed:fd:29:96:0c:5f:92:b3:1f:ec:b3:8c:3b:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Oct 15 13:55:02 2025 GMT Not After : Oct 14 14:00:02 2026 GMT Subject: CN=F5F0CD759561227EA893F1EA0965341C3CB5D7EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:80:89:3e:90:c3:b3:a5:0c:94:9e:97:5f:ea: 46:71:31:cf:01:d4:75:77:9e:cf:f7:ca:98:86:c4: fe:6c:19:5e:4a:01:3a:69:28:6f:f3:2c:ab:a8:aa: fb:1f:b6:46:45:12:af:bd:a4:9f:24:87:88:24:51: ad:86:c2:8a:93:d5:21:e4:78:5f:89:9f:d0:fa:12: 66:01:b1:7b:4e:78:f2:e6:08:2e:11:75:28:11:07: 4b:0a:48:62:bc:cf:6d:80:e0:56:b2:99:0f:28:48: 31:3b:01:84:c5:6f:98:59:26:3a:03:53:e0:b7:8b: 4b:9a:5a:92:ca:42:a2:bc:8e:3e:d6:33:9b:75:7c: e7:2d:4c:c7:57:fd:9d:f2:62:b1:c9:ed:86:64:f5: 6d:6c:9f:ef:c8:8b:9c:6a:ad:05:39:b2:38:63:bf: fd:e2:b0:aa:d0:9a:e7:e5:be:52:dc:11:b2:52:30: 36:d3:7c:f9:2d:51:f8:7f:a0:8a:e1:10:62:da:06: d9:24:2d:20:7f:ac:74:a9:17:3a:65:01:44:51:62: df:9f:b5:2e:e7:ee:c8:ff:4a:f2:15:d1:62:5c:78: de:d5:d2:29:e9:30:38:6c:55:a9:fa:b6:83:be:88: 9f:cd:6a:19:c8:eb:1b:c6:0b:f0:25:b1:14:b0:c1: 4a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F0:CD:75:95:61:22:7E:A8:93:F1:EA:09:65:34:1C:3C:B5:D7:EB X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32342d3234203d3e20313431313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.234.0/24 Signature Algorithm: sha256WithRSAEncryption 98:49:07:f3:f3:40:4b:b1:98:45:bf:92:e4:17:10:2b:6c:98: f9:68:8e:f2:32:51:92:94:58:aa:99:41:0b:df:d6:e5:4a:66: 69:7d:77:78:39:00:55:f8:01:88:76:6b:f9:c8:0e:de:01:10: d7:fe:56:98:a1:d0:9e:33:91:58:72:04:28:5e:fc:8c:97:35: 13:a5:0b:42:d4:55:a4:b6:03:32:08:f6:5e:65:20:db:09:e1: 43:c0:05:66:1e:aa:7e:b1:99:de:71:08:9b:e9:58:c9:15:72: be:36:f4:ea:d4:71:8d:4a:34:49:6e:61:33:65:6f:10:46:92: b5:a2:60:99:4f:b3:05:b1:f0:e0:24:8d:26:0c:31:43:95:18: c5:e5:aa:8d:3e:d9:43:20:7e:4d:15:56:21:1c:a9:17:b2:5b: 4a:48:02:26:a0:20:ae:81:2f:40:fe:6e:2a:2a:e6:93:ec:ed: 8a:07:1e:44:02:9d:84:2b:db:be:2f:2c:90:b8:d4:87:bf:ef: fa:41:f1:3b:81:4c:90:76:57:a3:59:08:19:90:88:cc:9f:e2: 4b:5b:0c:3c:b3:dc:86:9e:a5:11:a8:ba:e1:f1:00:aa:15:3a: 2f:c5:a9:7b:23:4e:6c:21:f4:3f:6e:ce:75:40:ab:d0:d1:93: da:10:2e:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG/pkGzg17f0plgxfkrMf7LOMO+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yNTEwMTUxMzU1MDJaFw0yNjEwMTQxNDAwMDJaMDMxMTAvBgNV BAMTKEY1RjBDRDc1OTU2MTIyN0VBODkzRjFFQTA5NjUzNDFDM0NCNUQ3RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAgIk+kMOzpQyUnpdf6kZxMc8B 1HV3ns/3ypiGxP5sGV5KATppKG/zLKuoqvsftkZFEq+9pJ8kh4gkUa2GwoqT1SHk eF+Jn9D6EmYBsXtOePLmCC4RdSgRB0sKSGK8z22A4FaymQ8oSDE7AYTFb5hZJjoD U+C3i0uaWpLKQqK8jj7WM5t1fOctTMdX/Z3yYrHJ7YZk9W1sn+/Ii5xqrQU5sjhj v/3isKrQmuflvlLcEbJSMDbTfPktUfh/oIrhEGLaBtkkLSB/rHSpFzplAURRYt+f tS7n7sj/SvIV0WJceN7V0inpMDhsVan6toO+iJ/NahnI6xvGC/AlsRSwwUqrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9fDNdZVhIn6ok/HqCWU0HDy11+swHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnuowDQYJ KoZIhvcNAQELBQADggEBAJhJB/PzQEuxmEW/kuQXECtsmPlojvIyUZKUWKqZQQvf 1uVKZml9d3g5AFX4AYh2a/nIDt4BENf+Vpih0J4zkVhyBChe/IyXNROlC0LUVaS2 AzII9l5lINsJ4UPABWYeqn6xmd5xCJvpWMkVcr429OrUcY1KNEluYTNlbxBGkrWi YJlPswWx8OAkjSYMMUOVGMXlqo0+2UMgfk0VViEcqReyW0pIAiagIK6BL0D+bioq 5pPs7YoHHkQCnYQr274vLJC41Ie/7/pB8TuBTJB2V6NZCBmQiMyf4ktbDDyz3Iae pRGouuHxAKoVOi/FqXsjTmwh9D9uznVAq9DRk9oQLlg= -----END CERTIFICATE-----Generated at Tue Oct 21 03:06:24 2025 by rpki-client