$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa File: 3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa (raw, json) Hash identifier: kpMxQvSYLU76Gm9LQAAGgZvfd3otWzRiAJhO9y4zBsk= Subject key identifier: 5E:1D:AA:EB:80:35:2B:DA:62:1F:C0:83:9E:86:D6:5C:B4:4E:F8:D9 Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 415183E974E5804B34DAF17DC85B267D3769DC0B Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa Signing time: Wed 15 Oct 2025 14:00:02 +0000 ROA not before: Wed 15 Oct 2025 13:55:02 +0000 ROA not after: Wed 14 Oct 2026 14:00:02 +0000 asID: 141132 IP address blocks: 103.158.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:51:83:e9:74:e5:80:4b:34:da:f1:7d:c8:5b:26:7d:37:69:dc:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Oct 15 13:55:02 2025 GMT Not After : Oct 14 14:00:02 2026 GMT Subject: CN=5E1DAAEB80352BDA621FC0839E86D65CB44EF8D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9f:b3:4b:68:32:fe:5e:0e:54:de:a5:18:83: b3:62:a7:bf:e2:24:f3:1a:a4:8b:c2:f3:26:e5:c8: 94:54:b2:79:6d:f8:77:2b:cc:8f:39:1d:28:67:59: 8f:cf:a6:67:64:97:f1:00:a6:61:72:18:ee:a2:ad: 34:c7:e9:b0:e4:aa:11:18:93:24:52:e2:13:26:4f: ca:4c:a4:ef:c8:df:02:28:16:be:18:3f:e8:20:5f: 1a:d7:98:97:2b:4f:73:45:f4:af:a9:a8:c4:f3:13: 94:db:58:42:bc:c5:86:0a:ff:c0:7a:d6:4e:53:34: 6e:92:98:4b:49:17:98:6f:56:0e:db:26:24:cd:e7: d9:78:ca:08:1a:8f:e8:3d:3a:d2:75:e2:a9:1f:15: 1d:3c:0f:cb:7e:14:df:33:7f:fa:79:14:a5:52:37: b2:f9:7d:e8:14:ce:f6:91:c9:85:52:4b:85:d5:b9: 3a:dd:95:e9:7a:e1:dd:bc:5e:18:d6:2c:7b:3b:56: af:06:bf:01:51:b8:0b:47:f8:00:30:be:a0:4f:d3: 6b:11:2a:5d:80:5c:03:32:2f:a4:1a:3c:87:d2:72: 71:a0:37:2c:c5:81:cc:f3:91:e6:b4:7d:db:7d:90: 1b:b6:83:29:26:cf:92:fc:a8:b5:5e:7f:15:1a:3c: 4b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1D:AA:EB:80:35:2B:DA:62:1F:C0:83:9E:86:D6:5C:B4:4E:F8:D9 X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.235.0/24 Signature Algorithm: sha256WithRSAEncryption 22:a8:bc:2f:93:26:a2:27:a9:55:19:80:53:f5:46:6c:82:bd: 2e:72:9b:03:e8:e5:21:63:05:c6:e4:fd:8d:00:c4:5b:12:ef: cb:31:12:3a:0e:23:bc:aa:5f:a4:74:da:0c:9f:a3:76:48:bb: 53:83:a8:33:ac:59:aa:50:9f:3c:7a:5f:f3:25:ad:d1:d2:70: 2c:31:aa:3d:94:6d:04:f2:74:08:bb:43:19:cf:03:4d:0b:92: 32:34:32:a7:1f:a3:2f:c4:8c:c9:2c:5f:f6:69:e6:09:f9:bb: 4a:51:ee:41:67:64:e3:0d:06:b7:29:8e:4d:1b:49:19:eb:5a: 89:5c:f6:6c:42:e6:de:ca:5c:41:86:fd:de:04:63:3c:f0:52: 20:63:77:3e:0f:88:69:01:91:46:76:07:17:33:14:27:8f:16: d6:3a:7f:77:21:5d:76:74:c8:7b:ff:d8:6b:ed:a8:27:fb:6c: ea:7b:69:4b:13:bf:98:7f:aa:00:24:c1:0a:73:b9:76:0b:d0: 3e:ce:95:19:a8:98:04:11:99:9f:1b:ff:bc:4c:df:04:33:bd: ec:81:a1:5d:e3:5d:59:3b:50:49:23:df:28:6e:96:54:e3:16: 3b:aa:5f:d3:96:8b:1e:71:4c:81:c0:8f:7a:9c:81:5d:00:3e: 57:f5:ef:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQVGD6XTlgEs02vF9yFsmfTdp3AswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yNTEwMTUxMzU1MDJaFw0yNjEwMTQxNDAwMDJaMDMxMTAvBgNV BAMTKDVFMURBQUVCODAzNTJCREE2MjFGQzA4MzlFODZENjVDQjQ0RUY4RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsn7NLaDL+Xg5U3qUYg7Nip7/i JPMapIvC8yblyJRUsnlt+HcrzI85HShnWY/Ppmdkl/EApmFyGO6irTTH6bDkqhEY kyRS4hMmT8pMpO/I3wIoFr4YP+ggXxrXmJcrT3NF9K+pqMTzE5TbWEK8xYYK/8B6 1k5TNG6SmEtJF5hvVg7bJiTN59l4yggaj+g9OtJ14qkfFR08D8t+FN8zf/p5FKVS N7L5fegUzvaRyYVSS4XVuTrdlel64d28XhjWLHs7Vq8GvwFRuAtH+AAwvqBP02sR Kl2AXAMyL6QaPIfScnGgNyzFgczzkea0fdt9kBu2gykmz5L8qLVefxUaPEvnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXh2q64A1K9piH8CDnobWXLRO+NkwHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnuswDQYJ KoZIhvcNAQELBQADggEBACKovC+TJqInqVUZgFP1RmyCvS5ymwPo5SFjBcbk/Y0A xFsS78sxEjoOI7yqX6R02gyfo3ZIu1ODqDOsWapQnzx6X/MlrdHScCwxqj2UbQTy dAi7QxnPA00LkjI0Mqcfoy/EjMksX/Zp5gn5u0pR7kFnZOMNBrcpjk0bSRnrWolc 9mxC5t7KXEGG/d4EYzzwUiBjdz4PiGkBkUZ2BxczFCePFtY6f3chXXZ0yHv/2Gvt qCf7bOp7aUsTv5h/qgAkwQpzuXYL0D7OlRmomAQRmZ8b/7xM3wQzveyBoV3jXVk7 UEkj3yhullTjFjuqX9OWix5xTIHAj3qcgV0APlf174A= -----END CERTIFICATE-----Generated at Tue Oct 21 03:06:23 2025 by rpki-client