$ rpki-client -vvf repo-rpki.idnic.net/repo/b5eabacd-28eb-4b96-8610-dbb4b06fc8bd/0/3130332e3139312e3135342e302f32342d3234203d3e20313439393236.roa File: 3130332e3139312e3135342e302f32342d3234203d3e20313439393236.roa (raw, json) Hash identifier: c4ofB5VSDY4XXKhWxq0LhNmllp1P3fen4sP7Y+RjYTk= Subject key identifier: 58:8B:6E:35:98:A5:6B:D5:5D:F3:B0:B8:72:08:E4:2D:DA:32:62:AA Certificate issuer: /CN=52D962F5A9CABE2F4089548951269E5BD5F3249D Certificate serial: 1F673AE108EB13601710467B5EDED07CDAB62CF6 Authority key identifier: 52:D9:62:F5:A9:CA:BE:2F:40:89:54:89:51:26:9E:5B:D5:F3:24:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52D962F5A9CABE2F4089548951269E5BD5F3249D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5eabacd-28eb-4b96-8610-dbb4b06fc8bd/0/3130332e3139312e3135342e302f32342d3234203d3e20313439393236.roa Signing time: Wed 24 Sep 2025 03:00:00 +0000 ROA not before: Wed 24 Sep 2025 02:55:00 +0000 ROA not after: Wed 23 Sep 2026 03:00:00 +0000 asID: 149926 IP address blocks: 103.191.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5eabacd-28eb-4b96-8610-dbb4b06fc8bd/0/52D962F5A9CABE2F4089548951269E5BD5F3249D.crl rsync://repo-rpki.idnic.net/repo/b5eabacd-28eb-4b96-8610-dbb4b06fc8bd/0/52D962F5A9CABE2F4089548951269E5BD5F3249D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52D962F5A9CABE2F4089548951269E5BD5F3249D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:07:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:67:3a:e1:08:eb:13:60:17:10:46:7b:5e:de:d0:7c:da:b6:2c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52D962F5A9CABE2F4089548951269E5BD5F3249D Validity Not Before: Sep 24 02:55:00 2025 GMT Not After : Sep 23 03:00:00 2026 GMT Subject: CN=588B6E3598A56BD55DF3B0B87208E42DDA3262AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:63:2f:85:91:cc:43:7e:15:c5:22:81:23:a6: 7a:5f:c3:29:b9:e3:e6:15:d9:1d:99:0a:e3:32:b8: 4c:dc:c5:7a:6d:5e:55:17:f0:5f:c1:b7:8e:1e:4c: a5:00:47:de:e5:f0:b5:c1:c5:2c:bc:3a:98:f2:bc: 28:66:27:a0:e2:da:57:65:5d:f2:5e:5e:1f:d8:eb: 18:06:c6:ce:81:4f:03:d5:a4:5c:e7:bd:dc:91:28: b5:d1:22:09:2c:48:76:d7:37:8e:fe:7d:09:38:d9: 5c:18:19:50:2b:c3:ed:19:8f:2c:1f:a5:ab:88:d3: e3:da:f2:3e:8b:c5:9f:4b:f1:8c:04:c2:b7:6a:91: f2:e8:d3:4e:b3:fa:37:f7:34:65:cc:c4:6b:9f:63: 8f:a8:6c:00:b4:9f:60:9e:76:e0:a6:8d:68:01:db: 55:fd:cb:e7:63:86:17:75:8f:0b:4b:40:14:3f:63: 99:96:fd:ed:45:49:03:3b:79:bb:1c:a4:d1:38:42: 35:8e:79:b3:bf:8a:c2:c3:91:a1:d2:8e:38:ce:c7: 7d:33:7b:c2:c0:72:d9:fd:a5:d2:8e:6d:cf:9a:d0: 29:b0:e3:22:b8:79:1a:1e:f9:04:2a:18:bd:c9:a0: b6:18:79:a4:8c:05:d5:cc:24:b9:33:93:f9:44:95: 2d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8B:6E:35:98:A5:6B:D5:5D:F3:B0:B8:72:08:E4:2D:DA:32:62:AA X509v3 Authority Key Identifier: keyid:52:D9:62:F5:A9:CA:BE:2F:40:89:54:89:51:26:9E:5B:D5:F3:24:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5eabacd-28eb-4b96-8610-dbb4b06fc8bd/0/52D962F5A9CABE2F4089548951269E5BD5F3249D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52D962F5A9CABE2F4089548951269E5BD5F3249D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5eabacd-28eb-4b96-8610-dbb4b06fc8bd/0/3130332e3139312e3135342e302f32342d3234203d3e20313439393236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.154.0/24 Signature Algorithm: sha256WithRSAEncryption b9:df:8e:f2:5c:b9:dc:3b:c1:b3:ce:3b:77:15:76:cc:64:14: 7a:d6:a4:fe:dc:14:86:ae:c5:0d:96:fd:e1:20:51:6e:a2:b7: 4f:7f:fb:5d:6e:78:27:86:73:fc:f5:40:a3:83:1c:43:03:be: 1c:d7:64:eb:06:00:65:6b:76:92:68:8e:38:1e:9c:71:b6:14: 17:5f:cd:4f:be:25:b2:5a:2d:cf:36:bd:dd:e4:27:f6:da:69: 12:15:40:5f:d3:e3:7f:a7:7d:29:8e:2b:42:7d:a2:9e:ce:d6: 5e:de:99:86:9c:d3:e9:8a:85:00:98:e0:f1:04:2b:86:2c:cc: 6f:20:cf:d0:f0:3a:1b:f7:62:7a:58:39:6b:7e:9b:d2:72:37: 41:ee:d7:e3:30:6e:ed:49:94:b1:51:5c:f1:12:40:f2:60:fe: 68:59:99:bf:f5:b2:23:c2:f6:cf:7c:dc:ec:54:f0:be:22:0d: 09:3b:9d:40:a5:86:4c:32:b7:ea:17:78:30:fd:96:f6:33:ca: 19:b6:c8:b0:81:23:0e:74:bc:4d:f4:e0:14:ff:7e:85:ef:1d: 0d:7f:ac:3e:7e:11:8c:11:88:29:25:c7:39:03:b4:c1:c1:ad: b2:4b:ae:a2:09:12:c2:41:13:c6:fd:dc:d4:fa:9c:b0:0b:8e: bf:14:3c:14 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH2c64QjrE2AXEEZ7Xt7QfNq2LPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJEOTYyRjVBOUNBQkUyRjQwODk1NDg5NTEyNjlFNUJE NUYzMjQ5RDAeFw0yNTA5MjQwMjU1MDBaFw0yNjA5MjMwMzAwMDBaMDMxMTAvBgNV BAMTKDU4OEI2RTM1OThBNTZCRDU1REYzQjBCODcyMDhFNDJEREEzMjYyQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwYy+FkcxDfhXFIoEjpnpfwym5 4+YV2R2ZCuMyuEzcxXptXlUX8F/Bt44eTKUAR97l8LXBxSy8OpjyvChmJ6Di2ldl XfJeXh/Y6xgGxs6BTwPVpFznvdyRKLXRIgksSHbXN47+fQk42VwYGVArw+0Zjywf pauI0+Pa8j6LxZ9L8YwEwrdqkfLo006z+jf3NGXMxGufY4+obAC0n2CeduCmjWgB 21X9y+djhhd1jwtLQBQ/Y5mW/e1FSQM7ebscpNE4QjWOebO/isLDkaHSjjjOx30z e8LActn9pdKObc+a0Cmw4yK4eRoe+QQqGL3JoLYYeaSMBdXMJLkzk/lElS31AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWItuNZila9Vd87C4cgjkLdoyYqowHwYDVR0j BBgwFoAUUtli9anKvi9AiVSJUSaeW9XzJJ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NWVhYmFjZC0yOGViLTRiOTYtODYxMC1kYmI0YjA2ZmM4YmQvMC81MkQ5NjJGNUE5 Q0FCRTJGNDA4OTU0ODk1MTI2OUU1QkQ1RjMyNDlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJEOTYyRjVBOUNBQkUyRjQwODk1NDg5NTEyNjlFNUJENUYz MjQ5RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1ZWFiYWNkLTI4ZWItNGI5Ni04 NjEwLWRiYjRiMDZmYzhiZC8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv5owDQYJ KoZIhvcNAQELBQADggEBALnfjvJcudw7wbPOO3cVdsxkFHrWpP7cFIauxQ2W/eEg UW6it09/+11ueCeGc/z1QKODHEMDvhzXZOsGAGVrdpJojjgenHG2FBdfzU++JbJa Lc82vd3kJ/baaRIVQF/T43+nfSmOK0J9op7O1l7emYac0+mKhQCY4PEEK4YszG8g z9DwOhv3YnpYOWt+m9JyN0Hu1+Mwbu1JlLFRXPESQPJg/mhZmb/1siPC9s983OxU 8L4iDQk7nUClhkwyt+oXeDD9lvYzyhm2yLCBIw50vE304BT/foXvHQ1/rD5+EYwR iCklxzkDtMHBrbJLrqIJEsJBE8b93NT6nLALjr8UPBQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:54:26 2025 by rpki-client