$ rpki-client -vvf repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa File: 3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa (raw, json) Hash identifier: tPkwmcbFGdH2Zdm8XN8SrM9FraltUANniKZrGodwkPI= Subject key identifier: 88:66:85:AA:26:C6:21:7C:FC:47:FD:7B:B7:C9:78:27:B9:92:C2:A1 Certificate issuer: /CN=26A14190F845A3F3FC336BD3062AE6F165B97E5C Certificate serial: 50B69D503564A4D38F17500B594BA188BC98D037 Authority key identifier: 26:A1:41:90:F8:45:A3:F3:FC:33:6B:D3:06:2A:E6:F1:65:B9:7E:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa Signing time: Thu 02 Oct 2025 06:00:01 +0000 ROA not before: Thu 02 Oct 2025 05:55:01 +0000 ROA not after: Thu 01 Oct 2026 06:00:01 +0000 asID: 140008 IP address blocks: 103.145.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.crl rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b6:9d:50:35:64:a4:d3:8f:17:50:0b:59:4b:a1:88:bc:98:d0:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26A14190F845A3F3FC336BD3062AE6F165B97E5C Validity Not Before: Oct 2 05:55:01 2025 GMT Not After : Oct 1 06:00:01 2026 GMT Subject: CN=886685AA26C6217CFC47FD7BB7C97827B992C2A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:ed:e3:c7:df:89:ee:da:ef:12:79:a7:07: 37:ab:0a:d0:41:dd:c2:05:2a:30:9d:ed:d6:19:cf: 78:95:af:05:e5:44:1e:b0:f5:f2:38:1a:60:90:9c: 77:7d:c1:a3:81:e8:78:9f:aa:f7:06:0e:d9:33:12: 0e:b7:a5:71:8a:00:65:58:33:fa:2c:26:27:76:d0: f9:53:b6:d8:f0:7b:95:87:ef:ac:ea:fa:3a:52:2f: a8:4c:65:fb:cb:43:5c:d4:0c:3e:a5:9e:1e:8e:27: b7:a5:e6:30:05:bf:75:e2:56:52:59:5b:e5:7b:87: 6e:51:db:ff:b8:48:af:8c:5d:79:74:ff:b3:e6:8a: 24:e9:2b:20:91:4d:01:29:39:3c:3b:06:02:81:08: 12:b4:1b:21:d3:cf:55:ba:f3:08:dd:6f:94:10:7f: 38:59:b7:b8:21:07:f3:8c:20:a1:2a:7f:16:9c:b8: 0c:e0:1c:27:61:bb:3b:2d:41:09:f2:23:d1:48:df: 2a:db:42:c3:ce:f3:92:fd:85:5d:a8:65:4d:df:b9: c7:23:4f:2b:61:2f:9c:66:a1:18:4e:e5:1f:4e:39: 3e:98:c9:87:ca:b2:11:60:d5:19:61:7d:16:4f:12: 2e:d2:9f:91:7a:a4:cc:a0:88:a4:bc:81:10:38:a8: 90:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:66:85:AA:26:C6:21:7C:FC:47:FD:7B:B7:C9:78:27:B9:92:C2:A1 X509v3 Authority Key Identifier: keyid:26:A1:41:90:F8:45:A3:F3:FC:33:6B:D3:06:2A:E6:F1:65:B9:7E:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.146.0/23 Signature Algorithm: sha256WithRSAEncryption d4:f4:89:f3:61:a9:a4:22:a2:5f:9f:ba:e4:9b:a2:e9:e1:d6: 9c:53:77:cb:4c:ec:58:53:ab:30:91:11:33:73:51:64:c9:78: c0:86:ef:b2:82:44:5d:27:16:6e:90:0f:ed:ef:63:f8:1f:15: db:09:18:1b:96:bd:35:df:8c:59:5b:ae:36:4e:38:ef:24:48: 80:62:67:31:aa:3b:34:06:68:a6:96:57:e8:3b:36:a4:a1:d5: 2a:bb:2c:30:ed:ec:b4:e0:27:d0:1f:04:d7:3e:65:cf:24:49: 4a:9f:f4:f2:75:77:39:dc:b0:4b:83:71:f6:d8:8a:b7:8b:77: b7:f0:a5:9a:73:15:ce:73:9e:b8:93:fa:cd:75:e8:8e:bd:cc: 96:6f:30:df:2c:ca:4f:2f:eb:e5:b4:e8:70:59:66:fb:c2:6b: 75:1a:df:5f:c3:68:df:6a:98:04:07:47:4a:97:92:c8:52:50: de:7b:4d:c9:3b:35:c4:96:c9:7e:b3:5c:6e:fc:17:c0:dd:31: b2:0e:44:7e:8b:c7:2c:53:7b:26:4e:67:82:0a:21:1c:36:33: c7:16:12:52:aa:1f:5f:a7:fc:f9:0f:7a:12:70:db:85:17:8d: 76:40:76:05:88:55:af:7b:d5:c9:ce:d1:c2:fe:3f:1d:d1:2e: fd:b5:fc:cb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUULadUDVkpNOPF1ALWUuhiLyY0DcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjZBMTQxOTBGODQ1QTNGM0ZDMzM2QkQzMDYyQUU2RjE2 NUI5N0U1QzAeFw0yNTEwMDIwNTU1MDFaFw0yNjEwMDEwNjAwMDFaMDMxMTAvBgNV BAMTKDg4NjY4NUFBMjZDNjIxN0NGQzQ3RkQ3QkI3Qzk3ODI3Qjk5MkMyQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC03O3jx9+J7trvEnmnBzerCtBB 3cIFKjCd7dYZz3iVrwXlRB6w9fI4GmCQnHd9waOB6HifqvcGDtkzEg63pXGKAGVY M/osJid20PlTttjwe5WH76zq+jpSL6hMZfvLQ1zUDD6lnh6OJ7el5jAFv3XiVlJZ W+V7h25R2/+4SK+MXXl0/7PmiiTpKyCRTQEpOTw7BgKBCBK0GyHTz1W68wjdb5QQ fzhZt7ghB/OMIKEqfxacuAzgHCdhuzstQQnyI9FI3yrbQsPO85L9hV2oZU3fuccj TythL5xmoRhO5R9OOT6YyYfKshFg1RlhfRZPEi7Sn5F6pMygiKS8gRA4qJDVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiGaFqibGIXz8R/17t8l4J7mSwqEwHwYDVR0j BBgwFoAUJqFBkPhFo/P8M2vTBirm8WW5flwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzYwYTZjMS1jMDgxLTQzOWItYWU4ZC04MTQ5YjYzNGQ1YTIvMC8yNkExNDE5MEY4 NDVBM0YzRkMzMzZCRDMwNjJBRTZGMTY1Qjk3RTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjZBMTQxOTBGODQ1QTNGM0ZDMzM2QkQzMDYyQUU2RjE2NUI5 N0U1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjNjBhNmMxLWMwODEtNDM5Yi1h ZThkLTgxNDliNjM0ZDVhMi8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkZIwDQYJ KoZIhvcNAQELBQADggEBANT0ifNhqaQiol+fuuSbounh1pxTd8tM7FhTqzCRETNz UWTJeMCG77KCRF0nFm6QD+3vY/gfFdsJGBuWvTXfjFlbrjZOOO8kSIBiZzGqOzQG aKaWV+g7NqSh1Sq7LDDt7LTgJ9AfBNc+Zc8kSUqf9PJ1dzncsEuDcfbYireLd7fw pZpzFc5znriT+s116I69zJZvMN8syk8v6+W06HBZZvvCa3Ua31/DaN9qmAQHR0qX kshSUN57Tck7NcSWyX6zXG78F8DdMbIORH6LxyxTeyZOZ4IKIRw2M8cWElKqH1+n /PkPehJw24UXjXZAdgWIVa971cnO0cL+Px3RLv21/Ms= -----END CERTIFICATE-----Generated at Tue Oct 21 00:12:55 2025 by rpki-client