$ rpki-client -vvf repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32342d3234203d3e20313430303038.roa File: 3130332e3134352e3134362e302f32342d3234203d3e20313430303038.roa (raw, json) Hash identifier: l6aeKW09Sx7rSFkeI19KtMnYYrlj03ziclyGv0GOLhU= Subject key identifier: B1:48:A3:F9:42:D8:78:2E:EE:54:73:45:95:17:72:42:58:3D:7E:3D Certificate issuer: /CN=26A14190F845A3F3FC336BD3062AE6F165B97E5C Certificate serial: 7F97CA96993930971BE0BD14972F013C83459FF2 Authority key identifier: 26:A1:41:90:F8:45:A3:F3:FC:33:6B:D3:06:2A:E6:F1:65:B9:7E:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32342d3234203d3e20313430303038.roa Signing time: Mon 22 Sep 2025 09:36:08 +0000 ROA not before: Mon 22 Sep 2025 09:31:08 +0000 ROA not after: Mon 21 Sep 2026 09:36:08 +0000 asID: 140008 IP address blocks: 103.145.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.crl rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:97:ca:96:99:39:30:97:1b:e0:bd:14:97:2f:01:3c:83:45:9f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26A14190F845A3F3FC336BD3062AE6F165B97E5C Validity Not Before: Sep 22 09:31:08 2025 GMT Not After : Sep 21 09:36:08 2026 GMT Subject: CN=B148A3F942D8782EEE54734595177242583D7E3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d7:fb:d9:b5:d5:84:97:40:32:9f:2c:fd:dc: d7:c1:0d:f1:ce:dd:ab:05:b9:51:3c:4d:f8:49:f4: 26:b2:86:89:91:65:a6:0a:e2:9d:ee:8a:e2:b5:3a: 34:a3:37:4c:72:fb:86:d7:ca:9d:b1:ce:74:ea:57: de:bc:0a:85:ed:1f:99:96:fe:72:ab:ee:25:a8:56: 9b:49:f5:43:ce:4c:ef:24:dd:14:12:81:d8:e2:0c: 11:d3:be:e8:65:7c:69:63:a6:47:91:a8:6d:18:c5: e3:8f:70:0f:69:38:c5:dd:cf:b4:80:58:48:3a:0d: 0a:f6:3f:7d:3a:14:52:b7:0a:0f:e4:62:73:04:d9: 3f:fb:75:fb:0a:ea:b2:b4:06:e5:f2:4f:26:5e:f7: 80:9c:be:74:46:71:5c:d2:2c:23:94:1b:f6:af:bf: dd:a6:dd:29:1a:ab:36:d7:d0:84:31:84:93:e7:41: f1:62:ca:a7:1c:8a:e0:6b:89:06:93:6b:c4:b8:fd: 99:db:7b:28:a4:dd:69:23:80:ae:ee:e2:6f:93:0e: a6:92:09:a3:9a:46:58:5d:22:28:94:ec:e3:9c:56: 2f:0d:14:e2:61:39:80:e0:99:54:9f:31:7f:e0:58: 46:4f:3f:7e:10:46:62:9e:b9:89:ca:e4:4e:9f:36: 85:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:48:A3:F9:42:D8:78:2E:EE:54:73:45:95:17:72:42:58:3D:7E:3D X509v3 Authority Key Identifier: keyid:26:A1:41:90:F8:45:A3:F3:FC:33:6B:D3:06:2A:E6:F1:65:B9:7E:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32342d3234203d3e20313430303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.146.0/24 Signature Algorithm: sha256WithRSAEncryption c6:ad:5d:1b:7a:0f:ee:56:21:e2:c1:f5:5e:8c:7c:50:87:2b: da:67:dc:12:3a:6b:28:c9:1d:03:e7:79:44:50:1f:20:a8:60: f7:c7:82:fd:f8:33:df:73:14:d7:ad:c2:5b:18:4a:54:4d:38: 4e:39:68:36:74:9e:c1:f9:be:52:a6:62:af:1d:de:46:60:18: 51:d9:1f:a1:8a:99:71:0f:8b:e4:96:8b:02:48:35:b1:a2:27: d5:8b:c5:74:cf:e9:03:91:b1:e5:9d:e1:6a:17:8c:03:00:a3: e8:52:fc:03:0f:26:a7:2b:9b:cb:51:eb:65:37:f1:e6:a7:42: 9d:ce:f6:2c:7e:ff:d9:dd:3a:fa:07:80:b4:d3:f5:ef:5f:19: 0e:18:e5:c1:bd:12:ba:f6:bf:37:0c:ad:dc:e2:b4:c5:75:fd: b6:ad:a5:b7:22:b3:29:d9:70:cd:f1:62:ad:51:18:9a:88:f4: c0:71:41:6c:38:5e:79:c0:18:7f:b2:9c:95:8a:c1:e2:52:74: 6d:24:43:c3:e7:5e:61:9b:3a:d4:69:77:33:33:f8:86:91:c7: f2:a4:25:58:89:d8:de:b3:07:2f:4c:bd:e7:cc:f7:42:67:2f: 57:9c:3e:48:ef:bf:1c:c7:e5:b8:5f:25:5a:41:1e:30:75:b6: ff:ec:2c:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf5fKlpk5MJcb4L0Uly8BPINFn/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjZBMTQxOTBGODQ1QTNGM0ZDMzM2QkQzMDYyQUU2RjE2 NUI5N0U1QzAeFw0yNTA5MjIwOTMxMDhaFw0yNjA5MjEwOTM2MDhaMDMxMTAvBgNV BAMTKEIxNDhBM0Y5NDJEODc4MkVFRTU0NzM0NTk1MTc3MjQyNTgzRDdFM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb1/vZtdWEl0Aynyz93NfBDfHO 3asFuVE8TfhJ9CayhomRZaYK4p3uiuK1OjSjN0xy+4bXyp2xznTqV968CoXtH5mW /nKr7iWoVptJ9UPOTO8k3RQSgdjiDBHTvuhlfGljpkeRqG0YxeOPcA9pOMXdz7SA WEg6DQr2P306FFK3Cg/kYnME2T/7dfsK6rK0BuXyTyZe94CcvnRGcVzSLCOUG/av v92m3SkaqzbX0IQxhJPnQfFiyqcciuBriQaTa8S4/Znbeyik3WkjgK7u4m+TDqaS CaOaRlhdIiiU7OOcVi8NFOJhOYDgmVSfMX/gWEZPP34QRmKeuYnK5E6fNoX5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsUij+ULYeC7uVHNFlRdyQlg9fj0wHwYDVR0j BBgwFoAUJqFBkPhFo/P8M2vTBirm8WW5flwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzYwYTZjMS1jMDgxLTQzOWItYWU4ZC04MTQ5YjYzNGQ1YTIvMC8yNkExNDE5MEY4 NDVBM0YzRkMzMzZCRDMwNjJBRTZGMTY1Qjk3RTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjZBMTQxOTBGODQ1QTNGM0ZDMzM2QkQzMDYyQUU2RjE2NUI5 N0U1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjNjBhNmMxLWMwODEtNDM5Yi1h ZThkLTgxNDliNjM0ZDVhMi8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkZIwDQYJ KoZIhvcNAQELBQADggEBAMatXRt6D+5WIeLB9V6MfFCHK9pn3BI6ayjJHQPneURQ HyCoYPfHgv34M99zFNetwlsYSlRNOE45aDZ0nsH5vlKmYq8d3kZgGFHZH6GKmXEP i+SWiwJINbGiJ9WLxXTP6QORseWd4WoXjAMAo+hS/AMPJqcrm8tR62U38eanQp3O 9ix+/9ndOvoHgLTT9e9fGQ4Y5cG9Err2vzcMrdzitMV1/batpbcisynZcM3xYq1R GJqI9MBxQWw4XnnAGH+ynJWKweJSdG0kQ8PnXmGbOtRpdzMz+IaRx/KkJViJ2N6z By9MvefM90JnL1ecPkjvvxzH5bhfJVpBHjB1tv/sLCA= -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:22 2025 by rpki-client