$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa File: 3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa (raw, json) Hash identifier: E7SXMeinhYEx1nTb2SA2Sxos/hegF9SdTdiRzIK1k28= Subject key identifier: AF:9E:E1:2B:39:D4:9F:7D:08:1B:B6:8E:D4:2A:19:AD:CD:CB:93:6F Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB Certificate serial: 5556B3827D27FAA725CE842C916FCF395D2FE833 Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa Signing time: Sat 13 Sep 2025 13:00:02 +0000 ROA not before: Sat 13 Sep 2025 12:55:02 +0000 ROA not after: Sat 12 Sep 2026 13:00:02 +0000 asID: 141955 IP address blocks: 103.166.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:56:b3:82:7d:27:fa:a7:25:ce:84:2c:91:6f:cf:39:5d:2f:e8:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB Validity Not Before: Sep 13 12:55:02 2025 GMT Not After : Sep 12 13:00:02 2026 GMT Subject: CN=AF9EE12B39D49F7D081BB68ED42A19ADCDCB936F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dd:e8:4f:0e:aa:5d:e8:b1:f5:b8:ae:7d:33: af:f1:ce:5f:93:8e:5d:71:5e:03:c6:2b:d7:ba:b1: 35:b4:2a:57:ea:f4:73:7c:e8:37:79:b7:a7:2d:b0: 92:df:92:91:68:8b:67:c6:27:ef:6c:9c:e4:53:7c: 6b:fa:ec:a9:29:06:3a:c9:81:24:63:f8:03:6b:29: 71:67:8f:d7:72:80:29:b3:0e:33:c9:36:4e:33:46: 7c:91:b1:55:dc:62:27:1f:73:7c:8c:e2:83:1e:c3: 15:8d:51:77:e1:7a:bf:05:e2:36:d4:07:c2:95:46: 78:2e:c0:6d:71:c9:c9:c1:95:a3:7f:a7:50:87:d8: 87:cf:ff:24:f1:7d:2f:6e:4c:91:4f:90:76:62:90: 52:69:28:38:4b:0d:2e:77:c0:55:8e:04:bc:54:bc: 58:5c:4d:72:d7:de:d3:47:d9:38:a9:d8:40:6a:7d: 51:86:16:c6:dc:e9:ce:01:80:17:cb:24:92:58:df: 63:1c:d0:02:9c:dc:95:71:f3:5f:a2:59:88:3a:70: c7:6b:d5:5c:45:99:79:bd:7d:92:4e:fd:62:58:85: 42:a2:45:95:70:05:91:01:b8:2e:26:31:70:51:85: e5:ab:cd:f0:0a:62:85:50:43:94:49:73:b0:7e:7b: ba:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9E:E1:2B:39:D4:9F:7D:08:1B:B6:8E:D4:2A:19:AD:CD:CB:93:6F X509v3 Authority Key Identifier: keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.158.0/24 Signature Algorithm: sha256WithRSAEncryption 94:af:5f:19:f1:ed:18:57:41:f1:1a:b0:9c:ca:cd:68:ea:e4: 5c:32:2c:ae:03:64:e7:68:68:9b:07:28:cd:31:03:33:0c:40: bd:7a:7e:56:1c:60:ca:5a:c7:8a:9d:fa:4f:14:7e:da:a9:b1: e3:21:8a:fb:d8:35:45:b0:a6:06:31:20:a7:e0:0a:60:b1:cc: 08:46:16:55:28:d2:67:e1:66:db:92:95:0d:52:5c:1f:b2:79: 36:33:56:86:16:9a:42:4e:da:dd:b1:c4:b1:38:96:59:47:ca: cc:f4:c0:c2:2e:e1:8c:40:3c:4c:4d:bd:fd:f2:d5:54:80:f0: 51:6e:9b:96:01:64:1b:21:7d:95:4e:09:fb:77:00:76:af:4b: c1:00:ed:bc:13:91:bd:ef:3b:d2:54:2a:45:d3:59:d1:75:1d: 4a:a2:aa:f2:22:99:3c:07:1c:19:53:fd:25:1f:84:c1:f5:06: e5:4e:17:d7:b2:04:b3:ac:a1:77:52:90:cf:3e:4d:5b:57:50: 18:92:61:26:65:c9:90:0a:26:4a:d7:bc:02:41:be:b1:e0:3a: 0f:db:28:a5:6d:8f:8f:17:3a:03:ee:19:b9:a1:f0:9a:6e:bd: af:f5:a5:db:71:39:12:b4:db:39:59:5a:c6:b3:73:7b:e5:e5: 75:4e:83:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVVazgn0n+qclzoQskW/POV0v6DMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYz RjgxMjlBQjAeFw0yNTA5MTMxMjU1MDJaFw0yNjA5MTIxMzAwMDJaMDMxMTAvBgNV BAMTKEFGOUVFMTJCMzlENDlGN0QwODFCQjY4RUQ0MkExOUFEQ0RDQjkzNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs3ehPDqpd6LH1uK59M6/xzl+T jl1xXgPGK9e6sTW0Klfq9HN86Dd5t6ctsJLfkpFoi2fGJ+9snORTfGv67KkpBjrJ gSRj+ANrKXFnj9dygCmzDjPJNk4zRnyRsVXcYicfc3yM4oMewxWNUXfher8F4jbU B8KVRnguwG1xycnBlaN/p1CH2IfP/yTxfS9uTJFPkHZikFJpKDhLDS53wFWOBLxU vFhcTXLX3tNH2Tip2EBqfVGGFsbc6c4BgBfLJJJY32Mc0AKc3JVx81+iWYg6cMdr 1VxFmXm9fZJO/WJYhUKiRZVwBZEBuC4mMXBRheWrzfAKYoVQQ5RJc7B+e7pfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUr57hKznUn30IG7aO1CoZrc3Lk28wHwYDVR0j BBgwFoAUilTIGkRNBwUaJKrPdD8Bhj+BKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2ZmMDFkMC0yNmY5LTRiMjAtYTMxOC1jMzExYzI2N2YyYWYvMC84QTU0QzgxQTQ0 NEQwNzA1MUEyNEFBQ0Y3NDNGMDE4NjNGODEyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYzRjgx MjlBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZmYwMWQwLTI2ZjktNGIyMC1h MzE4LWMzMTFjMjY3ZjJhZi8wLzMxMzAzMzJlMzEzNjM2MmUzMTM1MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpp4wDQYJ KoZIhvcNAQELBQADggEBAJSvXxnx7RhXQfEasJzKzWjq5FwyLK4DZOdoaJsHKM0x AzMMQL16flYcYMpax4qd+k8UftqpseMhivvYNUWwpgYxIKfgCmCxzAhGFlUo0mfh ZtuSlQ1SXB+yeTYzVoYWmkJO2t2xxLE4lllHysz0wMIu4YxAPExNvf3y1VSA8FFu m5YBZBshfZVOCft3AHavS8EA7bwTkb3vO9JUKkXTWdF1HUqiqvIimTwHHBlT/SUf hMH1BuVOF9eyBLOsoXdSkM8+TVtXUBiSYSZlyZAKJkrXvAJBvrHgOg/bKKVtj48X OgPuGbmh8Jpuva/1pdtxORK02zlZWsazc3vl5XVOg8A= -----END CERTIFICATE-----Generated at Mon Oct 20 15:56:11 2025 by rpki-client