$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa File: 3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa (raw, json) Hash identifier: pYma4CnUYsvh/GHuj1AR+RzC7f0+QOGrW+zKFaT9Mpo= Subject key identifier: 90:C1:AB:36:CB:41:71:6D:E6:CE:03:6F:4D:48:1D:00:61:1C:F3:61 Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB Certificate serial: 0A932F8DD251115F4DBA41A082DF1661B30F7625 Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa Signing time: Sat 13 Sep 2025 13:00:02 +0000 ROA not before: Sat 13 Sep 2025 12:55:02 +0000 ROA not after: Sat 12 Sep 2026 13:00:02 +0000 asID: 141955 IP address blocks: 103.166.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:93:2f:8d:d2:51:11:5f:4d:ba:41:a0:82:df:16:61:b3:0f:76:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB Validity Not Before: Sep 13 12:55:02 2025 GMT Not After : Sep 12 13:00:02 2026 GMT Subject: CN=90C1AB36CB41716DE6CE036F4D481D00611CF361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:77:70:e5:37:94:00:9b:5f:94:9e:28:73:14: a9:2c:f0:a5:b2:d3:d5:dd:74:25:36:98:36:0c:eb: 84:40:0a:d5:b5:22:04:5a:ee:18:49:17:d8:56:92: be:d7:23:7d:d5:03:42:50:2a:22:9e:67:29:7d:43: c0:6c:2c:aa:e6:93:c7:8d:3b:a2:80:f3:14:66:91: fb:36:ea:8f:60:5c:1d:43:40:ec:a4:72:91:b7:ed: c7:e6:cc:2a:65:e9:45:bf:a8:3d:db:d1:5c:ac:40: 07:38:25:bb:3e:81:06:92:37:51:57:ce:bc:04:0f: 98:11:9b:c7:53:ba:ae:a1:ec:59:45:1e:ea:da:de: 0b:83:1d:b4:8f:fd:92:bb:28:dd:b2:d0:d7:c6:df: b3:6c:e9:c6:79:ea:29:b5:d8:6b:24:44:af:e7:ad: fb:8d:e8:7f:0b:16:95:3a:28:9c:da:f4:8d:20:dc: 36:46:23:89:0f:ef:ad:90:43:a6:26:db:5b:89:f6: c5:4b:78:7a:ee:f8:41:6c:6c:f8:03:9a:e8:8e:e2: 86:9b:a5:93:76:02:84:33:7f:87:52:a2:df:e9:ea: ed:4a:0c:de:05:92:60:f4:65:2a:fa:1a:16:9b:96: 94:7b:a5:8c:03:bf:a0:ce:87:2e:b2:68:10:a4:47: af:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C1:AB:36:CB:41:71:6D:E6:CE:03:6F:4D:48:1D:00:61:1C:F3:61 X509v3 Authority Key Identifier: keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.159.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:a3:9a:e3:ea:a8:e8:b9:c6:4b:fb:41:b1:83:30:c2:98:cf: 59:b7:28:ef:0a:c8:e8:12:65:36:2b:2b:52:41:db:39:37:75: 2d:b7:50:25:24:a8:35:2c:bd:70:6d:e8:5c:a5:21:de:af:d9: 8d:58:28:5e:65:ce:c2:47:1b:c7:e5:7d:cc:6f:85:a7:b3:35: 98:60:bb:8c:d8:4d:9d:06:b0:da:50:98:f6:88:cf:04:d3:4b: 9d:04:dc:be:16:72:99:9e:31:15:b4:a1:2b:4e:5d:7c:d6:46: 01:e3:3c:a7:01:90:a0:7e:c1:6c:9b:77:01:4d:29:63:45:55: a9:dc:81:61:9e:58:54:33:8e:06:9f:da:7c:f7:22:72:49:f2: f2:f8:aa:db:43:f5:00:f5:45:01:57:6b:65:aa:ff:fe:86:23: 8d:0e:30:4f:f6:2b:c6:5f:b7:e0:ae:d1:4e:e6:1a:48:59:a4: b0:4e:06:9f:fe:93:ed:22:ea:75:10:e7:ed:ce:a4:8c:50:9d: 5f:0f:4e:c2:bf:38:fb:0f:bf:d4:ab:ba:28:b8:a6:45:28:7c: 89:15:73:4b:e4:c9:35:a3:fb:9d:dd:c2:85:7b:55:46:f8:6c: 74:73:9f:cd:be:f3:2c:1c:b7:e5:88:01:92:89:b5:d5:48:b4: d8:99:1d:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCpMvjdJREV9NukGggt8WYbMPdiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYz RjgxMjlBQjAeFw0yNTA5MTMxMjU1MDJaFw0yNjA5MTIxMzAwMDJaMDMxMTAvBgNV BAMTKDkwQzFBQjM2Q0I0MTcxNkRFNkNFMDM2RjRENDgxRDAwNjExQ0YzNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7d3DlN5QAm1+UnihzFKks8KWy 09XddCU2mDYM64RACtW1IgRa7hhJF9hWkr7XI33VA0JQKiKeZyl9Q8BsLKrmk8eN O6KA8xRmkfs26o9gXB1DQOykcpG37cfmzCpl6UW/qD3b0VysQAc4Jbs+gQaSN1FX zrwED5gRm8dTuq6h7FlFHura3guDHbSP/ZK7KN2y0NfG37Ns6cZ56im12GskRK/n rfuN6H8LFpU6KJza9I0g3DZGI4kP762QQ6Ym21uJ9sVLeHru+EFsbPgDmuiO4oab pZN2AoQzf4dSot/p6u1KDN4FkmD0ZSr6GhablpR7pYwDv6DOhy6yaBCkR6/xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkMGrNstBcW3mzgNvTUgdAGEc82EwHwYDVR0j BBgwFoAUilTIGkRNBwUaJKrPdD8Bhj+BKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2ZmMDFkMC0yNmY5LTRiMjAtYTMxOC1jMzExYzI2N2YyYWYvMC84QTU0QzgxQTQ0 NEQwNzA1MUEyNEFBQ0Y3NDNGMDE4NjNGODEyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYzRjgx MjlBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZmYwMWQwLTI2ZjktNGIyMC1h MzE4LWMzMTFjMjY3ZjJhZi8wLzMxMzAzMzJlMzEzNjM2MmUzMTM1MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpp8wDQYJ KoZIhvcNAQELBQADggEBAI2jmuPqqOi5xkv7QbGDMMKYz1m3KO8KyOgSZTYrK1JB 2zk3dS23UCUkqDUsvXBt6FylId6v2Y1YKF5lzsJHG8flfcxvhaezNZhgu4zYTZ0G sNpQmPaIzwTTS50E3L4WcpmeMRW0oStOXXzWRgHjPKcBkKB+wWybdwFNKWNFVanc gWGeWFQzjgaf2nz3InJJ8vL4qttD9QD1RQFXa2Wq//6GI40OME/2K8Zft+Cu0U7m GkhZpLBOBp/+k+0i6nUQ5+3OpIxQnV8PTsK/OPsPv9Sruii4pkUofIkVc0vkyTWj +53dwoV7VUb4bHRzn82+8ywct+WIAZKJtdVItNiZHbo= -----END CERTIFICATE-----Generated at Mon Oct 20 15:55:06 2025 by rpki-client