$ rpki-client -vvf repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/3130332e3134382e3139362e302f32332d3234203d3e20313430303037.roa File: 3130332e3134382e3139362e302f32332d3234203d3e20313430303037.roa (raw, json) Hash identifier: CxideEppeSjpo62C99uXU/oA6ba7hNbNjMc3zZT0ZTs= Subject key identifier: E1:4D:4B:28:9D:B4:0B:FF:C3:21:31:78:8D:1E:CE:83:9F:77:5D:B2 Certificate issuer: /CN=157748842D6BEE36DEE3B1999F10079808FF41C0 Certificate serial: 06141EE227A4861CF5E2013365352467546C3BDA Authority key identifier: 15:77:48:84:2D:6B:EE:36:DE:E3:B1:99:9F:10:07:98:08:FF:41:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157748842D6BEE36DEE3B1999F10079808FF41C0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/3130332e3134382e3139362e302f32332d3234203d3e20313430303037.roa Signing time: Sat 13 Sep 2025 06:02:25 +0000 ROA not before: Sat 13 Sep 2025 05:57:25 +0000 ROA not after: Sat 12 Sep 2026 06:02:25 +0000 asID: 140007 IP address blocks: 103.148.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/157748842D6BEE36DEE3B1999F10079808FF41C0.crl rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/157748842D6BEE36DEE3B1999F10079808FF41C0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157748842D6BEE36DEE3B1999F10079808FF41C0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:14:1e:e2:27:a4:86:1c:f5:e2:01:33:65:35:24:67:54:6c:3b:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157748842D6BEE36DEE3B1999F10079808FF41C0 Validity Not Before: Sep 13 05:57:25 2025 GMT Not After : Sep 12 06:02:25 2026 GMT Subject: CN=E14D4B289DB40BFFC32131788D1ECE839F775DB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:78:bb:cb:75:4e:af:ed:f2:2d:de:9f:a3:ad: e3:b6:e1:d9:40:b0:27:dd:e8:e4:21:08:b8:13:71: 8f:06:f3:b0:a4:4a:53:53:2d:b4:ff:ef:b2:39:e4: 83:7b:9a:8c:17:ce:b8:8e:18:a2:c9:99:14:d0:08: 2b:d8:7d:f6:48:81:ae:e9:01:06:ef:cb:e2:29:60: 33:e1:a1:cd:1e:6e:1d:ed:2d:5b:07:19:38:75:4b: 63:11:11:c2:26:3c:1e:02:aa:f5:9a:15:d4:69:77: 2e:0f:d7:a7:c0:fb:f4:f8:55:65:9d:8a:47:dc:18: f6:46:fc:0a:78:d1:ed:12:75:89:9f:67:7f:5f:fd: b0:c0:e6:1e:1c:36:f0:5f:c1:3c:54:d4:ca:38:06: 4e:c0:b7:c8:30:d8:25:ea:2c:1c:fb:6d:df:bb:8a: 1f:dc:ea:08:0a:c1:17:86:7a:15:ca:4b:99:d5:2a: ea:4d:c2:06:22:89:03:be:5e:15:63:93:bd:46:2f: 24:3c:a9:3a:9a:5b:f9:15:ab:2d:fe:5e:54:89:dc: c8:4a:d7:30:83:80:ed:1a:07:7e:04:7f:5b:e8:1b: 3e:07:aa:99:87:14:ed:e5:84:16:31:92:b2:77:8b: 90:79:da:f1:c9:fd:12:a0:2e:f1:32:b9:64:0b:f7: 60:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4D:4B:28:9D:B4:0B:FF:C3:21:31:78:8D:1E:CE:83:9F:77:5D:B2 X509v3 Authority Key Identifier: keyid:15:77:48:84:2D:6B:EE:36:DE:E3:B1:99:9F:10:07:98:08:FF:41:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/157748842D6BEE36DEE3B1999F10079808FF41C0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157748842D6BEE36DEE3B1999F10079808FF41C0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/3130332e3134382e3139362e302f32332d3234203d3e20313430303037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.196.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:f1:96:e0:d5:d3:ba:60:ae:28:e4:42:a1:e5:a4:fe:b5:bf: 3f:84:76:a7:35:02:90:e7:a3:94:f3:3d:2c:d4:f5:73:aa:01: f2:6b:61:09:99:ee:d1:fc:39:ba:e1:b9:e5:1a:ae:35:77:a9: de:34:e3:0b:07:2b:a5:dd:5f:6d:71:f9:73:b9:92:c9:8d:4a: b6:0a:1f:33:e4:d4:3c:71:ba:dd:fd:06:30:e2:5a:e3:7c:c9: 80:1b:c6:47:57:79:a3:1f:74:a6:f8:f9:42:42:d2:5d:e6:2c: 15:75:92:5f:ca:94:d7:dc:a3:a7:8a:22:25:20:6c:20:e7:23: 7c:33:79:65:72:d9:15:a5:a3:50:61:6e:82:60:16:d2:0f:44: 9b:58:cb:91:24:7a:87:31:c5:a9:2e:a3:cd:ef:2d:84:31:13: a9:e0:fd:e6:b8:4d:b0:a6:37:93:33:d5:0e:10:09:f1:7f:e1: f7:e9:b1:82:c8:8a:a9:2c:ce:bc:0d:e7:aa:fa:12:5f:5a:38: 83:ae:9d:f9:a9:e1:ed:b4:f2:6c:f6:24:37:36:0d:30:85:d0: b3:78:bc:00:c8:96:8f:2c:c6:ba:52:1f:82:af:a1:e6:7f:fc: 48:95:22:a4:12:a8:9f:2f:63:df:f6:cc:54:32:34:6f:0e:1c: 1d:73:fc:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBhQe4iekhhz14gEzZTUkZ1RsO9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3NzQ4ODQyRDZCRUUzNkRFRTNCMTk5OUYxMDA3OTgw OEZGNDFDMDAeFw0yNTA5MTMwNTU3MjVaFw0yNjA5MTIwNjAyMjVaMDMxMTAvBgNV BAMTKEUxNEQ0QjI4OURCNDBCRkZDMzIxMzE3ODhEMUVDRTgzOUY3NzVEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCneLvLdU6v7fIt3p+jreO24dlA sCfd6OQhCLgTcY8G87CkSlNTLbT/77I55IN7mowXzriOGKLJmRTQCCvYffZIga7p AQbvy+IpYDPhoc0ebh3tLVsHGTh1S2MREcImPB4CqvWaFdRpdy4P16fA+/T4VWWd ikfcGPZG/Ap40e0SdYmfZ39f/bDA5h4cNvBfwTxU1Mo4Bk7At8gw2CXqLBz7bd+7 ih/c6ggKwReGehXKS5nVKupNwgYiiQO+XhVjk71GLyQ8qTqaW/kVqy3+XlSJ3MhK 1zCDgO0aB34Ef1voGz4HqpmHFO3lhBYxkrJ3i5B52vHJ/RKgLvEyuWQL92CVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4U1LKJ20C//DITF4jR7Og593XbIwHwYDVR0j BBgwFoAUFXdIhC1r7jbe47GZnxAHmAj/QcAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDZmNWEwNS0zMmI1LTRkM2MtYjRlMC1hYmRkY2Y3M2Y1ZTkvMC8xNTc3NDg4NDJE NkJFRTM2REVFM0IxOTk5RjEwMDc5ODA4RkY0MUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3NzQ4ODQyRDZCRUUzNkRFRTNCMTk5OUYxMDA3OTgwOEZG NDFDMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0NmY1YTA1LTMyYjUtNGQzYy1i NGUwLWFiZGRjZjczZjVlOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlMQwDQYJ KoZIhvcNAQELBQADggEBAJrxluDV07pgrijkQqHlpP61vz+Edqc1ApDno5TzPSzU 9XOqAfJrYQmZ7tH8ObrhueUarjV3qd404wsHK6XdX21x+XO5ksmNSrYKHzPk1Dxx ut39BjDiWuN8yYAbxkdXeaMfdKb4+UJC0l3mLBV1kl/KlNfco6eKIiUgbCDnI3wz eWVy2RWlo1BhboJgFtIPRJtYy5Ekeocxxakuo83vLYQxE6ng/ea4TbCmN5Mz1Q4Q CfF/4ffpsYLIiqkszrwN56r6El9aOIOunfmp4e208mz2JDc2DTCF0LN4vADIlo8s xrpSH4KvoeZ//EiVIqQSqJ8vY9/2zFQyNG8OHB1z/CI= -----END CERTIFICATE-----Generated at Mon Oct 20 18:08:28 2025 by rpki-client