$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa File: 3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa (raw, json) Hash identifier: cLToJ49OKqVQRgjYGYNvWnWnJYTEY5LWx4h5YZdNEfg= Subject key identifier: 94:C2:71:6A:12:46:F9:28:2E:EC:05:9A:F4:06:36:72:14:9D:F9:7B Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Certificate serial: 03E1A6E54B7BE59A67677F13BE192C33E35EECDD Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa Signing time: Tue 07 Oct 2025 11:00:00 +0000 ROA not before: Tue 07 Oct 2025 10:55:00 +0000 ROA not after: Tue 06 Oct 2026 11:00:00 +0000 asID: 140454 IP address blocks: 103.108.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 23:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e1:a6:e5:4b:7b:e5:9a:67:67:7f:13:be:19:2c:33:e3:5e:ec:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Validity Not Before: Oct 7 10:55:00 2025 GMT Not After : Oct 6 11:00:00 2026 GMT Subject: CN=94C2716A1246F9282EEC059AF4063672149DF97B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7e:76:53:5c:fc:0e:84:2e:11:e7:32:f1:9f: dd:af:89:8a:7e:ae:9f:b5:23:7e:b6:3e:3b:6f:32: 14:da:eb:96:46:34:98:2e:7d:da:6d:75:11:cb:20: 0a:a7:b7:9c:f0:24:f8:21:d9:03:15:59:42:50:66: d4:ab:aa:61:32:a5:3c:55:a8:78:aa:77:ec:87:aa: 74:a3:34:25:1d:d6:f3:1e:e8:e1:41:3b:27:4f:28: de:55:1c:80:50:59:f7:25:6f:ba:95:cf:97:76:d2: 96:41:41:06:97:1d:3c:67:06:23:a4:31:cf:67:fa: d7:a2:fb:d4:4b:d0:5a:ae:6f:b3:9f:c3:fd:86:e1: 87:26:4e:30:89:7a:2d:cd:54:e7:09:f4:e0:95:fd: 1f:f8:54:76:2f:50:0e:0c:13:a7:61:2e:aa:8d:99: de:20:bb:a9:79:99:37:67:e1:80:0f:39:0e:db:2f: 02:d0:f8:52:8d:35:db:15:88:0b:e5:2b:2d:f2:92: 35:c9:5f:b1:d7:1e:e0:7d:60:ef:f2:a9:53:14:ca: 7f:47:2d:d4:d0:38:49:61:6c:e8:72:5a:36:8c:2f: 66:ab:be:84:8b:07:e4:92:36:6f:2a:78:3e:57:8a: 48:e2:ed:c9:2b:e3:de:30:5d:03:94:31:43:6b:a6: a7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C2:71:6A:12:46:F9:28:2E:EC:05:9A:F4:06:36:72:14:9D:F9:7B X509v3 Authority Key Identifier: keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.156.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:3a:2b:8e:03:81:a2:33:a5:8d:b2:23:03:21:a7:4f:a4:c9: 23:2b:f9:10:84:26:fb:1f:d9:90:d2:a0:58:a3:6c:2e:ec:cd: 18:bc:6c:58:cd:b0:47:07:03:97:1d:c6:b7:23:1a:88:44:7a: 3f:7f:2d:dc:6a:13:0e:46:f3:21:3e:c0:af:0a:76:ce:b2:04: 20:33:64:c6:e7:3b:54:60:29:a1:d3:a2:67:03:58:8e:52:ce: e6:b6:28:38:5e:1b:ff:38:75:15:ea:35:0d:e4:5f:b8:b4:d9: a7:54:90:a9:e7:12:25:e9:1c:82:f2:91:fd:2f:0f:a3:ec:d4: da:01:bb:28:3d:7a:25:c2:f1:49:c0:24:b0:e5:0d:23:79:42: 9a:4d:3a:1e:b9:c4:fa:98:24:61:34:e3:17:24:77:c9:6a:45: 60:d0:4b:57:7a:37:0d:d9:02:c0:f9:0f:54:6e:b2:7d:60:8f: d4:de:0f:0e:ef:f5:0d:4e:f9:5c:87:f3:6b:02:cb:b7:bd:2b: 51:bf:ca:76:80:c2:bf:4e:d5:e9:47:dd:14:65:7e:1a:c1:71: fe:25:00:3d:68:7b:0a:9a:d9:80:af:ff:12:62:40:79:7a:92: 20:0c:ce:d0:67:2e:f5:ab:4e:44:1d:ec:17:9c:9e:56:41:c5: d9:f7:cb:3b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA+Gm5Ut75ZpnZ38TvhksM+Ne7N0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5 NUZDRUM3MDAeFw0yNTEwMDcxMDU1MDBaFw0yNjEwMDYxMTAwMDBaMDMxMTAvBgNV BAMTKDk0QzI3MTZBMTI0NkY5MjgyRUVDMDU5QUY0MDYzNjcyMTQ5REY5N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafnZTXPwOhC4R5zLxn92viYp+ rp+1I362PjtvMhTa65ZGNJgufdptdRHLIAqnt5zwJPgh2QMVWUJQZtSrqmEypTxV qHiqd+yHqnSjNCUd1vMe6OFBOydPKN5VHIBQWfclb7qVz5d20pZBQQaXHTxnBiOk Mc9n+tei+9RL0Fqub7Ofw/2G4YcmTjCJei3NVOcJ9OCV/R/4VHYvUA4ME6dhLqqN md4gu6l5mTdn4YAPOQ7bLwLQ+FKNNdsViAvlKy3ykjXJX7HXHuB9YO/yqVMUyn9H LdTQOElhbOhyWjaML2arvoSLB+SSNm8qeD5Xikji7ckr494wXQOUMUNrpqfdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlMJxahJG+Sgu7AWa9AY2chSd+XswHwYDVR0j BBgwFoAURRZMIOr3+rWD+xLIFycVCJX87HAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMC80NTE2NEMyMEVB RjdGQUI1ODNGQjEyQzgxNzI3MTUwODk1RkNFQzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5NUZD RUM3MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZhLTk4ZmQtNGU1MS05 ODBlLWFkNWY1YjkwZDdhNi8wLzMxMzAzMzJlMzEzMDM4MmUzMTM1MzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnbJwwDQYJ KoZIhvcNAQELBQADggEBAI86K44DgaIzpY2yIwMhp0+kySMr+RCEJvsf2ZDSoFij bC7szRi8bFjNsEcHA5cdxrcjGohEej9/LdxqEw5G8yE+wK8Kds6yBCAzZMbnO1Rg KaHTomcDWI5Szua2KDheG/84dRXqNQ3kX7i02adUkKnnEiXpHILykf0vD6Ps1NoB uyg9eiXC8UnAJLDlDSN5QppNOh65xPqYJGE04xckd8lqRWDQS1d6Nw3ZAsD5D1Ru sn1gj9TeDw7v9Q1O+VyH82sCy7e9K1G/ynaAwr9O1elH3RRlfhrBcf4lAD1oewqa 2YCv/xJiQHl6kiAMztBnLvWrTkQd7BecnlZBxdn3yzs= -----END CERTIFICATE-----Generated at Tue Oct 21 04:44:06 2025 by rpki-client