$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa File: 3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa (raw, json) Hash identifier: TTBU1STvQaNI1wpqoaj9bG2m/T27T+WPjYQLtuioWoo= Subject key identifier: DC:69:8C:72:1E:3E:14:23:13:7A:81:74:61:46:A4:36:50:26:CD:30 Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Certificate serial: 1A806ACDB71C1582078DCD54AC850DDD777E6A72 Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa Signing time: Tue 07 Oct 2025 11:00:00 +0000 ROA not before: Tue 07 Oct 2025 10:55:00 +0000 ROA not after: Tue 06 Oct 2026 11:00:00 +0000 asID: 140454 IP address blocks: 103.153.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 23:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:80:6a:cd:b7:1c:15:82:07:8d:cd:54:ac:85:0d:dd:77:7e:6a:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Validity Not Before: Oct 7 10:55:00 2025 GMT Not After : Oct 6 11:00:00 2026 GMT Subject: CN=DC698C721E3E1423137A81746146A4365026CD30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:c1:90:d2:86:00:da:19:50:db:25:17:7b: ee:26:05:f7:79:b3:d0:04:02:dc:6d:b3:b0:75:39: 7e:6c:0d:5a:ec:a8:d1:83:e0:75:f1:65:bc:98:c3: c0:cf:63:03:da:94:6a:95:5b:8b:93:8d:55:49:24: 80:9b:93:a3:a4:52:31:6b:ae:28:76:c8:fc:85:95: e6:c8:f2:b7:f4:c9:df:76:5a:2d:e3:a3:c2:75:ac: 68:03:4a:ad:9c:fd:e3:8d:35:26:b5:46:4e:dc:f9: e6:f0:29:6f:86:c8:2e:57:1e:3b:79:2c:af:20:3b: 72:f4:f7:f1:4c:5e:9b:5e:62:31:c6:06:3e:5a:ce: 03:b7:a9:a6:e5:19:b8:50:5e:39:07:2a:1e:ba:75: 2f:57:cf:de:b7:c4:8d:3a:c6:ca:fb:7a:5b:a0:14: 6c:8b:ae:fd:7e:3c:5d:c3:9a:15:61:6d:df:cc:bc: b1:b0:c6:56:54:fe:a7:f8:f8:68:a3:07:82:a1:5f: e7:76:3c:2b:af:fa:fb:75:b3:47:62:a3:68:a9:79: 83:1d:b4:61:81:06:34:35:cd:ff:c4:44:a3:bb:51: fe:ab:50:f7:05:f1:1c:a2:bb:e3:36:5d:c0:b1:fe: a9:f9:4a:3d:b2:3e:a0:c8:55:26:99:02:75:46:bb: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:69:8C:72:1E:3E:14:23:13:7A:81:74:61:46:A4:36:50:26:CD:30 X509v3 Authority Key Identifier: keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.40.0/23 Signature Algorithm: sha256WithRSAEncryption d0:8b:03:1b:45:ff:13:6b:bb:31:70:65:94:d9:25:45:8e:1b: ef:4a:28:06:cb:39:37:f0:01:ab:f4:9b:c1:67:db:c0:e6:07: 3c:58:b0:66:64:5d:84:85:ac:3a:fb:4e:49:1d:b5:a4:6a:d6: 4a:06:94:7d:37:ab:55:7e:10:b0:07:1e:f3:22:29:9f:56:69: 8d:2d:99:47:66:d1:67:95:a0:8c:11:b0:a8:0e:7c:9f:b8:e6: 6e:a3:81:39:08:37:f4:01:37:ea:5e:ff:df:e1:62:b6:3d:ad: 59:cf:7a:90:6e:37:c7:66:32:7a:a3:6b:46:a1:99:54:96:a9: 17:05:e0:e5:2b:03:4d:54:78:cc:df:e2:5d:d5:95:08:13:6e: 20:ba:70:9e:a6:d7:d3:36:df:b8:bc:be:60:63:b9:0d:60:5f: 71:11:21:91:f8:14:06:c9:05:a0:d7:32:cc:74:a6:29:17:25: ae:6a:7d:c8:c1:59:75:b2:09:19:6c:70:ce:cb:3e:3e:6d:5f: 0a:f7:62:03:18:0c:39:08:b7:c6:18:1e:e1:ee:0f:83:f3:e6: ac:1e:5f:f7:aa:74:60:21:3a:5a:4d:ce:5a:92:b9:a8:be:3f: a9:ae:13:81:0d:e0:77:4e:04:1e:15:c6:77:1a:63:5d:8f:8a: f1:62:54:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGoBqzbccFYIHjc1UrIUN3Xd+anIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5 NUZDRUM3MDAeFw0yNTEwMDcxMDU1MDBaFw0yNjEwMDYxMTAwMDBaMDMxMTAvBgNV BAMTKERDNjk4QzcyMUUzRTE0MjMxMzdBODE3NDYxNDZBNDM2NTAyNkNEMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6DMGQ0oYA2hlQ2yUXe+4mBfd5 s9AEAtxts7B1OX5sDVrsqNGD4HXxZbyYw8DPYwPalGqVW4uTjVVJJICbk6OkUjFr rih2yPyFlebI8rf0yd92Wi3jo8J1rGgDSq2c/eONNSa1Rk7c+ebwKW+GyC5XHjt5 LK8gO3L09/FMXpteYjHGBj5azgO3qablGbhQXjkHKh66dS9Xz963xI06xsr7elug FGyLrv1+PF3DmhVhbd/MvLGwxlZU/qf4+GijB4KhX+d2PCuv+vt1s0dio2ipeYMd tGGBBjQ1zf/ERKO7Uf6rUPcF8Ryiu+M2XcCx/qn5Sj2yPqDIVSaZAnVGu/IpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3GmMch4+FCMTeoF0YUakNlAmzTAwHwYDVR0j BBgwFoAURRZMIOr3+rWD+xLIFycVCJX87HAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMC80NTE2NEMyMEVB RjdGQUI1ODNGQjEyQzgxNzI3MTUwODk1RkNFQzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5NUZD RUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZhLTk4ZmQtNGU1MS05 ODBlLWFkNWY1YjkwZDdhNi8wLzMxMzAzMzJlMzEzNTMzMmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5koMA0GCSqG SIb3DQEBCwUAA4IBAQDQiwMbRf8Ta7sxcGWU2SVFjhvvSigGyzk38AGr9JvBZ9vA 5gc8WLBmZF2Ehaw6+05JHbWkatZKBpR9N6tVfhCwBx7zIimfVmmNLZlHZtFnlaCM EbCoDnyfuOZuo4E5CDf0ATfqXv/f4WK2Pa1Zz3qQbjfHZjJ6o2tGoZlUlqkXBeDl KwNNVHjM3+Jd1ZUIE24gunCeptfTNt+4vL5gY7kNYF9xESGR+BQGyQWg1zLMdKYp FyWuan3IwVl1sgkZbHDOyz4+bV8K92IDGAw5CLfGGB7h7g+D8+asHl/3qnRgITpa Tc5akrmovj+prhOBDeB3TgQeFcZ3GmNdj4rxYlQJ -----END CERTIFICATE-----Generated at Tue Oct 21 07:02:08 2025 by rpki-client