$ rpki-client -vvf repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/3130332e3135362e31362e302f32332d3233203d3e20313431303737.roa File: 3130332e3135362e31362e302f32332d3233203d3e20313431303737.roa (raw, json) Hash identifier: GcnPS65OCBB0ihyHnpr3GwIV8GjmdZ6KF4Bu2gSogsQ= Subject key identifier: 00:48:35:82:C9:6B:BE:E0:2E:23:7C:F2:D0:DE:15:C4:98:7A:42:D7 Certificate issuer: /CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Certificate serial: 3CBDD35661E6ED31A9DBD128DF760837BD419FF3 Authority key identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/3130332e3135362e31362e302f32332d3233203d3e20313431303737.roa Signing time: Thu 28 Aug 2025 10:53:49 +0000 ROA not before: Thu 28 Aug 2025 10:48:49 +0000 ROA not after: Thu 27 Aug 2026 10:53:49 +0000 asID: 141077 IP address blocks: 103.156.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.crl rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:bd:d3:56:61:e6:ed:31:a9:db:d1:28:df:76:08:37:bd:41:9f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Validity Not Before: Aug 28 10:48:49 2025 GMT Not After : Aug 27 10:53:49 2026 GMT Subject: CN=00483582C96BBEE02E237CF2D0DE15C4987A42D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:07:67:6a:64:c4:57:e0:47:ca:d4:5b:92:e7: 57:66:72:7a:cb:7d:6a:61:93:3d:d6:b0:d5:67:a7: 26:67:cd:09:23:86:a8:5a:d8:57:15:64:99:c9:7a: 59:a7:fa:98:37:e4:46:7f:14:87:40:a8:c9:87:a7: ac:57:e6:2f:bf:2b:8d:d4:07:94:a6:e3:d0:48:af: d3:55:ee:05:3e:59:19:7d:ec:7d:67:89:6f:9f:00: af:67:ef:e5:2a:b8:64:c9:ee:63:f1:6f:1e:27:16: 74:85:74:f2:db:03:27:9e:c4:7c:69:cb:2b:e0:a9: 91:c7:4e:58:d8:a7:d2:29:3c:bf:49:56:f3:b9:2e: a6:53:fa:19:61:e6:65:57:6f:d4:4e:03:d7:f3:82: 83:fd:b7:57:33:d4:7b:db:81:04:50:58:12:85:5a: 9e:b5:e2:e1:a5:18:54:8d:3a:a3:f3:67:64:09:67: 97:39:a6:fe:5a:0f:0c:e5:f5:d1:98:b1:6f:d1:9a: e4:4e:b6:7e:a9:8e:fb:c8:a2:3d:f6:ee:11:95:6b: c3:67:74:8a:dc:f3:bc:a5:14:c6:30:dd:8c:2a:18: 97:20:9c:82:5e:de:21:e6:9f:bc:7f:e0:6a:21:1a: 79:58:f7:25:09:be:de:67:1a:29:aa:49:ee:23:e3: f1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:48:35:82:C9:6B:BE:E0:2E:23:7C:F2:D0:DE:15:C4:98:7A:42:D7 X509v3 Authority Key Identifier: keyid:C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/3130332e3135362e31362e302f32332d3233203d3e20313431303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.16.0/23 Signature Algorithm: sha256WithRSAEncryption c1:73:6a:9b:c5:f9:ec:a4:00:07:48:6e:b9:47:ea:3d:b9:18: 26:48:c7:79:78:e8:a8:91:07:8b:de:a3:e3:6d:14:5b:17:04: 25:e1:d0:60:e0:05:da:9b:0d:90:4b:f3:15:48:a9:40:fc:6f: 76:62:d1:02:e4:8c:25:b9:22:44:06:96:9d:8c:ff:8c:d9:55: 70:47:40:38:f5:05:47:46:a5:5d:3f:12:9a:c9:c4:e3:a2:13: 1c:4a:02:e3:a5:2f:f5:da:f8:64:0e:fc:a4:b8:5a:69:66:79: 24:24:cd:44:03:bd:f2:fd:7b:f1:32:f8:84:ed:98:26:10:83: ee:19:13:01:ca:9b:5f:4b:4d:da:ea:5c:77:28:39:84:fb:33: c6:ba:0c:10:67:31:ff:10:52:16:b3:e5:34:15:53:43:79:5e: 63:26:58:a2:e1:2d:d3:ae:13:8c:e3:c7:7f:6f:df:ef:ec:75: 7f:5d:13:2d:b2:48:2e:e1:d9:30:9f:be:91:9b:d8:2a:c6:21: 08:ac:31:ad:10:a3:f2:da:91:2c:36:ff:ab:6b:35:60:23:1c: 07:e3:1e:10:51:67:82:5e:60:3c:53:c2:f0:0b:24:bc:d9:8a: 88:e8:56:86:45:2e:cc:8e:48:cc:fc:a4:23:44:65:89:c0:7c: 5c:14:a9:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPL3TVmHm7TGp29Eo33YIN71Bn/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1RDUwNTZBNjlDRTBEMDY4NUJBRDhFNDhGMzNBNEE2 MkE1QzU4MjAeFw0yNTA4MjgxMDQ4NDlaFw0yNjA4MjcxMDUzNDlaMDMxMTAvBgNV BAMTKDAwNDgzNTgyQzk2QkJFRTAyRTIzN0NGMkQwREUxNUM0OTg3QTQyRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0B2dqZMRX4EfK1FuS51dmcnrL fWphkz3WsNVnpyZnzQkjhqha2FcVZJnJelmn+pg35EZ/FIdAqMmHp6xX5i+/K43U B5Sm49BIr9NV7gU+WRl97H1niW+fAK9n7+UquGTJ7mPxbx4nFnSFdPLbAyeexHxp yyvgqZHHTljYp9IpPL9JVvO5LqZT+hlh5mVXb9ROA9fzgoP9t1cz1HvbgQRQWBKF Wp614uGlGFSNOqPzZ2QJZ5c5pv5aDwzl9dGYsW/RmuROtn6pjvvIoj327hGVa8Nn dIrc87ylFMYw3YwqGJcgnIJe3iHmn7x/4GohGnlY9yUJvt5nGimqSe4j4/GNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAEg1gslrvuAuI3zy0N4VxJh6QtcwHwYDVR0j BBgwFoAUwl1QVqac4NBoW62OSPM6SmKlxYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTY0MDFlMy05ZjYyLTRiM2MtYmZmYi03ODMzNTVhZTY3NzAvMC9DMjVENTA1NkE2 OUNFMEQwNjg1QkFEOEU0OEYzM0E0QTYyQTVDNTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1RDUwNTZBNjlDRTBEMDY4NUJBRDhFNDhGMzNBNEE2MkE1 QzU4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5NjQwMWUzLTlmNjItNGIzYy1i ZmZiLTc4MzM1NWFlNjc3MC8wLzMxMzAzMzJlMzEzNTM2MmUzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5wQMA0GCSqG SIb3DQEBCwUAA4IBAQDBc2qbxfnspAAHSG65R+o9uRgmSMd5eOiokQeL3qPjbRRb FwQl4dBg4AXamw2QS/MVSKlA/G92YtEC5IwluSJEBpadjP+M2VVwR0A49QVHRqVd PxKaycTjohMcSgLjpS/12vhkDvykuFppZnkkJM1EA73y/XvxMviE7ZgmEIPuGRMB yptfS03a6lx3KDmE+zPGugwQZzH/EFIWs+U0FVNDeV5jJlii4S3TrhOM48d/b9/v 7HV/XRMtskgu4dkwn76Rm9gqxiEIrDGtEKPy2pEsNv+razVgIxwH4x4QUWeCXmA8 U8LwCyS82YqI6FaGRS7MjkjM/KQjRGWJwHxcFKmd -----END CERTIFICATE-----Generated at Tue Oct 21 00:31:35 2025 by rpki-client