$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa File: 3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa (raw, json) Hash identifier: cCo2j3DaRw7ST6xKRFKIc+Fk9WAeawaQpPCFHRoRW38= Subject key identifier: 06:88:18:E5:C7:FD:0F:39:6F:D4:08:B2:46:AB:94:FD:DC:96:4B:D9 Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 3F5C07D69A8E0255F599BD68646F70A53C98ACAA Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa Signing time: Thu 02 Oct 2025 20:00:02 +0000 ROA not before: Thu 02 Oct 2025 19:55:02 +0000 ROA not after: Thu 01 Oct 2026 20:00:02 +0000 asID: 150200 IP address blocks: 103.196.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 01:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:5c:07:d6:9a:8e:02:55:f5:99:bd:68:64:6f:70:a5:3c:98:ac:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Oct 2 19:55:02 2025 GMT Not After : Oct 1 20:00:02 2026 GMT Subject: CN=068818E5C7FD0F396FD408B246AB94FDDC964BD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:75:09:68:74:7f:a8:09:3f:1d:61:35:20:b5: f1:b8:d4:41:cf:07:90:b4:fb:38:7d:d4:d3:7c:71: 32:6d:44:b2:1a:2d:1c:a6:4e:12:01:0e:ca:9b:5e: 5c:8b:63:40:8f:35:e1:41:e3:35:be:5c:c4:5c:0a: 26:42:98:0c:25:25:4e:01:ae:fd:97:ab:37:bc:e1: df:85:bd:f8:f7:d9:c2:e4:e8:6c:3b:7e:b4:9d:c5: c5:9b:16:50:f6:07:ba:38:13:4a:bd:43:04:0c:a4: bc:8c:b7:67:18:00:63:90:59:f2:67:9a:cb:d2:8c: f0:39:75:c8:db:2d:de:8c:b9:34:f3:52:86:c7:ef: 2f:ec:3c:33:ef:5b:a6:23:3e:46:05:00:ee:46:32: 29:28:7f:96:85:24:be:b4:ce:d0:12:db:61:7a:80: 22:04:83:ca:39:84:2c:7f:90:2f:1d:ec:b8:c2:6e: ca:af:85:78:51:d5:6d:91:48:57:ef:68:00:33:ce: 1e:73:3b:c3:a5:4c:05:94:93:93:93:1b:8e:6a:c6: eb:6b:52:07:e3:6c:c9:b8:5c:5d:6e:ce:4d:b9:c6: e4:69:fc:1f:4d:e0:e0:1c:c6:fb:18:ba:07:91:eb: d3:e6:26:24:e9:bf:cf:77:25:bd:2b:24:dc:fd:1b: 3a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:88:18:E5:C7:FD:0F:39:6F:D4:08:B2:46:AB:94:FD:DC:96:4B:D9 X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.40.0/23 Signature Algorithm: sha256WithRSAEncryption 90:5f:26:1c:c6:1d:cc:41:dc:53:5f:6c:b0:df:ab:d8:3e:99: c1:78:e4:96:0e:02:f4:66:4d:8e:04:80:a1:30:c3:c2:10:bf: 09:a6:22:31:f2:0d:2c:da:f6:d8:94:19:3c:36:cb:56:24:4b: 80:73:a2:75:d7:75:0e:62:8e:41:67:ff:70:ef:11:21:9c:b7: dc:7a:a4:8d:07:6e:f3:2f:93:54:66:a2:48:44:0f:d3:34:7a: ce:66:b7:7b:16:fd:e3:7f:d9:95:0c:63:f8:55:a9:18:3c:56: 0b:c0:94:81:5a:32:0a:5f:11:c6:6c:9b:65:66:55:35:60:6e: 0f:46:d9:36:ce:07:b4:42:e5:8c:34:3a:5c:7b:07:5c:4b:3b: 25:0c:9a:e2:b7:71:6e:5a:0c:bd:c5:19:59:e1:e0:22:62:a7: 86:6c:e1:d9:b5:b3:92:c7:e1:1a:13:d7:30:59:a5:2b:3b:a8: a1:d0:93:a3:4e:00:19:3f:02:a4:c9:7c:db:da:3f:17:fe:11: 27:30:36:ff:36:de:f3:a3:7e:eb:39:f3:f1:18:bc:58:54:00: c1:3a:ec:a2:a6:72:1d:64:c7:8d:a9:9b:0d:96:57:90:dc:d2: 33:9c:5c:35:57:76:e1:22:23:81:1f:6a:80:56:6f:31:a4:4f: 80:43:16:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP1wH1pqOAlX1mb1oZG9wpTyYrKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNTEwMDIxOTU1MDJaFw0yNjEwMDEyMDAwMDJaMDMxMTAvBgNV BAMTKDA2ODgxOEU1QzdGRDBGMzk2RkQ0MDhCMjQ2QUI5NEZEREM5NjRCRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqdQlodH+oCT8dYTUgtfG41EHP B5C0+zh91NN8cTJtRLIaLRymThIBDsqbXlyLY0CPNeFB4zW+XMRcCiZCmAwlJU4B rv2Xqze84d+Fvfj32cLk6Gw7frSdxcWbFlD2B7o4E0q9QwQMpLyMt2cYAGOQWfJn msvSjPA5dcjbLd6MuTTzUobH7y/sPDPvW6YjPkYFAO5GMikof5aFJL60ztAS22F6 gCIEg8o5hCx/kC8d7LjCbsqvhXhR1W2RSFfvaAAzzh5zO8OlTAWUk5OTG45qxutr UgfjbMm4XF1uzk25xuRp/B9N4OAcxvsYugeR69PmJiTpv893Jb0rJNz9Gzr1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBogY5cf9Dzlv1AiyRquU/dyWS9kwHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhNWI0ZmE0LTMyOGMtNGNmMi1h ZGUzLWM4NjgxMzFkNGUwZC8wLzMxMzAzMzJlMzEzOTM2MmUzNDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzIzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ8QoMA0GCSqG SIb3DQEBCwUAA4IBAQCQXyYcxh3MQdxTX2yw36vYPpnBeOSWDgL0Zk2OBIChMMPC EL8JpiIx8g0s2vbYlBk8NstWJEuAc6J113UOYo5BZ/9w7xEhnLfceqSNB27zL5NU ZqJIRA/TNHrOZrd7Fv3jf9mVDGP4VakYPFYLwJSBWjIKXxHGbJtlZlU1YG4PRtk2 zge0QuWMNDpcewdcSzslDJrit3FuWgy9xRlZ4eAiYqeGbOHZtbOSx+EaE9cwWaUr O6ih0JOjTgAZPwKkyXzb2j8X/hEnMDb/Nt7zo37rOfPxGLxYVADBOuyipnIdZMeN qZsNlleQ3NIznFw1V3bhIiOBH2qAVm8xpE+AQxY7 -----END CERTIFICATE-----Generated at Tue Oct 21 04:44:20 2025 by rpki-client