$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa File: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (raw, json) Hash identifier: IAfCc36b+ZuLfkNXk9UGXWqhcIrd0+kkw00XJdFWpic= Subject key identifier: B0:00:25:F7:58:33:13:47:C9:6D:7D:10:5B:73:8A:16:6B:7E:83:2A Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 46FCE36023A289A8B7735D6639ED13E9065739F1 Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa Signing time: Thu 02 Oct 2025 19:00:02 +0000 ROA not before: Thu 02 Oct 2025 18:55:02 +0000 ROA not after: Thu 01 Oct 2026 19:00:02 +0000 asID: 150200 IP address blocks: 103.196.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 01:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fc:e3:60:23:a2:89:a8:b7:73:5d:66:39:ed:13:e9:06:57:39:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Oct 2 18:55:02 2025 GMT Not After : Oct 1 19:00:02 2026 GMT Subject: CN=B00025F758331347C96D7D105B738A166B7E832A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6e:35:b4:38:63:32:19:eb:ff:df:08:06:a0: ff:34:9a:82:4b:4f:0a:3e:1e:fa:3e:77:21:e0:52: 63:ff:87:f1:3e:6f:1f:0b:11:96:44:db:85:ae:f7: 6f:1e:f6:8f:2e:ca:b1:c4:18:c5:1d:a4:05:2c:b3: e4:6f:c7:b3:02:80:15:9d:71:8d:49:5f:2b:d7:6a: bf:0f:0c:e7:0e:ff:db:40:a8:c8:09:3d:79:1b:7e: 57:4b:d9:0f:6e:6c:2b:b4:db:6c:14:67:1f:8e:76: ce:f7:f3:9a:d2:d8:ec:5f:e4:b3:80:ad:87:fd:53: e6:8e:57:37:5b:fa:13:1e:c0:19:d1:ac:f5:68:e6: 5f:a0:1b:7b:25:09:90:95:76:83:ac:e9:3b:06:3f: be:30:a0:c6:10:74:c5:64:5e:e9:f3:66:06:55:96: 7d:88:70:46:8f:4a:b9:74:54:2b:05:7f:ca:0d:66: 55:cb:b4:d6:6b:36:92:62:7b:a6:70:5e:16:0e:94: 60:9f:d0:eb:7b:a5:c8:db:69:10:28:25:d3:1d:0d: d1:08:d3:30:c1:5e:b2:54:81:d4:87:d4:8d:71:d7: b0:d0:1b:f0:ef:72:54:ae:b4:cb:1d:6b:41:ad:8e: 00:ce:fc:e0:9f:06:ea:50:dd:80:bd:d3:a9:29:e5: 08:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:00:25:F7:58:33:13:47:C9:6D:7D:10:5B:73:8A:16:6B:7E:83:2A X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.40.0/24 Signature Algorithm: sha256WithRSAEncryption ae:f5:ee:10:36:79:88:51:93:a8:f8:67:6c:f8:3f:f6:28:67: 68:67:3c:f5:1d:61:77:66:5a:5d:cc:d6:1c:74:eb:51:8a:f2: 72:13:43:fc:0b:37:0f:79:96:f8:9c:10:73:b9:db:50:e7:22: 2e:39:63:a7:42:71:3e:b7:e7:0a:0a:5c:b4:55:7e:ab:e0:61: fa:0c:05:05:84:1a:2f:00:d2:fe:62:f9:ec:8e:ec:c3:e0:87: da:49:ee:c5:bc:f3:8e:0d:9f:77:7a:8f:da:4e:9a:f2:79:e0: f5:0a:a5:d2:c2:8a:81:ba:c5:96:91:a2:79:12:36:fa:23:d9: a5:25:c5:59:f6:1a:0d:92:ea:2f:54:2b:fb:2f:c5:94:12:60: 4c:4a:fd:aa:ec:39:68:13:54:47:93:8a:d7:64:8f:5c:e5:02: 54:24:32:92:67:ff:ef:c1:70:4c:b5:97:12:05:77:dc:ed:83: 83:c4:68:a9:93:5b:0f:41:99:4a:ad:59:ec:3f:d5:1a:62:a8: 1c:02:c6:0c:79:02:d6:cd:b8:b8:b2:93:f4:2d:52:be:a2:13: f7:b8:4d:2b:fe:8b:08:d2:aa:81:28:6e:38:1c:be:1c:68:ea: 53:c4:f8:e5:ab:54:45:38:d8:81:dc:79:64:8e:4b:71:14:18: 42:f4:b1:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURvzjYCOiiai3c11mOe0T6QZXOfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNTEwMDIxODU1MDJaFw0yNjEwMDExOTAwMDJaMDMxMTAvBgNV BAMTKEIwMDAyNUY3NTgzMzEzNDdDOTZEN0QxMDVCNzM4QTE2NkI3RTgzMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzbjW0OGMyGev/3wgGoP80moJL Two+Hvo+dyHgUmP/h/E+bx8LEZZE24Wu928e9o8uyrHEGMUdpAUss+Rvx7MCgBWd cY1JXyvXar8PDOcO/9tAqMgJPXkbfldL2Q9ubCu022wUZx+Ods7385rS2Oxf5LOA rYf9U+aOVzdb+hMewBnRrPVo5l+gG3slCZCVdoOs6TsGP74woMYQdMVkXunzZgZV ln2IcEaPSrl0VCsFf8oNZlXLtNZrNpJie6ZwXhYOlGCf0Ot7pcjbaRAoJdMdDdEI 0zDBXrJUgdSH1I1x17DQG/DvclSutMsda0GtjgDO/OCfBupQ3YC906kp5QjxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsAAl91gzE0fJbX0QW3OKFmt+gyowHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhNWI0ZmE0LTMyOGMtNGNmMi1h ZGUzLWM4NjgxMzFkNGUwZC8wLzMxMzAzMzJlMzEzOTM2MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8QoMA0GCSqG SIb3DQEBCwUAA4IBAQCu9e4QNnmIUZOo+Gds+D/2KGdoZzz1HWF3ZlpdzNYcdOtR ivJyE0P8CzcPeZb4nBBzudtQ5yIuOWOnQnE+t+cKCly0VX6r4GH6DAUFhBovANL+ YvnsjuzD4IfaSe7FvPOODZ93eo/aTpryeeD1CqXSwoqBusWWkaJ5Ejb6I9mlJcVZ 9hoNkuovVCv7L8WUEmBMSv2q7DloE1RHk4rXZI9c5QJUJDKSZ//vwXBMtZcSBXfc 7YODxGipk1sPQZlKrVnsP9UaYqgcAsYMeQLWzbi4spP0LVK+ohP3uE0r/osI0qqB KG44HL4caOpTxPjlq1RFONiB3HlkjktxFBhC9LE8 -----END CERTIFICATE-----Generated at Tue Oct 21 04:46:03 2025 by rpki-client