$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa File: 3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa (raw, json) Hash identifier: ZDqeHH9c3Ge8DQKLptNu9Fe3zE45Y025wBi0fQHXBeg= Subject key identifier: 9A:46:F6:F4:20:83:62:EF:82:78:B3:CF:D9:C9:FB:2A:F6:73:C9:2B Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 2DB7FF468125AEEB3450E209C69BDAF984DCC4DC Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa Signing time: Thu 02 Oct 2025 19:00:02 +0000 ROA not before: Thu 02 Oct 2025 18:55:02 +0000 ROA not after: Thu 01 Oct 2026 19:00:02 +0000 asID: 150200 IP address blocks: 103.196.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 01:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b7:ff:46:81:25:ae:eb:34:50:e2:09:c6:9b:da:f9:84:dc:c4:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Oct 2 18:55:02 2025 GMT Not After : Oct 1 19:00:02 2026 GMT Subject: CN=9A46F6F4208362EF8278B3CFD9C9FB2AF673C92B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:3d:fa:f4:b5:6a:12:9b:fe:b2:44:a4:73: f4:5b:bf:d7:a8:ab:a0:0c:f9:63:00:49:cb:9a:03: f4:9f:85:44:b1:73:89:61:a1:fc:25:59:9c:af:e2: 94:15:55:7c:1f:78:bb:46:40:ab:9b:f3:18:23:1c: c6:53:12:07:cf:7f:c8:da:59:29:b4:6d:cd:06:94: 5b:ca:2f:00:e0:80:85:8f:41:ec:38:e6:dd:c9:00: 14:9d:92:1a:14:52:a1:c4:67:7a:a4:dc:48:89:29: 5e:3b:27:39:9a:dd:51:d2:2c:59:d6:61:21:42:30: 6d:81:51:86:86:ae:ee:b0:4a:50:75:a1:8d:07:52: 20:84:a7:cb:b9:0e:5a:7e:5b:4e:87:a8:4b:d5:96: a1:0b:9e:46:65:16:23:dc:4d:24:2f:31:df:59:e9: 71:82:f0:6e:0d:59:d4:db:69:23:86:e8:1c:25:e2: 86:6c:dc:fb:91:2a:e1:ed:00:db:f9:90:2a:8d:e4: d2:a5:9a:86:9f:92:12:de:43:f4:2a:5f:e3:19:b2: 3a:63:6c:6d:cb:8c:93:13:b2:0d:6c:8e:b1:04:a2: 50:31:9c:bb:ee:85:fe:c8:ca:13:ea:56:3a:2b:ea: 9c:ab:a3:28:59:1c:c0:e5:a3:c5:99:ef:85:67:11: ce:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:46:F6:F4:20:83:62:EF:82:78:B3:CF:D9:C9:FB:2A:F6:73:C9:2B X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.41.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:a2:42:5d:72:81:7e:88:57:cc:bc:5a:1a:81:d4:74:3c:3f: bd:09:cd:00:5e:0c:2f:63:2f:99:6b:31:28:09:58:60:39:89: ac:17:36:20:f8:f3:c5:74:82:d8:72:e7:9a:70:f0:ad:68:78: 3b:f8:4b:ee:0f:4a:4a:d7:3d:4e:c4:11:89:ec:41:b6:1a:a7: d7:8c:48:54:ce:bb:f4:21:5e:30:1b:a3:8c:0c:ae:ed:8e:5a: c0:c7:5f:67:da:32:92:9e:90:3d:35:36:a3:36:09:1e:ad:c0: a4:41:3c:88:42:54:e7:93:2b:6e:03:cc:7b:4e:eb:38:a7:d0: 5f:4e:9e:0b:c2:fc:1e:23:c6:3f:a2:9b:75:c5:c2:34:2b:c7: 63:c6:8b:ed:24:5b:85:bf:b7:3e:9a:b8:4b:8f:06:53:d6:c0: 55:08:1b:97:e0:21:3e:ed:e4:59:07:b7:fd:37:41:dd:c6:c4: ef:f0:c5:8a:50:ca:79:4a:f1:f8:16:64:ad:b2:f0:fa:b8:3f: c4:0d:2a:a9:63:91:09:98:18:94:f2:2a:be:3d:a1:5c:be:db: 0e:ae:de:91:b5:93:b2:04:96:4a:0f:99:a6:72:95:a5:18:21: 61:58:96:17:ae:4c:d8:18:be:7f:0c:b5:ad:b9:e2:ae:b3:07: 31:5d:22:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULbf/RoElrus0UOIJxpva+YTcxNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNTEwMDIxODU1MDJaFw0yNjEwMDExOTAwMDJaMDMxMTAvBgNV BAMTKDlBNDZGNkY0MjA4MzYyRUY4Mjc4QjNDRkQ5QzlGQjJBRjY3M0M5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9WT369LVqEpv+skSkc/Rbv9eo q6AM+WMAScuaA/SfhUSxc4lhofwlWZyv4pQVVXwfeLtGQKub8xgjHMZTEgfPf8ja WSm0bc0GlFvKLwDggIWPQew45t3JABSdkhoUUqHEZ3qk3EiJKV47Jzma3VHSLFnW YSFCMG2BUYaGru6wSlB1oY0HUiCEp8u5Dlp+W06HqEvVlqELnkZlFiPcTSQvMd9Z 6XGC8G4NWdTbaSOG6Bwl4oZs3PuRKuHtANv5kCqN5NKlmoafkhLeQ/QqX+MZsjpj bG3LjJMTsg1sjrEEolAxnLvuhf7IyhPqVjor6pyroyhZHMDlo8WZ74VnEc65AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmkb29CCDYu+CeLPP2cn7KvZzySswHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhNWI0ZmE0LTMyOGMtNGNmMi1h ZGUzLWM4NjgxMzFkNGUwZC8wLzMxMzAzMzJlMzEzOTM2MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8QpMA0GCSqG SIb3DQEBCwUAA4IBAQBeokJdcoF+iFfMvFoagdR0PD+9Cc0AXgwvYy+ZazEoCVhg OYmsFzYg+PPFdILYcueacPCtaHg7+EvuD0pK1z1OxBGJ7EG2GqfXjEhUzrv0IV4w G6OMDK7tjlrAx19n2jKSnpA9NTajNgkercCkQTyIQlTnkytuA8x7Tus4p9BfTp4L wvweI8Y/opt1xcI0K8djxovtJFuFv7c+mrhLjwZT1sBVCBuX4CE+7eRZB7f9N0Hd xsTv8MWKUMp5SvH4FmStsvD6uD/EDSqpY5EJmBiU8iq+PaFcvtsOrt6RtZOyBJZK D5mmcpWlGCFhWJYXrkzYGL5/DLWtueKuswcxXSLL -----END CERTIFICATE-----Generated at Tue Oct 21 04:45:45 2025 by rpki-client