$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa File: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (raw, json) Hash identifier: doha74kbIgonFyPsIYU3AWrLESRigytVKDPz7Hk3URQ= Subject key identifier: 75:E3:1D:61:44:F8:E1:9E:BC:24:E4:2E:6C:47:BB:22:91:F6:32:B8 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 447A659A2C6CBD85326A8DD17E80A636C5DE652D Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa Signing time: Thu 30 Oct 2025 13:02:27 +0000 ROA not before: Thu 30 Oct 2025 12:57:27 +0000 ROA not after: Thu 29 Oct 2026 13:02:27 +0000 asID: 139431 IP address blocks: 103.143.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 05:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7a:65:9a:2c:6c:bd:85:32:6a:8d:d1:7e:80:a6:36:c5:de:65:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Oct 30 12:57:27 2025 GMT Not After : Oct 29 13:02:27 2026 GMT Subject: CN=75E31D6144F8E19EBC24E42E6C47BB2291F632B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ac:a4:b1:9f:cd:d2:49:cb:bf:64:d3:76:a9: f2:1b:7f:13:05:55:c2:61:7d:c7:51:d2:96:80:8c: 20:d8:b6:2d:b9:71:bd:07:47:7d:29:da:ad:d9:e2: 22:89:43:a9:2d:d2:c5:11:1a:56:f9:e1:7d:88:0c: cc:c8:35:3e:7f:21:af:29:4c:e4:29:cd:50:de:95: cd:fa:51:fe:61:e0:09:da:48:6f:d3:06:44:e2:7f: c1:f9:b3:a1:34:16:57:71:f6:e6:b0:f3:de:28:e3: eb:fd:2d:51:13:cf:b9:ff:43:74:7e:dd:6b:51:88: e3:99:fd:29:16:91:78:41:35:85:7f:55:cf:35:78: e1:63:45:78:e3:88:b9:f4:99:69:cf:a8:6e:fb:b8: f1:f9:cb:5e:c7:24:b3:c8:d7:81:32:6a:06:93:fb: d0:45:67:6e:9a:66:40:19:0c:b8:3c:56:ab:42:42: 9c:d3:cd:a3:75:55:93:12:74:09:bf:5a:de:23:93: fc:e5:8b:ad:be:e8:9a:1a:54:93:d9:c0:87:7f:35: f9:0e:2b:f5:85:2f:63:f1:c3:9e:0a:37:8d:08:6b: e3:0c:5b:e7:db:ac:6c:16:44:a5:29:7d:dd:1b:db: 79:23:66:93:6a:6e:ce:d0:15:94:7f:96:f6:7d:80: 58:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E3:1D:61:44:F8:E1:9E:BC:24:E4:2E:6C:47:BB:22:91:F6:32:B8 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.22.0/23 Signature Algorithm: sha256WithRSAEncryption 96:bc:5a:8c:0b:22:da:be:db:c5:87:6a:86:e2:1c:f1:0a:60: b4:79:27:10:ad:c1:77:64:9e:56:d7:20:40:66:47:07:64:d0: f0:c7:43:af:fb:09:40:e4:a2:5a:82:d3:a3:fb:16:b9:9f:ad: b9:98:cf:1a:06:ed:c1:09:74:4e:a4:63:fe:6f:f4:00:bf:80: d1:ae:64:b3:85:68:3b:b1:27:b7:b0:d7:da:23:05:e7:f1:d4: f5:12:83:7e:c1:46:50:f1:9a:7a:33:a0:da:38:38:9e:33:fb: 9e:13:c4:91:79:ec:b1:a5:ac:ed:b5:ab:89:6c:88:7d:e1:a6: b6:be:29:29:ef:de:44:40:e3:30:68:4e:e8:44:a8:a9:91:6a: 65:be:5a:89:db:9f:9a:36:37:22:f6:4c:13:e3:68:e5:f9:98: e2:5d:ac:be:cf:2a:0a:28:35:1b:ee:73:4b:55:70:6c:50:8b: c8:fc:a7:11:bb:4c:87:19:f0:9e:4b:05:59:f9:e6:d5:88:3a: 01:4d:66:8e:5a:1d:34:1c:aa:4f:09:a0:d8:d0:98:fc:cb:b2: 8a:e6:d5:e1:1a:98:57:9e:dc:dd:f7:c7:b8:88:2b:76:40:93: 2b:4f:de:4f:89:b0:e0:9b:79:c4:e0:a4:26:87:b6:9b:de:43: f4:e5:f9:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURHplmixsvYUyao3RfoCmNsXeZS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNTEwMzAxMjU3MjdaFw0yNjEwMjkxMzAyMjdaMDMxMTAvBgNV BAMTKDc1RTMxRDYxNDRGOEUxOUVCQzI0RTQyRTZDNDdCQjIyOTFGNjMyQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7rKSxn83SScu/ZNN2qfIbfxMF VcJhfcdR0paAjCDYti25cb0HR30p2q3Z4iKJQ6kt0sURGlb54X2IDMzINT5/Ia8p TOQpzVDelc36Uf5h4AnaSG/TBkTif8H5s6E0Fldx9uaw894o4+v9LVETz7n/Q3R+ 3WtRiOOZ/SkWkXhBNYV/Vc81eOFjRXjjiLn0mWnPqG77uPH5y17HJLPI14EyagaT +9BFZ26aZkAZDLg8VqtCQpzTzaN1VZMSdAm/Wt4jk/zli62+6JoaVJPZwId/NfkO K/WFL2Pxw54KN40Ia+MMW+fbrGwWRKUpfd0b23kjZpNqbs7QFZR/lvZ9gFh/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdeMdYUT44Z68JOQubEe7IpH2MrgwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NmYzM2YyLWYwNmUtNGViNi1h ZTYxLTU1MjliY2ExY2RjZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ48WMA0GCSqG SIb3DQEBCwUAA4IBAQCWvFqMCyLavtvFh2qG4hzxCmC0eScQrcF3ZJ5W1yBAZkcH ZNDwx0Ov+wlA5KJagtOj+xa5n625mM8aBu3BCXROpGP+b/QAv4DRrmSzhWg7sSe3 sNfaIwXn8dT1EoN+wUZQ8Zp6M6DaODieM/ueE8SReeyxpazttauJbIh94aa2vikp 795EQOMwaE7oRKipkWplvlqJ25+aNjci9kwT42jl+ZjiXay+zyoKKDUb7nNLVXBs UIvI/KcRu0yHGfCeSwVZ+ebViDoBTWaOWh00HKpPCaDY0Jj8y7KK5tXhGphXntzd 98e4iCt2QJMrT95PibDgm3nE4KQmh7ab3kP05fk+ -----END CERTIFICATE-----Generated at Tue Nov 4 16:51:50 2025 by rpki-client