$ rpki-client -vvf repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa File: 3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa (raw, json) Hash identifier: BXp0DiStVhZuRg84lCtQ4q7ZgVrjo+zScqcIWL6/IJE= Subject key identifier: 4A:6A:55:7F:74:74:F1:C2:1E:0B:FC:04:86:3B:02:A4:FB:9B:3E:31 Certificate issuer: /CN=ED4F41D4EBE684D523406475FAB471CE1B24E360 Certificate serial: 5B481E69ADBFA38FECF8C5C09A248BB39E4DE2BE Authority key identifier: ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa Signing time: Mon 03 Nov 2025 09:00:00 +0000 ROA not before: Mon 03 Nov 2025 08:55:00 +0000 ROA not after: Mon 02 Nov 2026 09:00:00 +0000 asID: 147120 IP address blocks: 103.175.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.crl rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 16:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:48:1e:69:ad:bf:a3:8f:ec:f8:c5:c0:9a:24:8b:b3:9e:4d:e2:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED4F41D4EBE684D523406475FAB471CE1B24E360 Validity Not Before: Nov 3 08:55:00 2025 GMT Not After : Nov 2 09:00:00 2026 GMT Subject: CN=4A6A557F7474F1C21E0BFC04863B02A4FB9B3E31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:15:65:9b:ae:d8:b9:e3:cd:19:00:00:c8:0a: ab:0d:59:96:13:ee:66:a6:88:27:80:df:7d:51:f4: e9:d3:21:11:d9:c9:3d:fb:9d:8a:1f:cb:d7:95:c5: 17:5f:d0:ef:ba:1e:2f:36:1d:f2:70:ff:37:57:77: 7c:ae:bc:3f:fa:81:fa:40:26:b5:fd:94:4b:54:c9: 4c:68:cf:89:b8:a3:17:d4:58:2a:a6:08:12:60:68: 7b:21:a0:cc:a4:a5:35:22:0c:14:ee:c8:db:d4:72: 0a:09:92:19:b9:c6:37:14:14:81:9f:7d:88:2c:e0: 55:0b:97:e8:60:d5:a2:8a:34:ec:9b:fc:3c:3f:39: 7b:db:0c:79:38:53:a5:1f:16:98:6a:97:1b:36:a4: a6:b4:27:1f:e0:31:3f:fc:80:b6:85:19:98:25:d5: 52:76:08:b0:e2:52:b3:6f:23:f4:d8:96:c5:a8:20: 24:43:ea:3b:10:81:c0:db:d5:5b:8d:09:eb:6b:f6: a3:9e:32:38:60:fc:cb:12:8c:da:bc:41:96:ab:a3: 5b:79:16:79:c9:f4:39:5c:99:03:c2:c0:3f:f6:40: 56:e6:1b:b3:6e:f3:e6:11:80:d1:d1:35:31:32:e2: 12:33:ed:6b:d5:15:ec:a9:89:ef:51:83:ce:26:f4: ed:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6A:55:7F:74:74:F1:C2:1E:0B:FC:04:86:3B:02:A4:FB:9B:3E:31 X509v3 Authority Key Identifier: keyid:ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.156.0/23 Signature Algorithm: sha256WithRSAEncryption d0:36:3f:46:37:d4:7f:b7:63:ff:1f:c5:8e:00:96:b1:a2:4b: df:02:b4:c6:39:99:cc:38:52:b6:af:0a:ca:04:6f:d2:ad:6f: e7:0f:2e:b9:ff:0f:e2:a2:4a:81:9b:cc:56:96:c9:c5:1b:50: 9f:c0:23:ee:31:6e:8a:90:bf:2c:5d:e2:21:96:42:51:0d:30: 0e:39:14:e9:55:aa:77:7c:dd:b9:b1:85:68:17:67:00:a0:a2: 02:fb:bc:fb:11:56:d7:dd:1b:41:d6:94:53:29:62:de:06:8a: 46:9f:cf:00:8e:0a:b5:b8:60:a6:90:57:bb:b4:04:5e:5c:0f: bf:74:e7:0a:61:70:6f:c1:a3:cd:57:7d:7c:ea:4a:90:67:fe: aa:18:02:81:e7:5b:23:6c:d6:f3:d8:72:3b:97:a0:9e:14:ba: b0:8b:7c:e0:40:3d:5b:30:a0:12:05:4f:88:d4:1e:1c:c7:11: 1b:f2:c9:78:89:9e:ef:be:cc:a2:08:6f:0c:e4:af:72:cf:be: d0:ff:ea:08:04:f8:4b:a2:60:3f:01:45:ed:a7:73:a0:a7:8a: 43:26:b3:ef:3c:6d:a5:b3:de:07:9d:5f:fe:63:33:89:74:b4: 55:a6:22:ee:4f:36:f4:c8:f5:13:69:ca:4e:25:9e:d1:52:0f: 31:94:23:72 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW0geaa2/o4/s+MXAmiSLs55N4r4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ0RjQxRDRFQkU2ODRENTIzNDA2NDc1RkFCNDcxQ0Ux QjI0RTM2MDAeFw0yNTExMDMwODU1MDBaFw0yNjExMDIwOTAwMDBaMDMxMTAvBgNV BAMTKDRBNkE1NTdGNzQ3NEYxQzIxRTBCRkMwNDg2M0IwMkE0RkI5QjNFMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6FWWbrti5480ZAADICqsNWZYT 7mamiCeA331R9OnTIRHZyT37nYofy9eVxRdf0O+6Hi82HfJw/zdXd3yuvD/6gfpA JrX9lEtUyUxoz4m4oxfUWCqmCBJgaHshoMykpTUiDBTuyNvUcgoJkhm5xjcUFIGf fYgs4FULl+hg1aKKNOyb/Dw/OXvbDHk4U6UfFphqlxs2pKa0Jx/gMT/8gLaFGZgl 1VJ2CLDiUrNvI/TYlsWoICRD6jsQgcDb1VuNCetr9qOeMjhg/MsSjNq8QZaro1t5 FnnJ9DlcmQPCwD/2QFbmG7Nu8+YRgNHRNTEy4hIz7WvVFeypie9Rg84m9O15AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSmpVf3R08cIeC/wEhjsCpPubPjEwHwYDVR0j BBgwFoAU7U9B1OvmhNUjQGR1+rRxzhsk42AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmVlN2E1Zi01MTIxLTQxODEtYTYzNS0xMjFiNmU2OWFkNTkvMC9FRDRGNDFENEVC RTY4NEQ1MjM0MDY0NzVGQUI0NzFDRTFCMjRFMzYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUQ0RjQxRDRFQkU2ODRENTIzNDA2NDc1RkFCNDcxQ0UxQjI0 RTM2MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2ZWU3YTVmLTUxMjEtNDE4MS1h NjM1LTEyMWI2ZTY5YWQ1OS8wLzMxMzAzMzJlMzEzNzM1MmUzMTM1MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnr5wwDQYJ KoZIhvcNAQELBQADggEBANA2P0Y31H+3Y/8fxY4AlrGiS98CtMY5mcw4UravCsoE b9Ktb+cPLrn/D+KiSoGbzFaWycUbUJ/AI+4xboqQvyxd4iGWQlENMA45FOlVqnd8 3bmxhWgXZwCgogL7vPsRVtfdG0HWlFMpYt4GikafzwCOCrW4YKaQV7u0BF5cD790 5wphcG/Bo81XfXzqSpBn/qoYAoHnWyNs1vPYcjuXoJ4UurCLfOBAPVswoBIFT4jU HhzHERvyyXiJnu++zKIIbwzkr3LPvtD/6ggE+EuiYD8BRe2nc6CnikMms+88baWz 3gedX/5jM4l0tFWmIu5PNvTI9RNpyk4lntFSDzGUI3I= -----END CERTIFICATE-----Generated at Tue Nov 4 08:26:07 2025 by rpki-client