$ rpki-client -vvf repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131392e302f32342d3234203d3e20313336303634.roa File: 3130332e38332e3131392e302f32342d3234203d3e20313336303634.roa (raw, json) Hash identifier: ga8wH5rsKuQUVujSS3GZnCocjhl1lP+W7D3mjm+PBiM= Subject key identifier: 27:FC:2F:8C:E4:AE:78:C7:39:3C:38:8D:7C:38:9A:74:ED:BA:E3:03 Certificate issuer: /CN=38F85F0AA81AE33827BDF573D6A712452180A036 Certificate serial: 6D2FFA6EB68CEB86A8EC2E81315D920E80E3174B Authority key identifier: 38:F8:5F:0A:A8:1A:E3:38:27:BD:F5:73:D6:A7:12:45:21:80:A0:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131392e302f32342d3234203d3e20313336303634.roa Signing time: Wed 29 Oct 2025 13:00:01 +0000 ROA not before: Wed 29 Oct 2025 12:55:01 +0000 ROA not after: Wed 28 Oct 2026 13:00:01 +0000 asID: 136064 IP address blocks: 103.83.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.crl rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 13:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2f:fa:6e:b6:8c:eb:86:a8:ec:2e:81:31:5d:92:0e:80:e3:17:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38F85F0AA81AE33827BDF573D6A712452180A036 Validity Not Before: Oct 29 12:55:01 2025 GMT Not After : Oct 28 13:00:01 2026 GMT Subject: CN=27FC2F8CE4AE78C7393C388D7C389A74EDBAE303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:e1:6c:01:f4:45:af:2d:26:e5:6b:f7:44: ff:4c:ef:ce:55:5a:84:62:cf:d5:8c:c0:b5:79:d9: db:6c:db:f7:5d:ad:65:f2:87:3b:7e:64:8a:42:5a: 8e:29:48:ec:76:f3:32:51:7d:7e:30:fc:ce:61:9d: b5:1a:8c:e3:15:6f:1c:c5:48:2b:d8:80:1b:0f:a3: 21:bb:58:4f:d3:4a:6c:dd:9e:7a:aa:e5:77:dd:ea: c4:ba:83:b8:f6:3d:f2:25:5f:63:7e:38:96:c2:21: fd:ee:a5:0f:38:95:00:5f:61:74:1f:48:8d:df:26: f6:c6:08:34:cd:d2:db:85:7d:0b:dc:0b:a1:a6:2f: 55:9d:d2:d3:86:b5:58:89:e4:30:60:30:f2:71:66: 77:26:dc:8e:09:43:66:c4:55:62:a7:c1:55:c0:3b: 1f:1b:2a:29:c7:48:b7:ef:5f:ed:2b:a0:da:00:06: 2f:03:30:55:e1:fe:11:bf:c5:61:d8:17:7c:d1:12: 9b:d7:fb:bb:43:a6:f4:60:80:0a:50:94:c1:e7:fe: 79:31:0a:07:5e:83:9c:e9:f6:6f:bf:5d:be:09:55: 92:ff:b2:07:7e:30:2c:7b:cf:50:f1:d4:98:f4:02: 92:5b:b5:df:25:5c:c6:52:dc:19:a2:9b:99:26:07: 6b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FC:2F:8C:E4:AE:78:C7:39:3C:38:8D:7C:38:9A:74:ED:BA:E3:03 X509v3 Authority Key Identifier: keyid:38:F8:5F:0A:A8:1A:E3:38:27:BD:F5:73:D6:A7:12:45:21:80:A0:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131392e302f32342d3234203d3e20313336303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.119.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:12:82:25:9f:ec:97:fa:f1:5b:1d:09:d5:90:fd:6c:c7:89: 62:e9:e6:f2:ee:df:b1:aa:13:cf:4f:60:cd:ce:a9:34:d7:ba: fb:61:46:f9:7a:ee:57:09:6c:6f:93:09:d1:2c:2c:f3:44:c5: 97:47:eb:7b:ad:7a:53:7f:c8:98:ca:0b:76:13:3c:0d:18:88: a9:df:81:86:e4:fd:44:53:f0:6b:b1:bc:44:fb:0e:9d:de:76: ed:ca:c1:92:9e:ed:54:b4:92:da:b0:f8:d3:73:7f:96:20:c2: e9:1b:5e:5b:ea:43:15:22:68:da:e4:54:71:f6:16:86:56:d4: ad:8e:e2:8c:05:e0:5c:91:0e:87:7f:ce:db:0d:ea:2f:01:ed: 89:a1:dc:75:a5:ae:03:54:23:cb:4b:f5:60:d1:02:61:3d:6d: 20:5f:94:8a:56:53:bd:49:ba:bc:28:e2:c1:5d:bf:b1:5a:e7: 3d:fa:53:84:9a:aa:8e:52:3f:8d:81:cf:8d:95:48:0a:e5:19: 9b:8e:5b:27:a4:70:7d:ca:c2:7a:88:e8:f0:fb:0f:49:63:e2: a6:6a:2f:99:b7:12:b6:28:67:31:c4:47:94:94:d0:fd:0a:95: 52:50:e9:6a:3b:62:33:18:fd:d4:1c:07:c9:96:12:2a:d6:6f: 1f:0e:40:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbS/6braM64ao7C6BMV2SDoDjF0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGODVGMEFBODFBRTMzODI3QkRGNTczRDZBNzEyNDUy MTgwQTAzNjAeFw0yNTEwMjkxMjU1MDFaFw0yNjEwMjgxMzAwMDFaMDMxMTAvBgNV BAMTKDI3RkMyRjhDRTRBRTc4QzczOTNDMzg4RDdDMzg5QTc0RURCQUUzMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvyeFsAfRFry0m5Wv3RP9M785V WoRiz9WMwLV52dts2/ddrWXyhzt+ZIpCWo4pSOx28zJRfX4w/M5hnbUajOMVbxzF SCvYgBsPoyG7WE/TSmzdnnqq5Xfd6sS6g7j2PfIlX2N+OJbCIf3upQ84lQBfYXQf SI3fJvbGCDTN0tuFfQvcC6GmL1Wd0tOGtViJ5DBgMPJxZncm3I4JQ2bEVWKnwVXA Ox8bKinHSLfvX+0roNoABi8DMFXh/hG/xWHYF3zREpvX+7tDpvRggApQlMHn/nkx Cgdeg5zp9m+/Xb4JVZL/sgd+MCx7z1Dx1Jj0ApJbtd8lXMZS3Bmim5kmB2tpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ/wvjOSueMc5PDiNfDiadO264wMwHwYDVR0j BBgwFoAUOPhfCqga4zgnvfVz1qcSRSGAoDYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTk4YjNiZC0yODRkLTRhN2QtOWYyNy1jYjU4N2U5ZGQ4NDEvMC8zOEY4NUYwQUE4 MUFFMzM4MjdCREY1NzNENkE3MTI0NTIxODBBMDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGODVGMEFBODFBRTMzODI3QkRGNTczRDZBNzEyNDUyMTgw QTAzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlOThiM2JkLTI4NGQtNGE3ZC05 ZjI3LWNiNTg3ZTlkZDg0MS8wLzMxMzAzMzJlMzgzMzJlMzEzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1N3MA0GCSqG SIb3DQEBCwUAA4IBAQBPEoIln+yX+vFbHQnVkP1sx4li6eby7t+xqhPPT2DNzqk0 17r7YUb5eu5XCWxvkwnRLCzzRMWXR+t7rXpTf8iYygt2EzwNGIip34GG5P1EU/Br sbxE+w6d3nbtysGSnu1UtJLasPjTc3+WIMLpG15b6kMVImja5FRx9haGVtStjuKM BeBckQ6Hf87bDeovAe2Jodx1pa4DVCPLS/Vg0QJhPW0gX5SKVlO9Sbq8KOLBXb+x Wuc9+lOEmqqOUj+Ngc+NlUgK5RmbjlsnpHB9ysJ6iOjw+w9JY+Kmai+ZtxK2KGcx xEeUlND9CpVSUOlqO2IzGP3UHAfJlhIq1m8fDkDO -----END CERTIFICATE-----Generated at Tue Nov 4 23:28:34 2025 by rpki-client