$ rpki-client -vvf repo-rpki.idnic.net/repo/8d48bb88-a758-443f-b708-48e387d66f57/0/3130332e32372e3139342e302f32332d3234203d3e20313336383231.roa File: 3130332e32372e3139342e302f32332d3234203d3e20313336383231.roa (raw, json) Hash identifier: bBSFxLKr65f9r/DOl1jNQXOVz/QBHgN+KQhImgM5Vd4= Subject key identifier: 1D:5B:CC:A8:52:39:4A:E4:FB:DE:6A:B4:A5:76:82:30:7D:0D:A5:B6 Certificate issuer: /CN=BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0 Certificate serial: 5D723A274F5EBE03A0079BDC65829F29668D17A1 Authority key identifier: BA:10:5E:0C:07:AE:74:86:CD:F8:EC:FE:5F:D7:C8:6B:E6:78:16:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d48bb88-a758-443f-b708-48e387d66f57/0/3130332e32372e3139342e302f32332d3234203d3e20313336383231.roa Signing time: Fri 08 Aug 2025 09:02:27 +0000 ROA not before: Fri 08 Aug 2025 08:57:27 +0000 ROA not after: Fri 07 Aug 2026 09:02:27 +0000 asID: 136821 IP address blocks: 103.27.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d48bb88-a758-443f-b708-48e387d66f57/0/BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0.crl rsync://repo-rpki.idnic.net/repo/8d48bb88-a758-443f-b708-48e387d66f57/0/BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 08:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:72:3a:27:4f:5e:be:03:a0:07:9b:dc:65:82:9f:29:66:8d:17:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0 Validity Not Before: Aug 8 08:57:27 2025 GMT Not After : Aug 7 09:02:27 2026 GMT Subject: CN=1D5BCCA852394AE4FBDE6AB4A57682307D0DA5B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:84:49:26:c6:f5:30:ed:a4:c5:de:b9:bf:80: 5e:de:8a:27:78:3c:dd:d3:64:af:ac:58:41:c6:0a: cf:df:31:7a:77:58:06:21:fb:d0:33:4b:18:3a:1e: ad:7f:ea:c7:e2:e9:89:dc:1a:65:d5:80:32:22:97: e2:f6:5b:7e:44:28:91:7a:9e:7f:aa:56:ef:63:0c: 52:c2:6b:11:bf:ba:de:36:5d:21:a5:9a:63:0c:f6: 9e:f4:8c:c8:37:3a:15:d9:fa:0f:e0:2f:33:2e:55: 4a:aa:1c:63:85:b4:8c:2a:9f:bf:9a:17:8a:c6:4c: a9:30:dd:65:cc:59:44:c8:f9:a3:e0:6d:3e:52:df: 63:bd:ba:ed:6f:2a:cf:a1:67:6a:83:9e:62:7c:af: b7:40:91:72:4c:61:1a:44:23:36:37:56:d3:cf:7b: e4:0c:61:f5:ad:e3:33:0f:ff:e9:81:c3:6a:7f:23: d6:11:60:3b:08:bf:09:89:a4:23:fc:03:23:6a:2f: 52:c6:28:72:6a:dc:26:28:50:24:da:0b:36:16:92: fb:1a:64:14:62:62:14:85:11:49:31:d3:9d:35:41: d6:c3:86:02:27:ee:7c:5b:e3:64:0f:b4:63:dd:16: cd:dd:b4:7c:71:77:85:6b:79:ab:b1:03:7d:1f:1f: b9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5B:CC:A8:52:39:4A:E4:FB:DE:6A:B4:A5:76:82:30:7D:0D:A5:B6 X509v3 Authority Key Identifier: keyid:BA:10:5E:0C:07:AE:74:86:CD:F8:EC:FE:5F:D7:C8:6B:E6:78:16:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d48bb88-a758-443f-b708-48e387d66f57/0/BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA105E0C07AE7486CDF8ECFE5FD7C86BE67816B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d48bb88-a758-443f-b708-48e387d66f57/0/3130332e32372e3139342e302f32332d3234203d3e20313336383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.194.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:d6:21:c4:95:d2:c0:e7:f7:c7:e2:73:4f:1c:77:ad:d9:02: 5c:58:4a:ef:6e:17:b5:1f:fe:38:15:e6:4b:4b:52:3d:65:c6: 9f:26:1e:ec:59:ad:bf:f6:e9:82:04:9f:f3:cc:39:8a:97:f3: d2:4b:eb:6e:65:e3:02:99:b6:90:88:dc:ea:36:6a:0f:9b:18: 2d:77:4d:b1:78:6b:f6:6c:4e:c5:17:47:4f:92:a7:53:b0:e5: 3f:54:9f:7d:39:5f:a6:80:fc:2e:fd:5b:42:20:77:23:77:3a: c8:a6:e9:a5:48:ce:fa:2b:ff:a7:6e:2d:da:0e:d1:b5:01:b2: 2d:9e:f6:0f:32:ac:59:7e:60:5d:70:23:5b:bf:5f:d2:d3:3b: f7:07:a2:81:b9:a4:08:57:05:6f:6a:b8:81:86:21:e5:12:c0: d2:e9:7e:e4:74:09:94:35:a6:f3:48:3f:ed:c9:01:86:76:62: c4:c4:75:46:f7:80:51:fe:30:53:d1:d5:71:c7:54:17:2c:15: c1:4e:ad:63:f4:9e:83:98:5a:94:1a:56:fa:62:69:67:28:99: 68:2c:d2:33:dc:67:b1:e3:3d:f1:2a:3e:71:b1:81:88:00:6b: 26:74:b0:e0:f2:86:3f:d1:a6:12:d4:be:94:c4:33:55:cc:62: 81:d0:a7:d3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXXI6J09evgOgB5vcZYKfKWaNF6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkExMDVFMEMwN0FFNzQ4NkNERjhFQ0ZFNUZEN0M4NkJF Njc4MTZCMDAeFw0yNTA4MDgwODU3MjdaFw0yNjA4MDcwOTAyMjdaMDMxMTAvBgNV BAMTKDFENUJDQ0E4NTIzOTRBRTRGQkRFNkFCNEE1NzY4MjMwN0QwREE1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCthEkmxvUw7aTF3rm/gF7eiid4 PN3TZK+sWEHGCs/fMXp3WAYh+9AzSxg6Hq1/6sfi6YncGmXVgDIil+L2W35EKJF6 nn+qVu9jDFLCaxG/ut42XSGlmmMM9p70jMg3OhXZ+g/gLzMuVUqqHGOFtIwqn7+a F4rGTKkw3WXMWUTI+aPgbT5S32O9uu1vKs+hZ2qDnmJ8r7dAkXJMYRpEIzY3VtPP e+QMYfWt4zMP/+mBw2p/I9YRYDsIvwmJpCP8AyNqL1LGKHJq3CYoUCTaCzYWkvsa ZBRiYhSFEUkx0501QdbDhgIn7nxb42QPtGPdFs3dtHxxd4VreauxA30fH7kTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHVvMqFI5SuT73mq0pXaCMH0NpbYwHwYDVR0j BBgwFoAUuhBeDAeudIbN+Oz+X9fIa+Z4FrAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDQ4YmI4OC1hNzU4LTQ0M2YtYjcwOC00OGUzODdkNjZmNTcvMC9CQTEwNUUwQzA3 QUU3NDg2Q0RGOEVDRkU1RkQ3Qzg2QkU2NzgxNkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkExMDVFMEMwN0FFNzQ4NkNERjhFQ0ZFNUZEN0M4NkJFNjc4 MTZCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNDhiYjg4LWE3NTgtNDQzZi1i NzA4LTQ4ZTM4N2Q2NmY1Ny8wLzMxMzAzMzJlMzIzNzJlMzEzOTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxvCMA0GCSqG SIb3DQEBCwUAA4IBAQCK1iHEldLA5/fH4nNPHHet2QJcWErvbhe1H/44FeZLS1I9 ZcafJh7sWa2/9umCBJ/zzDmKl/PSS+tuZeMCmbaQiNzqNmoPmxgtd02xeGv2bE7F F0dPkqdTsOU/VJ99OV+mgPwu/VtCIHcjdzrIpumlSM76K/+nbi3aDtG1AbItnvYP MqxZfmBdcCNbv1/S0zv3B6KBuaQIVwVvariBhiHlEsDS6X7kdAmUNabzSD/tyQGG dmLExHVG94BR/jBT0dVxx1QXLBXBTq1j9J6DmFqUGlb6YmlnKJloLNIz3Gex4z3x Kj5xsYGIAGsmdLDg8oY/0aYS1L6UxDNVzGKB0KfT -----END CERTIFICATE-----Generated at Fri Aug 8 10:14:34 2025 by rpki-client