$ rpki-client -vvf repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa File: 3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa (raw, json) Hash identifier: dhpkhk04ab2tWVnfTiYy7HAwnFkFS5/nKq6B26Ta2Ao= Subject key identifier: 9E:08:12:2A:97:28:CF:C2:2C:A2:43:32:3C:30:27:B6:9B:0A:16:A2 Certificate issuer: /CN=BD685C24FF8F432543C3E583484044A44E53067B Certificate serial: 63820FFF05F4285D7F6838DC7FAFCFCC9386F9ED Authority key identifier: BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa Signing time: Wed 29 Oct 2025 10:12:29 +0000 ROA not before: Wed 29 Oct 2025 10:07:29 +0000 ROA not after: Wed 28 Oct 2026 10:12:29 +0000 asID: 136091 IP address blocks: 103.83.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 08:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:82:0f:ff:05:f4:28:5d:7f:68:38:dc:7f:af:cf:cc:93:86:f9:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD685C24FF8F432543C3E583484044A44E53067B Validity Not Before: Oct 29 10:07:29 2025 GMT Not After : Oct 28 10:12:29 2026 GMT Subject: CN=9E08122A9728CFC22CA243323C3027B69B0A16A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dc:b2:40:43:7d:9b:bc:0e:54:e5:76:f8:61: 14:68:56:49:2f:3c:bf:28:c7:c2:d6:3a:4a:e2:0f: 5c:df:2d:9f:ad:eb:33:f7:53:18:33:87:a6:80:bb: e4:e3:fa:af:b5:d3:7b:c9:dc:24:ab:62:8f:d4:60: 28:29:b6:59:a4:64:5a:ae:71:fb:21:dd:b2:c3:94: f8:cc:c7:44:34:15:67:19:23:af:15:44:27:08:14: fe:8e:01:3d:b7:33:ab:69:e4:26:2d:69:53:01:09: 2b:f5:d4:28:e6:99:f4:a7:b7:a3:37:c7:f5:39:6b: 43:91:7f:95:cb:e9:91:39:8f:d1:d8:91:b9:53:d5: 78:40:02:22:7b:6e:9c:3c:08:9a:92:63:d0:f7:8f: 22:9b:e0:4c:dd:7c:cd:84:39:d9:b1:7a:6c:0b:ab: e4:29:96:63:7a:d6:fc:c5:25:f9:61:96:5e:47:d5: e9:f5:80:64:d7:0e:96:54:24:b3:65:9e:f4:af:35: 63:3d:ae:82:b4:26:54:15:13:c0:68:33:37:59:67: 36:c0:73:4a:34:41:24:5a:74:04:7f:90:a2:22:d5: 03:cc:ac:af:8c:d3:08:e8:98:41:b7:9c:e9:d5:5b: f7:3e:44:42:73:e6:6d:21:d7:2c:cd:8e:3c:e0:87: ce:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:08:12:2A:97:28:CF:C2:2C:A2:43:32:3C:30:27:B6:9B:0A:16:A2 X509v3 Authority Key Identifier: keyid:BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.198.0/24 Signature Algorithm: sha256WithRSAEncryption a8:b2:cc:48:ee:04:89:48:72:db:0c:cd:1d:c4:05:bb:c4:4b: 86:71:d4:23:4c:fc:61:49:d5:99:c9:1a:12:d5:03:aa:15:79: ec:05:b6:da:d3:e9:6d:12:30:9c:64:e8:ea:cd:1e:e7:5c:23: 5f:21:6f:b2:a6:a0:1c:68:32:a9:da:c4:26:0b:1d:18:65:30: 5c:e3:5e:98:9f:ed:f9:bf:60:16:73:22:c9:74:3d:1d:bc:c0: 0b:03:94:3e:92:d3:28:60:01:a3:17:bb:57:2b:aa:0c:e6:73: 41:74:ce:bf:e7:cf:34:4d:28:85:ef:b7:d1:3a:27:70:19:8a: 71:98:ac:9d:f2:1d:82:cf:2b:41:63:ca:a9:c4:4e:47:ad:48: bf:57:57:80:b2:b9:6f:ba:a6:cd:39:74:61:d5:ac:b2:93:d3: e8:8a:a6:42:10:df:d0:1d:bc:59:7b:13:ae:45:ab:fc:5e:c5: 80:52:93:21:9f:ef:a7:2d:95:c3:c7:ae:20:f2:d9:c5:70:51: c7:30:b4:12:e2:1a:c6:06:2b:20:3e:7a:e4:3f:8f:20:db:1c: 61:6c:6f:8f:de:46:c8:7e:15:41:ca:c1:f4:83:f0:f1:b3:23: c1:60:7c:64:2e:f7:2a:0c:bc:7f:db:e0:f2:81:65:bc:86:4b: d1:44:88:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY4IP/wX0KF1/aDjcf6/PzJOG+e0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0 RTUzMDY3QjAeFw0yNTEwMjkxMDA3MjlaFw0yNjEwMjgxMDEyMjlaMDMxMTAvBgNV BAMTKDlFMDgxMjJBOTcyOENGQzIyQ0EyNDMzMjNDMzAyN0I2OUIwQTE2QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz3LJAQ32bvA5U5Xb4YRRoVkkv PL8ox8LWOkriD1zfLZ+t6zP3Uxgzh6aAu+Tj+q+103vJ3CSrYo/UYCgptlmkZFqu cfsh3bLDlPjMx0Q0FWcZI68VRCcIFP6OAT23M6tp5CYtaVMBCSv11CjmmfSnt6M3 x/U5a0ORf5XL6ZE5j9HYkblT1XhAAiJ7bpw8CJqSY9D3jyKb4EzdfM2EOdmxemwL q+QplmN61vzFJflhll5H1en1gGTXDpZUJLNlnvSvNWM9roK0JlQVE8BoMzdZZzbA c0o0QSRadAR/kKIi1QPMrK+M0wjomEG3nOnVW/c+REJz5m0h1yzNjjzgh86JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnggSKpcoz8IsokMyPDAntpsKFqIwHwYDVR0j BBgwFoAUvWhcJP+PQyVDw+WDSEBEpE5TBnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGJmODY0MS1iZjcwLTRlM2YtOTg3MS1lZTI2YTMzZGIzYTIvMC9CRDY4NUMyNEZG OEY0MzI1NDNDM0U1ODM0ODQwNDRBNDRFNTMwNjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0RTUz MDY3Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YmY4NjQxLWJmNzAtNGUzZi05 ODcxLWVlMjZhMzNkYjNhMi8wLzMxMzAzMzJlMzgzMzJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1PGMA0GCSqG SIb3DQEBCwUAA4IBAQCossxI7gSJSHLbDM0dxAW7xEuGcdQjTPxhSdWZyRoS1QOq FXnsBbba0+ltEjCcZOjqzR7nXCNfIW+ypqAcaDKp2sQmCx0YZTBc416Yn+35v2AW cyLJdD0dvMALA5Q+ktMoYAGjF7tXK6oM5nNBdM6/5880TSiF77fROidwGYpxmKyd 8h2CzytBY8qpxE5HrUi/V1eAsrlvuqbNOXRh1ayyk9PoiqZCEN/QHbxZexOuRav8 XsWAUpMhn++nLZXDx64g8tnFcFHHMLQS4hrGBisgPnrkP48g2xxhbG+P3kbIfhVB ysH0g/DxsyPBYHxkLvcqDLx/2+DygWW8hkvRRIiU -----END CERTIFICATE-----Generated at Wed Nov 5 12:49:16 2025 by rpki-client