$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa File: 3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa (raw, json) Hash identifier: 5p6wjGyXDMhYJEnC8e2hHCinkGJrBkWoW7KvueEj5dQ= Subject key identifier: AE:8B:18:91:62:20:1A:D5:EC:76:E8:D9:8C:F7:4F:11:48:DA:71:48 Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 5521E393EFD4B8162D6D7DCBE33F91F40DD8546C Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa Signing time: Tue 21 Oct 2025 22:00:00 +0000 ROA not before: Tue 21 Oct 2025 21:55:00 +0000 ROA not after: Tue 20 Oct 2026 22:00:00 +0000 asID: 150540 IP address blocks: 103.83.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 03:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:21:e3:93:ef:d4:b8:16:2d:6d:7d:cb:e3:3f:91:f4:0d:d8:54:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Oct 21 21:55:00 2025 GMT Not After : Oct 20 22:00:00 2026 GMT Subject: CN=AE8B189162201AD5EC76E8D98CF74F1148DA7148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:69:c0:de:34:7f:20:21:44:a4:c4:41:87: 7b:b9:65:e0:d4:a1:6d:6b:91:38:83:76:3f:8c:e0: 6f:53:03:25:22:d4:d1:c8:db:d4:90:6a:86:b6:68: ae:c3:3f:30:70:bb:0a:21:31:d5:64:dd:a9:a0:16: 6c:c8:25:57:b1:99:8c:ff:f9:2a:86:64:05:13:5f: 1f:c2:af:39:ad:63:43:41:aa:85:2f:01:68:df:f9: ae:f3:a4:0c:1d:88:f0:dc:73:14:f6:3a:6c:9c:49: 30:d1:38:8c:78:db:8d:f2:cd:70:6d:98:22:82:6a: e5:fd:9e:cd:f7:11:b5:b3:bd:0b:e1:c1:c2:61:5d: 78:ed:90:dd:2f:b1:83:00:df:5e:94:66:2f:0c:0b: 03:e5:b0:38:38:5d:97:c1:2c:b0:04:1d:b8:33:dd: f1:ba:6f:e8:9b:5b:ff:d3:9b:e4:12:84:7d:9f:47: 39:46:b5:f8:e0:5c:c9:23:65:e1:f8:be:f1:6b:9d: a7:6e:fe:45:a1:bb:ef:ec:94:4d:e6:59:bd:41:c9: 3d:2a:7e:b0:b7:5c:f5:0b:1e:b8:1d:86:ab:3b:3d: e8:07:6a:0a:87:6c:f1:e6:2c:48:be:98:a3:ff:2d: ac:b8:cb:73:48:02:dc:ff:ee:45:88:a6:69:bc:d1: 8e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8B:18:91:62:20:1A:D5:EC:76:E8:D9:8C:F7:4F:11:48:DA:71:48 X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.236.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:d0:68:1e:2e:f7:d0:b4:74:86:cc:b1:98:0c:53:f0:3a:69: da:4e:91:82:00:2e:b3:cf:57:ef:fd:eb:7d:75:e5:6e:2d:76: 6b:c3:a6:6e:81:32:cf:22:ec:fd:55:36:85:62:23:d8:30:9f: 42:d2:04:4a:47:5f:23:b1:ae:e7:fe:63:10:a2:f0:f4:7c:33: 06:00:77:50:67:41:25:c5:0c:7a:1e:57:38:b3:11:47:c1:44: 05:0a:11:dc:ab:c7:4b:4b:a4:bb:3b:7a:7c:70:f7:02:63:21: ff:18:2d:23:d7:a3:5b:9b:ac:c7:fa:2b:0d:c2:4f:56:b3:2d: a9:ba:b5:b9:25:d6:5b:5d:72:2c:77:54:49:a1:72:24:65:9a: f6:3c:04:19:27:d3:bf:bd:1b:18:41:12:40:20:9d:e1:12:41: e3:73:fe:8b:0f:c6:80:f8:03:82:61:0b:ee:9f:3f:30:e3:76: 2b:46:b0:19:82:2f:97:34:04:37:88:87:a1:2a:9b:71:61:4b: 81:5d:08:1e:30:d8:cf:5e:9a:2e:0d:6e:9a:55:ce:43:7c:a0: fa:94:2a:a1:6e:b1:af:da:15:f7:c5:4b:80:d8:63:87:99:9f: 0c:de:df:d8:9c:e6:df:c6:64:b7:bf:04:ba:b2:2a:7b:0a:20: 11:48:4a:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVSHjk+/UuBYtbX3L4z+R9A3YVGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNTEwMjEyMTU1MDBaFw0yNjEwMjAyMjAwMDBaMDMxMTAvBgNV BAMTKEFFOEIxODkxNjIyMDFBRDVFQzc2RThEOThDRjc0RjExNDhEQTcxNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG1WnA3jR/ICFEpMRBh3u5ZeDU oW1rkTiDdj+M4G9TAyUi1NHI29SQaoa2aK7DPzBwuwohMdVk3amgFmzIJVexmYz/ +SqGZAUTXx/CrzmtY0NBqoUvAWjf+a7zpAwdiPDccxT2OmycSTDROIx4243yzXBt mCKCauX9ns33EbWzvQvhwcJhXXjtkN0vsYMA316UZi8MCwPlsDg4XZfBLLAEHbgz 3fG6b+ibW//Tm+QShH2fRzlGtfjgXMkjZeH4vvFrnadu/kWhu+/slE3mWb1ByT0q frC3XPULHrgdhqs7PegHagqHbPHmLEi+mKP/Lay4y3NIAtz/7kWIpmm80Y6bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrosYkWIgGtXsdujZjPdPEUjacUgwHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYTNjZmY3LTJhYTEtNDRkZi05 MTRjLWYxOTE4NGY2ZjNiMS8wLzMxMzAzMzJlMzgzMzJlMzIzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1PsMA0GCSqG SIb3DQEBCwUAA4IBAQAf0GgeLvfQtHSGzLGYDFPwOmnaTpGCAC6zz1fv/et9deVu LXZrw6ZugTLPIuz9VTaFYiPYMJ9C0gRKR18jsa7n/mMQovD0fDMGAHdQZ0ElxQx6 Hlc4sxFHwUQFChHcq8dLS6S7O3p8cPcCYyH/GC0j16Nbm6zH+isNwk9Wsy2purW5 JdZbXXIsd1RJoXIkZZr2PAQZJ9O/vRsYQRJAIJ3hEkHjc/6LD8aA+AOCYQvunz8w 43YrRrAZgi+XNAQ3iIehKptxYUuBXQgeMNjPXpouDW6aVc5DfKD6lCqhbrGv2hX3 xUuA2GOHmZ8M3t/YnObfxmS3vwS6sip7CiARSEol -----END CERTIFICATE-----Generated at Tue Nov 4 16:48:47 2025 by rpki-client