$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa File: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (raw, json) Hash identifier: Y1BreLVa1ZjV8+fm+79oJJhjLUjz8il238UQwEnA8vE= Subject key identifier: E8:46:82:F1:92:50:DF:98:6D:09:22:4C:19:6C:41:60:64:C9:C1:39 Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 3E754007F5F8F8C7106DF508804DFC938F0875AD Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa Signing time: Tue 21 Oct 2025 22:00:00 +0000 ROA not before: Tue 21 Oct 2025 21:55:00 +0000 ROA not after: Tue 20 Oct 2026 22:00:00 +0000 asID: 150540 IP address blocks: 103.83.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 03:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:75:40:07:f5:f8:f8:c7:10:6d:f5:08:80:4d:fc:93:8f:08:75:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Oct 21 21:55:00 2025 GMT Not After : Oct 20 22:00:00 2026 GMT Subject: CN=E84682F19250DF986D09224C196C416064C9C139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8c:df:4f:c2:81:96:6b:ac:a4:7c:80:80:a4: 9c:33:54:06:18:86:c1:f7:a2:3f:b6:71:6c:a2:30: a9:db:aa:e3:2c:24:8c:06:70:8d:72:d2:1b:e0:37: 41:a5:67:02:c0:d0:66:0a:ae:48:09:c0:60:e1:57: df:69:70:c3:28:da:a8:6d:b0:19:46:25:4d:17:d8: 94:0c:d6:ec:84:9c:3b:22:2e:96:f2:f8:3e:0b:1b: 57:82:68:1c:f1:6e:26:01:43:d1:f8:06:31:fb:55: 14:5e:b5:b1:b9:14:38:ee:bd:cc:e4:6d:35:82:83: c4:f9:d5:f5:e3:6e:3e:ba:bc:39:74:69:f9:da:36: fd:63:09:95:95:e1:af:90:10:c0:a3:bb:1f:19:b5: 02:48:41:37:e0:62:b5:57:e2:27:3d:e0:07:07:0a: d9:11:21:82:29:49:41:e8:ce:11:82:62:9e:83:1c: 1f:3b:a3:97:ea:2b:a5:fa:e9:a7:74:74:89:54:4c: 92:d6:0b:a1:75:1e:7a:9c:d5:09:ef:c9:a8:0b:28: 2e:97:e3:66:44:9a:f8:a3:17:12:34:7b:de:8f:a9: d8:7b:30:cb:72:4e:34:65:03:b6:e7:e9:94:ec:fa: 73:b2:76:6c:4f:b5:3c:01:a6:18:5d:2e:7e:4d:a0: d3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:46:82:F1:92:50:DF:98:6D:09:22:4C:19:6C:41:60:64:C9:C1:39 X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.237.0/24 Signature Algorithm: sha256WithRSAEncryption 96:13:08:a3:93:52:8b:dc:c2:64:fb:9f:32:f2:77:88:92:c9: 18:2b:c1:6e:99:27:1c:77:6c:35:2b:79:8d:9d:de:c6:76:23: ab:ac:af:53:88:0c:65:13:3c:90:cf:aa:90:cd:b8:54:d7:c5: 5a:3a:b6:5c:27:89:7d:66:56:bf:e6:5b:67:7a:b6:69:e8:1b: 19:4b:ec:25:e3:78:85:dc:5a:fb:76:f7:9a:fa:24:4d:ad:65: 21:a4:a5:89:02:2d:1f:34:14:4b:8d:8e:47:0b:53:a0:1b:75: 8f:58:97:71:08:69:23:23:64:e8:32:18:00:6e:ac:c7:42:67: eb:a9:77:da:83:f8:86:f2:34:6c:19:04:25:f2:09:a3:9e:9b: 47:d2:38:af:10:d9:62:31:ba:6a:bf:65:76:79:28:4d:98:c5: 66:c8:3d:ac:d0:dd:d1:34:38:5c:07:4a:c5:89:32:ad:8e:e9: 69:8b:83:c6:52:ae:e3:75:57:39:47:fc:be:50:cb:9e:92:6e: 72:9a:55:bd:fb:ec:09:e9:d8:f1:c6:87:2c:55:8d:58:fc:53: 0a:16:ee:c3:ea:0b:84:55:9c:98:ae:d1:08:cb:61:79:4d:e8: 46:3f:d1:18:08:3a:22:4b:aa:e6:54:a4:d7:22:cb:b6:13:d9: a4:82:69:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPnVAB/X4+McQbfUIgE38k48Ida0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNTEwMjEyMTU1MDBaFw0yNjEwMjAyMjAwMDBaMDMxMTAvBgNV BAMTKEU4NDY4MkYxOTI1MERGOTg2RDA5MjI0QzE5NkM0MTYwNjRDOUMxMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdjN9PwoGWa6ykfICApJwzVAYY hsH3oj+2cWyiMKnbquMsJIwGcI1y0hvgN0GlZwLA0GYKrkgJwGDhV99pcMMo2qht sBlGJU0X2JQM1uyEnDsiLpby+D4LG1eCaBzxbiYBQ9H4BjH7VRRetbG5FDjuvczk bTWCg8T51fXjbj66vDl0afnaNv1jCZWV4a+QEMCjux8ZtQJIQTfgYrVX4ic94AcH CtkRIYIpSUHozhGCYp6DHB87o5fqK6X66ad0dIlUTJLWC6F1Hnqc1QnvyagLKC6X 42ZEmvijFxI0e96Pqdh7MMtyTjRlA7bn6ZTs+nOydmxPtTwBphhdLn5NoNPXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6EaC8ZJQ35htCSJMGWxBYGTJwTkwHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYTNjZmY3LTJhYTEtNDRkZi05 MTRjLWYxOTE4NGY2ZjNiMS8wLzMxMzAzMzJlMzgzMzJlMzIzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1PtMA0GCSqG SIb3DQEBCwUAA4IBAQCWEwijk1KL3MJk+58y8neIkskYK8FumSccd2w1K3mNnd7G diOrrK9TiAxlEzyQz6qQzbhU18VaOrZcJ4l9Zla/5ltnerZp6BsZS+wl43iF3Fr7 dvea+iRNrWUhpKWJAi0fNBRLjY5HC1OgG3WPWJdxCGkjI2ToMhgAbqzHQmfrqXfa g/iG8jRsGQQl8gmjnptH0jivENliMbpqv2V2eShNmMVmyD2s0N3RNDhcB0rFiTKt julpi4PGUq7jdVc5R/y+UMuekm5ymlW9++wJ6djxxocsVY1Y/FMKFu7D6guEVZyY rtEIy2F5TehGP9EYCDoiS6rmVKTXIsu2E9mkgmnA -----END CERTIFICATE-----Generated at Tue Nov 4 12:54:47 2025 by rpki-client