$ rpki-client -vvf repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32332d3233203d3e20313531353134.roa File: 3130332e3232372e342e302f32332d3233203d3e20313531353134.roa (raw, json) Hash identifier: KYg2eP+qnyahabsQS5xdyRs5Ya80Q1XBZpzh8eR7p5s= Subject key identifier: FE:CB:C9:1B:AB:3A:EB:CC:05:C3:3F:3B:4E:09:3E:BC:8D:C4:7E:A9 Certificate issuer: /CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Certificate serial: 5F445462F8DCC8E9455DF07136C2AFE771F970CF Authority key identifier: 83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32332d3233203d3e20313531353134.roa Signing time: Mon 01 Sep 2025 04:02:53 +0000 ROA not before: Mon 01 Sep 2025 03:57:53 +0000 ROA not after: Mon 31 Aug 2026 04:02:53 +0000 asID: 151514 IP address blocks: 103.227.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 05:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:44:54:62:f8:dc:c8:e9:45:5d:f0:71:36:c2:af:e7:71:f9:70:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Validity Not Before: Sep 1 03:57:53 2025 GMT Not After : Aug 31 04:02:53 2026 GMT Subject: CN=FECBC91BAB3AEBCC05C33F3B4E093EBC8DC47EA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3f:a6:e8:79:3d:73:f7:99:f7:3a:f1:4d:c4: 17:64:69:ee:32:a8:0e:a9:57:8d:b5:19:f2:85:be: a7:98:73:1a:04:67:12:66:bf:4d:12:93:f4:b7:3d: 2d:16:5e:3c:94:98:86:41:3f:63:13:73:56:7f:a2: 0a:bc:fa:41:44:c6:5e:99:0d:9b:ec:25:3a:5c:ac: c6:f0:36:b4:6b:db:df:79:d5:28:4d:92:53:5e:5d: 2f:e8:d5:69:20:39:2f:4a:10:8d:ea:e9:a0:e5:c6: 98:f3:27:15:4f:33:3e:64:76:45:68:fa:74:b6:4e: 8b:d0:85:ff:59:8e:ed:bf:38:81:24:e3:08:4b:39: 48:71:e4:77:73:4a:6a:ab:8b:6b:79:00:a9:36:ea: 84:a3:d1:c2:8a:41:0d:70:2f:b9:ea:db:f9:59:3e: 91:54:c0:5f:c3:f2:0f:d3:27:31:42:04:d4:af:d7: 31:c6:68:0a:84:ef:13:1a:16:cf:cb:11:bf:7a:9f: 95:5e:c7:0a:88:46:93:ec:09:83:95:9f:6c:45:e5: a5:9b:ab:d1:90:98:41:ee:8f:46:99:38:fa:ce:9f: 83:d3:db:d3:ee:39:80:6e:79:08:71:d8:14:3b:8e: a6:97:7b:6d:67:f2:c0:c9:22:1c:eb:79:aa:fb:e9: e2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CB:C9:1B:AB:3A:EB:CC:05:C3:3F:3B:4E:09:3E:BC:8D:C4:7E:A9 X509v3 Authority Key Identifier: keyid:83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32332d3233203d3e20313531353134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.4.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:bb:fc:ad:02:11:c6:ac:9b:09:11:8d:f5:7b:3d:be:be:31: 98:a2:39:96:6c:b6:45:5c:7a:c3:56:dd:6b:85:aa:30:3e:70: 40:ea:e3:e1:ab:bc:8b:5e:a7:92:45:ae:6c:db:f8:b2:df:de: fe:46:53:7f:72:c7:57:78:30:66:55:e5:c0:b7:e1:f7:fb:6d: dc:26:aa:32:86:b5:0d:f0:6a:a6:ed:6d:46:96:ca:91:25:76: fb:b1:50:2b:14:a8:ff:fc:89:2e:99:d8:6f:d0:64:9a:3c:fb: 23:bb:37:1d:0f:a9:22:33:26:24:47:ee:1d:ec:c6:f6:35:84: 14:03:86:65:d9:20:05:40:bb:90:44:30:16:94:91:61:1e:88: 75:76:a0:d6:6f:44:ad:02:d3:31:24:6a:75:bc:e9:8a:6b:8d: e1:e7:06:96:9f:74:8a:91:d4:60:ab:ce:d3:ee:9e:e9:66:ac: 5f:a2:76:13:ef:4a:92:c6:6a:52:48:0c:ea:14:e0:7a:b9:5c: 6a:36:fd:13:1a:62:ef:ed:96:1a:e0:07:87:8b:d4:fd:78:c3: 49:73:2e:73:36:df:cd:ae:46:90:7b:94:8c:b1:ad:f0:a6:3c: 57:a8:e1:63:e4:0b:08:71:f4:7a:47:bd:1b:b6:76:69:58:02: 8b:d8:34:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX0RUYvjcyOlFXfBxNsKv53H5cM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJD QTZEQjYwOTAeFw0yNTA5MDEwMzU3NTNaFw0yNjA4MzEwNDAyNTNaMDMxMTAvBgNV BAMTKEZFQ0JDOTFCQUIzQUVCQ0MwNUMzM0YzQjRFMDkzRUJDOERDNDdFQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8P6boeT1z95n3OvFNxBdkae4y qA6pV421GfKFvqeYcxoEZxJmv00Sk/S3PS0WXjyUmIZBP2MTc1Z/ogq8+kFExl6Z DZvsJTpcrMbwNrRr29951ShNklNeXS/o1WkgOS9KEI3q6aDlxpjzJxVPMz5kdkVo +nS2TovQhf9Zju2/OIEk4whLOUhx5HdzSmqri2t5AKk26oSj0cKKQQ1wL7nq2/lZ PpFUwF/D8g/TJzFCBNSv1zHGaAqE7xMaFs/LEb96n5VexwqIRpPsCYOVn2xF5aWb q9GQmEHuj0aZOPrOn4PT29PuOYBueQhx2BQ7jqaXe21n8sDJIhzrear76eLnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/svJG6s668wFwz87Tgk+vI3EfqkwHwYDVR0j BBgwFoAUg/pCf/rgLYAEeotfRNk44spttgkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTdiOTQ3Ni03ZTM4LTRjNTAtYTYyNC1iMjQ0M2M3MGJiNGQvMC84M0ZBNDI3RkZB RTAyRDgwMDQ3QThCNUY0NEQ5MzhFMkNBNkRCNjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJDQTZE QjYwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlN2I5NDc2LTdlMzgtNGM1MC1h NjI0LWIyNDQzYzcwYmI0ZC8wLzMxMzAzMzJlMzIzMjM3MmUzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMTM1MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfjBDANBgkqhkiG 9w0BAQsFAAOCAQEAerv8rQIRxqybCRGN9Xs9vr4xmKI5lmy2RVx6w1bda4WqMD5w QOrj4au8i16nkkWubNv4st/e/kZTf3LHV3gwZlXlwLfh9/tt3CaqMoa1DfBqpu1t RpbKkSV2+7FQKxSo//yJLpnYb9Bkmjz7I7s3HQ+pIjMmJEfuHezG9jWEFAOGZdkg BUC7kEQwFpSRYR6IdXag1m9ErQLTMSRqdbzpimuN4ecGlp90ipHUYKvO0+6e6Was X6J2E+9KksZqUkgM6hTgerlcajb9Expi7+2WGuAHh4vU/XjDSXMuczbfza5GkHuU jLGt8KY8V6jhY+QLCHH0eke9G7Z2aVgCi9g06A== -----END CERTIFICATE-----Generated at Mon Sep 8 10:38:21 2025 by rpki-client