$ rpki-client -vvf repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa File: 3130332e3232372e342e302f32342d3234203d3e20313531353134.roa (raw, json) Hash identifier: dY9Wzss484cDHvQy3+/U0nuyLvB8FHOPJZ4fbRc99IE= Subject key identifier: 96:47:04:B8:D7:71:C3:24:48:AE:B8:1A:93:D4:45:8C:CC:9F:BB:8D Certificate issuer: /CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Certificate serial: 6110EF85C14044BBEDFB228608F4CBF5B507C7AC Authority key identifier: 83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa Signing time: Mon 01 Sep 2025 04:02:54 +0000 ROA not before: Mon 01 Sep 2025 03:57:54 +0000 ROA not after: Mon 31 Aug 2026 04:02:54 +0000 asID: 151514 IP address blocks: 103.227.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 05:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:10:ef:85:c1:40:44:bb:ed:fb:22:86:08:f4:cb:f5:b5:07:c7:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Validity Not Before: Sep 1 03:57:54 2025 GMT Not After : Aug 31 04:02:54 2026 GMT Subject: CN=964704B8D771C32448AEB81A93D4458CCC9FBB8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:5f:a8:70:32:1d:4c:b6:f7:bd:3c:e4:d3: 9c:3d:b5:c0:0a:80:2f:50:b6:93:92:62:54:2e:77: 5f:37:20:66:11:a6:9b:a8:66:ce:fc:fe:ec:b7:93: c0:df:2a:7b:86:41:e2:93:a3:0a:f4:2e:c8:9d:c3: 24:e1:b3:48:ea:d7:54:a0:5d:ad:fe:8e:1a:0c:54: 00:63:a0:29:8d:8e:f3:4c:8c:ef:26:d1:de:b5:27: 5d:83:77:6a:f2:4f:b3:e1:e4:ed:9d:19:f5:2a:d6: 70:c0:91:b1:93:d0:9f:c2:7f:ea:82:cb:a1:fd:6a: 80:0e:0c:e5:22:84:ef:b0:00:25:13:d4:72:55:99: 29:22:5b:f8:fc:f8:89:1c:d4:ba:05:49:bf:3c:a2: c9:20:71:0b:7c:ed:c6:0b:be:ec:09:d8:00:69:90: 4b:4a:6b:4c:bc:6e:5f:c1:4e:99:3e:26:f4:97:8d: e5:67:af:e5:b7:55:d3:c2:54:f2:b1:11:ba:eb:8b: 25:97:aa:17:80:5d:4b:40:00:77:85:f4:ea:2d:9a: 9f:c0:97:90:4f:ac:4f:7a:63:87:4f:b0:af:f2:35: e9:7f:7c:9a:c3:2b:d2:64:23:e4:a6:77:7d:67:9c: cd:f8:6e:7a:e0:af:f0:d1:68:b6:92:ce:db:b8:a0: 2f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:47:04:B8:D7:71:C3:24:48:AE:B8:1A:93:D4:45:8C:CC:9F:BB:8D X509v3 Authority Key Identifier: keyid:83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.4.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:c8:6a:f7:99:5e:53:ad:e2:76:a5:95:18:af:cb:d4:9f:58: f3:3f:35:d2:2c:ea:c6:98:26:42:06:98:db:85:2b:9d:81:4e: 7a:b8:74:69:5f:5a:32:19:eb:4d:16:a6:11:86:22:c3:21:0e: c3:d1:44:e3:20:99:13:81:89:46:c0:05:50:e6:a7:1d:b5:98: 4a:b5:3f:1a:d6:8f:b7:57:ec:b7:f1:49:c1:16:29:be:b7:97: 0d:d9:7f:92:84:b6:d8:b4:8a:1b:c2:71:4b:74:97:73:fc:c0: fb:c3:ae:67:7e:c6:aa:62:e1:ce:60:4c:1d:3c:52:0a:77:8b: 02:06:0d:b6:fa:2d:a5:d3:84:7a:25:05:7d:fc:3d:c6:e3:17: b8:24:0e:33:bb:ee:08:8c:b0:54:9c:1b:40:5c:00:9a:4e:d2: 44:2a:97:5e:10:cc:c1:1a:ea:b3:5b:8d:dc:80:83:fc:fb:20: 00:83:d5:6c:6a:6a:e2:98:ef:01:5e:23:c7:74:3e:87:40:38: 9b:54:2f:42:0e:a8:11:9b:38:11:56:31:97:5b:eb:44:fb:7f: c5:8b:04:63:aa:19:c2:cc:22:59:1f:a4:c3:9e:2f:67:ea:48: 60:40:fc:f7:6c:f6:3d:72:8f:ae:20:ab:82:19:64:bd:84:41: 55:08:7d:33 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYRDvhcFARLvt+yKGCPTL9bUHx6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJD QTZEQjYwOTAeFw0yNTA5MDEwMzU3NTRaFw0yNjA4MzEwNDAyNTRaMDMxMTAvBgNV BAMTKDk2NDcwNEI4RDc3MUMzMjQ0OEFFQjgxQTkzRDQ0NThDQ0M5RkJCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2l+ocDIdTLb3vTzk05w9tcAK gC9QtpOSYlQud183IGYRppuoZs78/uy3k8DfKnuGQeKTowr0LsidwyThs0jq11Sg Xa3+jhoMVABjoCmNjvNMjO8m0d61J12Dd2ryT7Ph5O2dGfUq1nDAkbGT0J/Cf+qC y6H9aoAODOUihO+wACUT1HJVmSkiW/j8+Ikc1LoFSb88oskgcQt87cYLvuwJ2ABp kEtKa0y8bl/BTpk+JvSXjeVnr+W3VdPCVPKxEbrriyWXqheAXUtAAHeF9Ootmp/A l5BPrE96Y4dPsK/yNel/fJrDK9JkI+Smd31nnM34bnrgr/DRaLaSztu4oC/NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlkcEuNdxwyRIrrgak9RFjMyfu40wHwYDVR0j BBgwFoAUg/pCf/rgLYAEeotfRNk44spttgkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTdiOTQ3Ni03ZTM4LTRjNTAtYTYyNC1iMjQ0M2M3MGJiNGQvMC84M0ZBNDI3RkZB RTAyRDgwMDQ3QThCNUY0NEQ5MzhFMkNBNkRCNjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJDQTZE QjYwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlN2I5NDc2LTdlMzgtNGM1MC1h NjI0LWIyNDQzYzcwYmI0ZC8wLzMxMzAzMzJlMzIzMjM3MmUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfjBDANBgkqhkiG 9w0BAQsFAAOCAQEAHshq95leU63idqWVGK/L1J9Y8z810izqxpgmQgaY24UrnYFO erh0aV9aMhnrTRamEYYiwyEOw9FE4yCZE4GJRsAFUOanHbWYSrU/GtaPt1fst/FJ wRYpvreXDdl/koS22LSKG8JxS3SXc/zA+8OuZ37GqmLhzmBMHTxSCneLAgYNtvot pdOEeiUFffw9xuMXuCQOM7vuCIywVJwbQFwAmk7SRCqXXhDMwRrqs1uN3ICD/Psg AIPVbGpq4pjvAV4jx3Q+h0A4m1QvQg6oEZs4EVYxl1vrRPt/xYsEY6oZwswiWR+k w54vZ+pIYED892z2PXKPriCrghlkvYRBVQh9Mw== -----END CERTIFICATE-----Generated at Mon Sep 8 10:28:53 2025 by rpki-client