$ rpki-client -vvf repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa File: 3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa (raw, json) Hash identifier: XzO2HW08c8tz8kihLQyrbNCIzWk3BylBcXWZmEuiX14= Subject key identifier: BA:89:A2:A2:15:58:B8:3B:E6:1C:D6:40:6E:6C:32:79:78:96:B8:18 Certificate issuer: /CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61 Certificate serial: 738D869515F81E334BA9E6AB477FD9E5E680E94F Authority key identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa Signing time: Fri 05 Sep 2025 17:00:01 +0000 ROA not before: Fri 05 Sep 2025 16:55:01 +0000 ROA not after: Fri 04 Sep 2026 17:00:01 +0000 asID: 141656 IP address blocks: 103.162.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.crl rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 00:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:8d:86:95:15:f8:1e:33:4b:a9:e6:ab:47:7f:d9:e5:e6:80:e9:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61 Validity Not Before: Sep 5 16:55:01 2025 GMT Not After : Sep 4 17:00:01 2026 GMT Subject: CN=BA89A2A21558B83BE61CD6406E6C32797896B818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2e:d9:a0:70:8f:23:69:a8:b1:86:29:fe:70: c9:2c:20:f9:a8:5c:dc:c2:38:4a:d4:f5:1f:83:3b: 99:f6:1b:02:b8:67:7e:25:87:c4:05:1d:a5:4b:06: b0:b2:18:fb:e2:06:e0:b3:41:eb:e5:b5:90:cb:58: 17:99:7e:7e:4c:9c:3b:dc:89:05:2b:25:38:a9:79: 29:11:7d:66:80:93:73:ff:14:67:ee:65:b4:90:a9: 38:88:9b:6f:0d:c8:43:6f:d4:14:26:0c:bd:cf:9c: 24:3c:cf:20:12:cf:68:18:00:60:30:fd:ca:14:fb: 9f:25:04:5a:e0:2f:80:4f:6a:74:bb:50:a1:4e:3b: 5d:f5:ec:d3:d8:d7:33:34:60:21:55:39:8c:86:de: 7a:8c:a4:4e:10:64:5c:3c:70:e9:ba:a9:a1:96:48: 14:c5:96:40:c6:f5:0b:2e:58:95:cb:92:98:bd:33: 0c:ed:c7:da:8d:62:d4:6e:ff:f5:e6:f3:fb:d3:1c: 48:65:0c:f1:ef:cb:25:be:f9:21:95:cb:e7:13:cd: 60:30:a6:6b:7e:65:ee:77:80:a9:27:89:9e:a8:31: df:d1:ef:b0:74:c1:7e:e5:99:f2:f0:5e:34:95:bb: 5c:c2:f2:83:f7:ee:01:f2:6a:4b:b9:3b:2b:81:28: 74:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:89:A2:A2:15:58:B8:3B:E6:1C:D6:40:6E:6C:32:79:78:96:B8:18 X509v3 Authority Key Identifier: keyid:14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.150.0/24 Signature Algorithm: sha256WithRSAEncryption 23:04:60:33:d0:ff:c2:a6:d4:94:14:e0:ff:90:4c:22:30:b3: b3:07:06:12:3a:71:fa:3b:ff:99:86:3c:e9:bf:4d:aa:1d:0d: 73:60:b4:18:11:67:71:10:33:4f:82:a5:a8:eb:03:e3:54:cc: 0c:2d:ab:18:81:18:9d:e3:2b:b5:d8:e2:a7:48:1b:be:91:9a: 95:56:90:25:d7:a3:0b:a4:9a:ba:64:3d:72:ee:f5:eb:1e:12: d0:21:86:9a:4d:c0:87:76:da:eb:d1:7a:03:8a:23:45:f8:ae: c8:bd:30:0a:34:35:85:43:b1:1f:4e:9c:cc:e4:e9:d5:e5:4f: d7:c3:7f:a1:28:57:c1:1d:f5:ee:5a:de:4a:18:6d:fc:2c:8b: 06:8e:cc:2c:90:c4:23:46:7a:cd:aa:df:47:92:52:2c:a0:6c: de:13:b4:f5:c9:c2:5b:49:69:76:c3:f7:89:5a:0f:de:c6:d0: 99:8f:1f:43:e7:12:19:98:20:3a:a9:6c:09:9b:3d:51:0f:44: e2:dd:7c:b6:b5:86:12:82:f8:14:23:1b:90:c4:4b:08:b0:99: d3:57:99:8a:04:5f:fe:58:fb:cd:be:a9:ae:01:86:d3:17:7a: 18:8f:a7:8b:98:a6:d9:3f:9f:85:2c:39:5d:b4:e2:5c:72:77: 58:2a:c1:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc42GlRX4HjNLqearR3/Z5eaA6U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQwNDMxNjNBOEJGRjUwNjAwRjE2NDEwREUyN0I3QTBE RUVDMUU2MTAeFw0yNTA5MDUxNjU1MDFaFw0yNjA5MDQxNzAwMDFaMDMxMTAvBgNV BAMTKEJBODlBMkEyMTU1OEI4M0JFNjFDRDY0MDZFNkMzMjc5Nzg5NkI4MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdLtmgcI8jaaixhin+cMksIPmo XNzCOErU9R+DO5n2GwK4Z34lh8QFHaVLBrCyGPviBuCzQevltZDLWBeZfn5MnDvc iQUrJTipeSkRfWaAk3P/FGfuZbSQqTiIm28NyENv1BQmDL3PnCQ8zyASz2gYAGAw /coU+58lBFrgL4BPanS7UKFOO1317NPY1zM0YCFVOYyG3nqMpE4QZFw8cOm6qaGW SBTFlkDG9QsuWJXLkpi9Mwztx9qNYtRu//Xm8/vTHEhlDPHvyyW++SGVy+cTzWAw pmt+Ze53gKkniZ6oMd/R77B0wX7lmfLwXjSVu1zC8oP37gHyaku5OyuBKHQTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuomiohVYuDvmHNZAbmwyeXiWuBgwHwYDVR0j BBgwFoAUFAQxY6i/9QYA8WQQ3ie3oN7sHmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWQ5ZWEyMC0zNDNkLTRhY2ItOTU4MS04MWY5ZDdlYTkyZmUvMC8xNDA0MzE2M0E4 QkZGNTA2MDBGMTY0MTBERTI3QjdBMERFRUMxRTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQwNDMxNjNBOEJGRjUwNjAwRjE2NDEwREUyN0I3QTBERUVD MUU2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZDllYTIwLTM0M2QtNGFjYi05 NTgxLTgxZjlkN2VhOTJmZS8wLzMxMzAzMzJlMzEzNjMyMmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnopYwDQYJ KoZIhvcNAQELBQADggEBACMEYDPQ/8Km1JQU4P+QTCIws7MHBhI6cfo7/5mGPOm/ TaodDXNgtBgRZ3EQM0+CpajrA+NUzAwtqxiBGJ3jK7XY4qdIG76RmpVWkCXXowuk mrpkPXLu9eseEtAhhppNwId22uvRegOKI0X4rsi9MAo0NYVDsR9OnMzk6dXlT9fD f6EoV8Ed9e5a3koYbfwsiwaOzCyQxCNGes2q30eSUiygbN4TtPXJwltJaXbD94la D97G0JmPH0PnEhmYIDqpbAmbPVEPROLdfLa1hhKC+BQjG5DESwiwmdNXmYoEX/5Y +82+qa4BhtMXehiPp4uYptk/n4UsOV204lxyd1gqwTk= -----END CERTIFICATE-----Generated at Sun Sep 7 15:30:31 2025 by rpki-client