$ rpki-client -vvf repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa File: 3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa (raw, json) Hash identifier: hUeOICfw2XBWAgqGUkttpxWF2O5J3sS4YAbQ6Mjer8A= Subject key identifier: 13:1B:02:DA:AD:A8:70:BD:0D:B6:DA:79:5F:5F:41:14:D0:4B:16:C3 Certificate issuer: /CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Certificate serial: 1864F56DACA18FC2919BDEBA76229B0CA2A9158D Authority key identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa Signing time: Tue 09 Sep 2025 11:00:01 +0000 ROA not before: Tue 09 Sep 2025 10:55:01 +0000 ROA not after: Tue 08 Sep 2026 11:00:01 +0000 asID: 141616 IP address blocks: 103.161.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:64:f5:6d:ac:a1:8f:c2:91:9b:de:ba:76:22:9b:0c:a2:a9:15:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Validity Not Before: Sep 9 10:55:01 2025 GMT Not After : Sep 8 11:00:01 2026 GMT Subject: CN=131B02DAADA870BD0DB6DA795F5F4114D04B16C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:38:a0:00:97:8d:48:01:76:2f:8e:2d:b6: 10:2d:fb:a2:1e:53:aa:ac:a3:8e:d0:03:24:91:7d: 25:c7:2f:a5:35:9d:93:df:80:73:a6:e4:f4:02:4a: e3:b3:85:16:c2:c8:20:0a:f9:29:a6:df:83:d7:fe: f3:9e:19:37:3d:16:f9:c6:65:da:1d:13:50:73:af: 63:18:3f:e8:13:55:42:b7:d3:06:d5:07:6d:e5:a7: 26:ae:2f:48:83:79:b5:46:97:81:cf:05:6a:51:a5: 5c:54:77:2a:d7:5e:00:19:d3:9d:ca:7a:4c:51:1c: a4:12:be:1b:96:b0:0b:d0:14:2b:d0:80:35:5a:7f: 9b:a5:a5:02:e8:3c:f5:06:98:be:1d:d6:2e:c4:24: 17:fe:5e:01:44:e5:12:1d:69:d4:d9:f8:19:57:28: 46:85:b2:9d:7f:83:bc:f6:7c:28:6e:b4:b0:14:9d: 5a:09:d2:e3:9a:09:88:08:ed:b5:76:38:af:9b:d6: 8a:e9:71:59:0d:74:7a:2f:07:19:70:a1:ba:2b:8f: 2e:20:ac:7e:58:ce:ed:5c:4f:d3:85:8d:e7:21:f0: d7:89:bb:c8:b7:05:9a:6a:92:11:27:f7:45:79:25: 47:2b:ff:24:ca:ba:de:02:00:0a:7c:98:ad:45:ca: 16:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1B:02:DA:AD:A8:70:BD:0D:B6:DA:79:5F:5F:41:14:D0:4B:16:C3 X509v3 Authority Key Identifier: keyid:BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.162.0/23 Signature Algorithm: sha256WithRSAEncryption 12:35:30:01:55:0d:bc:00:42:37:fb:d4:53:79:73:3f:84:dc: 8e:bf:9b:eb:05:f6:35:5e:c1:75:d6:f7:45:5a:7f:fd:a5:52: c4:ce:d7:37:b1:18:d1:ff:1e:60:0b:20:7e:1a:ce:34:5a:a4: 72:5c:4d:e8:b8:50:3d:48:30:69:49:1d:66:56:1b:96:e2:02: 49:36:60:d3:a7:18:e0:22:68:08:79:68:77:59:5f:7f:de:61: 9e:97:59:d3:df:2d:b4:29:6e:2e:be:cd:71:fd:3c:88:73:3b: 9c:da:21:92:8d:a4:6d:bf:bb:4e:80:20:43:15:93:b8:43:63: fc:7d:b3:59:3a:4d:d0:f6:57:c9:1a:55:96:47:79:e7:72:af: ff:e6:9a:a6:5f:bd:fd:d6:a4:a3:62:29:62:9c:23:28:3e:12: e7:31:ad:8f:1e:f9:f0:7c:49:39:03:38:74:4c:b8:55:23:5e: 54:64:76:84:6e:1c:00:69:19:99:e8:9a:9a:50:a3:e2:b3:4e: bb:90:ce:ee:c6:68:25:0b:18:c9:40:b7:d5:ae:01:b2:a8:6d: b6:a8:f2:ca:f8:59:37:28:ed:24:a9:aa:6e:73:16:bb:88:f7: 02:5a:e9:97:a4:af:82:d3:fe:f7:fe:6e:48:16:a4:b4:87:de: 34:73:4f:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGGT1bayhj8KRm966diKbDKKpFY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUz ODI3MjI2RjAeFw0yNTA5MDkxMDU1MDFaFw0yNjA5MDgxMTAwMDFaMDMxMTAvBgNV BAMTKDEzMUIwMkRBQURBODcwQkQwREI2REE3OTVGNUY0MTE0RDA0QjE2QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7kzigAJeNSAF2L44tthAt+6Ie U6qso47QAySRfSXHL6U1nZPfgHOm5PQCSuOzhRbCyCAK+Smm34PX/vOeGTc9FvnG ZdodE1Bzr2MYP+gTVUK30wbVB23lpyauL0iDebVGl4HPBWpRpVxUdyrXXgAZ053K ekxRHKQSvhuWsAvQFCvQgDVaf5ulpQLoPPUGmL4d1i7EJBf+XgFE5RIdadTZ+BlX KEaFsp1/g7z2fChutLAUnVoJ0uOaCYgI7bV2OK+b1orpcVkNdHovBxlwoborjy4g rH5Yzu1cT9OFjech8NeJu8i3BZpqkhEn90V5JUcr/yTKut4CAAp8mK1FyhZhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUExsC2q2ocL0Nttp5X19BFNBLFsMwHwYDVR0j BBgwFoAUusGA4/8yZngne+Jp7r7B3jgnIm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDA5NGQzZS0wODljLTRjNjgtODBhMi01NmI1Y2JmYzEwM2QvMC9CQUMxODBFM0ZG MzI2Njc4Mjc3QkUyNjlFRUJFQzFERTM4MjcyMjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUzODI3 MjI2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNlLTA4OWMtNGM2OC04 MGEyLTU2YjVjYmZjMTAzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnoaIwDQYJ KoZIhvcNAQELBQADggEBABI1MAFVDbwAQjf71FN5cz+E3I6/m+sF9jVewXXW90Va f/2lUsTO1zexGNH/HmALIH4azjRapHJcTei4UD1IMGlJHWZWG5biAkk2YNOnGOAi aAh5aHdZX3/eYZ6XWdPfLbQpbi6+zXH9PIhzO5zaIZKNpG2/u06AIEMVk7hDY/x9 s1k6TdD2V8kaVZZHeedyr//mmqZfvf3WpKNiKWKcIyg+EucxrY8e+fB8STkDOHRM uFUjXlRkdoRuHABpGZnomppQo+KzTruQzu7GaCULGMlAt9WuAbKobbao8sr4WTco 7SSpqm5zFruI9wJa6Zekr4LT/vf+bkgWpLSH3jRzT00= -----END CERTIFICATE-----Generated at Mon Oct 20 14:32:41 2025 by rpki-client