$ rpki-client -vvf repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa File: 3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa (raw, json) Hash identifier: YNbhE8xdTKW/Q9U/93rD4JGqeL1yvNsJ+AG9m1iob8s= Subject key identifier: 9E:89:12:14:6C:71:A8:FC:E6:31:55:D8:2D:5A:88:B9:36:D2:86:6C Certificate issuer: /CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Certificate serial: 41F2D67F5513888E82A5B737EA853B5B7DD3343B Authority key identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa Signing time: Tue 09 Sep 2025 07:00:01 +0000 ROA not before: Tue 09 Sep 2025 06:55:01 +0000 ROA not after: Tue 08 Sep 2026 07:00:01 +0000 asID: 141616 IP address blocks: 103.161.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f2:d6:7f:55:13:88:8e:82:a5:b7:37:ea:85:3b:5b:7d:d3:34:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Validity Not Before: Sep 9 06:55:01 2025 GMT Not After : Sep 8 07:00:01 2026 GMT Subject: CN=9E8912146C71A8FCE63155D82D5A88B936D2866C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:86:ef:55:b1:be:95:98:3d:b5:03:fb:8b:ad: 52:4b:0a:7b:ec:7f:e4:e3:54:c0:26:00:39:34:ea: 20:10:ee:b5:e5:8c:b8:70:47:93:d3:6a:84:4f:5c: 5d:f4:28:f4:53:ce:28:f0:cd:dd:14:d4:6c:c1:76: 01:9e:f3:12:40:5c:67:96:0c:8e:45:30:63:de:0d: f4:73:4f:f3:18:22:66:f6:bf:8a:9d:66:b7:0b:85: 8b:50:95:c3:ea:b1:40:27:b3:ba:f7:8d:3c:c3:2a: 8e:33:c6:a4:72:c2:17:eb:a5:9e:1a:de:35:86:c1: 81:65:a0:74:b3:b3:f3:6d:4a:b4:0d:47:3b:a5:85: 0b:8e:8d:8f:8b:51:8d:d8:e6:b9:00:0e:f9:62:d8: 5b:a4:b4:3d:5d:66:2e:e5:61:cc:fb:39:92:8b:59: e5:3e:49:7f:60:89:6a:af:0f:42:87:71:7d:fd:c5: 62:26:56:80:0f:3f:d1:3d:14:44:0d:cf:58:20:70: 0d:0b:15:06:86:e4:a6:54:01:62:ff:79:ec:b5:69: e4:bf:63:6a:34:f6:f3:29:3b:08:e1:86:78:6a:73: 0e:4b:26:a2:94:e0:3a:c6:f1:f9:34:3c:2f:c0:56: 80:5f:f2:8a:88:91:57:cd:d6:0b:92:fc:1c:21:c6: 8e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:89:12:14:6C:71:A8:FC:E6:31:55:D8:2D:5A:88:B9:36:D2:86:6C X509v3 Authority Key Identifier: keyid:BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.163.0/24 Signature Algorithm: sha256WithRSAEncryption 62:34:6e:76:52:ec:8b:b7:24:4c:a6:ad:f4:87:a8:d4:3a:b4: 19:cf:54:b5:19:56:cc:ab:fb:3d:1a:b4:b2:6e:4b:57:cd:19: d0:6f:a7:fc:67:da:9a:7f:22:41:3a:a3:cb:ea:09:47:bd:7b: 9f:78:d1:34:f7:0b:9b:dd:17:b7:e1:37:03:53:17:31:d5:0e: d7:06:27:3b:2a:92:06:43:f0:bf:54:13:86:64:cf:3f:d7:d5: ac:36:84:5d:41:c1:4d:f5:75:2c:ac:48:17:a8:ea:33:68:01: b2:1f:15:2b:86:d8:6e:9d:11:d7:85:e4:41:1d:d2:79:6f:fb: b2:d1:5d:66:ee:c8:da:87:7a:d8:1b:70:0b:c8:b6:46:9c:cd: 78:28:b2:05:83:94:f5:e2:93:2a:5c:a2:b1:9b:f2:4e:60:30: 27:b2:54:a2:c5:1a:67:35:bc:be:a4:5d:06:e7:c5:b8:3d:72: df:4c:98:85:06:1d:fd:d6:6c:ba:55:89:7b:a5:2e:27:a4:5c: a4:8f:72:8d:e7:02:cb:7b:59:e9:1d:65:a7:e1:cb:d2:bf:fa: ac:7b:6d:68:e3:9d:0f:32:ab:c5:f9:fd:b4:97:77:97:76:0f: eb:88:70:46:8f:c4:da:29:7d:19:04:d5:f6:25:09:f7:60:3e: b1:46:da:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQfLWf1UTiI6Cpbc36oU7W33TNDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUz ODI3MjI2RjAeFw0yNTA5MDkwNjU1MDFaFw0yNjA5MDgwNzAwMDFaMDMxMTAvBgNV BAMTKDlFODkxMjE0NkM3MUE4RkNFNjMxNTVEODJENUE4OEI5MzZEMjg2NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDhu9Vsb6VmD21A/uLrVJLCnvs f+TjVMAmADk06iAQ7rXljLhwR5PTaoRPXF30KPRTzijwzd0U1GzBdgGe8xJAXGeW DI5FMGPeDfRzT/MYImb2v4qdZrcLhYtQlcPqsUAns7r3jTzDKo4zxqRywhfrpZ4a 3jWGwYFloHSzs/NtSrQNRzulhQuOjY+LUY3Y5rkADvli2FuktD1dZi7lYcz7OZKL WeU+SX9giWqvD0KHcX39xWImVoAPP9E9FEQNz1ggcA0LFQaG5KZUAWL/eey1aeS/ Y2o09vMpOwjhhnhqcw5LJqKU4DrG8fk0PC/AVoBf8oqIkVfN1guS/Bwhxo41AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnokSFGxxqPzmMVXYLVqIuTbShmwwHwYDVR0j BBgwFoAUusGA4/8yZngne+Jp7r7B3jgnIm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDA5NGQzZS0wODljLTRjNjgtODBhMi01NmI1Y2JmYzEwM2QvMC9CQUMxODBFM0ZG MzI2Njc4Mjc3QkUyNjlFRUJFQzFERTM4MjcyMjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUzODI3 MjI2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNlLTA4OWMtNGM2OC04 MGEyLTU2YjVjYmZjMTAzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoaMwDQYJ KoZIhvcNAQELBQADggEBAGI0bnZS7Iu3JEymrfSHqNQ6tBnPVLUZVsyr+z0atLJu S1fNGdBvp/xn2pp/IkE6o8vqCUe9e5940TT3C5vdF7fhNwNTFzHVDtcGJzsqkgZD 8L9UE4Zkzz/X1aw2hF1BwU31dSysSBeo6jNoAbIfFSuG2G6dEdeF5EEd0nlv+7LR XWbuyNqHetgbcAvItkaczXgosgWDlPXikypcorGb8k5gMCeyVKLFGmc1vL6kXQbn xbg9ct9MmIUGHf3WbLpViXulLiekXKSPco3nAst7WekdZafhy9K/+qx7bWjjnQ8y q8X5/bSXd5d2D+uIcEaPxNopfRkE1fYlCfdgPrFG2r4= -----END CERTIFICATE-----Generated at Mon Oct 20 14:32:52 2025 by rpki-client