$ rpki-client -vvf repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa File: 3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa (raw, json) Hash identifier: x0J0SWYdQITQpgISzoI/wH0SDCf243P4/o0ZHJotSPU= Subject key identifier: 88:8F:04:5E:24:C5:9A:96:81:04:AA:9D:62:06:70:03:8E:D8:97:83 Certificate issuer: /CN=01A283E5CA4698591C4AA0127AA71B68D6B8C690 Certificate serial: 64ACF99895B42B7298B246CD5ECF83AA1E94CF32 Authority key identifier: 01:A2:83:E5:CA:46:98:59:1C:4A:A0:12:7A:A7:1B:68:D6:B8:C6:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa Signing time: Sat 20 Sep 2025 12:02:24 +0000 ROA not before: Sat 20 Sep 2025 11:57:24 +0000 ROA not after: Sat 19 Sep 2026 12:02:24 +0000 asID: 141636 IP address blocks: 103.162.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.crl rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ac:f9:98:95:b4:2b:72:98:b2:46:cd:5e:cf:83:aa:1e:94:cf:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A283E5CA4698591C4AA0127AA71B68D6B8C690 Validity Not Before: Sep 20 11:57:24 2025 GMT Not After : Sep 19 12:02:24 2026 GMT Subject: CN=888F045E24C59A968104AA9D620670038ED89783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9d:b9:65:79:5c:da:2d:58:2c:fe:95:d7:7a: 24:61:4b:49:22:d3:0f:86:09:33:42:0a:96:f1:32: 3c:a8:cd:bf:98:65:43:2a:b5:ff:db:d2:ae:6e:84: 10:52:74:69:05:61:ae:4e:d2:5c:d1:fb:91:90:81: 87:ad:6c:7b:de:c7:ae:2e:e0:2c:86:79:87:a6:d9: df:e2:2d:4d:10:3f:90:7c:57:51:93:c1:8e:d8:fb: ad:39:88:43:5e:c1:02:6e:41:a6:a1:c5:05:79:40: a2:d2:0e:de:57:ad:87:cf:6e:2c:1b:36:ba:b5:6a: 1b:a2:97:10:25:f5:3c:f1:76:d1:0b:7c:04:31:e7: d8:16:28:ec:e5:64:44:d4:7a:23:bf:d0:00:95:47: c3:d5:dc:78:65:4b:fa:12:b3:3a:c6:1b:bf:f1:f1: 45:fa:05:55:42:0b:93:36:5c:12:af:08:cc:41:ac: 04:10:4a:a0:74:09:cb:96:3a:b1:60:d5:1f:1b:20: 20:43:f4:00:cf:a2:b8:67:db:7a:37:f9:4d:87:e3: 13:71:3b:3d:f9:50:eb:6f:b2:45:85:5a:4a:9f:5b: d2:ef:31:a1:83:5d:1c:ee:02:8a:ac:53:97:87:f1: 46:b6:78:5f:05:fa:c2:95:f0:b4:1c:20:f2:90:6c: da:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8F:04:5E:24:C5:9A:96:81:04:AA:9D:62:06:70:03:8E:D8:97:83 X509v3 Authority Key Identifier: keyid:01:A2:83:E5:CA:46:98:59:1C:4A:A0:12:7A:A7:1B:68:D6:B8:C6:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.16.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:6c:9e:2c:17:94:4c:91:8c:d6:b2:1e:07:2a:54:99:80:54: 17:89:0c:21:b5:8c:ec:08:e4:42:d5:de:a7:26:42:90:0f:5f: 27:7a:46:89:7b:c4:01:81:71:ca:5d:bf:5e:e7:9c:0a:77:d3: 42:0a:7e:8b:85:44:03:86:58:5e:ac:6b:c0:58:dd:7b:f1:66: ab:b6:e2:0c:b9:d8:94:59:8a:6e:3c:d3:50:80:bb:06:f4:fe: 82:98:60:ad:da:19:f2:83:6d:06:ca:82:b1:d8:23:2d:d7:08: b2:e3:18:ec:ed:0d:fb:53:cc:12:fc:68:5c:3b:ef:03:28:4c: 2f:fd:98:c0:28:28:fe:93:9b:61:95:8f:76:2d:cd:e5:d5:8c: 7b:22:dc:a3:81:d1:46:68:75:7f:2a:ea:5d:68:6c:6c:46:f8: 86:38:43:28:97:dc:50:53:bd:7e:93:18:77:74:56:75:3e:d9: 64:0c:07:2d:e8:14:1e:7a:2a:b3:1a:7b:71:5d:b6:18:90:aa: e9:fd:e7:8d:aa:fd:46:aa:b2:1c:7e:aa:62:79:0c:46:da:b3: 11:9b:89:df:36:82:38:7e:2d:da:ff:56:5d:c2:47:74:f1:fa: 88:5f:d6:cd:c7:c4:c5:3a:e5:a4:eb:d0:00:56:75:57:86:89: 32:2a:40:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZKz5mJW0K3KYskbNXs+Dqh6UzzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjgzRTVDQTQ2OTg1OTFDNEFBMDEyN0FBNzFCNjhE NkI4QzY5MDAeFw0yNTA5MjAxMTU3MjRaFw0yNjA5MTkxMjAyMjRaMDMxMTAvBgNV BAMTKDg4OEYwNDVFMjRDNTlBOTY4MTA0QUE5RDYyMDY3MDAzOEVEODk3ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbnblleVzaLVgs/pXXeiRhS0ki 0w+GCTNCCpbxMjyozb+YZUMqtf/b0q5uhBBSdGkFYa5O0lzR+5GQgYetbHvex64u 4CyGeYem2d/iLU0QP5B8V1GTwY7Y+605iENewQJuQaahxQV5QKLSDt5XrYfPbiwb Nrq1ahuilxAl9TzxdtELfAQx59gWKOzlZETUeiO/0ACVR8PV3HhlS/oSszrGG7/x 8UX6BVVCC5M2XBKvCMxBrAQQSqB0CcuWOrFg1R8bICBD9ADPorhn23o3+U2H4xNx Oz35UOtvskWFWkqfW9LvMaGDXRzuAoqsU5eH8Ua2eF8F+sKV8LQcIPKQbNojAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiI8EXiTFmpaBBKqdYgZwA47Yl4MwHwYDVR0j BBgwFoAUAaKD5cpGmFkcSqASeqcbaNa4xpAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjMxNTFkYi0xMzMwLTRlNzAtOWNjNC05YjhmY2Q1ZWQyZDIvMC8wMUEyODNFNUNB NDY5ODU5MUM0QUEwMTI3QUE3MUI2OEQ2QjhDNjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDFBMjgzRTVDQTQ2OTg1OTFDNEFBMDEyN0FBNzFCNjhENkI4 QzY5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmMzE1MWRiLTEzMzAtNGU3MC05 Y2M0LTliOGZjZDVlZDJkMi8wLzMxMzAzMzJlMzEzNjMyMmUzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6IQMA0GCSqG SIb3DQEBCwUAA4IBAQBPbJ4sF5RMkYzWsh4HKlSZgFQXiQwhtYzsCORC1d6nJkKQ D18nekaJe8QBgXHKXb9e55wKd9NCCn6LhUQDhlherGvAWN178WartuIMudiUWYpu PNNQgLsG9P6CmGCt2hnyg20GyoKx2CMt1wiy4xjs7Q37U8wS/GhcO+8DKEwv/ZjA KCj+k5thlY92Lc3l1Yx7ItyjgdFGaHV/KupdaGxsRviGOEMol9xQU71+kxh3dFZ1 PtlkDAct6BQeeiqzGntxXbYYkKrp/eeNqv1GqrIcfqpieQxG2rMRm4nfNoI4fi3a /1Zdwkd08fqIX9bNx8TFOuWk69AAVnVXhokyKkCL -----END CERTIFICATE-----Generated at Mon Oct 20 22:47:58 2025 by rpki-client