$ rpki-client -vvf repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa File: 3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa (raw, json) Hash identifier: NWZFKnhcY/aoMWV+2zpR3+GU8xiBKXVASrcCEyuCBhE= Subject key identifier: A6:19:C2:2C:47:DD:4D:21:8E:E6:5F:A5:B7:CF:52:16:0C:FD:6D:18 Certificate issuer: /CN=9FB9D7ED833E1CA6E4053773AC164214889108CB Certificate serial: 43D9208624FAE3ACC6036A4CC52CBA60B18D0E06 Authority key identifier: 9F:B9:D7:ED:83:3E:1C:A6:E4:05:37:73:AC:16:42:14:88:91:08:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa Signing time: Wed 17 Sep 2025 15:00:01 +0000 ROA not before: Wed 17 Sep 2025 14:55:01 +0000 ROA not after: Wed 16 Sep 2026 15:00:01 +0000 asID: 140003 IP address blocks: 103.148.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.crl rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d9:20:86:24:fa:e3:ac:c6:03:6a:4c:c5:2c:ba:60:b1:8d:0e:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FB9D7ED833E1CA6E4053773AC164214889108CB Validity Not Before: Sep 17 14:55:01 2025 GMT Not After : Sep 16 15:00:01 2026 GMT Subject: CN=A619C22C47DD4D218EE65FA5B7CF52160CFD6D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dc:a7:73:a2:0d:4a:b3:94:2e:1d:3c:5a:ff: b9:07:c4:6a:23:c7:4b:fd:8c:49:f7:3f:26:2b:8a: 82:a9:ad:4e:ed:cc:37:04:1e:2a:6f:8e:ed:85:95: 94:24:8c:cd:94:0a:5d:70:8c:1f:71:b1:a3:0a:73: 39:32:bd:75:ff:0c:0d:cc:35:47:4e:8e:da:a8:db: ee:e0:aa:7a:3c:ed:b1:0d:4e:07:85:7f:bc:0f:56: f2:ec:00:53:d6:e4:99:db:c8:12:a1:97:99:ef:da: 0c:ea:87:89:67:58:4b:5c:ce:7a:de:64:23:bd:b5: e0:53:ca:ad:84:9f:b1:7d:72:26:0e:da:92:eb:ab: 65:a6:55:75:cd:5b:aa:08:e8:17:b1:ee:1c:3e:ab: 48:1d:2f:5b:bd:a0:fd:78:91:5f:de:99:04:3e:5e: a0:49:03:e9:e6:1f:2a:c1:67:fc:8a:ef:79:ea:13: 4f:c9:c6:3e:a7:fd:54:f8:7c:03:24:cb:98:0c:3a: 12:05:a6:4d:97:b8:f3:6c:fd:67:ad:8f:75:72:d0: 65:06:f2:c5:fb:eb:11:0f:71:30:be:17:d1:91:11: 91:29:a1:9a:75:53:fc:0f:9b:e9:da:f2:54:71:9d: 78:3f:56:29:11:60:54:71:02:43:a6:e8:5d:ad:68: a8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:19:C2:2C:47:DD:4D:21:8E:E6:5F:A5:B7:CF:52:16:0C:FD:6D:18 X509v3 Authority Key Identifier: keyid:9F:B9:D7:ED:83:3E:1C:A6:E4:05:37:73:AC:16:42:14:88:91:08:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.194.0/24 Signature Algorithm: sha256WithRSAEncryption a6:4d:b1:57:62:f4:fe:0d:b6:b3:01:aa:73:d3:5d:ad:6a:3d: 87:9d:5e:c5:ca:b6:b3:4d:91:d2:36:06:02:84:8e:2c:bb:67: a2:93:8f:ac:35:f9:12:2b:4d:d2:0e:e9:a3:ee:2c:4c:14:dc: 91:5e:b1:c8:0e:a1:21:54:aa:c1:29:8c:a3:12:f9:90:ab:b0: 61:cb:f2:a5:8e:c5:9d:48:cc:f5:0b:49:75:80:72:c9:fc:c2: c1:00:6b:59:9a:1c:ba:44:ee:6d:e5:35:da:ce:2b:be:03:c0: 9b:ce:4c:2b:60:9d:de:4a:2d:d6:b3:68:4a:87:7a:bd:0b:ca: 8f:b4:b9:0a:43:26:6b:e0:a6:65:fd:03:ef:e5:7a:e7:35:41: 3f:73:99:fc:d3:a7:48:f4:16:81:2e:c8:c1:52:81:46:18:13: 17:1e:4d:3d:7b:8a:3e:aa:3b:29:c0:af:83:06:97:bb:76:85: 75:f9:6c:35:b4:89:80:78:1e:5e:a1:3d:b7:d3:1c:38:61:f8: 08:4d:f7:07:13:fe:13:fb:ad:93:98:5a:68:fa:8a:03:c0:c7: 6b:5c:4f:58:12:d4:6a:35:ae:2a:67:13:9c:f3:74:9b:dc:77: 80:bd:e1:07:2d:90:fe:23:2f:3d:fd:40:82:10:cb:98:0c:45: 89:86:16:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ9kghiT646zGA2pMxSy6YLGNDgYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZCOUQ3RUQ4MzNFMUNBNkU0MDUzNzczQUMxNjQyMTQ4 ODkxMDhDQjAeFw0yNTA5MTcxNDU1MDFaFw0yNjA5MTYxNTAwMDFaMDMxMTAvBgNV BAMTKEE2MTlDMjJDNDdERDREMjE4RUU2NUZBNUI3Q0Y1MjE2MENGRDZEMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+3Kdzog1Ks5QuHTxa/7kHxGoj x0v9jEn3PyYrioKprU7tzDcEHipvju2FlZQkjM2UCl1wjB9xsaMKczkyvXX/DA3M NUdOjtqo2+7gqno87bENTgeFf7wPVvLsAFPW5JnbyBKhl5nv2gzqh4lnWEtcznre ZCO9teBTyq2En7F9ciYO2pLrq2WmVXXNW6oI6Bex7hw+q0gdL1u9oP14kV/emQQ+ XqBJA+nmHyrBZ/yK73nqE0/Jxj6n/VT4fAMky5gMOhIFpk2XuPNs/Wetj3Vy0GUG 8sX76xEPcTC+F9GREZEpoZp1U/wPm+na8lRxnXg/VikRYFRxAkOm6F2taKjRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUphnCLEfdTSGO5l+lt89SFgz9bRgwHwYDVR0j BBgwFoAUn7nX7YM+HKbkBTdzrBZCFIiRCMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Y2I5YmE3Zi1lZmQxLTQ5OTQtYTJhMy03Nzk5MzMzOGIyNDIvMC85RkI5RDdFRDgz M0UxQ0E2RTQwNTM3NzNBQzE2NDIxNDg4OTEwOENCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZCOUQ3RUQ4MzNFMUNBNkU0MDUzNzczQUMxNjQyMTQ4ODkx MDhDQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjYjliYTdmLWVmZDEtNDk5NC1h MmEzLTc3OTkzMzM4YjI0Mi8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlMIwDQYJ KoZIhvcNAQELBQADggEBAKZNsVdi9P4NtrMBqnPTXa1qPYedXsXKtrNNkdI2BgKE jiy7Z6KTj6w1+RIrTdIO6aPuLEwU3JFescgOoSFUqsEpjKMS+ZCrsGHL8qWOxZ1I zPULSXWAcsn8wsEAa1maHLpE7m3lNdrOK74DwJvOTCtgnd5KLdazaEqHer0Lyo+0 uQpDJmvgpmX9A+/leuc1QT9zmfzTp0j0FoEuyMFSgUYYExceTT17ij6qOynAr4MG l7t2hXX5bDW0iYB4Hl6hPbfTHDhh+AhN9wcT/hP7rZOYWmj6igPAx2tcT1gS1Go1 ripnE5zzdJvcd4C94QctkP4jLz39QIIQy5gMRYmGFjY= -----END CERTIFICATE-----Generated at Mon Oct 20 09:32:49 2025 by rpki-client