$ rpki-client -vvf repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32342d3234203d3e20313439393732.roa File: 3130332e3134372e3131342e302f32342d3234203d3e20313439393732.roa (raw, json) Hash identifier: 84o3UV8IHhQFDzzDC1t2/AoF+j9eW/9zsv1UkTq0r2k= Subject key identifier: 9F:36:71:D8:5E:8E:66:DC:89:8B:0B:26:79:C6:6C:CD:0A:D1:25:0C Certificate issuer: /CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Certificate serial: 5BD70180423AA04B4221FBE31873FADBE5CDE948 Authority key identifier: CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32342d3234203d3e20313439393732.roa Signing time: Sun 20 Jul 2025 11:10:04 +0000 ROA not before: Sun 20 Jul 2025 11:05:04 +0000 ROA not after: Sun 19 Jul 2026 11:10:04 +0000 asID: 149972 IP address blocks: 103.147.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d7:01:80:42:3a:a0:4b:42:21:fb:e3:18:73:fa:db:e5:cd:e9:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Validity Not Before: Jul 20 11:05:04 2025 GMT Not After : Jul 19 11:10:04 2026 GMT Subject: CN=9F3671D85E8E66DC898B0B2679C66CCD0AD1250C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6c:19:85:51:59:63:27:9e:1c:9a:bb:b9:14: 88:b7:74:e0:33:4e:83:2c:cc:09:65:15:b9:bc:28: f9:ba:f4:ed:64:de:de:b2:50:d5:d6:05:55:ee:8d: 39:d0:77:59:99:8b:24:ec:37:9f:b1:6b:c4:eb:94: 3d:a8:61:76:8b:a2:76:75:0f:92:fb:d7:7a:cb:b2: 0a:b6:cc:af:bb:94:28:c0:f7:63:2b:b7:1f:be:af: 40:36:4a:fe:15:c5:1b:a7:1c:17:fe:8e:49:33:51: c1:88:ad:74:a9:c8:c8:75:52:3d:b7:ef:5b:57:5f: 2e:17:89:0e:68:eb:e7:51:5a:ab:6e:79:4b:30:41: 85:32:0f:78:30:d0:4a:6b:a7:3e:a9:e5:4b:f1:72: 4d:05:04:a6:fd:46:4b:bd:54:a7:c5:27:c4:cb:7b: 29:fc:15:61:48:41:7a:ab:a1:a4:a8:3f:a0:13:ee: 7e:48:0d:ae:04:68:94:4b:3c:18:f3:25:7b:d9:54: 84:29:2e:22:2e:f3:e1:7f:07:fc:f4:6f:16:e8:f8: a7:df:81:5a:87:e9:c8:41:0c:d4:07:46:ec:b1:b4: 07:6e:b9:09:06:15:18:dc:e6:f8:62:a2:c2:b8:b1: fd:99:0c:c7:ea:dd:29:45:42:be:44:b8:67:48:b7: 31:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:36:71:D8:5E:8E:66:DC:89:8B:0B:26:79:C6:6C:CD:0A:D1:25:0C X509v3 Authority Key Identifier: keyid:CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32342d3234203d3e20313439393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.114.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:da:98:8c:64:df:38:da:d9:bb:f9:f0:69:fb:ae:c4:08:c5: b9:fd:cb:4b:63:9b:ba:51:d5:21:df:cd:78:4b:fa:0d:60:41: ce:80:81:25:2c:14:e3:16:3a:af:e1:48:56:33:71:7b:13:a6: a0:7c:11:79:39:0b:2f:66:24:dd:da:15:10:22:6f:d6:b8:80: 55:02:cb:0e:88:51:a5:26:cd:05:90:e8:c5:af:5e:7d:da:9e: 7b:47:3c:70:8f:9e:c6:c3:a7:a3:49:5f:fe:dc:ee:39:8e:eb: df:43:74:f5:79:37:91:c7:62:2d:03:60:3e:fe:aa:91:0f:56: af:bd:e0:c3:35:9c:65:36:40:05:df:0e:b3:17:fa:0d:16:5d: bc:7a:71:7a:53:12:ec:85:91:8e:f1:c0:9f:c1:c7:70:52:d5: 91:5b:13:c3:51:7e:19:ce:8c:db:53:4d:76:0c:8f:61:5d:bd: 63:2b:96:d9:0a:b6:46:c2:96:69:75:2d:5c:c3:de:45:a1:c2: b1:a8:d4:de:51:41:66:42:97:00:1f:85:83:ae:57:06:2e:d9: 79:99:e1:ca:5e:7a:b8:bd:04:d2:b5:dd:33:17:7a:21:21:0e: 5a:92:81:44:02:a0:2f:a6:c6:cf:58:bf:05:9e:c0:f9:d1:19: bb:d9:55:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW9cBgEI6oEtCIfvjGHP62+XN6UgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFE NUIyM0E3NDAeFw0yNTA3MjAxMTA1MDRaFw0yNjA3MTkxMTEwMDRaMDMxMTAvBgNV BAMTKDlGMzY3MUQ4NUU4RTY2REM4OThCMEIyNjc5QzY2Q0NEMEFEMTI1MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDubBmFUVljJ54cmru5FIi3dOAz ToMszAllFbm8KPm69O1k3t6yUNXWBVXujTnQd1mZiyTsN5+xa8TrlD2oYXaLonZ1 D5L713rLsgq2zK+7lCjA92Mrtx++r0A2Sv4VxRunHBf+jkkzUcGIrXSpyMh1Uj23 71tXXy4XiQ5o6+dRWqtueUswQYUyD3gw0Eprpz6p5Uvxck0FBKb9Rku9VKfFJ8TL eyn8FWFIQXqroaSoP6AT7n5IDa4EaJRLPBjzJXvZVIQpLiIu8+F/B/z0bxbo+Kff gVqH6chBDNQHRuyxtAduuQkGFRjc5vhiosK4sf2ZDMfq3SlFQr5EuGdItzHXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnzZx2F6OZtyJiwsmecZszQrRJQwwHwYDVR0j BBgwFoAUzTKB/Idajdln5+g81A8QatWyOnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjhjYzA1OS01ZTZjLTQ1MDEtYjg5NC0xNGE4MmQxOGQyMWUvMC9DRDMyODFGQzg3 NUE4REQ5NjdFN0U4M0NENDBGMTA2QUQ1QjIzQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFENUIy M0E3NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2OGNjMDU5LTVlNmMtNDUwMS1i ODk0LTE0YTgyZDE4ZDIxZS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk3IwDQYJ KoZIhvcNAQELBQADggEBAJzamIxk3zja2bv58Gn7rsQIxbn9y0tjm7pR1SHfzXhL +g1gQc6AgSUsFOMWOq/hSFYzcXsTpqB8EXk5Cy9mJN3aFRAib9a4gFUCyw6IUaUm zQWQ6MWvXn3anntHPHCPnsbDp6NJX/7c7jmO699DdPV5N5HHYi0DYD7+qpEPVq+9 4MM1nGU2QAXfDrMX+g0WXbx6cXpTEuyFkY7xwJ/Bx3BS1ZFbE8NRfhnOjNtTTXYM j2FdvWMrltkKtkbClml1LVzD3kWhwrGo1N5RQWZClwAfhYOuVwYu2XmZ4cpeeri9 BNK13TMXeiEhDlqSgUQCoC+mxs9YvwWewPnRGbvZVeM= -----END CERTIFICATE-----Generated at Mon Jul 21 19:27:07 2025 by rpki-client