$ rpki-client -vvf repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131352e302f32342d3234203d3e20313439393732.roa File: 3130332e3134372e3131352e302f32342d3234203d3e20313439393732.roa (raw, json) Hash identifier: AoisIKjFDgxSpQWcGSc9vDGFrlv1QcVF2IqB6ymlo5I= Subject key identifier: 6F:87:11:29:2E:70:AF:B1:3B:59:71:AD:6E:B3:DB:64:77:5B:C9:EE Certificate issuer: /CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Certificate serial: 47FA868B13753845E570DD7C71713ED353F76121 Authority key identifier: CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131352e302f32342d3234203d3e20313439393732.roa Signing time: Sun 20 Jul 2025 11:12:52 +0000 ROA not before: Sun 20 Jul 2025 11:07:52 +0000 ROA not after: Sun 19 Jul 2026 11:12:52 +0000 asID: 149972 IP address blocks: 103.147.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:fa:86:8b:13:75:38:45:e5:70:dd:7c:71:71:3e:d3:53:f7:61:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Validity Not Before: Jul 20 11:07:52 2025 GMT Not After : Jul 19 11:12:52 2026 GMT Subject: CN=6F8711292E70AFB13B5971AD6EB3DB64775BC9EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:40:4b:38:b6:a5:a3:bd:b5:72:ea:5c:37:14: d6:f5:7e:9a:9e:6b:e3:76:25:7d:5c:3b:29:f7:cb: cd:47:b9:5d:0f:d4:a0:bd:47:11:a0:d0:86:d1:9d: 06:14:9f:16:24:28:f9:f8:0a:6a:a6:a7:e7:08:f2: 2f:fb:c9:af:4b:e9:dd:c2:f3:7a:b3:c6:7c:98:99: 64:db:5d:68:7d:38:d4:39:55:2a:76:ab:74:d4:7e: 94:9b:96:33:0a:d5:aa:af:4c:f7:f3:c1:09:e3:34: 22:93:ef:c1:f1:c5:86:df:5e:37:1d:d8:d7:fa:77: 12:9f:ef:f5:03:b2:00:26:71:ff:cc:bf:7f:35:d9: a3:b7:b7:d6:3b:74:40:d0:26:56:10:f5:75:76:d5: fc:0d:55:a7:dc:c9:6c:17:cd:ad:1e:68:da:b3:db: 5d:fc:2a:82:38:44:66:7e:99:cf:8f:71:3e:f5:96: b0:c9:73:4b:1d:d3:ed:9b:01:96:3a:b6:e1:76:0a: 8b:9a:f9:f8:f6:0b:e3:11:3a:be:78:d7:ac:1d:6f: aa:ec:8a:8c:63:c1:8a:2d:f0:96:a5:62:ca:00:be: ab:9a:a5:43:1f:13:40:ed:9d:0c:ac:72:b2:4c:f5: ae:00:14:ab:8a:9d:60:35:8f:ea:07:c7:d6:bb:9c: fd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:87:11:29:2E:70:AF:B1:3B:59:71:AD:6E:B3:DB:64:77:5B:C9:EE X509v3 Authority Key Identifier: keyid:CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131352e302f32342d3234203d3e20313439393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.115.0/24 Signature Algorithm: sha256WithRSAEncryption ca:14:33:f2:b5:06:29:55:84:99:ad:fe:c0:ff:00:f2:98:1c: e0:e1:52:db:8c:e2:31:b2:4a:b1:9e:5c:9e:bf:7c:a4:4b:8b: d8:45:18:93:c4:5b:c0:78:1f:56:fa:a0:a9:62:30:96:52:4a: 1d:05:2f:ba:95:d3:1c:7c:a5:93:e8:92:1d:9b:1c:fe:2c:a6: 76:6a:13:9a:ad:ae:b0:ce:20:b3:69:73:7c:ea:3a:d5:dc:3a: 4d:41:60:8c:7b:96:b0:4a:66:cd:6e:a5:3e:20:51:af:c0:39: 4c:aa:07:5b:99:89:37:c7:83:7e:af:81:07:14:ac:73:5d:37: f8:c0:83:75:b3:92:07:26:34:c5:f6:80:6b:6a:75:69:79:2a: b3:62:00:1a:4b:73:f9:3f:fb:5c:f2:5e:03:3c:9c:fd:c3:21: 48:e7:3d:ce:67:dc:9b:d8:10:35:42:90:e1:5a:69:ef:07:f9: e4:39:79:d6:4a:5b:b6:00:c1:fd:1f:bc:73:a5:8e:66:4b:b5: 17:84:ee:19:e5:61:8a:a3:53:d7:4c:4d:8a:cf:83:15:4c:13: f1:78:3b:3b:f2:d3:e7:f7:49:7d:92:8c:80:23:48:1b:8f:78: 8c:1e:bf:1c:a8:22:df:4e:50:86:1b:c1:f9:30:fe:51:89:d2: 64:a1:66:ca -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR/qGixN1OEXlcN18cXE+01P3YSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFE NUIyM0E3NDAeFw0yNTA3MjAxMTA3NTJaFw0yNjA3MTkxMTEyNTJaMDMxMTAvBgNV BAMTKDZGODcxMTI5MkU3MEFGQjEzQjU5NzFBRDZFQjNEQjY0Nzc1QkM5RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9QEs4tqWjvbVy6lw3FNb1fpqe a+N2JX1cOyn3y81HuV0P1KC9RxGg0IbRnQYUnxYkKPn4Cmqmp+cI8i/7ya9L6d3C 83qzxnyYmWTbXWh9ONQ5VSp2q3TUfpSbljMK1aqvTPfzwQnjNCKT78HxxYbfXjcd 2Nf6dxKf7/UDsgAmcf/Mv3812aO3t9Y7dEDQJlYQ9XV21fwNVafcyWwXza0eaNqz 2138KoI4RGZ+mc+PcT71lrDJc0sd0+2bAZY6tuF2Coua+fj2C+MROr5416wdb6rs ioxjwYot8JalYsoAvquapUMfE0DtnQyscrJM9a4AFKuKnWA1j+oHx9a7nP2xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUb4cRKS5wr7E7WXGtbrPbZHdbye4wHwYDVR0j BBgwFoAUzTKB/Idajdln5+g81A8QatWyOnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjhjYzA1OS01ZTZjLTQ1MDEtYjg5NC0xNGE4MmQxOGQyMWUvMC9DRDMyODFGQzg3 NUE4REQ5NjdFN0U4M0NENDBGMTA2QUQ1QjIzQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFENUIy M0E3NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2OGNjMDU5LTVlNmMtNDUwMS1i ODk0LTE0YTgyZDE4ZDIxZS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk3MwDQYJ KoZIhvcNAQELBQADggEBAMoUM/K1BilVhJmt/sD/APKYHODhUtuM4jGySrGeXJ6/ fKRLi9hFGJPEW8B4H1b6oKliMJZSSh0FL7qV0xx8pZPokh2bHP4spnZqE5qtrrDO ILNpc3zqOtXcOk1BYIx7lrBKZs1upT4gUa/AOUyqB1uZiTfHg36vgQcUrHNdN/jA g3WzkgcmNMX2gGtqdWl5KrNiABpLc/k/+1zyXgM8nP3DIUjnPc5n3JvYEDVCkOFa ae8H+eQ5edZKW7YAwf0fvHOljmZLtReE7hnlYYqjU9dMTYrPgxVME/F4Ozvy0+f3 SX2SjIAjSBuPeIwevxyoIt9OUIYbwfkw/lGJ0mShZso= -----END CERTIFICATE-----Generated at Mon Jul 21 19:24:00 2025 by rpki-client