$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Lg5dQN6opERAWYn9yaTR81th2kNEptreAqT5F7qUOxg= Subject key identifier: 34:0A:94:8A:C2:4E:36:9E:49:70:52:E8:C0:5B:E5:DF:EE:1C:8F:17 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 2220EF08EDE1F78DD122564C3ECDE76F2FD44C99 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 10:00:02 +0000 ROA not before: Sun 13 Jul 2025 09:55:02 +0000 ROA not after: Sun 12 Jul 2026 10:00:02 +0000 asID: 63859 IP address blocks: 103.47.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:20:ef:08:ed:e1:f7:8d:d1:22:56:4c:3e:cd:e7:6f:2f:d4:4c:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Jul 13 09:55:02 2025 GMT Not After : Jul 12 10:00:02 2026 GMT Subject: CN=340A948AC24E369E497052E8C05BE5DFEE1C8F17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:37:63:26:a5:ed:c1:d3:b6:94:d9:f3:18:64: c7:75:94:06:95:d2:ed:0d:d5:d9:1a:72:33:a1:83: 6e:02:a1:13:ee:c6:ba:a3:89:b4:a1:f2:ae:b2:88: e6:ba:39:b8:a3:19:2a:65:18:56:6c:33:ac:9a:f7: 16:aa:64:8e:8d:27:4e:63:c3:ee:c0:b9:7b:ff:4f: cf:93:6f:74:ed:2a:4d:68:2d:bc:11:03:95:2f:7f: c5:6b:d1:49:01:12:61:33:21:e3:02:c9:e9:fb:41: 1f:7c:b4:70:ea:af:ea:35:a2:7c:5c:ff:45:e3:1a: f9:b2:76:75:51:b0:a2:e1:92:c2:e6:df:f5:3b:21: ad:36:5a:5a:dd:d6:50:60:a7:05:44:81:d1:10:7b: 68:22:60:3e:b1:a1:d4:88:d8:33:23:96:c0:21:0c: b0:88:68:e5:e8:19:da:b2:11:3d:a1:ca:1e:50:a9: 14:6b:61:1c:84:60:0f:f0:f7:f8:e3:41:b2:26:a1: 0d:88:3f:ec:a6:f8:d0:0f:32:d2:fa:dd:fa:c3:3c: 3a:5d:ad:6b:69:49:a0:e6:53:b3:61:8b:09:a1:25: 04:13:2a:b8:c3:11:81:24:bf:1f:9e:75:44:1f:ce: df:a4:63:74:85:16:f1:35:e9:73:38:dd:5e:4c:3c: 48:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0A:94:8A:C2:4E:36:9E:49:70:52:E8:C0:5B:E5:DF:EE:1C:8F:17 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.135.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:73:af:8d:da:05:8a:86:e9:e1:ff:60:ac:c8:a7:e0:f7:91: b3:54:11:97:61:4e:41:d2:a2:ee:40:28:29:28:e5:ca:40:92: d1:da:ef:6a:ac:03:a6:b6:34:1f:c1:a2:fa:03:69:af:dc:fb: d6:63:e4:1a:ea:05:d4:17:f4:f4:57:dd:2f:db:b7:08:49:41: 4b:f3:86:1f:ff:d3:ae:ac:81:69:98:12:a1:7a:64:1e:f1:01: 21:4d:3c:bd:9b:2e:b5:2b:2c:54:8f:20:4a:8b:33:67:cb:87: de:74:93:14:a9:de:53:d6:b1:68:6c:9e:7f:2c:34:60:fd:9e: 16:05:11:1d:86:3c:64:36:03:88:98:6f:cd:40:9d:e7:0d:5e: 33:7a:e3:68:43:b2:4c:dc:e6:24:25:1f:b0:e9:f6:41:24:77: b4:5c:06:45:a1:33:a6:20:c3:ef:60:0d:68:c1:80:3c:97:18: 81:10:69:34:14:94:69:60:12:ee:4d:39:08:63:18:12:04:5c: db:9d:84:71:01:f5:f3:64:49:c2:07:b7:a8:0d:5c:af:bb:c2: 23:4f:2c:08:9e:42:d3:de:19:d5:68:4f:b6:94:d0:e9:80:09: ce:55:14:02:53:19:c0:50:37:31:ed:01:1c:94:b6:70:ea:cc: 1d:0b:65:17 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIiDvCO3h943RIlZMPs3nby/UTJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNTA3MTMwOTU1MDJaFw0yNjA3MTIxMDAwMDJaMDMxMTAvBgNV BAMTKDM0MEE5NDhBQzI0RTM2OUU0OTcwNTJFOEMwNUJFNURGRUUxQzhGMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkN2Mmpe3B07aU2fMYZMd1lAaV 0u0N1dkacjOhg24CoRPuxrqjibSh8q6yiOa6ObijGSplGFZsM6ya9xaqZI6NJ05j w+7AuXv/T8+Tb3TtKk1oLbwRA5Uvf8Vr0UkBEmEzIeMCyen7QR98tHDqr+o1onxc /0XjGvmydnVRsKLhksLm3/U7Ia02Wlrd1lBgpwVEgdEQe2giYD6xodSI2DMjlsAh DLCIaOXoGdqyET2hyh5QqRRrYRyEYA/w9/jjQbImoQ2IP+ym+NAPMtL63frDPDpd rWtpSaDmU7NhiwmhJQQTKrjDEYEkvx+edUQfzt+kY3SFFvE16XM43V5MPEgLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNAqUisJONp5JcFLowFvl3+4cjxcwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhzANBgkqhkiG 9w0BAQsFAAOCAQEAO3OvjdoFiobp4f9grMin4PeRs1QRl2FOQdKi7kAoKSjlykCS 0drvaqwDprY0H8Gi+gNpr9z71mPkGuoF1Bf09FfdL9u3CElBS/OGH//TrqyBaZgS oXpkHvEBIU08vZsutSssVI8gSoszZ8uH3nSTFKneU9axaGyefyw0YP2eFgURHYY8 ZDYDiJhvzUCd5w1eM3rjaEOyTNzmJCUfsOn2QSR3tFwGRaEzpiDD72ANaMGAPJcY gRBpNBSUaWAS7k05CGMYEgRc252EcQH182RJwge3qA1cr7vCI08sCJ5C094Z1WhP tpTQ6YAJzlUUAlMZwFA3Me0BHJS2cOrMHQtlFw== -----END CERTIFICATE-----Generated at Fri Jul 25 14:41:15 2025 by rpki-client