$ rpki-client -vvf repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa File: 3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: JR9pnbueKrjvNp5CfL5jMHGleDRr0PreIte+IDzNXSA= Subject key identifier: 27:08:9C:0B:FF:2F:DA:6B:79:15:58:A2:12:2C:C6:DF:76:8F:89:4C Certificate issuer: /CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Certificate serial: 03D26E5F91FB9B2204C1FFEC2AE718B5AEAC9CB2 Authority key identifier: 47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa Signing time: Sun 06 Jul 2025 08:02:22 +0000 ROA not before: Sun 06 Jul 2025 07:57:22 +0000 ROA not after: Sun 05 Jul 2026 08:02:22 +0000 asID: 58369 IP address blocks: 103.136.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 03:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d2:6e:5f:91:fb:9b:22:04:c1:ff:ec:2a:e7:18:b5:ae:ac:9c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Validity Not Before: Jul 6 07:57:22 2025 GMT Not After : Jul 5 08:02:22 2026 GMT Subject: CN=27089C0BFF2FDA6B791558A2122CC6DF768F894C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2c:7c:72:a7:bb:ba:52:86:cd:c8:4d:aa:c6: fd:76:7a:97:90:18:5b:3b:41:9c:91:61:bf:be:e2: 06:69:4e:fe:f1:8d:13:ae:67:e0:d1:17:f2:c3:9f: 61:7e:ce:90:18:a9:e5:67:2d:ab:91:04:ce:4f:bb: ae:9b:7f:9c:19:1f:b4:3a:52:29:b2:4a:d0:2f:56: 5f:8e:2b:17:24:87:53:cc:55:6a:19:07:b6:53:0c: 3f:05:d1:81:ff:43:01:15:60:97:da:14:65:b5:dd: db:40:fc:5d:b8:40:e2:03:8e:4c:c6:29:9a:90:07: e5:fa:bd:2e:5c:d1:98:0d:d2:7a:cb:8e:78:02:a5: 96:6e:03:cf:2c:86:b7:d3:57:21:2e:3a:85:b7:38: 3d:bf:f1:46:6e:b7:e2:93:2f:36:cf:b0:d3:b5:1c: d9:6f:7e:2c:45:54:04:37:82:3d:03:ab:26:ea:64: e1:2c:9d:8e:47:28:36:81:44:f3:9d:0b:aa:f1:0d: 0a:02:80:f1:e4:f5:21:22:39:f2:ab:da:31:dd:cc: 82:cf:73:c9:cf:b9:87:0b:e9:6f:f0:3a:13:09:3a: 82:73:50:66:de:df:29:38:86:13:62:f9:c1:ef:48: 17:e4:0c:88:2d:81:70:17:6f:01:3b:18:d8:d8:fb: 67:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:08:9C:0B:FF:2F:DA:6B:79:15:58:A2:12:2C:C6:DF:76:8F:89:4C X509v3 Authority Key Identifier: keyid:47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.170.0/24 Signature Algorithm: sha256WithRSAEncryption 92:d5:f8:35:de:33:80:d3:60:da:de:2a:2a:c5:e6:e8:21:de: 12:89:43:c7:27:08:48:f9:cf:0f:8b:9b:93:5f:f0:a2:fe:f7: b8:4f:e2:7e:45:36:ec:68:fb:e5:7b:4e:a4:24:47:4f:c3:e3: d7:15:b6:a7:e7:77:8e:5b:af:3b:09:93:ba:7f:8d:d4:b7:da: 13:b5:2d:25:f8:37:4f:a3:d7:0c:5d:c6:cb:dd:bf:1e:52:32: 62:0f:62:d8:01:3e:c7:bc:c5:65:82:f2:8e:22:5b:ea:55:36: 09:ad:30:14:de:bf:e6:f6:68:e8:3b:3c:13:6c:8a:dc:d1:16: 82:3a:cd:2a:18:d2:e5:d8:2e:df:7d:dd:e7:48:7b:57:07:46: d6:04:f8:19:ba:cf:2b:45:a3:67:91:69:4d:c1:66:93:ec:9e: 0b:42:7d:33:fb:59:3f:ce:76:ec:1b:e5:f1:bd:ba:60:2d:c3: 9d:af:e6:97:8d:04:20:86:e4:ee:bf:8a:37:d0:c1:9c:57:e5: 9d:05:fe:f8:ed:4b:2d:ea:a7:e4:6c:3e:eb:14:f2:4c:cd:d1: 48:d4:e2:e0:7d:44:fc:c0:f1:53:c2:23:66:09:8f:56:d2:db: be:27:bf:69:41:e4:6b:56:6e:06:0c:0d:21:a5:61:14:28:17: e6:5c:6e:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA9JuX5H7myIEwf/sKucYta6snLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIy NDE4N0Q1OTAeFw0yNTA3MDYwNzU3MjJaFw0yNjA3MDUwODAyMjJaMDMxMTAvBgNV BAMTKDI3MDg5QzBCRkYyRkRBNkI3OTE1NThBMjEyMkNDNkRGNzY4Rjg5NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfLHxyp7u6UobNyE2qxv12epeQ GFs7QZyRYb++4gZpTv7xjROuZ+DRF/LDn2F+zpAYqeVnLauRBM5Pu66bf5wZH7Q6 UimyStAvVl+OKxckh1PMVWoZB7ZTDD8F0YH/QwEVYJfaFGW13dtA/F24QOIDjkzG KZqQB+X6vS5c0ZgN0nrLjngCpZZuA88shrfTVyEuOoW3OD2/8UZut+KTLzbPsNO1 HNlvfixFVAQ3gj0DqybqZOEsnY5HKDaBRPOdC6rxDQoCgPHk9SEiOfKr2jHdzILP c8nPuYcL6W/wOhMJOoJzUGbe3yk4hhNi+cHvSBfkDIgtgXAXbwE7GNjY+2dxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJwicC/8v2mt5FViiEizG33aPiUwwHwYDVR0j BBgwFoAUR8h2llKfr0BK8OhoGq+o8iQYfVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjYxZjA0ZC0xOGU3LTQyZmYtYWU4Mi1kNTY1NTRmOTI2NGMvMC80N0M4NzY5NjUy OUZBRjQwNEFGMEU4NjgxQUFGQThGMjI0MTg3RDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIyNDE4 N0Q1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNjFmMDRkLTE4ZTctNDJmZi1h ZTgyLWQ1NjU1NGY5MjY0Yy8wLzMxMzAzMzJlMzEzMzM2MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4iqMA0GCSqG SIb3DQEBCwUAA4IBAQCS1fg13jOA02Da3ioqxeboId4SiUPHJwhI+c8Pi5uTX/Ci /ve4T+J+RTbsaPvle06kJEdPw+PXFban53eOW687CZO6f43Ut9oTtS0l+DdPo9cM XcbL3b8eUjJiD2LYAT7HvMVlgvKOIlvqVTYJrTAU3r/m9mjoOzwTbIrc0RaCOs0q GNLl2C7ffd3nSHtXB0bWBPgZus8rRaNnkWlNwWaT7J4LQn0z+1k/znbsG+Xxvbpg LcOdr+aXjQQghuTuv4o30MGcV+WdBf747Ust6qfkbD7rFPJMzdFI1OLgfUT8wPFT wiNmCY9W0tu+J79pQeRrVm4GDA0hpWEUKBfmXG4k -----END CERTIFICATE-----Generated at Mon Jul 21 23:20:44 2025 by rpki-client