$ rpki-client -vvf repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa File: 3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: fPxnb7CxS8XbJvCYQXehN0lgrSSBnAAiXKdKbHXXpFg= Subject key identifier: BE:B4:16:6A:AB:B8:36:88:25:BF:4E:F4:7D:6A:4B:D8:A6:51:D6:0D Certificate issuer: /CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Certificate serial: 6A00AC949775A2D42EFE27F50E348598386F2F00 Authority key identifier: 47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa Signing time: Sun 06 Jul 2025 08:02:22 +0000 ROA not before: Sun 06 Jul 2025 07:57:22 +0000 ROA not after: Sun 05 Jul 2026 08:02:22 +0000 asID: 58369 IP address blocks: 103.136.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:00:ac:94:97:75:a2:d4:2e:fe:27:f5:0e:34:85:98:38:6f:2f:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Validity Not Before: Jul 6 07:57:22 2025 GMT Not After : Jul 5 08:02:22 2026 GMT Subject: CN=BEB4166AABB8368825BF4EF47D6A4BD8A651D60D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:86:d5:5e:8c:57:1b:e2:01:6c:33:1d:d4:0a: 4f:44:33:a3:ee:4c:92:37:9e:36:d6:b5:38:a4:b9: d7:e1:94:09:ee:db:f9:2e:31:9f:41:30:ff:0f:e5: f6:5e:99:d6:9a:96:60:d8:63:7e:62:f9:55:92:66: 1b:7f:83:47:c1:50:c8:48:f9:3d:41:49:9d:49:16: 61:cb:20:ea:91:11:27:bb:d2:5e:32:06:b0:cc:29: 77:b5:98:b4:aa:df:5c:4a:6f:76:b9:ae:7b:8e:c8: d8:c7:ee:05:a3:43:9a:8a:8d:46:5f:db:b9:c9:db: 12:1c:e3:5e:8b:ea:4c:d8:13:00:bd:30:4b:2c:cf: f7:5e:5f:4e:b4:e6:e1:b3:48:c8:9e:1a:57:aa:35: b8:ea:a4:ac:71:45:e2:4c:a9:d6:b1:80:cc:3f:b2: 0f:c6:70:ec:29:2c:36:ff:3e:00:ac:ad:76:ab:b9: ab:fa:16:23:7e:20:24:40:39:d6:18:98:f8:ee:d1: dc:fa:3e:14:56:26:13:cb:e9:0d:63:c5:f8:52:7d: e3:04:5e:2a:c8:d3:b9:77:bd:b0:c9:bb:b7:b0:98: 8c:5a:87:ee:c5:b3:75:1a:64:ce:26:b1:54:97:a3: 85:ab:07:09:ae:a7:ab:98:78:9d:29:02:f5:ea:48: 4d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B4:16:6A:AB:B8:36:88:25:BF:4E:F4:7D:6A:4B:D8:A6:51:D6:0D X509v3 Authority Key Identifier: keyid:47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137312e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:8b:ca:36:25:73:10:08:f0:47:e6:07:05:f2:dd:20:7c:45: 44:15:64:6b:9f:df:9d:7c:f5:c9:9a:52:72:3d:55:3a:62:9c: c0:ea:e6:dc:18:4d:17:d2:af:21:e1:2b:22:54:eb:06:82:a6: c4:fb:4b:18:9c:ef:f8:da:a7:c0:34:96:c8:74:43:02:07:df: 8b:69:87:84:a3:46:48:da:60:5d:19:11:a8:d6:af:fa:d5:4d: 6c:34:25:a8:8a:5d:81:61:46:6b:de:0e:33:f0:bc:91:e2:57: 8f:68:66:7e:c4:20:72:09:5b:d5:cb:da:37:8f:ad:bb:f8:06: b6:e2:b7:e9:8c:fd:76:47:44:98:d3:c0:23:02:c9:1a:34:2b: 16:32:25:cc:af:fa:64:5c:22:99:24:fa:df:b1:2e:b9:db:9c: b9:53:c2:86:23:2b:d0:8f:7e:47:38:f2:2d:0f:a7:17:96:36: 1a:00:b5:6e:28:a8:67:6b:1a:c6:49:28:b5:6a:2a:b0:17:56: aa:b3:cd:7c:9d:88:bb:44:26:dd:11:2d:54:99:ae:4c:14:a9: 3b:c7:53:1e:97:0b:bb:2c:65:d6:14:73:83:9f:c3:00:cc:5a: 66:ff:e8:e0:b0:56:fa:eb:94:0f:1f:0e:d3:9a:27:eb:a7:15: e0:de:5c:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUagCslJd1otQu/if1DjSFmDhvLwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIy NDE4N0Q1OTAeFw0yNTA3MDYwNzU3MjJaFw0yNjA3MDUwODAyMjJaMDMxMTAvBgNV BAMTKEJFQjQxNjZBQUJCODM2ODgyNUJGNEVGNDdENkE0QkQ4QTY1MUQ2MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDhtVejFcb4gFsMx3UCk9EM6Pu TJI3njbWtTikudfhlAnu2/kuMZ9BMP8P5fZemdaalmDYY35i+VWSZht/g0fBUMhI +T1BSZ1JFmHLIOqRESe70l4yBrDMKXe1mLSq31xKb3a5rnuOyNjH7gWjQ5qKjUZf 27nJ2xIc416L6kzYEwC9MEssz/deX0605uGzSMieGleqNbjqpKxxReJMqdaxgMw/ sg/GcOwpLDb/PgCsrXaruav6FiN+ICRAOdYYmPju0dz6PhRWJhPL6Q1jxfhSfeME XirI07l3vbDJu7ewmIxah+7Fs3UaZM4msVSXo4WrBwmup6uYeJ0pAvXqSE3PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvrQWaqu4Noglv070fWpL2KZR1g0wHwYDVR0j BBgwFoAUR8h2llKfr0BK8OhoGq+o8iQYfVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjYxZjA0ZC0xOGU3LTQyZmYtYWU4Mi1kNTY1NTRmOTI2NGMvMC80N0M4NzY5NjUy OUZBRjQwNEFGMEU4NjgxQUFGQThGMjI0MTg3RDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIyNDE4 N0Q1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNjFmMDRkLTE4ZTctNDJmZi1h ZTgyLWQ1NjU1NGY5MjY0Yy8wLzMxMzAzMzJlMzEzMzM2MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4irMA0GCSqG SIb3DQEBCwUAA4IBAQCMi8o2JXMQCPBH5gcF8t0gfEVEFWRrn9+dfPXJmlJyPVU6 YpzA6ubcGE0X0q8h4SsiVOsGgqbE+0sYnO/42qfANJbIdEMCB9+LaYeEo0ZI2mBd GRGo1q/61U1sNCWoil2BYUZr3g4z8LyR4lePaGZ+xCByCVvVy9o3j627+Aa24rfp jP12R0SY08AjAskaNCsWMiXMr/pkXCKZJPrfsS6525y5U8KGIyvQj35HOPItD6cX ljYaALVuKKhnaxrGSSi1aiqwF1aqs818nYi7RCbdES1Uma5MFKk7x1Melwu7LGXW FHODn8MAzFpm/+jgsFb665QPHw7TmifrpxXg3lzy -----END CERTIFICATE-----Generated at Tue Jul 22 11:46:01 2025 by rpki-client