$ rpki-client -vvf repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e203234353231.roa File: 3130332e3134372e3235342e302f32342d3234203d3e203234353231.roa (raw, json) Hash identifier: dCZQHb1/mNChkTEJirijmXVaqX+lOIlWrCfuCDw3sig= Subject key identifier: 99:D0:AF:69:06:2C:57:56:F6:46:87:29:D6:3E:4A:E3:65:49:1C:5A Certificate issuer: /CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Certificate serial: 0309F4DADF00D11B0601C820637E943452F87DC7 Authority key identifier: A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e203234353231.roa Signing time: Tue 15 Jul 2025 03:29:17 +0000 ROA not before: Tue 15 Jul 2025 03:24:17 +0000 ROA not after: Tue 14 Jul 2026 03:29:17 +0000 asID: 24521 IP address blocks: 103.147.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:09:f4:da:df:00:d1:1b:06:01:c8:20:63:7e:94:34:52:f8:7d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Validity Not Before: Jul 15 03:24:17 2025 GMT Not After : Jul 14 03:29:17 2026 GMT Subject: CN=99D0AF69062C5756F6468729D63E4AE365491C5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:83:48:3e:a3:fd:ec:43:1e:51:fd:3c:b3:26: 5e:cc:07:6b:92:fa:2a:84:e4:0b:27:73:23:9a:31: d3:d9:43:57:76:f8:7d:63:81:f5:04:08:67:67:99: 42:54:63:19:e4:3b:08:51:d0:9c:7c:37:b7:a3:21: 9c:2a:1f:1c:73:01:38:a2:7d:66:34:38:47:ef:c7: a6:8c:59:d3:8a:bd:29:d5:75:14:74:5c:99:2a:b3: 12:5f:1e:10:d7:81:d5:fc:ea:76:ee:96:e0:da:f6: bc:1b:92:0f:4f:a8:82:ab:a9:27:44:42:51:ee:01: 8a:c3:fb:2d:8a:af:fa:bc:09:ae:16:f1:b0:23:3f: 32:b1:75:28:33:92:de:b3:a3:11:86:67:89:a0:ff: a0:d7:02:9a:65:e1:73:d7:88:1c:ca:a7:59:04:f4: 2b:f1:dd:94:1a:54:2c:00:20:0c:d5:0b:b1:2a:1d: 1c:cc:5b:83:b5:ac:8d:33:91:e1:34:22:e2:44:68: 54:2f:1c:8d:0c:99:af:9d:e3:e9:0a:c5:de:25:a6: 2f:40:7c:ff:8f:c2:7d:31:9e:c6:db:e7:e9:70:32: b3:5c:39:62:28:c3:5d:97:b3:43:7f:4b:f9:4d:cb: be:9b:13:64:f7:75:ce:7c:fc:8a:bd:06:37:c6:28: 86:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D0:AF:69:06:2C:57:56:F6:46:87:29:D6:3E:4A:E3:65:49:1C:5A X509v3 Authority Key Identifier: keyid:A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.254.0/24 Signature Algorithm: sha256WithRSAEncryption 10:53:bd:60:8b:9c:63:df:a8:37:77:84:b9:1a:36:3a:c9:d7: 8b:7d:2f:33:2d:2a:89:05:95:a4:47:d3:bb:26:a2:21:ed:6c: 45:48:dc:70:cf:d0:3b:03:10:2b:58:e6:66:81:ea:7e:32:fd: 41:8c:bc:d8:9e:33:cb:b9:8b:73:65:00:b7:21:2d:92:e5:32: 4f:c7:9e:8e:bc:57:de:d2:e4:ee:9e:4e:38:85:07:1a:88:9f: 88:49:da:51:3e:04:84:17:90:88:01:63:5e:10:d8:ad:40:7c: 6b:18:4b:ba:33:98:ae:ac:ad:28:cc:c6:05:21:d2:2a:ee:b2: d8:68:fe:52:c2:d4:54:5a:37:12:96:72:e5:76:7e:42:ef:fe: 71:99:1e:1e:f2:f8:eb:32:07:ff:c5:26:c8:a3:9e:42:fa:b3: a8:50:c3:9f:ce:9c:63:1c:0b:1c:16:35:6c:0c:2d:2d:6d:b5: a2:00:96:8a:5b:a8:59:b0:cc:f0:c5:fb:bd:e2:f0:ea:7c:a8: f0:79:3c:7a:5f:c3:9e:c4:d6:7d:a1:74:22:54:8e:05:00:23: 12:43:88:a1:16:b5:72:59:e3:2f:07:79:f8:69:02:c0:bc:a3: 64:a3:40:63:dc:20:e7:45:0e:8c:43:35:09:ec:fc:1a:f3:8f: 9e:a8:82:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAwn02t8A0RsGAcggY36UNFL4fccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3 QzRDOEUwRDAeFw0yNTA3MTUwMzI0MTdaFw0yNjA3MTQwMzI5MTdaMDMxMTAvBgNV BAMTKDk5RDBBRjY5MDYyQzU3NTZGNjQ2ODcyOUQ2M0U0QUUzNjU0OTFDNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYg0g+o/3sQx5R/TyzJl7MB2uS +iqE5AsncyOaMdPZQ1d2+H1jgfUECGdnmUJUYxnkOwhR0Jx8N7ejIZwqHxxzATii fWY0OEfvx6aMWdOKvSnVdRR0XJkqsxJfHhDXgdX86nbuluDa9rwbkg9PqIKrqSdE QlHuAYrD+y2Kr/q8Ca4W8bAjPzKxdSgzkt6zoxGGZ4mg/6DXAppl4XPXiBzKp1kE 9Cvx3ZQaVCwAIAzVC7EqHRzMW4O1rI0zkeE0IuJEaFQvHI0Mma+d4+kKxd4lpi9A fP+Pwn0xnsbb5+lwMrNcOWIow12Xs0N/S/lNy76bE2T3dc58/Iq9BjfGKIbhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmdCvaQYsV1b2Rocp1j5K42VJHFowHwYDVR0j BBgwFoAUpsexyguQiFXuWPGZHMyVtXxMjg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGU0NzUwZS00MzkzLTQzZWMtOWFiNS1kMjQ3YmJjMDdkODYvMC9BNkM3QjFDQTBC OTA4ODU1RUU1OEYxOTkxQ0NDOTVCNTdDNEM4RTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3QzRD OEUwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMxMzAzMzJlMzEzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5P+MA0GCSqG SIb3DQEBCwUAA4IBAQAQU71gi5xj36g3d4S5GjY6ydeLfS8zLSqJBZWkR9O7JqIh 7WxFSNxwz9A7AxArWOZmgep+Mv1BjLzYnjPLuYtzZQC3IS2S5TJPx56OvFfe0uTu nk44hQcaiJ+ISdpRPgSEF5CIAWNeENitQHxrGEu6M5iurK0ozMYFIdIq7rLYaP5S wtRUWjcSlnLldn5C7/5xmR4e8vjrMgf/xSbIo55C+rOoUMOfzpxjHAscFjVsDC0t bbWiAJaKW6hZsMzwxfu94vDqfKjweTx6X8OexNZ9oXQiVI4FACMSQ4ihFrVyWeMv B3n4aQLAvKNko0Bj3CDnRQ6MQzUJ7Pwa84+eqIIw -----END CERTIFICATE-----Generated at Wed Jul 23 12:00:28 2025 by rpki-client