$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa File: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (raw, json) Hash identifier: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w= Subject key identifier: E8:5F:5C:46:6D:6E:BB:9A:66:6C:F7:C2:79:18:80:E1:53:CC:E4:E0 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 5D2AA969FF8E9102595AE7C0FD4E58FB8D34D02E Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa Signing time: Tue 08 Jul 2025 05:00:00 +0000 ROA not before: Tue 08 Jul 2025 04:55:00 +0000 ROA not after: Tue 07 Jul 2026 05:00:00 +0000 asID: 140421 IP address blocks: 103.148.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:2a:a9:69:ff:8e:91:02:59:5a:e7:c0:fd:4e:58:fb:8d:34:d0:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Jul 8 04:55:00 2025 GMT Not After : Jul 7 05:00:00 2026 GMT Subject: CN=E85F5C466D6EBB9A666CF7C2791880E153CCE4E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:15:11:92:33:b3:6f:8b:7d:24:87:5a:a8:03: 2e:a1:04:e3:ea:c5:2d:69:94:d9:97:ad:70:5f:a3: 82:0d:c2:1b:ed:e8:3f:57:23:ff:1f:87:b3:15:6a: 69:dc:17:3b:35:6b:08:6c:52:de:a0:eb:c9:dc:52: ff:37:49:7a:63:25:10:dd:ff:e4:be:8d:5c:de:3c: df:c4:48:34:eb:b7:f0:05:9f:a9:91:65:eb:06:16: 31:b1:a7:65:8d:0e:e3:96:b0:2e:74:1a:a6:33:90: e3:17:37:55:e7:4a:d0:5d:2c:6b:ff:c2:3b:53:7e: d2:14:39:61:4a:89:1e:b2:c0:da:4e:00:f8:46:07: 91:fe:51:6d:18:c8:ff:56:08:79:0b:85:c9:4b:8f: a9:31:a7:28:ef:b1:e1:16:07:dd:59:cd:ff:8f:77: e2:90:8d:e6:13:8c:4b:92:cf:66:21:81:19:bb:6a: 16:b1:61:c4:f2:96:59:7c:b5:c2:5d:a0:9a:db:41: e8:7c:9b:1e:e6:36:d0:fe:da:36:68:d0:cf:b8:84: 2c:80:d1:26:23:47:2f:8a:1c:4e:3b:7f:b5:99:dc: da:0f:a4:11:63:ff:18:bd:6d:ac:26:db:5e:c9:03: f7:01:52:76:90:b4:51:25:73:2f:15:80:b2:32:5e: 71:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5F:5C:46:6D:6E:BB:9A:66:6C:F7:C2:79:18:80:E1:53:CC:E4:E0 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.88.0/23 Signature Algorithm: sha256WithRSAEncryption 93:98:b1:c5:3a:9c:6f:fa:14:d7:57:0e:0c:af:00:3d:00:6c: 20:e9:4e:90:3b:76:c5:9e:9f:66:11:3b:0c:3b:03:8d:a0:1a: 08:03:3e:52:bd:89:98:f8:42:1f:f8:0e:b0:13:04:2f:ca:42: 31:ff:10:3b:82:84:8e:12:b2:af:ac:f3:5a:18:b9:ee:f1:eb: f1:7e:63:b9:35:e4:2b:02:49:90:66:3a:f5:41:57:4d:a5:45: 22:5d:fc:2e:37:51:9c:72:3b:17:49:5e:80:8c:9f:fa:05:4e: 14:29:4f:b5:52:b4:0a:2a:27:bb:b3:d2:1f:54:4a:c5:b6:f0: 48:21:4e:e5:fd:5c:e6:4b:cd:17:6b:05:8c:43:84:28:f5:97: 5e:c0:5f:25:74:78:c2:d5:7c:d3:e5:49:73:b3:49:f4:2b:6c: e8:4c:7e:d1:eb:61:84:e8:19:d5:b0:f5:e9:e2:bc:e5:3d:b1: 08:f1:16:d6:63:04:7e:b2:83:ff:91:24:0c:8a:90:4d:2c:a3: e3:3e:5d:89:0e:d1:da:3c:85:08:f0:4c:88:bc:84:d8:1b:52: 3e:3f:ff:92:d8:05:50:fa:04:64:43:27:36:15:ac:b1:34:4b: a8:40:b5:23:29:e6:13:dd:7d:9b:55:bc:8a:50:67:07:cd:93: f2:5a:67:fa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXSqpaf+OkQJZWufA/U5Y+4000C4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA3MDgwNDU1MDBaFw0yNjA3MDcwNTAwMDBaMDMxMTAvBgNV BAMTKEU4NUY1QzQ2NkQ2RUJCOUE2NjZDRjdDMjc5MTg4MEUxNTNDQ0U0RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeFRGSM7Nvi30kh1qoAy6hBOPq xS1plNmXrXBfo4INwhvt6D9XI/8fh7MVamncFzs1awhsUt6g68ncUv83SXpjJRDd /+S+jVzePN/ESDTrt/AFn6mRZesGFjGxp2WNDuOWsC50GqYzkOMXN1XnStBdLGv/ wjtTftIUOWFKiR6ywNpOAPhGB5H+UW0YyP9WCHkLhclLj6kxpyjvseEWB91Zzf+P d+KQjeYTjEuSz2YhgRm7ahaxYcTylll8tcJdoJrbQeh8mx7mNtD+2jZo0M+4hCyA 0SYjRy+KHE47f7WZ3NoPpBFj/xi9bawm217JA/cBUnaQtFElcy8VgLIyXnG/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6F9cRm1uu5pmbPfCeRiA4VPM5OAwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5RYMA0GCSqG SIb3DQEBCwUAA4IBAQCTmLHFOpxv+hTXVw4MrwA9AGwg6U6QO3bFnp9mETsMOwON oBoIAz5SvYmY+EIf+A6wEwQvykIx/xA7goSOErKvrPNaGLnu8evxfmO5NeQrAkmQ Zjr1QVdNpUUiXfwuN1GccjsXSV6AjJ/6BU4UKU+1UrQKKie7s9IfVErFtvBIIU7l /VzmS80XawWMQ4Qo9ZdewF8ldHjC1XzT5Ulzs0n0K2zoTH7R62GE6BnVsPXp4rzl PbEI8RbWYwR+soP/kSQMipBNLKPjPl2JDtHaPIUI8EyIvITYG1I+P/+S2AVQ+gRk Qyc2FayxNEuoQLUjKeYT3X2bVbyKUGcHzZPyWmf6 -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:54 2025 by rpki-client