$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa File: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (raw, json) Hash identifier: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ= Subject key identifier: D6:ED:3A:33:83:91:B4:D7:46:8C:7D:22:20:5A:52:81:9A:95:6A:88 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 2C28999A7FBC4A13FF6F153A0D288FA105E166AA Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa Signing time: Fri 04 Jul 2025 04:00:00 +0000 ROA not before: Fri 04 Jul 2025 03:55:00 +0000 ROA not after: Fri 03 Jul 2026 04:00:00 +0000 asID: 140421 IP address blocks: 103.148.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:28:99:9a:7f:bc:4a:13:ff:6f:15:3a:0d:28:8f:a1:05:e1:66:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Jul 4 03:55:00 2025 GMT Not After : Jul 3 04:00:00 2026 GMT Subject: CN=D6ED3A338391B4D7468C7D22205A52819A956A88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:58:f2:27:97:25:36:be:fd:b7:b7:f5:98: ea:8b:ba:20:42:18:52:28:67:91:72:5e:03:db:7c: 6c:f3:d7:28:f3:31:ce:da:13:03:b2:7d:46:28:7b: 38:01:6b:95:f2:b6:f8:a5:42:56:e6:cb:b2:e0:eb: 33:8c:3e:12:e7:01:19:47:7f:33:45:dc:69:3a:e5: 0c:49:64:04:9e:e6:30:c1:84:8f:b8:de:44:bb:a9: bf:65:a9:b7:98:5f:cc:67:57:97:11:8c:40:54:6f: 0f:a4:04:02:8e:ad:44:c4:6c:1f:cd:af:98:ea:1c: 2e:fe:69:ff:af:48:1c:ff:43:a2:72:1a:e1:99:c6: d7:ec:7b:27:7a:8d:83:73:35:96:54:51:aa:0b:5f: c6:2e:04:30:e3:7a:e3:21:61:24:ed:b5:de:8c:e9: a7:19:ec:b7:33:0d:cf:2a:77:7e:d7:89:7a:25:89: 6e:97:5c:da:38:fd:00:6e:68:aa:fe:66:56:0d:6b: d0:aa:9c:e5:09:e0:66:ed:9a:62:de:e9:68:1c:dd: e4:7b:20:9b:92:15:89:53:11:2d:a0:7f:f2:69:32: 1e:4b:e6:e7:66:e1:44:72:03:c5:7f:3a:1d:8a:a1: 8f:19:5b:36:a5:94:b1:3a:9d:f6:f0:28:9f:0b:58: 5f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:ED:3A:33:83:91:B4:D7:46:8C:7D:22:20:5A:52:81:9A:95:6A:88 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.88.0/24 Signature Algorithm: sha256WithRSAEncryption b8:f8:b7:7e:e7:32:0f:35:3f:53:49:1b:f8:81:66:fc:a4:31: e7:1a:34:37:05:ab:ef:02:27:ea:69:cf:b5:a9:0a:fe:d3:11: 8e:f3:07:4e:84:3a:37:50:8a:d8:4a:ef:b4:92:f8:27:a4:82: 02:f7:40:b2:56:9e:e9:fe:94:a4:80:50:a8:78:09:84:98:32: 01:1a:ad:1b:a3:7a:48:29:ad:42:0f:7e:a0:4d:80:9f:3c:d5: 4d:84:80:e9:68:c9:f8:7e:7b:82:90:e7:e9:0b:6e:67:9f:67: 9b:f7:03:3d:4a:a1:3a:85:d4:8c:cc:a9:8e:09:9f:10:f4:e8: a0:1c:13:ec:48:41:ff:a6:ec:73:2e:57:12:f7:bf:94:58:50: 06:20:10:e6:69:60:0a:1c:f5:f1:9c:b5:36:57:a2:71:aa:e4: fa:1f:c0:6c:15:0b:83:a8:23:a5:a4:1c:67:68:0e:9b:ce:ff: 9a:61:5d:6d:72:6b:97:08:f4:a4:0d:63:f5:56:61:5e:65:fe: e8:76:2e:99:e0:c6:32:ab:5e:0f:82:5a:54:f5:b7:7e:9a:46: ca:21:4a:34:68:c9:1e:79:95:66:4c:2c:57:8c:3b:d5:d1:dc: a6:2d:f5:0a:9a:99:cb:9c:b2:cd:b4:5e:1f:84:93:ee:14:22: 90:c5:cc:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULCiZmn+8ShP/bxU6DSiPoQXhZqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA3MDQwMzU1MDBaFw0yNjA3MDMwNDAwMDBaMDMxMTAvBgNV BAMTKEQ2RUQzQTMzODM5MUI0RDc0NjhDN0QyMjIwNUE1MjgxOUE5NTZBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ+VjyJ5clNr79t7f1mOqLuiBC GFIoZ5FyXgPbfGzz1yjzMc7aEwOyfUYoezgBa5XytvilQlbmy7Lg6zOMPhLnARlH fzNF3Gk65QxJZASe5jDBhI+43kS7qb9lqbeYX8xnV5cRjEBUbw+kBAKOrUTEbB/N r5jqHC7+af+vSBz/Q6JyGuGZxtfseyd6jYNzNZZUUaoLX8YuBDDjeuMhYSTttd6M 6acZ7LczDc8qd37XiXoliW6XXNo4/QBuaKr+ZlYNa9CqnOUJ4GbtmmLe6Wgc3eR7 IJuSFYlTES2gf/JpMh5L5udm4URyA8V/Oh2KoY8ZWzallLE6nfbwKJ8LWF8tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1u06M4ORtNdGjH0iIFpSgZqVaogwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RYMA0GCSqG SIb3DQEBCwUAA4IBAQC4+Ld+5zIPNT9TSRv4gWb8pDHnGjQ3BavvAifqac+1qQr+ 0xGO8wdOhDo3UIrYSu+0kvgnpIIC90CyVp7p/pSkgFCoeAmEmDIBGq0bo3pIKa1C D36gTYCfPNVNhIDpaMn4fnuCkOfpC25nn2eb9wM9SqE6hdSMzKmOCZ8Q9OigHBPs SEH/puxzLlcS97+UWFAGIBDmaWAKHPXxnLU2V6JxquT6H8BsFQuDqCOlpBxnaA6b zv+aYV1tcmuXCPSkDWP1VmFeZf7odi6Z4MYyq14PglpU9bd+mkbKIUo0aMkeeZVm TCxXjDvV0dymLfUKmpnLnLLNtF4fhJPuFCKQxcxd -----END CERTIFICATE-----Generated at Wed Jul 23 12:14:16 2025 by rpki-client