$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa File: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (raw, json) Hash identifier: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY= Subject key identifier: F4:B6:24:7B:9A:F5:DA:6E:00:2C:1B:0C:00:80:01:BF:7C:13:B4:F8 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 435B2A52E0708B9154E41005881F5297A2009C38 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa Signing time: Fri 04 Jul 2025 04:00:00 +0000 ROA not before: Fri 04 Jul 2025 03:55:00 +0000 ROA not after: Fri 03 Jul 2026 04:00:00 +0000 asID: 140421 IP address blocks: 103.148.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 10:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5b:2a:52:e0:70:8b:91:54:e4:10:05:88:1f:52:97:a2:00:9c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Jul 4 03:55:00 2025 GMT Not After : Jul 3 04:00:00 2026 GMT Subject: CN=F4B6247B9AF5DA6E002C1B0C008001BF7C13B4F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d4:fb:b5:89:2f:ac:1d:fd:fe:aa:88:19:e9: 39:b5:54:26:bb:94:e0:01:aa:25:fe:a3:e8:ce:92: a8:01:73:39:79:18:57:82:a2:e9:1c:17:41:d1:85: 4d:76:8a:5c:cd:69:f7:50:ab:f7:0b:4d:5f:df:2a: 3a:bd:31:e4:69:c6:b5:76:8a:55:84:6f:3a:11:94: 39:5a:87:3f:50:4a:7a:21:b0:0d:42:75:56:23:75: 15:e0:97:76:77:3c:d8:19:a6:75:c6:d0:9a:72:73: c3:91:42:75:2a:6d:4b:a5:6d:8d:bd:44:40:58:22: 66:5d:15:e8:95:58:09:98:0f:4c:af:53:28:fc:b1: f4:61:ae:93:e5:3e:bf:f2:8d:89:b5:29:31:b2:05: 75:47:d5:47:30:e5:fc:7f:1c:fb:cf:37:89:4f:9f: fc:88:d7:4b:7b:3b:4e:da:f9:5e:d4:99:5b:42:c0: b1:b0:a0:df:22:fd:69:28:d2:2b:35:b8:7b:37:f5: 8d:de:04:cf:6c:e9:fd:9d:47:c8:09:52:f1:d3:de: 09:0b:2e:d9:61:d2:1d:e0:73:26:d9:6c:79:d3:58: 46:d2:a6:f4:3f:37:24:6e:4a:b3:1b:13:51:32:dc: f7:5f:24:91:b1:57:5f:b2:1b:ad:c6:14:0f:82:43: 75:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B6:24:7B:9A:F5:DA:6E:00:2C:1B:0C:00:80:01:BF:7C:13:B4:F8 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.89.0/24 Signature Algorithm: sha256WithRSAEncryption 16:f2:09:52:87:c0:34:a3:e7:7f:8f:90:ec:53:21:13:89:30: 66:d5:1b:8b:aa:a1:dd:7f:61:e9:52:5b:c1:3f:cf:5e:59:33: a0:d4:dc:a7:3d:67:45:29:46:c0:f2:1b:2c:58:00:a3:43:f5: 71:ae:a1:66:82:e9:fd:e6:13:60:e3:ef:90:1c:75:7f:72:c3: 3e:d2:a4:4f:56:43:f6:25:b9:e2:48:f0:65:0d:0e:e5:ca:0a: 1e:b0:d4:7f:b6:f3:37:30:fd:c7:58:61:91:ca:b5:0a:c7:9b: b1:7d:ee:95:52:f6:59:6c:f0:67:d1:f1:a8:83:8c:b7:ca:20: 67:17:12:c3:97:db:f3:9f:42:9e:e6:ab:cf:7f:9b:7b:24:fb: ca:55:97:58:71:3e:51:4a:6a:39:a8:3e:56:2b:77:ad:a5:71: b3:0d:e4:0e:bf:6e:fa:03:cc:08:7b:af:e9:b1:e4:58:58:c1: c6:76:cf:8b:dc:10:17:74:0a:60:39:9c:98:d9:73:a1:42:8e: 91:fd:59:54:2b:5f:cf:59:6b:f2:9d:63:c1:2a:7c:41:25:6c: 69:af:22:2f:35:3c:d1:32:66:37:86:d9:1f:3a:83:e9:55:8a: 6d:a7:6c:a8:ca:79:47:e7:ec:72:7b:c7:c5:40:a7:ee:ca:1b: 8f:b8:f9:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ1sqUuBwi5FU5BAFiB9Sl6IAnDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA3MDQwMzU1MDBaFw0yNjA3MDMwNDAwMDBaMDMxMTAvBgNV BAMTKEY0QjYyNDdCOUFGNURBNkUwMDJDMUIwQzAwODAwMUJGN0MxM0I0RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn1Pu1iS+sHf3+qogZ6Tm1VCa7 lOABqiX+o+jOkqgBczl5GFeCoukcF0HRhU12ilzNafdQq/cLTV/fKjq9MeRpxrV2 ilWEbzoRlDlahz9QSnohsA1CdVYjdRXgl3Z3PNgZpnXG0Jpyc8ORQnUqbUulbY29 REBYImZdFeiVWAmYD0yvUyj8sfRhrpPlPr/yjYm1KTGyBXVH1Ucw5fx/HPvPN4lP n/yI10t7O07a+V7UmVtCwLGwoN8i/Wko0is1uHs39Y3eBM9s6f2dR8gJUvHT3gkL Ltlh0h3gcybZbHnTWEbSpvQ/NyRuSrMbE1Ey3PdfJJGxV1+yG63GFA+CQ3U1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9LYke5r12m4ALBsMAIABv3wTtPgwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RZMA0GCSqG SIb3DQEBCwUAA4IBAQAW8glSh8A0o+d/j5DsUyETiTBm1RuLqqHdf2HpUlvBP89e WTOg1NynPWdFKUbA8hssWACjQ/VxrqFmgun95hNg4++QHHV/csM+0qRPVkP2Jbni SPBlDQ7lygoesNR/tvM3MP3HWGGRyrUKx5uxfe6VUvZZbPBn0fGog4y3yiBnFxLD l9vzn0Ke5qvPf5t7JPvKVZdYcT5RSmo5qD5WK3etpXGzDeQOv276A8wIe6/pseRY WMHGds+L3BAXdApgOZyY2XOhQo6R/VlUK1/PWWvynWPBKnxBJWxpryIvNTzRMmY3 htkfOoPpVYptp2yoynlH5+xye8fFQKfuyhuPuPn9 -----END CERTIFICATE-----Generated at Wed Jul 23 12:13:36 2025 by rpki-client