$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32332d3233203d3e20313339393738.roa File: 3130332e3134382e31382e302f32332d3233203d3e20313339393738.roa (raw, json) Hash identifier: 4K0py4cnYyh8vI10iLQo1yG8FCXY4pSX4oMXyg6m2pw= Subject key identifier: 35:C4:7E:2F:1E:48:10:1A:AF:F7:CF:9F:10:0E:24:F3:44:35:4B:A4 Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 0D857C0DF5B1A5BC8EB88A87ACADF520E1B61865 Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32332d3233203d3e20313339393738.roa Signing time: Mon 21 Jul 2025 08:00:00 +0000 ROA not before: Mon 21 Jul 2025 07:55:00 +0000 ROA not after: Mon 20 Jul 2026 08:00:00 +0000 asID: 139978 IP address blocks: 103.148.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 11:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:85:7c:0d:f5:b1:a5:bc:8e:b8:8a:87:ac:ad:f5:20:e1:b6:18:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Jul 21 07:55:00 2025 GMT Not After : Jul 20 08:00:00 2026 GMT Subject: CN=35C47E2F1E48101AAFF7CF9F100E24F344354BA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:77:9f:f8:df:d3:c7:c5:da:89:c8:de:71:e2: aa:46:e9:15:7c:f8:1a:92:cd:b7:ee:62:8f:b2:58: 62:9e:84:84:17:c8:9c:ec:e0:3d:64:75:b8:f9:6c: ba:94:18:ca:92:c1:2a:2c:44:c7:d9:b2:96:71:52: ea:1c:27:82:b9:a9:84:83:c6:db:d2:d7:4c:34:af: ba:2e:a0:e7:ee:15:99:fd:ba:3b:d2:23:1b:4d:4e: a5:68:6d:86:b3:1a:d7:34:a5:67:a5:84:33:93:8c: 6b:bf:c7:af:59:3f:77:9f:aa:2c:dd:7a:a7:33:cf: b8:81:a0:29:d4:5e:c9:d7:d6:b4:ef:94:0c:15:03: b4:50:0f:fa:e1:2c:4e:da:04:5d:6f:3d:0e:9b:3c: 80:c4:02:9d:30:c4:eb:2f:2d:96:df:81:9c:53:fb: 9c:db:51:d4:04:7d:b9:41:da:d6:f6:d2:11:30:a1: 11:e4:6d:ea:4d:7b:7c:79:07:e1:37:29:02:be:43: f5:d9:9f:d4:64:79:79:df:e3:83:ab:f7:05:60:14: 31:81:33:7e:ac:50:1f:eb:30:98:73:b0:59:17:c6: 86:85:39:9a:e1:e3:6f:01:85:f5:2f:ad:33:20:12: 7a:1b:94:56:84:04:3c:1e:87:9f:fc:30:61:54:b6: 06:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C4:7E:2F:1E:48:10:1A:AF:F7:CF:9F:10:0E:24:F3:44:35:4B:A4 X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32332d3233203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.18.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:c6:92:25:a9:1c:b9:9d:21:6c:77:4f:7c:00:89:8a:66:78: 0c:60:0d:82:0b:54:71:da:c2:a4:13:c9:6f:8c:f6:f6:71:a0: ad:de:9d:e3:3c:e7:a9:e3:d2:81:c2:b3:ef:6b:80:63:08:1d: fe:72:3f:e4:d9:e6:c1:3b:24:ab:b8:86:88:7f:71:d7:cb:88: a6:e1:c6:d9:16:24:9b:cd:be:f2:bc:80:17:f9:89:38:43:13: e9:7c:8c:b0:ae:90:c2:c9:98:7b:64:05:a2:0a:3a:49:96:78: 7e:45:75:8a:5a:1d:44:d3:88:7c:d1:60:80:b5:ba:b2:c8:45: 45:7b:38:77:df:5b:d2:6d:d4:da:c3:2c:96:3c:7a:5a:b6:c0: 1d:55:56:74:52:74:8f:4a:c3:a0:9b:7c:87:5d:65:20:8c:00: c7:04:fb:4e:49:cd:ee:2d:9e:01:21:43:c1:e5:e6:0c:68:cf: f9:a4:b4:bf:48:57:57:dd:a2:21:68:e5:43:d9:f5:cb:c7:8b: ad:ae:ff:c8:46:84:61:6a:6f:ca:ac:7d:6c:81:5f:61:84:50: 50:2c:bc:d8:2a:42:7e:b0:fc:2b:a2:10:25:47:bd:8e:28:72: f3:56:96:09:60:3a:29:27:7d:21:b8:f2:48:56:09:9e:b4:bb: 95:8f:ce:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDYV8DfWxpbyOuIqHrK31IOG2GGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNTA3MjEwNzU1MDBaFw0yNjA3MjAwODAwMDBaMDMxMTAvBgNV BAMTKDM1QzQ3RTJGMUU0ODEwMUFBRkY3Q0Y5RjEwMEUyNEYzNDQzNTRCQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5d5/439PHxdqJyN5x4qpG6RV8 +BqSzbfuYo+yWGKehIQXyJzs4D1kdbj5bLqUGMqSwSosRMfZspZxUuocJ4K5qYSD xtvS10w0r7ouoOfuFZn9ujvSIxtNTqVobYazGtc0pWelhDOTjGu/x69ZP3efqizd eqczz7iBoCnUXsnX1rTvlAwVA7RQD/rhLE7aBF1vPQ6bPIDEAp0wxOsvLZbfgZxT +5zbUdQEfblB2tb20hEwoRHkbepNe3x5B+E3KQK+Q/XZn9RkeXnf44Or9wVgFDGB M36sUB/rMJhzsFkXxoaFOZrh428BhfUvrTMgEnoblFaEBDweh5/8MGFUtgaFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNcR+Lx5IEBqv98+fEA4k80Q1S6QwHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzkzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5QSMA0GCSqG SIb3DQEBCwUAA4IBAQAdxpIlqRy5nSFsd098AImKZngMYA2CC1Rx2sKkE8lvjPb2 caCt3p3jPOep49KBwrPva4BjCB3+cj/k2ebBOySruIaIf3HXy4im4cbZFiSbzb7y vIAX+Yk4QxPpfIywrpDCyZh7ZAWiCjpJlnh+RXWKWh1E04h80WCAtbqyyEVFezh3 31vSbdTawyyWPHpatsAdVVZ0UnSPSsOgm3yHXWUgjADHBPtOSc3uLZ4BIUPB5eYM aM/5pLS/SFdX3aIhaOVD2fXLx4utrv/IRoRham/KrH1sgV9hhFBQLLzYKkJ+sPwr ohAlR72OKHLzVpYJYDopJ30huPJIVgmetLuVj85z -----END CERTIFICATE-----Generated at Wed Jul 23 23:47:50 2025 by rpki-client