$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa File: 3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa (raw, json) Hash identifier: bezCvX8XgFSa6OMSK27HUjxxwyFifSYbogKsMqbTNHQ= Subject key identifier: 3C:4E:14:24:FF:FB:05:AE:DC:F0:D5:A7:A5:8C:51:AB:0F:C3:A8:8E Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 0EEAD0D2258564EFA1CE13C035688AF4AB0EC32B Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa Signing time: Mon 21 Jul 2025 08:00:00 +0000 ROA not before: Mon 21 Jul 2025 07:55:00 +0000 ROA not after: Mon 20 Jul 2026 08:00:00 +0000 asID: 139978 IP address blocks: 103.148.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 11:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ea:d0:d2:25:85:64:ef:a1:ce:13:c0:35:68:8a:f4:ab:0e:c3:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Jul 21 07:55:00 2025 GMT Not After : Jul 20 08:00:00 2026 GMT Subject: CN=3C4E1424FFFB05AEDCF0D5A7A58C51AB0FC3A88E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5b:59:1d:16:e7:96:14:2f:4c:e9:dc:d1:2d: 50:37:b9:be:dc:62:7f:38:aa:70:00:b7:3f:12:8d: e5:aa:12:fd:6c:a4:c6:63:d6:77:bf:39:98:4f:9c: ed:85:cf:22:f3:a9:4f:e8:f0:fa:59:c9:c6:13:f2: 95:f9:3e:1d:6d:d4:c2:08:6a:56:35:36:f3:c2:55: 1e:93:09:cf:9b:b7:e5:cc:0c:36:40:99:12:f7:c1: 26:db:ef:71:f1:a3:9a:db:48:33:23:71:42:c8:40: 95:12:39:15:66:3e:7a:ca:3c:0e:41:50:9d:a0:72: bb:ea:da:ce:f5:f4:0e:54:a3:50:f9:c6:77:61:f4: 3a:ca:7a:ae:36:80:05:4a:74:22:b2:3e:bf:0b:ad: 70:3f:47:b5:bc:76:40:d0:fb:b5:87:66:59:07:d4: 99:0e:00:7c:81:00:b4:66:93:70:fb:66:2a:b3:7c: 70:2e:e9:fe:46:21:8e:06:e0:17:48:02:a4:bb:75: 81:17:e5:62:34:c2:fa:f3:1f:a8:e6:0c:56:2a:66: 6e:b8:88:02:63:4e:f1:3f:b5:23:38:e0:90:4b:4c: 8d:8d:65:9b:a6:8e:fe:c6:21:c6:7f:31:3f:84:28: 51:94:49:4a:1e:bd:a7:f4:40:66:3a:33:ff:5c:93: 32:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:4E:14:24:FF:FB:05:AE:DC:F0:D5:A7:A5:8C:51:AB:0F:C3:A8:8E X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.19.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:07:fa:fc:b8:85:0b:e8:60:4e:df:1f:2b:46:f4:6f:06:8c: bf:ac:80:ad:c9:b9:43:ed:80:1f:b8:94:59:4c:1c:97:2e:2e: 0f:29:cf:2b:6d:2e:54:dd:b9:37:ad:6b:f9:e7:3b:ca:ad:a4: 3f:61:6a:bf:63:d4:25:70:ee:7c:64:8b:3a:9e:35:3f:f3:8b: d7:b3:ab:d4:ef:13:32:d1:fb:d0:39:68:7f:f6:63:c0:fb:4b: 96:93:07:56:3e:cc:53:e4:57:9d:5a:17:20:ab:6e:18:27:33: 76:96:aa:0f:6a:32:56:07:32:33:73:27:ca:24:70:7e:be:8c: 4b:ea:88:9a:0d:54:05:b3:5c:43:41:4b:59:fe:26:12:83:a4: dc:f1:26:15:27:0f:ca:ce:e7:d1:e4:78:eb:1a:71:5e:da:7f: 7f:c5:29:1d:5a:c8:bd:b1:f4:7f:d7:87:a3:03:2c:6d:69:e6: f7:10:20:22:3d:ff:ae:f7:1c:6a:e3:0a:56:5b:cf:f3:0b:0d: c4:d1:6a:56:dd:47:58:ca:f2:ca:bb:4d:da:99:5b:c8:15:2b: 2d:c4:dc:e1:16:3e:82:da:d4:07:30:10:65:1e:12:71:db:2f: 86:71:92:5c:fc:07:92:de:b2:17:3a:51:29:83:53:66:d2:31: 30:8b:cb:5e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDurQ0iWFZO+hzhPANWiK9KsOwyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNTA3MjEwNzU1MDBaFw0yNjA3MjAwODAwMDBaMDMxMTAvBgNV BAMTKDNDNEUxNDI0RkZGQjA1QUVEQ0YwRDVBN0E1OEM1MUFCMEZDM0E4OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEW1kdFueWFC9M6dzRLVA3ub7c Yn84qnAAtz8SjeWqEv1spMZj1ne/OZhPnO2FzyLzqU/o8PpZycYT8pX5Ph1t1MII alY1NvPCVR6TCc+bt+XMDDZAmRL3wSbb73Hxo5rbSDMjcULIQJUSORVmPnrKPA5B UJ2gcrvq2s719A5Uo1D5xndh9DrKeq42gAVKdCKyPr8LrXA/R7W8dkDQ+7WHZlkH 1JkOAHyBALRmk3D7ZiqzfHAu6f5GIY4G4BdIAqS7dYEX5WI0wvrzH6jmDFYqZm64 iAJjTvE/tSM44JBLTI2NZZumjv7GIcZ/MT+EKFGUSUoevaf0QGY6M/9ckzIJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPE4UJP/7Ba7c8NWnpYxRqw/DqI4wHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5QTMA0GCSqG SIb3DQEBCwUAA4IBAQB7B/r8uIUL6GBO3x8rRvRvBoy/rICtyblD7YAfuJRZTByX Li4PKc8rbS5U3bk3rWv55zvKraQ/YWq/Y9QlcO58ZIs6njU/84vXs6vU7xMy0fvQ OWh/9mPA+0uWkwdWPsxT5FedWhcgq24YJzN2lqoPajJWBzIzcyfKJHB+voxL6oia DVQFs1xDQUtZ/iYSg6Tc8SYVJw/KzufR5HjrGnFe2n9/xSkdWsi9sfR/14ejAyxt aeb3ECAiPf+u9xxq4wpWW8/zCw3E0WpW3UdYyvLKu03amVvIFSstxNzhFj6C2tQH MBBlHhJx2y+GcZJc/AeS3rIXOlEpg1Nm0jEwi8te -----END CERTIFICATE-----Generated at Wed Jul 23 23:48:52 2025 by rpki-client