$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa File: 3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa (raw, json) Hash identifier: 8oG5aiPghQtjdiXfmI/b7Mhj9+Qy7KvOcmqLxLJ7ROs= Subject key identifier: B3:6A:A8:F9:F0:3F:6E:7F:26:D3:9A:C8:39:B3:31:6C:98:3A:BB:73 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 244540205A7E472B55AC95224798E3266882C850 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:02 +0000 ROA not before: Fri 04 Jul 2025 12:55:02 +0000 ROA not after: Fri 03 Jul 2026 13:00:02 +0000 asID: 153087 IP address blocks: 103.136.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:45:40:20:5a:7e:47:2b:55:ac:95:22:47:98:e3:26:68:82:c8:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:02 2025 GMT Not After : Jul 3 13:00:02 2026 GMT Subject: CN=B36AA8F9F03F6E7F26D39AC839B3316C983ABB73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b5:bf:8b:1d:80:99:71:d2:55:58:64:86:2f: 62:6f:63:8c:37:4d:9f:fa:45:d7:7b:97:ec:ac:2c: 95:29:e7:d1:02:7e:1b:13:e3:95:fc:8b:4d:f2:dc: d4:f1:33:98:7b:a5:25:56:45:12:ee:4f:4e:08:82: 0a:1b:c4:25:c5:4c:0a:75:43:c1:4d:ef:5e:16:b5: 24:2f:99:7d:c5:08:5d:fb:36:23:62:0c:8a:6a:40: a8:32:3f:e0:f9:f0:52:9e:5c:70:00:a2:23:58:96: e2:a7:fa:cd:4c:bf:b3:c5:7d:9d:84:cd:15:fd:81: 01:bb:70:70:3e:eb:c0:24:40:83:a9:74:d4:62:d4: c1:3b:65:ed:69:ae:9c:1e:66:f9:6c:c8:b7:6f:41: 25:d3:8a:b3:94:85:90:d0:ad:04:6d:29:e4:1e:3c: 84:ba:2b:6c:4b:24:b3:b2:7b:eb:15:fc:7c:fb:32: 6e:f1:64:29:fe:af:03:e1:ee:b7:0b:db:d4:b0:1a: 2a:81:b9:50:4e:ed:74:f5:91:46:b7:01:e0:2e:30: bb:89:36:46:76:46:50:7e:4a:d7:d9:a1:ad:61:83: cd:68:0a:5e:7d:32:e8:21:b8:f4:10:e5:55:53:65: 52:c7:75:22:78:7b:89:90:fd:02:87:59:1d:0a:a2: 5f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6A:A8:F9:F0:3F:6E:7F:26:D3:9A:C8:39:B3:31:6C:98:3A:BB:73 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.162.0/23 Signature Algorithm: sha256WithRSAEncryption b5:ff:8c:ba:0c:39:c7:18:d2:52:4e:4f:8e:d5:9b:f9:0a:5b: b6:91:28:49:8d:1a:33:d1:96:cf:16:49:9d:50:b2:b1:a0:bb: 90:91:01:22:d7:9a:70:be:22:f0:9b:1c:b7:da:9d:90:ce:08: f7:e6:42:33:3b:97:9d:c7:cd:fe:7f:8f:a1:cd:9e:f4:fd:08: 76:f0:b4:d1:65:1c:c6:cf:4f:b7:61:a2:b5:8e:a9:0d:0f:70: 6a:c7:df:22:21:51:a6:aa:f0:20:73:19:16:f8:90:78:ec:a3: d9:c2:ad:e6:ef:e5:f6:10:f8:06:01:e7:be:3e:7e:45:32:07: 08:c0:ed:e2:e3:37:f9:e1:11:51:e5:25:9d:76:fd:f2:cb:77: b8:8b:69:e7:41:64:eb:8c:ba:2c:fb:a5:60:92:99:bd:45:dc: c1:ed:e1:74:91:57:5a:a2:e8:f8:27:58:ce:03:aa:9a:21:a7: 41:9c:4e:64:c1:6a:f8:0c:74:ee:e0:bb:af:09:9f:cb:80:25: 8b:9f:ec:ef:37:56:01:f3:ff:2d:24:26:19:67:6f:ef:f2:0c: ac:a3:ae:1b:fd:34:2b:2c:dd:d6:33:44:d4:3e:18:27:fa:46: d1:4c:d8:e3:5b:be:4a:6f:7a:f6:ee:8d:c5:2e:ab:92:20:2a: c4:0d:69:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJEVAIFp+RytVrJUiR5jjJmiCyFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDJaFw0yNjA3MDMxMzAwMDJaMDMxMTAvBgNV BAMTKEIzNkFBOEY5RjAzRjZFN0YyNkQzOUFDODM5QjMzMTZDOTgzQUJCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtb+LHYCZcdJVWGSGL2JvY4w3 TZ/6Rdd7l+ysLJUp59ECfhsT45X8i03y3NTxM5h7pSVWRRLuT04IggobxCXFTAp1 Q8FN714WtSQvmX3FCF37NiNiDIpqQKgyP+D58FKeXHAAoiNYluKn+s1Mv7PFfZ2E zRX9gQG7cHA+68AkQIOpdNRi1ME7Ze1prpweZvlsyLdvQSXTirOUhZDQrQRtKeQe PIS6K2xLJLOye+sV/Hz7Mm7xZCn+rwPh7rcL29SwGiqBuVBO7XT1kUa3AeAuMLuJ NkZ2RlB+StfZoa1hg81oCl59MughuPQQ5VVTZVLHdSJ4e4mQ/QKHWR0Kol+1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUs2qo+fA/bn8m05rIObMxbJg6u3MwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMxMzAzMzJlMzEzMzM2MmUzMTM2MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniKIwDQYJ KoZIhvcNAQELBQADggEBALX/jLoMOccY0lJOT47Vm/kKW7aRKEmNGjPRls8WSZ1Q srGgu5CRASLXmnC+IvCbHLfanZDOCPfmQjM7l53Hzf5/j6HNnvT9CHbwtNFlHMbP T7dhorWOqQ0PcGrH3yIhUaaq8CBzGRb4kHjso9nCrebv5fYQ+AYB574+fkUyBwjA 7eLjN/nhEVHlJZ12/fLLd7iLaedBZOuMuiz7pWCSmb1F3MHt4XSRV1qi6PgnWM4D qpohp0GcTmTBavgMdO7gu68Jn8uAJYuf7O83VgHz/y0kJhlnb+/yDKyjrhv9NCss 3dYzRNQ+GCf6RtFM2ONbvkpvevbujcUuq5IgKsQNaeI= -----END CERTIFICATE-----Generated at Sun Jul 27 07:54:12 2025 by rpki-client