$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: sKfx76+Sncyrs9mYumqkFI6ie1K7xxqfJijMwgYJ3J8= Subject key identifier: 39:6E:E7:4F:F7:06:C9:53:55:DB:1E:EC:06:B3:74:CD:06:F7:B4:6F Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 66CBE4F9271DEEF22698FF323DDAC4F8EFC5A7C8 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa Signing time: Tue 02 Sep 2025 05:02:55 +0000 ROA not before: Tue 02 Sep 2025 04:57:55 +0000 ROA not after: Tue 01 Sep 2026 05:02:55 +0000 asID: 17769 IP address blocks: 103.147.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 00:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:cb:e4:f9:27:1d:ee:f2:26:98:ff:32:3d:da:c4:f8:ef:c5:a7:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Sep 2 04:57:55 2025 GMT Not After : Sep 1 05:02:55 2026 GMT Subject: CN=396EE74FF706C95355DB1EEC06B374CD06F7B46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:f1:8b:43:69:61:3d:b2:4d:99:3e:f1:a7: f9:0c:7a:b2:74:b9:5d:62:8b:92:b6:4e:ff:b7:84: 92:3d:d0:63:42:c5:56:fd:06:d8:a9:ae:7e:1b:db: 45:e7:28:b3:9b:e2:40:94:6b:01:a5:e3:db:36:1f: 12:fa:b1:51:62:86:27:95:22:5d:fe:da:db:5d:1e: 00:51:9b:6d:d0:d0:42:c2:15:84:ae:f3:77:49:87: fd:6a:57:f2:5c:3d:bd:e7:8a:37:39:15:02:02:89: 74:60:d7:1a:55:99:ce:e1:9e:05:ef:14:bd:c6:36: a1:6d:40:19:2f:f7:13:1a:48:98:c3:4e:3d:a9:f8: fd:5b:cd:4a:95:86:bc:0b:b5:ce:2b:39:ce:96:47: 75:ac:21:d6:b0:9d:7d:89:21:eb:d4:9a:33:d0:db: d9:ee:31:aa:83:d5:77:ee:93:5f:0f:3b:b7:8e:b4: 0d:0a:da:55:81:5c:c6:b0:06:f7:d6:fb:c3:34:2e: 71:10:75:ce:5f:4f:4b:5c:65:82:f9:2e:c4:72:1b: 9d:d7:b8:5e:20:06:28:6a:51:e1:20:f1:71:12:8c: 08:10:a7:da:65:36:b6:e0:72:bc:e0:b0:a5:87:14: b2:c1:f7:87:26:12:72:b3:d8:4c:81:2a:f8:09:6a: 89:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6E:E7:4F:F7:06:C9:53:55:DB:1E:EC:06:B3:74:CD:06:F7:B4:6F X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.116.0/23 Signature Algorithm: sha256WithRSAEncryption 57:c4:53:60:48:d9:a1:3f:b0:30:19:3d:24:11:47:66:d3:cf: 0a:04:59:90:a6:5c:d9:7b:8a:f4:29:53:db:c5:6c:45:68:24: c7:01:74:4f:a2:da:40:d9:10:98:fc:e4:6b:4f:55:15:6b:80: 05:da:5d:6d:f7:c4:2f:9b:6b:39:19:2c:03:79:c5:bc:a8:7b: fb:09:5e:8a:6f:e2:4e:11:fb:6f:83:aa:41:cc:56:99:95:3d: cc:98:51:31:2c:14:e5:16:cd:65:9d:5c:55:ed:41:ce:cc:77: a6:f1:67:44:c9:bc:bd:13:a0:f9:35:38:88:bb:c1:59:36:55: 07:a5:29:8a:5e:1a:e1:f8:b3:13:ad:dc:78:8f:e7:f4:cb:a6: a4:8e:50:2b:92:e7:dc:7d:29:1f:f7:81:23:90:34:f1:6b:b9: 15:6b:87:84:ad:56:36:c1:b8:f5:9d:ab:08:f9:68:b6:3d:a7: a0:af:42:92:e4:fd:67:69:d7:48:c9:7f:5a:c4:f4:85:af:dd: fa:b6:73:e2:fb:4c:4c:a5:4e:a2:dc:75:f3:c6:fb:ea:5e:60: 51:62:cd:28:fc:4a:67:5c:5f:62:92:64:ae:92:0f:dd:c2:bb: 6d:4b:13:20:8b:56:61:7a:2f:2a:4c:00:9c:31:2e:75:fe:d6: a9:b1:68:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZsvk+Scd7vImmP8yPdrE+O/Fp8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNTA5MDIwNDU3NTVaFw0yNjA5MDEwNTAyNTVaMDMxMTAvBgNV BAMTKDM5NkVFNzRGRjcwNkM5NTM1NURCMUVFQzA2QjM3NENEMDZGN0I0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzfGLQ2lhPbJNmT7xp/kMerJ0 uV1ii5K2Tv+3hJI90GNCxVb9Btiprn4b20XnKLOb4kCUawGl49s2HxL6sVFihieV Il3+2ttdHgBRm23Q0ELCFYSu83dJh/1qV/JcPb3nijc5FQICiXRg1xpVmc7hngXv FL3GNqFtQBkv9xMaSJjDTj2p+P1bzUqVhrwLtc4rOc6WR3WsIdawnX2JIevUmjPQ 29nuMaqD1Xfuk18PO7eOtA0K2lWBXMawBvfW+8M0LnEQdc5fT0tcZYL5LsRyG53X uF4gBihqUeEg8XESjAgQp9plNrbgcrzgsKWHFLLB94cmEnKz2EyBKvgJaol5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOW7nT/cGyVNV2x7sBrN0zQb3tG8wHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTc4YzA2LTFkNmUtNDNiNi1i ZjMwLTg2MGNlYmRkZmIzMi8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5N0MA0GCSqG SIb3DQEBCwUAA4IBAQBXxFNgSNmhP7AwGT0kEUdm088KBFmQplzZe4r0KVPbxWxF aCTHAXRPotpA2RCY/ORrT1UVa4AF2l1t98Qvm2s5GSwDecW8qHv7CV6Kb+JOEftv g6pBzFaZlT3MmFExLBTlFs1lnVxV7UHOzHem8WdEyby9E6D5NTiIu8FZNlUHpSmK Xhrh+LMTrdx4j+f0y6akjlArkufcfSkf94EjkDTxa7kVa4eErVY2wbj1nasI+Wi2 Paegr0KS5P1naddIyX9axPSFr936tnPi+0xMpU6i3HXzxvvqXmBRYs0o/EpnXF9i kmSukg/dwrttSxMgi1Zhei8qTACcMS51/tapsWhL -----END CERTIFICATE-----Generated at Sun Sep 7 15:40:11 2025 by rpki-client