$ rpki-client -vvf repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: n1vxqT01MHNJQCue1F/8LHi9S+iotjvGE4Enfb7Gpo0= Subject key identifier: FF:C8:6D:36:DD:4A:69:AF:8C:85:A7:14:C3:5C:8C:7E:FA:53:B5:4A Certificate issuer: /CN=4846B9B0D6B1DEDADE4A9C1BB6F913695D261585 Certificate serial: 756907B3758DF71ECD404706FB248A08B14F869A Authority key identifier: 48:46:B9:B0:D6:B1:DE:DA:DE:4A:9C:1B:B6:F9:13:69:5D:26:15:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa Signing time: Mon 01 Sep 2025 11:02:29 +0000 ROA not before: Mon 01 Sep 2025 10:57:29 +0000 ROA not after: Mon 31 Aug 2026 11:02:29 +0000 asID: 17769 IP address blocks: 103.147.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.crl rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 03:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:69:07:b3:75:8d:f7:1e:cd:40:47:06:fb:24:8a:08:b1:4f:86:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4846B9B0D6B1DEDADE4A9C1BB6F913695D261585 Validity Not Before: Sep 1 10:57:29 2025 GMT Not After : Aug 31 11:02:29 2026 GMT Subject: CN=FFC86D36DD4A69AF8C85A714C35C8C7EFA53B54A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:14:92:2c:da:a2:2c:03:16:7d:ed:d1:30:c6: 1e:28:e3:f3:1d:8f:03:0b:2f:96:d0:f5:3b:61:8c: 77:c5:9f:69:e2:f8:8b:0a:a5:f8:d2:57:4d:aa:41: 62:36:de:9d:77:df:e2:23:48:53:c4:eb:3e:63:24: e4:f9:a2:9c:3e:37:b3:64:ef:16:40:bc:4f:6e:57: 57:1a:db:f6:48:10:f3:02:d6:03:88:b1:ff:d5:7c: 2d:2c:f5:e2:75:1a:95:96:42:8e:e0:22:d4:5b:49: ad:b9:fb:b8:04:48:a7:58:0c:03:8a:01:2d:b9:68: 7d:b7:bb:f1:8b:78:47:e5:e3:b5:0f:e3:c1:a7:d1: b2:69:39:aa:d7:0d:f9:6c:19:ee:01:0d:cb:d7:80: 68:c2:2e:0b:6d:7f:49:cd:d6:d3:42:1a:1f:ff:7a: 68:b1:70:98:f2:6b:e9:30:e0:4c:29:cc:cd:4f:77: 61:2f:13:11:41:ae:ae:63:cb:34:85:75:d7:6c:64: e8:97:5b:4a:b0:ad:f9:75:2f:3f:01:02:70:21:d8: 6c:1c:f8:50:35:4d:76:76:34:03:de:98:dd:0a:ac: 8e:d7:ad:af:6b:b1:da:5c:cc:bd:d6:98:39:01:dc: 50:6c:9f:e5:aa:6a:fb:3f:17:d2:5e:7f:56:34:6b: 3d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C8:6D:36:DD:4A:69:AF:8C:85:A7:14:C3:5C:8C:7E:FA:53:B5:4A X509v3 Authority Key Identifier: keyid:48:46:B9:B0:D6:B1:DE:DA:DE:4A:9C:1B:B6:F9:13:69:5D:26:15:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.148.0/23 Signature Algorithm: sha256WithRSAEncryption 93:a9:7e:76:6d:fe:06:85:3d:4e:49:3b:56:c2:8a:bd:a2:47: 7a:fe:48:c8:3d:4e:53:92:1a:b5:e3:ac:c7:af:bc:35:f5:d0: de:53:e6:ce:74:d1:a1:5f:08:8f:97:06:fe:cf:c1:9c:76:ac: 0e:cb:31:6f:c7:0d:21:4e:72:55:9e:1a:16:b7:70:86:74:32: de:fb:f0:35:b2:0e:8d:67:67:9a:fb:b5:60:b9:b0:63:c1:dd: 18:f4:3f:b9:33:f1:e8:44:16:ba:9c:2a:4a:97:73:40:d7:8c: c5:7a:d7:87:0c:e4:07:2e:b6:a3:cd:12:99:49:da:20:83:6e: 5a:75:52:f2:b3:8b:6b:b6:71:70:aa:1d:49:3f:75:8c:80:cb: fa:35:f0:94:85:d1:7b:a9:f9:86:7a:c7:8d:d1:ec:eb:e4:1f: 79:d7:5b:bc:15:10:79:bc:0e:02:25:45:da:46:fd:47:e8:4e: c5:1d:ef:e5:21:45:6d:d7:69:8a:1b:f7:ec:36:1f:3d:32:8d: e3:bb:dc:c1:72:aa:15:97:51:a4:df:8e:38:bc:45:a0:58:8a: 8a:74:a9:85:40:00:66:17:35:08:c6:3b:9b:07:34:c4:80:6c: 1b:bd:81:92:9b:0b:7e:f9:61:ad:25:38:4f:a5:21:78:4f:48: 1f:65:ea:6e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdWkHs3WN9x7NQEcG+ySKCLFPhpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg0NkI5QjBENkIxREVEQURFNEE5QzFCQjZGOTEzNjk1 RDI2MTU4NTAeFw0yNTA5MDExMDU3MjlaFw0yNjA4MzExMTAyMjlaMDMxMTAvBgNV BAMTKEZGQzg2RDM2REQ0QTY5QUY4Qzg1QTcxNEMzNUM4QzdFRkE1M0I1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCFJIs2qIsAxZ97dEwxh4o4/Md jwMLL5bQ9TthjHfFn2ni+IsKpfjSV02qQWI23p133+IjSFPE6z5jJOT5opw+N7Nk 7xZAvE9uV1ca2/ZIEPMC1gOIsf/VfC0s9eJ1GpWWQo7gItRbSa25+7gESKdYDAOK AS25aH23u/GLeEfl47UP48Gn0bJpOarXDflsGe4BDcvXgGjCLgttf0nN1tNCGh// emixcJjya+kw4EwpzM1Pd2EvExFBrq5jyzSFdddsZOiXW0qwrfl1Lz8BAnAh2Gwc +FA1TXZ2NAPemN0KrI7Xra9rsdpczL3WmDkB3FBsn+Wqavs/F9Jef1Y0az39AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/8htNt1Kaa+MhacUw1yMfvpTtUowHwYDVR0j BBgwFoAUSEa5sNax3treSpwbtvkTaV0mFYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OTMxZmFlOS02MjdhLTRhMDgtYmU1Yy00NGEwYzE1NzE0ODcvMC80ODQ2QjlCMEQ2 QjFERURBREU0QTlDMUJCNkY5MTM2OTVEMjYxNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDg0NkI5QjBENkIxREVEQURFNEE5QzFCQjZGOTEzNjk1RDI2 MTU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5MzFmYWU5LTYyN2EtNGEwOC1i ZTVjLTQ0YTBjMTU3MTQ4Ny8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OUMA0GCSqG SIb3DQEBCwUAA4IBAQCTqX52bf4GhT1OSTtWwoq9okd6/kjIPU5Tkhq146zHr7w1 9dDeU+bOdNGhXwiPlwb+z8GcdqwOyzFvxw0hTnJVnhoWt3CGdDLe+/A1sg6NZ2ea +7VgubBjwd0Y9D+5M/HoRBa6nCpKl3NA14zFeteHDOQHLrajzRKZSdogg25adVLy s4trtnFwqh1JP3WMgMv6NfCUhdF7qfmGeseN0ezr5B9511u8FRB5vA4CJUXaRv1H 6E7FHe/lIUVt12mKG/fsNh89Mo3ju9zBcqoVl1Gk3444vEWgWIqKdKmFQABmFzUI xjubBzTEgGwbvYGSmwt++WGtJThPpSF4T0gfZepu -----END CERTIFICATE-----Generated at Sun Sep 7 15:45:43 2025 by rpki-client