$ rpki-client -vvf repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa File: 3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa (raw, json) Hash identifier: EBtEj4ypwlzzw6GhMy3RkgtUq0npTq7gZQPuYhe9Zzc= Subject key identifier: BA:BB:98:94:DE:F5:07:6D:54:06:53:4F:EC:70:E0:4D:C1:56:B3:29 Certificate issuer: /CN=16CD7877C91A179A0A6751085603DA8E7DE539F0 Certificate serial: 227AC7F0B75EE7E1C9AEA9DC5F6ECDA3C97D02F3 Authority key identifier: 16:CD:78:77:C9:1A:17:9A:0A:67:51:08:56:03:DA:8E:7D:E5:39:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16CD7877C91A179A0A6751085603DA8E7DE539F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa Signing time: Thu 28 Aug 2025 03:00:00 +0000 ROA not before: Thu 28 Aug 2025 02:55:00 +0000 ROA not after: Thu 27 Aug 2026 03:00:00 +0000 asID: 139963 IP address blocks: 103.147.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/16CD7877C91A179A0A6751085603DA8E7DE539F0.crl rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/16CD7877C91A179A0A6751085603DA8E7DE539F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16CD7877C91A179A0A6751085603DA8E7DE539F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 07:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:7a:c7:f0:b7:5e:e7:e1:c9:ae:a9:dc:5f:6e:cd:a3:c9:7d:02:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16CD7877C91A179A0A6751085603DA8E7DE539F0 Validity Not Before: Aug 28 02:55:00 2025 GMT Not After : Aug 27 03:00:00 2026 GMT Subject: CN=BABB9894DEF5076D5406534FEC70E04DC156B329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7b:e4:c2:79:e2:61:82:05:71:cf:71:16:45: 1a:ef:ad:ae:85:c0:dc:ac:44:f3:62:cb:1b:a4:85: 46:cd:8d:ca:4a:e5:27:9d:3a:8f:73:15:62:c4:b4: 09:3d:29:74:3b:75:4d:76:e6:79:a8:3b:dd:a0:27: ab:a6:fd:06:8e:eb:f1:f4:b3:e6:37:f8:9c:e7:94: 69:93:db:27:cf:1a:24:bf:4d:f4:0e:1a:7c:b7:99: 12:fe:cd:16:69:9b:ea:04:a3:70:b8:b8:e3:ff:1d: 40:f1:63:2b:b5:cf:f9:70:6b:59:f9:a4:f0:bd:be: 65:ec:32:84:3c:4f:71:f2:b9:08:e6:f1:da:d9:b5: 36:e5:86:18:8b:87:80:a9:e0:68:b7:3d:2c:1b:a2: c5:a3:fc:43:6c:d6:bf:b3:58:e9:7b:ef:ae:03:68: a5:11:1e:6f:ec:8e:a9:73:72:01:a6:7d:42:1f:31: 07:c2:22:b7:11:fa:d9:d3:69:0e:d0:22:64:04:5a: 5a:8d:d9:2a:76:8d:87:33:de:61:38:fc:46:fe:c2: bc:46:1f:ed:22:6b:ce:d2:42:66:eb:6c:5e:8c:8f: 69:0e:b4:af:68:09:cf:0d:bf:98:7d:48:88:54:b5: f8:fd:8e:33:30:7a:5b:27:83:67:fd:27:77:97:c2: f8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BB:98:94:DE:F5:07:6D:54:06:53:4F:EC:70:E0:4D:C1:56:B3:29 X509v3 Authority Key Identifier: keyid:16:CD:78:77:C9:1A:17:9A:0A:67:51:08:56:03:DA:8E:7D:E5:39:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/16CD7877C91A179A0A6751085603DA8E7DE539F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16CD7877C91A179A0A6751085603DA8E7DE539F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.134.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:42:cc:69:a9:3c:e8:33:d7:c2:6d:26:a4:40:67:10:be:cc: c0:fe:40:5e:ff:fe:55:8d:07:74:4a:6d:87:bf:c7:dc:86:a2: f7:7a:05:9d:2b:2a:90:12:ed:90:ad:b2:db:38:db:4a:eb:a1: 41:e5:c9:69:53:cc:53:93:41:a1:49:18:51:6d:c6:82:59:19: 15:29:fc:7a:d0:96:85:54:d3:02:0f:23:6d:e3:67:e6:bc:60: 75:13:a6:42:69:64:34:76:dd:58:80:98:4c:50:7d:49:7e:88: 88:dd:4a:ee:8e:da:ca:2c:7b:ac:2c:6c:43:a3:20:ae:65:c3: f6:12:7e:f9:04:1d:62:ff:15:b8:d0:09:2a:02:88:95:a0:32: 1e:3a:53:c4:67:f9:68:e3:cb:2e:2e:ac:db:d9:f3:ec:aa:48: 0e:0e:53:bb:d9:7c:38:8f:16:66:26:d9:36:d2:d4:35:bb:ca: 9d:e7:cb:54:4b:68:ca:f9:5d:8e:bc:2a:94:6f:ae:0b:ea:cb: b1:ac:a2:80:d7:20:1f:b4:2c:ef:45:77:71:5e:75:9f:4e:3b: 50:f7:01:78:26:29:36:52:68:0d:f1:65:a8:bd:cd:1c:fe:88: 92:1d:fc:66:8a:90:18:26:66:ef:0d:d7:08:75:bb:90:1b:81: 38:df:c7:3b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUInrH8Lde5+HJrqncX27No8l9AvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZDRDc4NzdDOTFBMTc5QTBBNjc1MTA4NTYwM0RBOEU3 REU1MzlGMDAeFw0yNTA4MjgwMjU1MDBaFw0yNjA4MjcwMzAwMDBaMDMxMTAvBgNV BAMTKEJBQkI5ODk0REVGNTA3NkQ1NDA2NTM0RkVDNzBFMDREQzE1NkIzMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDie+TCeeJhggVxz3EWRRrvra6F wNysRPNiyxukhUbNjcpK5SedOo9zFWLEtAk9KXQ7dU125nmoO92gJ6um/QaO6/H0 s+Y3+JznlGmT2yfPGiS/TfQOGny3mRL+zRZpm+oEo3C4uOP/HUDxYyu1z/lwa1n5 pPC9vmXsMoQ8T3HyuQjm8drZtTblhhiLh4Cp4Gi3PSwbosWj/ENs1r+zWOl7764D aKURHm/sjqlzcgGmfUIfMQfCIrcR+tnTaQ7QImQEWlqN2Sp2jYcz3mE4/Eb+wrxG H+0ia87SQmbrbF6Mj2kOtK9oCc8Nv5h9SIhUtfj9jjMwelsng2f9J3eXwvj7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuruYlN71B21UBlNP7HDgTcFWsykwHwYDVR0j BBgwFoAUFs14d8kaF5oKZ1EIVgPajn3lOfAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDhiNjU4My00MTIyLTQ2OWQtODM4NC0zYWYxYmNjNjYwN2YvMC8xNkNENzg3N0M5 MUExNzlBMEE2NzUxMDg1NjAzREE4RTdERTUzOUYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTZDRDc4NzdDOTFBMTc5QTBBNjc1MTA4NTYwM0RBOEU3REU1 MzlGMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0OGI2NTgzLTQxMjItNDY5ZC04 Mzg0LTNhZjFiY2M2NjA3Zi8wLzMxMzAzMzJlMzEzNDM3MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk4YwDQYJ KoZIhvcNAQELBQADggEBAItCzGmpPOgz18JtJqRAZxC+zMD+QF7//lWNB3RKbYe/ x9yGovd6BZ0rKpAS7ZCtsts420rroUHlyWlTzFOTQaFJGFFtxoJZGRUp/HrQloVU 0wIPI23jZ+a8YHUTpkJpZDR23ViAmExQfUl+iIjdSu6O2sose6wsbEOjIK5lw/YS fvkEHWL/FbjQCSoCiJWgMh46U8Rn+Wjjyy4urNvZ8+yqSA4OU7vZfDiPFmYm2TbS 1DW7yp3ny1RLaMr5XY68KpRvrgvqy7GsooDXIB+0LO9Fd3FedZ9OO1D3AXgmKTZS aA3xZai9zRz+iJId/GaKkBgmZu8N1wh1u5AbgTjfxzs= -----END CERTIFICATE-----Generated at Sun Sep 7 15:47:11 2025 by rpki-client