$ rpki-client -vvf repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: cVFaX5vsSnlCiBXiYi7VFBsU8ifDtbmqTWAW0Jfdf/M= Subject key identifier: A0:6A:A0:E8:91:04:D3:0F:0D:05:08:3F:7B:1B:BB:CA:4B:EE:C4:19 Certificate issuer: /CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42 Certificate serial: 0FA8B4738F0C0104F68F9E8E6DB44EE94C1112D5 Authority key identifier: B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa Signing time: Mon 01 Sep 2025 11:00:00 +0000 ROA not before: Mon 01 Sep 2025 10:55:00 +0000 ROA not after: Mon 31 Aug 2026 11:00:00 +0000 asID: 17769 IP address blocks: 103.147.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:a8:b4:73:8f:0c:01:04:f6:8f:9e:8e:6d:b4:4e:e9:4c:11:12:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42 Validity Not Before: Sep 1 10:55:00 2025 GMT Not After : Aug 31 11:00:00 2026 GMT Subject: CN=A06AA0E89104D30F0D05083F7B1BBBCA4BEEC419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:ea:de:67:f3:4e:81:3a:3d:c0:6e:c1:a3: 84:b0:05:f0:41:9e:bc:ca:71:16:e0:e0:8b:f7:82: 3f:26:d6:4a:8f:35:09:41:5d:3e:97:e0:77:f5:33: c7:21:6f:7e:07:d0:88:3d:22:ea:b4:09:9c:75:3e: ae:7b:7a:ea:5a:af:23:68:3e:33:77:53:71:84:2f: aa:db:f5:23:9b:cd:cb:7d:33:6d:cd:6e:c5:26:77: aa:e9:e6:4f:f3:63:36:9c:55:e2:c6:c0:08:9c:70: 28:c6:9e:cf:29:79:2b:5e:9c:03:50:07:bd:bc:f2: 96:48:c5:b0:87:1a:c6:7f:4d:7c:f5:91:12:88:79: 77:5b:1c:23:bb:0a:c4:24:8f:bb:e4:79:5c:94:91: 79:fe:a8:b1:09:f4:4a:a1:3c:4a:52:f4:1a:96:08: cc:e2:dc:05:e0:42:bb:de:38:d2:39:cd:3f:ce:85: fa:f7:52:58:ec:9c:fd:6d:1d:da:4c:a8:e6:5f:72: 89:c9:e7:fd:2e:7e:87:ab:f5:7f:cb:fd:db:9e:2d: dc:98:49:cb:3e:44:41:3c:04:d3:e4:5c:a3:ed:2b: 0e:86:b7:fb:5c:7d:cf:72:9f:21:ab:ce:40:30:c5: fa:dc:bd:f0:48:10:12:19:43:65:e4:b2:a1:29:6b: e0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6A:A0:E8:91:04:D3:0F:0D:05:08:3F:7B:1B:BB:CA:4B:EE:C4:19 X509v3 Authority Key Identifier: keyid:B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.164.0/23 Signature Algorithm: sha256WithRSAEncryption 97:a3:9f:15:47:eb:69:8e:7d:ee:22:91:c9:29:3b:ad:21:84: dc:63:95:3b:89:4d:fb:56:0b:f2:63:5d:7c:92:bf:14:2c:f5: 20:b9:ee:ff:5c:69:13:86:61:81:d8:18:23:5b:01:96:27:b9: 22:8d:b8:a0:7d:2b:86:4a:85:1b:e2:b3:a6:c4:bc:06:06:a3: 7b:51:4f:8a:01:87:d4:c5:fc:32:48:46:6b:d8:65:d7:15:a6: d3:83:30:92:64:6b:49:63:33:57:bb:d5:10:16:1f:57:e6:6f: 39:e9:3a:d5:53:72:95:6f:de:7d:6d:7a:ca:4d:87:57:9e:b6: 6b:c8:c5:fa:d1:f2:36:c1:cf:f7:2d:25:5b:bb:c2:f3:b1:f3: aa:88:d7:d9:cf:ed:69:b0:3e:de:ac:e3:9c:bb:c9:0c:e8:06: ff:a1:ae:c0:fe:ec:f6:e5:14:cf:d2:70:e7:fe:19:84:e2:6f: 29:27:14:3f:99:b5:a8:62:f3:d7:7a:cf:5e:1d:89:6b:8d:6b: 48:36:51:b0:3f:85:6e:98:5f:5c:9e:7c:96:fb:23:02:19:88: 31:b5:46:75:12:28:6a:1b:d9:a2:58:86:07:be:aa:41:ab:89: 54:9b:2f:03:87:f7:eb:02:e7:55:9b:4d:de:1e:b1:38:e2:6e: 76:63:4a:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD6i0c48MAQT2j56ObbRO6UwREtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNCM0ExREVFMDlFNDA3QkM2Q0UwOEVGQzdDRDJCQUY0 MUM3QkE0MjAeFw0yNTA5MDExMDU1MDBaFw0yNjA4MzExMTAwMDBaMDMxMTAvBgNV BAMTKEEwNkFBMEU4OTEwNEQzMEYwRDA1MDgzRjdCMUJCQkNBNEJFRUM0MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2YureZ/NOgTo9wG7Bo4SwBfBB nrzKcRbg4Iv3gj8m1kqPNQlBXT6X4Hf1M8chb34H0Ig9Iuq0CZx1Pq57euparyNo PjN3U3GEL6rb9SObzct9M23NbsUmd6rp5k/zYzacVeLGwAiccCjGns8peStenANQ B7288pZIxbCHGsZ/TXz1kRKIeXdbHCO7CsQkj7vkeVyUkXn+qLEJ9EqhPEpS9BqW CMzi3AXgQrveONI5zT/Ohfr3UljsnP1tHdpMqOZfconJ5/0ufoer9X/L/dueLdyY Scs+REE8BNPkXKPtKw6Gt/tcfc9ynyGrzkAwxfrcvfBIEBIZQ2XksqEpa+CzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoGqg6JEE0w8NBQg/exu7ykvuxBkwHwYDVR0j BBgwFoAUs7Oh3uCeQHvGzgjvx80rr0HHukIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTRjNjFhYy03YjVjLTRkOTQtYTM2NS1jNDAyMWMxNzA5YzcvMC9CM0IzQTFERUUw OUU0MDdCQzZDRTA4RUZDN0NEMkJBRjQxQzdCQTQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNCM0ExREVFMDlFNDA3QkM2Q0UwOEVGQzdDRDJCQUY0MUM3 QkE0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNGM2MWFjLTdiNWMtNGQ5NC1h MzY1LWM0MDIxYzE3MDljNy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM2MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OkMA0GCSqG SIb3DQEBCwUAA4IBAQCXo58VR+tpjn3uIpHJKTutIYTcY5U7iU37VgvyY118kr8U LPUgue7/XGkThmGB2BgjWwGWJ7kijbigfSuGSoUb4rOmxLwGBqN7UU+KAYfUxfwy SEZr2GXXFabTgzCSZGtJYzNXu9UQFh9X5m856TrVU3KVb959bXrKTYdXnrZryMX6 0fI2wc/3LSVbu8LzsfOqiNfZz+1psD7erOOcu8kM6Ab/oa7A/uz25RTP0nDn/hmE 4m8pJxQ/mbWoYvPXes9eHYlrjWtINlGwP4VumF9cnnyW+yMCGYgxtUZ1EihqG9mi WIYHvqpBq4lUmy8Dh/frAudVm03eHrE44m52Y0oa -----END CERTIFICATE-----Generated at Mon Sep 8 09:52:49 2025 by rpki-client