$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa File: 3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa (raw, json) Hash identifier: eMIpFTn3dFmv1C4MDrX0lkj1ZQs9jU1AYYbAGg+J5/E= Subject key identifier: AE:33:48:29:55:9A:CD:8C:9B:05:8A:60:90:31:BA:AD:DA:FD:A4:34 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 62C0E83FC9BD15D4542089C102C37F7BF9984294 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa Signing time: Tue 02 Sep 2025 05:02:56 +0000 ROA not before: Tue 02 Sep 2025 04:57:56 +0000 ROA not after: Tue 01 Sep 2026 05:02:56 +0000 asID: 138128 IP address blocks: 103.148.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 00:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c0:e8:3f:c9:bd:15:d4:54:20:89:c1:02:c3:7f:7b:f9:98:42:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Sep 2 04:57:56 2025 GMT Not After : Sep 1 05:02:56 2026 GMT Subject: CN=AE334829559ACD8C9B058A609031BAADDAFDA434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1b:56:6a:12:77:a4:dd:27:2c:61:f1:93:ea: ae:d9:76:58:ad:d6:ec:b6:88:cc:d4:66:66:4e:df: 20:e2:6a:12:84:9b:7c:bf:de:21:7e:f8:75:ed:44: 6a:53:ba:03:c2:03:d8:9c:96:aa:f3:e4:f5:1a:fd: d5:58:e3:df:72:43:94:04:d2:e6:1d:bd:ba:53:2b: 16:a5:b6:e7:6f:d5:b8:69:17:77:d4:2b:c8:62:67: 00:fd:0f:53:10:11:14:fa:39:cf:4d:97:d3:cc:1f: 65:d7:1b:94:7e:65:77:60:0d:a4:2a:eb:57:2e:12: a1:a3:df:57:38:1d:2c:24:84:ef:b6:8d:97:aa:f8: f9:6f:58:41:19:cf:70:b8:28:24:82:b7:a7:6e:5c: b4:68:95:5a:c6:8e:40:44:6f:4b:c6:45:30:18:f2: f6:39:c5:b8:ae:6f:98:00:33:7b:ba:93:a2:9d:dd: 36:82:70:08:34:c5:ec:e6:9c:64:b1:dc:c7:9f:b3: cc:bd:da:14:2a:d2:c5:84:30:23:a4:76:28:d0:96: 76:c4:bd:ea:dc:80:e5:58:0e:af:00:71:5e:17:3f: f1:21:41:78:35:2f:77:19:43:62:52:92:ce:38:18: 11:8e:fa:d4:4b:88:01:fe:08:a1:d9:bd:99:23:62: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:33:48:29:55:9A:CD:8C:9B:05:8A:60:90:31:BA:AD:DA:FD:A4:34 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/23 Signature Algorithm: sha256WithRSAEncryption 81:3d:46:3b:15:e2:9b:0b:2b:13:be:5e:e7:67:23:6e:78:59: c7:47:31:36:60:d3:4a:69:b2:7f:85:96:7d:d9:0a:ba:7e:b9: 49:70:df:10:39:25:a5:8f:c7:e5:4c:8b:6b:2a:4c:44:02:25: d3:81:35:b1:8d:c1:34:47:24:2e:82:18:d4:67:bd:09:53:a7: c2:ad:b4:c7:e6:a9:f9:e3:e4:1d:56:7b:2c:86:63:90:5f:9a: c3:fd:11:1b:ae:69:40:54:6c:b2:ad:03:e8:c0:69:2d:62:a1: bc:56:97:ad:07:d6:73:60:5f:af:62:8d:1f:c4:bc:ec:d7:36: 92:dc:e1:bb:c7:37:e2:1a:aa:d8:b1:2b:8e:90:ac:30:05:1f: 59:1a:d0:e5:32:1d:e0:5e:3e:21:10:64:54:73:cf:17:cc:f5: 05:a8:9f:2b:53:7b:0e:b6:b1:88:5e:a3:61:f2:e3:17:8f:c7: 35:87:d8:66:9e:27:dc:6a:ab:60:bb:5a:3c:fb:8b:2a:b2:3b: 2c:c9:ff:83:4e:ae:af:dc:58:a2:0b:60:70:e3:a2:9b:da:b6: a7:4a:2b:0e:a6:1a:74:a0:1a:a5:05:20:ec:97:85:7b:7a:8b: 48:3a:22:a5:ee:51:01:34:03:7c:37:05:b0:a9:ca:3e:41:1f: be:30:c2:9c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYsDoP8m9FdRUIInBAsN/e/mYQpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNTA5MDIwNDU3NTZaFw0yNjA5MDEwNTAyNTZaMDMxMTAvBgNV BAMTKEFFMzM0ODI5NTU5QUNEOEM5QjA1OEE2MDkwMzFCQUFEREFGREE0MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8G1ZqEnek3ScsYfGT6q7Zdlit 1uy2iMzUZmZO3yDiahKEm3y/3iF++HXtRGpTugPCA9iclqrz5PUa/dVY499yQ5QE 0uYdvbpTKxaltudv1bhpF3fUK8hiZwD9D1MQERT6Oc9Nl9PMH2XXG5R+ZXdgDaQq 61cuEqGj31c4HSwkhO+2jZeq+PlvWEEZz3C4KCSCt6duXLRolVrGjkBEb0vGRTAY 8vY5xbiub5gAM3u6k6Kd3TaCcAg0xezmnGSx3Mefs8y92hQq0sWEMCOkdijQlnbE vercgOVYDq8AcV4XP/EhQXg1L3cZQ2JSks44GBGO+tRLiAH+CKHZvZkjYjs7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrjNIKVWazYybBYpgkDG6rdr9pDQwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlMYwDQYJ KoZIhvcNAQELBQADggEBAIE9RjsV4psLKxO+XudnI254WcdHMTZg00ppsn+Fln3Z Crp+uUlw3xA5JaWPx+VMi2sqTEQCJdOBNbGNwTRHJC6CGNRnvQlTp8KttMfmqfnj 5B1WeyyGY5BfmsP9ERuuaUBUbLKtA+jAaS1iobxWl60H1nNgX69ijR/EvOzXNpLc 4bvHN+IaqtixK46QrDAFH1ka0OUyHeBePiEQZFRzzxfM9QWonytTew62sYheo2Hy 4xePxzWH2GaeJ9xqq2C7Wjz7iyqyOyzJ/4NOrq/cWKILYHDjopvatqdKKw6mGnSg GqUFIOyXhXt6i0g6IqXuUQE0A3w3BbCpyj5BH74wwpw= -----END CERTIFICATE-----Generated at Mon Sep 8 09:41:12 2025 by rpki-client