$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa File: 3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: Z9EEMEF5zgEExgpHK7oCqGG8wCUnuduZshqAFkuwllk= Subject key identifier: C5:0F:E0:2F:71:2C:06:B9:C8:97:4D:E9:DA:99:B4:E3:06:29:D6:F0 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 2D4158F0A9031701A1EC25352D75596961D6A3B2 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa Signing time: Sun 31 Aug 2025 13:00:02 +0000 ROA not before: Sun 31 Aug 2025 12:55:02 +0000 ROA not after: Sun 30 Aug 2026 13:00:02 +0000 asID: 4787 IP address blocks: 103.148.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 00:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:41:58:f0:a9:03:17:01:a1:ec:25:35:2d:75:59:69:61:d6:a3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Aug 31 12:55:02 2025 GMT Not After : Aug 30 13:00:02 2026 GMT Subject: CN=C50FE02F712C06B9C8974DE9DA99B4E30629D6F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:75:52:9f:0b:c2:77:9e:cc:bb:68:8e:eb:71: f0:fe:86:5e:f2:ce:87:0c:b2:55:c1:bf:e1:1d:7e: 11:e3:a5:d9:2d:a2:b8:7f:9a:43:b9:45:81:e6:b9: 95:b9:3e:83:68:73:29:ba:07:f2:79:77:cf:6d:dd: 52:94:6c:7c:e2:df:11:ba:56:a0:ab:65:5e:50:ab: 40:01:62:1a:36:ba:86:03:39:2b:34:5d:3c:8e:ec: 43:18:75:65:3d:6d:75:aa:8a:7d:31:2a:44:18:fc: de:b2:a5:28:67:ed:27:f2:48:db:9a:8f:b7:33:65: ee:66:d0:99:08:8a:83:2d:18:d2:8b:37:ed:41:6c: 21:ab:0c:88:b5:d2:61:1d:84:f0:0e:87:11:7b:82: 87:33:0e:51:e2:ce:27:ac:07:33:f7:7c:df:0d:fd: 7c:34:31:ba:eb:48:21:40:41:f2:05:5c:61:e8:b6: 7c:99:1f:43:39:1b:21:4d:90:15:13:68:b8:65:19: 69:33:df:03:1c:a8:91:1a:ab:a8:d7:91:09:90:b3: 31:e2:8e:f0:46:40:75:70:f1:d2:32:c6:d7:3f:d7: 50:44:ed:17:32:9f:66:1d:14:aa:9b:3a:45:60:77: 4f:85:d4:92:98:71:f1:5b:53:fa:6c:fa:fa:7b:6f: d5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0F:E0:2F:71:2C:06:B9:C8:97:4D:E9:DA:99:B4:E3:06:29:D6:F0 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1a:26:40:63:06:ee:00:a1:d9:83:9e:df:62:25:e3:04:d3: 0d:81:5e:ab:22:be:bc:94:4b:a9:9b:46:8c:3a:69:33:70:67: e1:4f:4d:22:78:d5:bf:7d:eb:d7:0c:26:9f:48:a3:58:6c:1f: fc:47:b6:cb:22:85:b6:f0:fa:4a:85:06:b6:41:12:22:1b:cd: db:37:4d:d1:a4:1c:5d:67:4e:d7:60:00:60:e2:b0:26:aa:b3: 5d:88:95:d9:c0:16:d7:16:5d:c4:0e:c2:89:bd:ed:f0:67:7b: 22:a9:0c:d6:23:3a:6d:f1:75:ad:a2:52:e7:b0:ad:be:37:19: 1a:6b:42:55:f4:e9:72:50:66:1f:6d:7f:d3:c2:c6:80:33:ff: 6d:b6:0f:c3:6b:55:40:42:91:88:74:94:45:ab:c8:99:d7:2a: 8b:34:4d:27:6d:88:93:61:95:6d:06:b5:7a:3e:da:64:10:72: 76:53:7f:0e:06:1b:d7:77:a7:45:a5:82:6b:dc:26:1b:aa:e9: 3e:69:03:45:65:c2:80:aa:59:7d:7b:5c:af:81:29:6e:5d:0e: 3a:df:71:47:e9:df:35:a1:77:e6:7a:36:60:f3:52:2f:be:c4: ad:fe:4e:2f:5e:0e:a8:fd:bd:56:96:ec:e4:33:52:fc:64:bb: db:3c:52:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULUFY8KkDFwGh7CU1LXVZaWHWo7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNTA4MzExMjU1MDJaFw0yNjA4MzAxMzAwMDJaMDMxMTAvBgNV BAMTKEM1MEZFMDJGNzEyQzA2QjlDODk3NERFOURBOTlCNEUzMDYyOUQ2RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvdVKfC8J3nsy7aI7rcfD+hl7y zocMslXBv+EdfhHjpdktorh/mkO5RYHmuZW5PoNocym6B/J5d89t3VKUbHzi3xG6 VqCrZV5Qq0ABYho2uoYDOSs0XTyO7EMYdWU9bXWqin0xKkQY/N6ypShn7SfySNua j7czZe5m0JkIioMtGNKLN+1BbCGrDIi10mEdhPAOhxF7goczDlHiziesBzP3fN8N /Xw0MbrrSCFAQfIFXGHotnyZH0M5GyFNkBUTaLhlGWkz3wMcqJEaq6jXkQmQszHi jvBGQHVw8dIyxtc/11BE7Rcyn2YdFKqbOkVgd0+F1JKYcfFbU/ps+vp7b9U3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxQ/gL3EsBrnIl03p2pm04wYp1vAwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeUxjANBgkqhkiG 9w0BAQsFAAOCAQEARRomQGMG7gCh2YOe32Il4wTTDYFeqyK+vJRLqZtGjDppM3Bn 4U9NInjVv33r1wwmn0ijWGwf/Ee2yyKFtvD6SoUGtkESIhvN2zdN0aQcXWdO12AA YOKwJqqzXYiV2cAW1xZdxA7Cib3t8Gd7IqkM1iM6bfF1raJS57CtvjcZGmtCVfTp clBmH21/08LGgDP/bbYPw2tVQEKRiHSURavImdcqizRNJ22Ik2GVbQa1ej7aZBBy dlN/DgYb13enRaWCa9wmG6rpPmkDRWXCgKpZfXtcr4Epbl0OOt9xR+nfNaF35no2 YPNSL77Erf5OL14OqP29Vpbs5DNS/GS72zxSjQ== -----END CERTIFICATE-----Generated at Mon Sep 8 09:26:04 2025 by rpki-client