$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa File: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: ZtfrmcdIDZFk5FXV0vrgffSS//LC3R042y4pGOoRFVw= Subject key identifier: BE:E0:C5:98:C2:40:00:0D:D0:C3:D5:68:4F:AA:B9:F3:80:7F:4A:17 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 4DFB9236558A29E790BB1DEE383E196FCA085608 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa Signing time: Tue 02 Sep 2025 05:02:52 +0000 ROA not before: Tue 02 Sep 2025 04:57:52 +0000 ROA not after: Tue 01 Sep 2026 05:02:52 +0000 asID: 139952 IP address blocks: 103.147.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 22:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:fb:92:36:55:8a:29:e7:90:bb:1d:ee:38:3e:19:6f:ca:08:56:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Sep 2 04:57:52 2025 GMT Not After : Sep 1 05:02:52 2026 GMT Subject: CN=BEE0C598C240000DD0C3D5684FAAB9F3807F4A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4c:11:4d:37:1f:b3:1b:ae:25:1e:87:e8:02: 21:ee:d4:97:00:a8:af:b2:cc:00:d7:59:ef:c5:ce: 9e:0f:85:28:3c:64:4d:33:d1:c5:9c:fc:bc:c6:22: 21:7e:5f:5f:e2:32:ba:44:b5:d4:d8:dc:45:72:59: 31:09:75:d1:70:5c:87:83:35:62:33:16:97:82:23: 08:fb:de:e7:ae:1f:c1:10:d4:b2:bf:aa:e8:42:ab: 90:c0:d7:7e:15:e1:20:be:51:1e:31:53:4f:74:71: be:fd:b2:69:fa:f9:fa:76:a6:d2:65:7e:85:a6:b5: d3:34:6a:7b:ae:e4:21:13:be:67:90:c5:df:6e:64: 96:30:d8:e7:21:ae:82:68:27:26:7c:7f:e4:8b:11: 99:f4:e1:9c:66:24:54:33:5a:51:8b:ec:e3:ee:06: 59:10:51:3c:9b:28:94:69:9f:f2:a4:7a:e7:87:c7: f0:d0:3f:db:e5:35:6e:a0:21:ef:41:18:0d:5e:a4: 2b:ac:dd:51:70:30:8e:34:25:72:39:a9:82:c0:45: bd:8a:f3:65:aa:c9:af:b8:cb:ea:5f:92:95:38:10: e2:1c:84:8e:cb:78:29:72:4a:33:69:56:a5:dd:bb: 1e:6c:ee:a5:a0:e2:ba:57:fe:d6:91:1f:20:59:2e: dd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E0:C5:98:C2:40:00:0D:D0:C3:D5:68:4F:AA:B9:F3:80:7F:4A:17 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.76.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:57:20:54:e9:d6:5a:83:ec:33:50:90:99:4a:56:b2:78:a0: 7a:fd:95:ec:82:86:00:ca:b9:de:4f:dc:05:8b:82:ce:fb:a6: 8a:d3:e4:26:3e:d3:34:41:b8:8f:6e:4c:38:30:27:df:ca:21: 9e:ac:bf:1c:a9:ac:e8:36:e5:1f:f8:d5:0d:6d:6c:ec:cc:f5: bb:2b:fb:b8:21:b0:43:0e:a8:ab:85:a9:36:89:0d:0e:93:dc: 79:81:32:49:e3:7e:d0:56:46:f9:ac:97:5a:0f:e6:34:db:92: 2f:74:8c:95:e9:aa:24:93:3e:fb:ac:51:85:cb:ba:0b:f7:ff: e7:7f:17:d2:88:68:b5:e3:06:12:a1:a4:5a:50:50:77:14:b0: 2e:54:87:5b:e9:97:58:c7:43:da:8c:c2:88:83:6e:91:7c:1d: 03:8d:22:c0:1e:41:bf:50:0d:6f:f6:c6:d2:5e:22:38:1d:38: d8:50:ee:bb:92:79:3e:96:80:e9:00:99:8b:93:a7:31:6c:4d: ae:38:4c:f3:84:61:4f:56:a7:d3:95:c5:f0:8a:9f:a0:6b:0a: 3d:7c:18:96:67:5f:50:af:6c:e5:43:e7:64:db:f1:09:e1:e1: 63:55:27:73:5e:37:f5:b2:c3:52:2c:e7:56:ab:7c:24:c2:00: b8:dc:7a:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTfuSNlWKKeeQux3uOD4Zb8oIVggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTA5MDIwNDU3NTJaFw0yNjA5MDEwNTAyNTJaMDMxMTAvBgNV BAMTKEJFRTBDNTk4QzI0MDAwMEREMEMzRDU2ODRGQUFCOUYzODA3RjRBMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKTBFNNx+zG64lHofoAiHu1JcA qK+yzADXWe/Fzp4PhSg8ZE0z0cWc/LzGIiF+X1/iMrpEtdTY3EVyWTEJddFwXIeD NWIzFpeCIwj73ueuH8EQ1LK/quhCq5DA134V4SC+UR4xU090cb79smn6+fp2ptJl foWmtdM0anuu5CETvmeQxd9uZJYw2OchroJoJyZ8f+SLEZn04ZxmJFQzWlGL7OPu BlkQUTybKJRpn/KkeueHx/DQP9vlNW6gIe9BGA1epCus3VFwMI40JXI5qYLARb2K 82Wqya+4y+pfkpU4EOIchI7LeClySjNpVqXdux5s7qWg4rpX/taRHyBZLt2nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvuDFmMJAAA3Qw9VoT6q584B/ShcwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3N2IwMWNmLWIxYzktNDUwZi04 NTUxLTRkY2I0Y2JkNDI2Mi8wLzMxMzAzMzJlMzEzNDM3MmUzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5NMMA0GCSqG SIb3DQEBCwUAA4IBAQArVyBU6dZag+wzUJCZSlayeKB6/ZXsgoYAyrneT9wFi4LO +6aK0+QmPtM0QbiPbkw4MCffyiGerL8cqazoNuUf+NUNbWzszPW7K/u4IbBDDqir hak2iQ0Ok9x5gTJJ437QVkb5rJdaD+Y025IvdIyV6aokkz77rFGFy7oL9//nfxfS iGi14wYSoaRaUFB3FLAuVIdb6ZdYx0PajMKIg26RfB0DjSLAHkG/UA1v9sbSXiI4 HTjYUO67knk+loDpAJmLk6cxbE2uOEzzhGFPVqfTlcXwip+gawo9fBiWZ19Qr2zl Q+dk2/EJ4eFjVSdzXjf1ssNSLOdWq3wkwgC43HqB -----END CERTIFICATE-----Generated at Mon Sep 8 10:51:30 2025 by rpki-client