$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa File: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 2JYulwUxi2T/jzgAmBWLWpOPU3Z1C06NLPJ2YJd9h44= Subject key identifier: 6F:FA:A3:5F:C0:EA:24:B0:87:13:61:79:C3:4D:50:5C:6F:C9:35:0D Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 59920574299E9C5F3D9B83DB876FFFD97E83256D Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa Signing time: Tue 02 Sep 2025 05:02:51 +0000 ROA not before: Tue 02 Sep 2025 04:57:51 +0000 ROA not after: Tue 01 Sep 2026 05:02:51 +0000 asID: 139952 IP address blocks: 103.147.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 22:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:92:05:74:29:9e:9c:5f:3d:9b:83:db:87:6f:ff:d9:7e:83:25:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Sep 2 04:57:51 2025 GMT Not After : Sep 1 05:02:51 2026 GMT Subject: CN=6FFAA35FC0EA24B087136179C34D505C6FC9350D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:0a:33:1e:3a:e5:0f:9d:97:b7:cf:8b:02: 49:d9:2d:db:28:99:ff:57:3d:1b:6f:0c:a7:6c:4b: a8:08:7c:c0:30:61:8e:f5:39:f7:8a:a9:3f:94:c6: 48:5f:14:7f:c0:92:2c:a5:60:59:29:ea:53:a5:3b: 68:eb:eb:4b:da:0d:3a:38:5d:33:94:28:d3:e7:8d: b1:a1:ef:d5:94:9a:16:1d:e7:d1:96:89:9f:ce:f9: 7c:99:03:dd:2d:d8:49:af:f9:cd:08:23:3d:68:3a: 70:ce:23:45:11:65:a9:74:0b:66:d0:92:9c:6c:57: 31:60:cb:ae:6c:32:dc:5f:55:f5:8d:e4:83:31:24: f1:d5:5a:53:30:b2:51:6d:3e:22:61:57:97:23:36: c1:f2:d8:9c:3d:57:97:85:ae:8e:35:0f:dc:82:21: 2c:3d:19:5f:87:63:23:c4:1b:70:8c:16:63:6f:11: f2:32:d5:37:e6:29:13:50:01:23:20:b7:11:9b:5b: ed:5b:37:75:65:d2:98:eb:e1:a7:71:5d:4e:80:bf: 65:d9:25:be:ae:bd:2d:00:32:75:55:59:cd:80:e2: 30:dd:8a:78:3d:fa:dd:35:e4:be:96:58:8c:7b:36: 79:b5:17:b3:6a:41:ae:cd:76:5e:f5:89:67:9b:5c: 1d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FA:A3:5F:C0:EA:24:B0:87:13:61:79:C3:4D:50:5C:6F:C9:35:0D X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.76.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:0f:69:31:04:bc:49:26:3b:7a:eb:e2:cd:65:e0:98:56:24: 20:c4:2a:7d:14:45:bb:a9:e8:3d:92:70:15:1c:77:d1:20:bc: 73:e8:a9:15:5c:4c:0e:19:27:04:5e:ca:92:f5:b8:78:10:99: d8:9d:cb:20:4e:4f:8c:dd:80:4c:93:87:e2:19:63:f1:9d:00: 2a:94:4a:ca:62:cb:90:be:6d:9c:70:63:3e:64:d6:ea:2a:9e: 43:0e:40:68:c4:e3:19:02:0e:9c:19:74:d3:3e:f8:f3:d8:b5: fb:aa:a9:3c:4e:64:9a:8e:30:35:f0:13:84:fe:7b:c8:6a:bc: b8:d2:70:30:93:a9:3e:27:fb:24:3d:32:10:cb:8b:57:81:cf: 0e:88:f2:76:c3:92:f3:ae:52:40:3b:84:92:34:ac:f5:f2:72: 1e:3e:a0:ee:08:06:f7:ca:a0:40:4b:51:0c:fa:0a:dc:80:f6: 92:86:49:bf:f7:ca:d9:ab:50:9a:cb:48:26:dc:b6:3b:d4:0c: a0:58:64:41:5c:bc:61:0d:9a:45:84:f0:5a:d9:ff:72:dd:d2: fe:00:df:24:0e:04:c5:ab:6c:93:c0:6a:db:3a:c3:bd:ed:35: 2b:66:6d:65:fd:d5:0b:95:de:a6:6a:d8:0b:2c:83:78:0e:1b: 0a:f3:f1:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWZIFdCmenF89m4Pbh2//2X6DJW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTA5MDIwNDU3NTFaFw0yNjA5MDEwNTAyNTFaMDMxMTAvBgNV BAMTKDZGRkFBMzVGQzBFQTI0QjA4NzEzNjE3OUMzNEQ1MDVDNkZDOTM1MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDawozHjrlD52Xt8+LAknZLdso mf9XPRtvDKdsS6gIfMAwYY71OfeKqT+UxkhfFH/AkiylYFkp6lOlO2jr60vaDTo4 XTOUKNPnjbGh79WUmhYd59GWiZ/O+XyZA90t2Emv+c0IIz1oOnDOI0URZal0C2bQ kpxsVzFgy65sMtxfVfWN5IMxJPHVWlMwslFtPiJhV5cjNsHy2Jw9V5eFro41D9yC ISw9GV+HYyPEG3CMFmNvEfIy1TfmKRNQASMgtxGbW+1bN3Vl0pjr4adxXU6Av2XZ Jb6uvS0AMnVVWc2A4jDding9+t015L6WWIx7Nnm1F7NqQa7Ndl71iWebXB03AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb/qjX8DqJLCHE2F5w01QXG/JNQ0wHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3N2IwMWNmLWIxYzktNDUwZi04 NTUxLTRkY2I0Y2JkNDI2Mi8wLzMxMzAzMzJlMzEzNDM3MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NMMA0GCSqG SIb3DQEBCwUAA4IBAQCMD2kxBLxJJjt66+LNZeCYViQgxCp9FEW7qeg9knAVHHfR ILxz6KkVXEwOGScEXsqS9bh4EJnYncsgTk+M3YBMk4fiGWPxnQAqlErKYsuQvm2c cGM+ZNbqKp5DDkBoxOMZAg6cGXTTPvjz2LX7qqk8TmSajjA18BOE/nvIary40nAw k6k+J/skPTIQy4tXgc8OiPJ2w5LzrlJAO4SSNKz18nIePqDuCAb3yqBAS1EM+grc gPaShkm/98rZq1Cay0gm3LY71AygWGRBXLxhDZpFhPBa2f9y3dL+AN8kDgTFq2yT wGrbOsO97TUrZm1l/dULld6matgLLIN4DhsK8/HZ -----END CERTIFICATE-----Generated at Mon Sep 8 10:46:22 2025 by rpki-client