$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa File: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: gks4E4RAlqsYzpMbY7s86LphrkEHlbXfODEV9a6VKSU= Subject key identifier: A0:97:C6:FE:E0:11:79:FF:2E:13:2B:EC:C8:A5:CF:92:81:83:C0:21 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 6AB123EDB35525AB8D7421433F76C8C76F823BCE Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa Signing time: Tue 02 Sep 2025 05:02:52 +0000 ROA not before: Tue 02 Sep 2025 04:57:52 +0000 ROA not after: Tue 01 Sep 2026 05:02:52 +0000 asID: 139952 IP address blocks: 103.147.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 22:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b1:23:ed:b3:55:25:ab:8d:74:21:43:3f:76:c8:c7:6f:82:3b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Sep 2 04:57:52 2025 GMT Not After : Sep 1 05:02:52 2026 GMT Subject: CN=A097C6FEE01179FF2E132BECC8A5CF928183C021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e2:db:2f:ab:bf:b7:81:74:c6:16:8c:5a:2e: 11:5a:de:e6:03:96:ec:10:e7:0a:82:e8:30:a5:6e: 72:69:e1:65:c4:fd:0f:db:8f:52:14:d5:d1:22:c1: c8:53:b4:9c:0b:10:ea:dc:5f:b0:91:e4:f0:8b:2b: bd:aa:36:75:fa:0b:d4:b6:04:ee:39:95:2a:31:e6: f8:4b:b8:2f:af:7a:f8:08:c5:d2:68:ad:db:16:a4: 09:51:40:31:1e:cf:fe:31:1a:d8:8e:c4:25:ca:ca: c5:a4:2f:71:da:13:d6:41:35:dd:35:3a:d8:e0:09: 17:13:6b:14:a7:ef:7d:dd:1f:ab:d5:f2:ea:14:5e: bc:4e:2d:84:08:f1:31:8c:23:65:c5:46:c0:07:03: 58:6a:3e:87:5e:b8:9f:5b:ef:50:e9:d6:9b:6c:38: db:ab:f1:5d:c1:2d:cb:f6:95:ea:f3:83:1a:af:48: 36:a4:ad:3a:9e:85:85:bb:3c:35:7b:f5:f3:fa:56: 51:25:2d:9f:9a:a9:c7:d2:c6:01:76:ab:1f:d8:3c: aa:93:17:74:22:1b:4d:2f:36:f6:4a:5f:c3:45:ec: 58:e7:09:d5:c5:92:89:0a:51:e1:a7:f1:08:b9:6a: 76:60:88:58:e2:32:d4:4f:bb:b3:63:1e:69:7d:ec: 8d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:97:C6:FE:E0:11:79:FF:2E:13:2B:EC:C8:A5:CF:92:81:83:C0:21 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.77.0/24 Signature Algorithm: sha256WithRSAEncryption 17:0e:b3:4d:19:fd:6e:b7:60:7d:d9:bb:19:ac:09:13:3d:e0: fd:01:a0:b1:30:4e:30:95:b2:b5:c4:8e:39:70:21:03:72:6c: df:35:f2:59:62:b3:fa:5c:1e:88:b4:64:84:09:c7:3d:72:f2: a0:48:4d:e5:28:16:1f:43:2d:72:22:bc:3e:5a:6e:22:53:73: 7c:5f:7e:b8:22:ca:14:ca:e1:a6:eb:04:2e:1f:5e:55:47:84: dc:1d:a4:2b:1e:c0:b8:85:b9:21:ae:85:a7:f0:6d:08:96:53: 20:a3:2e:d6:eb:51:fc:b8:37:34:2e:03:22:b8:8b:e4:06:be: cf:38:49:da:dd:77:f2:55:6b:19:e2:8b:16:f2:1c:40:a1:8e: dc:1b:71:9e:ad:84:c1:5a:f9:ef:fe:b2:4b:b3:74:f4:55:36: ca:1c:ca:67:0c:e2:04:91:15:2a:f2:ea:59:d0:16:20:32:58: 5d:6b:73:be:dd:ba:63:94:9c:63:c7:f8:1a:20:af:8e:82:e8: c7:d9:25:92:29:41:6c:06:d1:c2:a3:ba:4a:11:4e:d2:1d:07: 7d:59:5d:d4:e8:ad:b6:8b:b3:cf:33:c5:1e:f5:68:11:d8:c0: ea:5a:f1:f0:37:17:f2:66:4a:f5:87:60:c9:23:a8:e2:42:0e: 66:68:fe:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUarEj7bNVJauNdCFDP3bIx2+CO84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTA5MDIwNDU3NTJaFw0yNjA5MDEwNTAyNTJaMDMxMTAvBgNV BAMTKEEwOTdDNkZFRTAxMTc5RkYyRTEzMkJFQ0M4QTVDRjkyODE4M0MwMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC74tsvq7+3gXTGFoxaLhFa3uYD luwQ5wqC6DClbnJp4WXE/Q/bj1IU1dEiwchTtJwLEOrcX7CR5PCLK72qNnX6C9S2 BO45lSox5vhLuC+vevgIxdJordsWpAlRQDEez/4xGtiOxCXKysWkL3HaE9ZBNd01 OtjgCRcTaxSn733dH6vV8uoUXrxOLYQI8TGMI2XFRsAHA1hqPodeuJ9b71Dp1pts ONur8V3BLcv2lerzgxqvSDakrTqehYW7PDV79fP6VlElLZ+aqcfSxgF2qx/YPKqT F3QiG00vNvZKX8NF7FjnCdXFkokKUeGn8Qi5anZgiFjiMtRPu7NjHml97I2hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoJfG/uARef8uEyvsyKXPkoGDwCEwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3N2IwMWNmLWIxYzktNDUwZi04 NTUxLTRkY2I0Y2JkNDI2Mi8wLzMxMzAzMzJlMzEzNDM3MmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NNMA0GCSqG SIb3DQEBCwUAA4IBAQAXDrNNGf1ut2B92bsZrAkTPeD9AaCxME4wlbK1xI45cCED cmzfNfJZYrP6XB6ItGSECcc9cvKgSE3lKBYfQy1yIrw+Wm4iU3N8X364IsoUyuGm 6wQuH15VR4TcHaQrHsC4hbkhroWn8G0IllMgoy7W61H8uDc0LgMiuIvkBr7POEna 3XfyVWsZ4osW8hxAoY7cG3GerYTBWvnv/rJLs3T0VTbKHMpnDOIEkRUq8upZ0BYg Mlhda3O+3bpjlJxjx/gaIK+OgujH2SWSKUFsBtHCo7pKEU7SHQd9WV3U6K22i7PP M8Ue9WgR2MDqWvHwNxfyZkr1h2DJI6jiQg5maP4j -----END CERTIFICATE-----Generated at Mon Sep 8 10:46:23 2025 by rpki-client