$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa File: 3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa (raw, json) Hash identifier: Nt5yIQQRjM3EYZ6LLAJtlTQeYmFOb12a5fWQTQgyftY= Subject key identifier: EF:C5:9F:79:64:95:00:8F:E2:67:9E:90:46:35:F5:ED:1B:0E:E2:D4 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 5369658F5BF1F442FD4C1555BF6DA514E73C0B8A Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa Signing time: Sun 07 Sep 2025 08:01:46 +0000 ROA not before: Sun 07 Sep 2025 07:56:46 +0000 ROA not after: Sun 06 Sep 2026 08:01:46 +0000 asID: 139972 IP address blocks: 103.147.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:69:65:8f:5b:f1:f4:42:fd:4c:15:55:bf:6d:a5:14:e7:3c:0b:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Sep 7 07:56:46 2025 GMT Not After : Sep 6 08:01:46 2026 GMT Subject: CN=EFC59F796495008FE2679E904635F5ED1B0EE2D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b8:89:00:9f:b1:cf:1d:75:5f:46:bc:3e:eb: d2:91:78:9a:50:fa:ee:cf:f8:1b:a0:a8:ad:45:2a: 16:37:14:82:ea:94:a4:d3:90:e8:08:8c:0b:e6:c8: a1:7e:47:f0:b7:98:7a:7f:7b:92:95:6e:89:6b:51: 5f:02:36:1c:2c:91:a0:c6:60:4e:ad:74:84:35:8f: ba:7e:70:cc:dc:b7:4d:5b:36:6a:39:29:e6:d7:96: 5a:71:8a:4f:c3:9f:59:42:6c:44:da:29:f3:fe:c2: 90:f2:c1:c1:49:89:5a:d5:73:a4:79:6a:9f:14:00: 89:9e:2f:5c:11:14:0c:4e:21:4f:7f:fc:31:34:f4: b2:1d:ba:f9:8c:6c:d5:79:41:ad:22:2d:34:e0:da: c3:f6:23:2b:b0:7d:cc:4f:d6:6a:88:21:dd:a6:6d: 26:59:3b:1a:7e:9e:5f:0b:71:bb:18:7e:0c:65:5e: d2:56:47:01:05:1d:1c:b3:f0:49:c1:46:70:c8:56: 62:cb:a3:d6:f6:d5:8e:b2:b0:a2:54:3d:1a:63:88: 60:3c:e4:d7:20:43:f0:0c:b7:92:aa:4a:87:43:05: 98:a3:c3:1b:31:f2:1d:69:23:15:5b:dd:20:be:6a: 16:5b:47:58:46:1d:f4:b5:d1:7a:e3:63:53:4a:e6: 15:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C5:9F:79:64:95:00:8F:E2:67:9E:90:46:35:F5:ED:1B:0E:E2:D4 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.246.0/24 Signature Algorithm: sha256WithRSAEncryption b3:9f:ba:72:f1:ca:a9:0d:61:ff:b1:37:af:f0:b2:40:26:ae: 6f:80:ed:26:dd:5e:3f:94:cd:ef:d9:1f:91:28:fa:b2:b9:f9: 23:9c:6a:28:6e:60:55:72:9d:0a:65:ca:81:c0:26:41:81:1f: b9:8a:6d:13:f2:79:79:79:fc:ed:78:ee:25:ae:18:c4:e7:fa: 80:c0:d6:c5:a1:83:e3:39:5c:49:3f:4c:fa:0a:38:e6:14:61: 52:61:41:85:5f:e7:67:be:e1:20:90:b4:55:84:ba:21:bc:5f: 9d:e4:30:11:78:b5:38:49:88:ff:2d:12:c8:2e:53:bd:a7:31: a1:16:30:22:e0:6a:b2:ed:24:82:66:d6:d1:bb:d2:81:ef:3c: d2:e2:15:4c:e6:f6:ad:12:db:8e:17:50:46:21:ca:03:10:48: d2:f9:05:f8:85:31:d9:19:7b:5e:9a:ae:45:ca:79:fe:62:6c: 67:3e:a5:1d:f9:0e:b5:32:0c:02:17:2e:54:ad:0c:af:88:ff: 95:56:b0:73:ce:94:d0:bd:26:ce:68:07:fc:36:1b:93:27:b8: 21:65:e3:d0:d7:6e:2a:dc:c9:00:1f:f2:b9:f8:a7:cb:ae:b8: 17:17:22:70:59:7b:b2:d7:27:f0:92:c2:bc:13:36:dd:9b:27: e1:b2:f9:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU2llj1vx9EL9TBVVv22lFOc8C4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTA5MDcwNzU2NDZaFw0yNjA5MDYwODAxNDZaMDMxMTAvBgNV BAMTKEVGQzU5Rjc5NjQ5NTAwOEZFMjY3OUU5MDQ2MzVGNUVEMUIwRUUyRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyuIkAn7HPHXVfRrw+69KReJpQ +u7P+BugqK1FKhY3FILqlKTTkOgIjAvmyKF+R/C3mHp/e5KVbolrUV8CNhwskaDG YE6tdIQ1j7p+cMzct01bNmo5KebXllpxik/Dn1lCbETaKfP+wpDywcFJiVrVc6R5 ap8UAImeL1wRFAxOIU9//DE09LIduvmMbNV5Qa0iLTTg2sP2IyuwfcxP1mqIId2m bSZZOxp+nl8LcbsYfgxlXtJWRwEFHRyz8EnBRnDIVmLLo9b21Y6ysKJUPRpjiGA8 5NcgQ/AMt5KqSodDBZijwxsx8h1pIxVb3SC+ahZbR1hGHfS10XrjY1NK5hX7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU78WfeWSVAI/iZ56QRjX17RsO4tQwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMxMzAzMzJlMzEzNDM3MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/YwDQYJ KoZIhvcNAQELBQADggEBALOfunLxyqkNYf+xN6/wskAmrm+A7SbdXj+Uze/ZH5Eo +rK5+SOcaihuYFVynQplyoHAJkGBH7mKbRPyeXl5/O147iWuGMTn+oDA1sWhg+M5 XEk/TPoKOOYUYVJhQYVf52e+4SCQtFWEuiG8X53kMBF4tThJiP8tEsguU72nMaEW MCLgarLtJIJm1tG70oHvPNLiFUzm9q0S244XUEYhygMQSNL5BfiFMdkZe16arkXK ef5ibGc+pR35DrUyDAIXLlStDK+I/5VWsHPOlNC9Js5oB/w2G5MnuCFl49DXbirc yQAf8rn4p8uuuBcXInBZe7LXJ/CSwrwTNt2bJ+Gy+Q0= -----END CERTIFICATE-----Generated at Sun Sep 7 15:30:31 2025 by rpki-client