$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa File: 3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa (raw, json) Hash identifier: E1pvmLC0oScYJCQ1VqOLQ7iP3RGB0Zu4FP5c2Qeaw1g= Subject key identifier: D9:73:8E:99:21:1A:40:12:6C:42:59:F3:57:57:5D:0D:79:B7:B9:EB Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 3F77DC6CFF9F48076215CF896F508DB0C6048FFC Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa Signing time: Sun 07 Sep 2025 09:00:00 +0000 ROA not before: Sun 07 Sep 2025 08:55:00 +0000 ROA not after: Sun 06 Sep 2026 09:00:00 +0000 asID: 139972 IP address blocks: 103.147.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:77:dc:6c:ff:9f:48:07:62:15:cf:89:6f:50:8d:b0:c6:04:8f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Sep 7 08:55:00 2025 GMT Not After : Sep 6 09:00:00 2026 GMT Subject: CN=D9738E99211A40126C4259F357575D0D79B7B9EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:0d:8f:31:6e:e9:7e:f2:3c:09:22:a3:b2: 19:84:f3:32:44:e9:0d:ec:cb:da:4d:d9:0e:dd:ed: 42:ec:8e:7a:eb:97:49:2a:a8:2f:c9:b0:23:0e:b5: 31:6a:58:30:41:68:8a:fd:43:9b:39:5c:d8:c0:67: fb:eb:07:ab:60:79:ed:db:32:d8:6e:96:30:e0:33: 9d:48:1f:f8:50:ec:4d:55:68:b8:f5:7d:bc:f2:fb: 05:3e:aa:e1:47:d5:e0:e4:2a:41:88:2a:68:89:b7: 54:41:f2:93:8f:1e:ea:c6:eb:48:bb:a5:0d:9c:ad: cf:96:c0:4e:bb:98:75:0e:75:40:38:d9:85:6f:85: ca:fc:d6:0a:03:6a:33:ed:6b:83:1d:a7:b7:a1:9a: f1:09:5c:18:7e:ff:dd:05:8b:72:a8:59:28:df:2f: 76:8d:36:98:c1:46:81:62:87:c1:8f:66:b4:46:67: 9b:6c:4c:46:b1:b2:c1:91:0f:f3:d9:cb:8c:8b:af: 69:a6:b9:20:52:8c:40:81:2c:4f:00:46:87:15:0b: d2:21:31:95:4a:a1:e1:1d:72:78:b4:0a:9d:4f:d9: 98:78:79:48:42:ad:4c:6e:03:df:ba:6f:b3:9e:72: ff:6f:28:33:ad:18:03:7d:65:94:cf:4e:1e:df:99: b4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:73:8E:99:21:1A:40:12:6C:42:59:F3:57:57:5D:0D:79:B7:B9:EB X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.247.0/24 Signature Algorithm: sha256WithRSAEncryption 94:ba:19:bb:1e:eb:6a:6f:49:af:1c:11:c4:16:7b:1e:d9:c1: 59:19:a8:15:89:0c:ae:6e:ce:a3:93:28:0a:07:4f:29:47:60: 96:56:74:a5:cd:e4:42:d2:39:a4:18:87:c5:f0:be:3c:82:bc: 76:6e:e6:a7:64:5c:14:fd:a5:ac:24:d1:f7:80:c7:3c:d9:f9: 1a:10:95:f8:f1:b2:7b:c8:e0:c1:e6:13:32:34:20:1c:5e:f6: 9c:bb:4b:da:ef:33:39:b7:47:a7:19:6b:74:2d:f8:69:d6:83: 3a:73:7f:ea:ae:f8:f7:fb:e3:40:d5:24:5e:1e:1c:69:80:cc: f3:d5:07:90:90:b3:74:28:75:e6:8e:08:57:2f:14:10:74:a6: c4:aa:6c:ee:34:34:0d:e1:93:f4:30:33:18:47:7b:7f:36:09: 95:0a:d8:c9:c5:06:c5:ad:cb:35:93:80:c1:05:0b:d3:94:05: 50:3e:76:ad:fa:35:ee:e0:59:50:ce:57:b1:d7:c7:49:0e:18: 1a:3d:9b:38:a4:c6:30:9c:ed:0a:af:60:ad:90:eb:5a:0e:a4: 79:de:66:b4:a2:96:46:f2:f5:2e:be:76:a3:91:42:7f:82:72: d5:7f:2e:71:d4:c6:4a:e2:09:1c:b8:84:31:d9:2c:80:29:ea: 51:50:61:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP3fcbP+fSAdiFc+Jb1CNsMYEj/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTA5MDcwODU1MDBaFw0yNjA5MDYwOTAwMDBaMDMxMTAvBgNV BAMTKEQ5NzM4RTk5MjExQTQwMTI2QzQyNTlGMzU3NTc1RDBENzlCN0I5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAgg2PMW7pfvI8CSKjshmE8zJE 6Q3sy9pN2Q7d7ULsjnrrl0kqqC/JsCMOtTFqWDBBaIr9Q5s5XNjAZ/vrB6tgee3b MthuljDgM51IH/hQ7E1VaLj1fbzy+wU+quFH1eDkKkGIKmiJt1RB8pOPHurG60i7 pQ2crc+WwE67mHUOdUA42YVvhcr81goDajPta4Mdp7ehmvEJXBh+/90Fi3KoWSjf L3aNNpjBRoFih8GPZrRGZ5tsTEaxssGRD/PZy4yLr2mmuSBSjECBLE8ARocVC9Ih MZVKoeEdcni0Cp1P2Zh4eUhCrUxuA9+6b7Oecv9vKDOtGAN9ZZTPTh7fmbQpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2XOOmSEaQBJsQlnzV1ddDXm3ueswHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMxMzAzMzJlMzEzNDM3MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/cwDQYJ KoZIhvcNAQELBQADggEBAJS6Gbse62pvSa8cEcQWex7ZwVkZqBWJDK5uzqOTKAoH TylHYJZWdKXN5ELSOaQYh8XwvjyCvHZu5qdkXBT9pawk0feAxzzZ+RoQlfjxsnvI 4MHmEzI0IBxe9py7S9rvMzm3R6cZa3Qt+GnWgzpzf+qu+Pf740DVJF4eHGmAzPPV B5CQs3QodeaOCFcvFBB0psSqbO40NA3hk/QwMxhHe382CZUK2MnFBsWtyzWTgMEF C9OUBVA+dq36Ne7gWVDOV7HXx0kOGBo9mzikxjCc7QqvYK2Q61oOpHneZrSilkby 9S6+dqORQn+CctV/LnHUxkriCRy4hDHZLIAp6lFQYfA= -----END CERTIFICATE-----Generated at Sun Sep 7 15:30:37 2025 by rpki-client