$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa File: AS147084.roa (raw, json) Hash identifier: GtfAzvR0Gqc0eFnCJZmjjOEQ/346oaowe1WLvybgbWs= Subject key identifier: 43:85:4D:58:04:2C:80:CA:29:BC:B1:C9:7B:18:BC:C0:0F:66:A3:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0345BA58E106AE24089EC69F6B2964390F2447FD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa Signing time: Wed 03 Sep 2025 03:00:00 +0000 ROA not before: Wed 03 Sep 2025 02:55:00 +0000 ROA not after: Wed 02 Sep 2026 03:00:00 +0000 asID: 147084 IP address blocks: 103.63.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:45:ba:58:e1:06:ae:24:08:9e:c6:9f:6b:29:64:39:0f:24:47:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 3 02:55:00 2025 GMT Not After : Sep 2 03:00:00 2026 GMT Subject: CN=43854D58042C80CA29BCB1C97B18BCC00F66A3FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4d:2b:16:87:5c:c2:47:83:58:6e:dc:bd:e9: 17:a9:15:68:ca:ef:08:25:cf:16:c4:55:e8:ae:b4: 40:b6:0f:e8:04:ee:ef:8a:b1:ed:5a:0c:64:67:bd: 2f:a4:6f:2d:c5:9b:6f:23:8b:24:a7:6d:25:a5:54: 67:af:0e:0b:39:a7:34:a6:a6:d9:40:fc:c1:8e:d2: 7b:fc:0f:6a:94:36:9c:0a:6d:56:f9:48:27:2d:b3: 53:94:9d:a5:c6:00:32:be:3d:75:88:ce:9c:ab:ff: 41:f4:6a:69:de:87:7a:c0:f1:f4:bc:43:e4:cf:31: 2d:b2:ac:30:c6:47:32:34:13:1d:f1:9b:96:dd:e1: 78:d2:f9:be:29:58:6e:5a:31:1f:c6:3e:95:f5:60: 3f:6f:70:d7:20:45:33:ef:e5:bb:d8:66:36:d3:2b: e3:fa:36:7f:8d:a7:a2:01:dc:fe:9d:8f:d8:ce:f3: 2b:ae:e7:eb:9e:8e:09:ec:85:0b:94:69:87:df:5c: 80:9b:cf:84:e8:18:41:bc:52:fe:7b:b6:9e:e6:cb: f8:be:73:4e:66:66:77:f3:3e:8b:ab:b2:bb:3c:02: 07:33:c4:b0:90:af:6f:95:61:6d:2b:5f:db:86:1f: ce:b1:92:95:f7:9a:3b:86:8c:56:06:eb:42:18:bc: 66:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:85:4D:58:04:2C:80:CA:29:BC:B1:C9:7B:18:BC:C0:0F:66:A3:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.63.191.0/24 Signature Algorithm: sha256WithRSAEncryption 77:37:f1:9b:7b:46:88:fb:8e:aa:52:b7:92:70:df:71:b6:87: d1:ba:17:b1:bc:06:9f:42:b2:ef:4c:83:af:ed:84:37:ad:62: 5b:27:e4:24:99:0f:41:aa:e2:59:11:fc:03:27:de:69:b7:fa: ff:5a:85:86:b3:57:d4:ac:c0:a8:78:b1:79:c7:3f:4c:21:33: a6:b5:de:46:9e:e8:d7:1c:a7:d1:38:6d:05:d5:6b:af:e9:81: ff:be:2f:78:de:b8:07:77:2d:70:31:e1:92:cb:2e:dc:f2:da: d0:fb:3e:23:e0:28:6c:43:e7:81:0b:9d:76:bb:0a:15:0f:9b: 21:bc:c9:09:2f:16:86:52:ae:6f:b0:e3:68:f4:32:9f:59:20: d3:72:a8:68:c5:7e:8f:b3:e0:6a:19:90:7d:a4:bb:21:c1:1e: 12:79:91:bf:e7:ed:14:4d:68:28:9e:a7:5e:32:6b:12:36:ad: 12:f6:b9:e3:06:e1:85:1a:c3:da:f6:cd:c2:79:7c:63:19:ab: 9a:6d:d5:7a:ab:80:5c:c0:96:ff:bf:71:42:6f:cb:65:ed:47: 38:76:f1:5d:bb:9a:77:39:d0:92:a8:45:58:b5:5e:52:14:95: 80:df:c8:c5:87:45:4e:b6:98:64:f3:fc:ca:fc:a7:b9:08:94: 18:7e:c8:66 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUA0W6WOEGriQInsafaylkOQ8kR/0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMzAyNTUwMFoX DTI2MDkwMjAzMDAwMFowMzExMC8GA1UEAxMoNDM4NTRENTgwNDJDODBDQTI5QkNC MUM5N0IxOEJDQzAwRjY2QTNGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5NKxaHXMJHg1hu3L3pF6kVaMrvCCXPFsRV6K60QLYP6ATu74qx7VoMZGe9 L6RvLcWbbyOLJKdtJaVUZ68OCzmnNKam2UD8wY7Se/wPapQ2nAptVvlIJy2zU5Sd pcYAMr49dYjOnKv/QfRqad6HesDx9LxD5M8xLbKsMMZHMjQTHfGblt3heNL5vilY bloxH8Y+lfVgP29w1yBFM+/lu9hmNtMr4/o2f42nogHc/p2P2M7zK67n656OCeyF C5Rph99cgJvPhOgYQbxS/nu2nubL+L5zTmZmd/M+i6uyuzwCBzPEsJCvb5VhbStf 24YfzrGSlfeaO4aMVgbrQhi8ZqMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRDhU1Y BCyAyim8scl7GLzAD2aj/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc/vzANBgkqhkiG9w0BAQsFAAOCAQEAdzfxm3tGiPuOqlK3knDf cbaH0boXsbwGn0Ky70yDr+2EN61iWyfkJJkPQariWRH8Ayfeabf6/1qFhrNX1KzA qHixecc/TCEzprXeRp7o1xyn0ThtBdVrr+mB/74veN64B3ctcDHhkssu3PLa0Ps+ I+AobEPngQuddrsKFQ+bIbzJCS8WhlKub7DjaPQyn1kg03KoaMV+j7PgahmQfaS7 IcEeEnmRv+ftFE1oKJ6nXjJrEjatEva54wbhhRrD2vbNwnl8Yxmrmm3VequAXMCW /79xQm/LZe1HOHbxXbuadznQkqhFWLVeUhSVgN/IxYdFTraYZPP8yvynuQiUGH7I Zg== -----END CERTIFICATE-----Generated at Fri Sep 5 08:20:11 2025 by rpki-client