$ rpki-client -vvf repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa File: 3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa (raw, json) Hash identifier: ZHafjJKgXW9RsmPF8VNVEw6T28/f2O0/FZCCLymCOMc= Subject key identifier: AB:29:B4:23:E9:76:40:E8:05:AA:06:62:65:6F:7D:FF:9E:06:F0:38 Certificate issuer: /CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271 Certificate serial: 7B19775DB9764DE803A6A1494DABAD4CAE4BF838 Authority key identifier: D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa Signing time: Sat 06 Sep 2025 04:02:29 +0000 ROA not before: Sat 06 Sep 2025 03:57:29 +0000 ROA not after: Sat 05 Sep 2026 04:02:29 +0000 asID: 139955 IP address blocks: 103.147.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 13:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:19:77:5d:b9:76:4d:e8:03:a6:a1:49:4d:ab:ad:4c:ae:4b:f8:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271 Validity Not Before: Sep 6 03:57:29 2025 GMT Not After : Sep 5 04:02:29 2026 GMT Subject: CN=AB29B423E97640E805AA0662656F7DFF9E06F038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9b:99:35:be:6b:f0:34:df:47:bb:71:29:57: 63:ca:fe:d4:34:bc:bf:ca:45:cd:7a:15:71:9a:8b: 8b:8d:e4:86:3b:42:30:f2:f0:22:5c:68:1d:1d:14: 9a:f2:62:05:66:5a:2b:82:c8:11:31:3a:5a:8c:18: ec:a8:95:04:e4:f2:fd:e7:89:ee:2c:b4:15:66:ee: 73:70:c2:c8:76:5a:26:10:47:36:64:7c:35:c9:96: ff:eb:bf:ae:3e:8a:f7:ba:04:a0:b2:c9:55:17:32: 33:e1:cc:63:0a:33:cb:5b:6d:b1:66:11:b0:1a:37: eb:f2:62:c2:c4:08:d6:e1:8a:97:a1:dc:71:82:b3: 9c:95:ea:a4:38:02:fb:99:52:3e:fe:3f:b7:9f:c6: 46:8c:dc:0e:2d:79:dc:54:78:b8:13:44:e6:04:c2: 44:49:1e:25:43:c4:67:0f:52:09:1e:a6:6e:3a:b7: 63:02:52:6e:85:10:07:dd:0c:4c:27:23:ab:08:89: c1:04:5f:63:10:d0:81:5c:7e:2f:57:1a:10:d7:98: 58:5d:fb:da:1e:95:18:23:4f:5e:2b:a5:15:73:2c: 9c:c7:a1:f6:50:fc:7c:61:5e:7b:14:d7:99:be:1c: b3:12:4a:ea:6d:30:c2:5d:02:ea:e8:06:c8:72:e1: 79:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:29:B4:23:E9:76:40:E8:05:AA:06:62:65:6F:7D:FF:9E:06:F0:38 X509v3 Authority Key Identifier: keyid:D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.84.0/23 Signature Algorithm: sha256WithRSAEncryption 61:06:4a:a1:84:c5:35:24:bf:e9:cb:56:42:13:ee:57:51:bb: b4:ec:1e:1c:dd:d5:0d:dc:8b:11:7b:20:fa:11:60:7e:52:81: db:31:48:66:7e:eb:a3:0c:25:b6:27:71:8d:53:db:c0:23:1f: db:f2:91:9b:dc:e1:9c:7b:fd:16:84:11:71:16:10:76:47:31: 04:db:9d:1f:31:c1:ee:08:66:43:1c:87:72:8e:04:5b:a7:e3: 24:88:38:ae:66:84:a7:5e:52:2a:39:c6:d1:cc:95:76:e1:45: c4:85:40:9f:a0:27:59:6a:03:e6:75:26:59:32:fe:81:cc:2d: 7d:02:62:a5:7a:c8:d0:a6:e1:14:09:e7:ca:2d:d4:06:2e:23: d9:e4:c7:75:86:9f:05:d6:de:c5:24:9c:fc:2f:f3:c3:2d:63: 74:98:99:05:5e:6b:7e:44:c3:db:ea:7e:52:91:1d:0c:8a:c8: 86:95:00:fe:e2:ef:8d:be:fa:dc:6b:61:30:06:f1:4d:14:f1: f5:4d:41:e5:ad:4e:87:0f:51:67:82:07:d6:27:2f:ba:86:12: cb:12:4e:dc:a9:c7:4f:56:73:26:20:d3:58:9d:d6:e9:7d:e4: 45:06:fa:0e:79:09:42:67:48:c8:6e:db:e4:64:b6:d4:b1:b5: d5:f9:d2:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUexl3Xbl2TegDpqFJTautTK5L+DgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU2NzdFRkExMzcwODcxMUNEQUZCNjdEOUM0QzhGNUZG RkE5QTI3MTAeFw0yNTA5MDYwMzU3MjlaFw0yNjA5MDUwNDAyMjlaMDMxMTAvBgNV BAMTKEFCMjlCNDIzRTk3NjQwRTgwNUFBMDY2MjY1NkY3REZGOUUwNkYwMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSm5k1vmvwNN9Hu3EpV2PK/tQ0 vL/KRc16FXGai4uN5IY7QjDy8CJcaB0dFJryYgVmWiuCyBExOlqMGOyolQTk8v3n ie4stBVm7nNwwsh2WiYQRzZkfDXJlv/rv64+ive6BKCyyVUXMjPhzGMKM8tbbbFm EbAaN+vyYsLECNbhipeh3HGCs5yV6qQ4AvuZUj7+P7efxkaM3A4tedxUeLgTROYE wkRJHiVDxGcPUgkepm46t2MCUm6FEAfdDEwnI6sIicEEX2MQ0IFcfi9XGhDXmFhd +9oelRgjT14rpRVzLJzHofZQ/HxhXnsU15m+HLMSSuptMMJdAuroBshy4XmrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqym0I+l2QOgFqgZiZW99/54G8DgwHwYDVR0j BBgwFoAU1Wd++hNwhxHNr7Z9nEyPX/+ponEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Nzk2NTlhOS01NTA1LTQ5NGItYTAzYy02ZWJhY2ZhZGY5MzEvMC9ENTY3N0VGQTEz NzA4NzExQ0RBRkI2N0Q5QzRDOEY1RkZGQTlBMjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU2NzdFRkExMzcwODcxMUNEQUZCNjdEOUM0QzhGNUZGRkE5 QTI3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3OTY1OWE5LTU1MDUtNDk0Yi1h MDNjLTZlYmFjZmFkZjkzMS8wLzMxMzAzMzJlMzEzNDM3MmUzODM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5NUMA0GCSqG SIb3DQEBCwUAA4IBAQBhBkqhhMU1JL/py1ZCE+5XUbu07B4c3dUN3IsReyD6EWB+ UoHbMUhmfuujDCW2J3GNU9vAIx/b8pGb3OGce/0WhBFxFhB2RzEE250fMcHuCGZD HIdyjgRbp+MkiDiuZoSnXlIqOcbRzJV24UXEhUCfoCdZagPmdSZZMv6BzC19AmKl esjQpuEUCefKLdQGLiPZ5Md1hp8F1t7FJJz8L/PDLWN0mJkFXmt+RMPb6n5SkR0M isiGlQD+4u+Nvvrca2EwBvFNFPH1TUHlrU6HD1FnggfWJy+6hhLLEk7cqcdPVnMm INNYndbpfeRFBvoOeQlCZ0jIbtvkZLbUsbXV+dJ/ -----END CERTIFICATE-----Generated at Mon Sep 8 12:15:44 2025 by rpki-client