$ rpki-client -vvf repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: 3VGbyCH6ddrGoq0lsoWNFafYhbKrpzTV4l4RHWPBamI= Subject key identifier: 05:25:46:50:9E:9D:99:2F:EA:03:52:CF:FC:42:52:D3:A9:85:E9:CA Certificate issuer: /CN=0A1DFCB4A43861E4A71BCD645792005485BFADFD Certificate serial: 6D5D07CCD981738E538562910B4653A76014E90B Authority key identifier: 0A:1D:FC:B4:A4:38:61:E4:A7:1B:CD:64:57:92:00:54:85:BF:AD:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa Signing time: Tue 02 Sep 2025 05:02:52 +0000 ROA not before: Tue 02 Sep 2025 04:57:52 +0000 ROA not after: Tue 01 Sep 2026 05:02:52 +0000 asID: 17769 IP address blocks: 103.147.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.crl rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 00:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:5d:07:cc:d9:81:73:8e:53:85:62:91:0b:46:53:a7:60:14:e9:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1DFCB4A43861E4A71BCD645792005485BFADFD Validity Not Before: Sep 2 04:57:52 2025 GMT Not After : Sep 1 05:02:52 2026 GMT Subject: CN=052546509E9D992FEA0352CFFC4252D3A985E9CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6c:38:c7:85:ab:d0:68:e7:f0:27:3b:f2:a6: 3a:d4:26:54:b7:c7:44:24:64:b2:3b:57:1a:1d:df: 7b:00:97:10:c8:b5:a0:cc:59:f2:1f:c0:3f:dd:94: 9c:6f:a2:a5:75:23:3d:9c:1c:4c:28:3c:11:e1:7f: fc:d2:50:c0:99:24:9c:60:67:12:0f:25:c9:74:1e: 2b:f3:58:7c:84:13:7c:16:cc:e7:11:cc:ee:dd:00: 10:f5:6b:27:a3:1c:bd:ca:9e:da:69:57:11:62:8f: 69:29:e5:65:a9:ac:04:09:45:f1:c4:e7:f5:6d:c4: 5d:61:20:fc:e1:ef:73:34:a5:7f:74:c9:f1:86:db: c6:aa:be:5b:f7:ca:28:19:2f:9a:12:bc:b4:e7:eb: 4e:35:4c:66:1c:4b:35:70:47:15:b6:b5:c6:9a:52: 43:1c:83:09:e8:b1:12:01:0c:86:85:68:ee:5f:45: c6:63:66:ec:16:eb:93:40:27:86:2b:e5:b5:ca:ab: bb:43:7b:53:a1:c2:cc:dd:c8:1c:ed:1d:df:df:b5: 8c:61:5a:5a:64:cc:39:91:b7:71:b4:74:7b:98:15: af:8f:fe:5a:6a:36:20:71:f3:e9:ae:eb:4e:b5:b7: 02:41:bf:14:5b:46:11:1c:46:0a:e2:38:5a:8c:6c: a8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:25:46:50:9E:9D:99:2F:EA:03:52:CF:FC:42:52:D3:A9:85:E9:CA X509v3 Authority Key Identifier: keyid:0A:1D:FC:B4:A4:38:61:E4:A7:1B:CD:64:57:92:00:54:85:BF:AD:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.144.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:24:72:5b:08:d5:af:24:20:69:51:c8:cb:6e:2c:d1:36:e2: 39:87:4c:27:cd:ee:c2:74:ba:65:0b:00:8c:cd:2a:a8:a7:76: 91:8d:a1:10:6b:8c:44:5c:d1:9d:a7:2f:a0:7c:3d:c5:d1:33: 9f:89:19:39:0d:04:8b:6e:e0:48:06:ec:ce:92:d5:61:a5:d4: f5:3b:e7:0e:86:ff:51:12:14:5e:7c:92:b4:97:3f:24:12:3b: 2d:2f:b2:ee:ec:18:ce:d6:52:7f:d8:d0:be:06:fa:dd:3c:0e: aa:ee:75:73:a1:36:d3:38:3e:ec:bf:e2:16:df:e9:23:71:cd: 6b:36:a4:b1:9f:35:9b:e5:59:63:1a:80:2d:d1:50:bb:49:88: 91:d9:33:17:67:d2:85:90:e7:ea:bd:cc:80:c4:a9:01:2c:ee: 26:4a:c3:44:7d:c8:7b:0c:e5:21:84:60:7f:6e:4e:42:ea:81: 4c:3d:4c:01:fa:2e:a4:bd:8c:5d:b7:9e:8c:df:d3:a2:44:95: 30:66:21:5f:57:85:a7:2b:a1:f2:99:01:42:ef:62:9c:3f:26: 17:93:b5:a1:a5:de:ac:d2:93:9f:78:98:42:34:89:cc:70:07: ea:b9:43:a1:7f:33:61:5a:bd:69:3d:ce:df:53:d8:38:bb:b1: 95:b5:0b:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbV0HzNmBc45ThWKRC0ZTp2AU6QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExREZDQjRBNDM4NjFFNEE3MUJDRDY0NTc5MjAwNTQ4 NUJGQURGRDAeFw0yNTA5MDIwNDU3NTJaFw0yNjA5MDEwNTAyNTJaMDMxMTAvBgNV BAMTKDA1MjU0NjUwOUU5RDk5MkZFQTAzNTJDRkZDNDI1MkQzQTk4NUU5Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDubDjHhavQaOfwJzvypjrUJlS3 x0QkZLI7Vxod33sAlxDItaDMWfIfwD/dlJxvoqV1Iz2cHEwoPBHhf/zSUMCZJJxg ZxIPJcl0HivzWHyEE3wWzOcRzO7dABD1ayejHL3KntppVxFij2kp5WWprAQJRfHE 5/VtxF1hIPzh73M0pX90yfGG28aqvlv3yigZL5oSvLTn6041TGYcSzVwRxW2tcaa UkMcgwnosRIBDIaFaO5fRcZjZuwW65NAJ4Yr5bXKq7tDe1OhwszdyBztHd/ftYxh WlpkzDmRt3G0dHuYFa+P/lpqNiBx8+mu6061twJBvxRbRhEcRgriOFqMbKg3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBSVGUJ6dmS/qA1LP/EJS06mF6cowHwYDVR0j BBgwFoAUCh38tKQ4YeSnG81kV5IAVIW/rf0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODVjYmQ5NS01NzRmLTQwNWItOGJkZS0wZGRiOWM5YmRkYmEvMC8wQTFERkNCNEE0 Mzg2MUU0QTcxQkNENjQ1NzkyMDA1NDg1QkZBREZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEExREZDQjRBNDM4NjFFNEE3MUJDRDY0NTc5MjAwNTQ4NUJG QURGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NWNiZDk1LTU3NGYtNDA1Yi04 YmRlLTBkZGI5YzliZGRiYS8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OQMA0GCSqG SIb3DQEBCwUAA4IBAQCeJHJbCNWvJCBpUcjLbizRNuI5h0wnze7CdLplCwCMzSqo p3aRjaEQa4xEXNGdpy+gfD3F0TOfiRk5DQSLbuBIBuzOktVhpdT1O+cOhv9REhRe fJK0lz8kEjstL7Lu7BjO1lJ/2NC+BvrdPA6q7nVzoTbTOD7sv+IW3+kjcc1rNqSx nzWb5VljGoAt0VC7SYiR2TMXZ9KFkOfqvcyAxKkBLO4mSsNEfch7DOUhhGB/bk5C 6oFMPUwB+i6kvYxdt56M39OiRJUwZiFfV4WnK6HymQFC72KcPyYXk7Whpd6s0pOf eJhCNInMcAfquUOhfzNhWr1pPc7fU9g4u7GVtQsx -----END CERTIFICATE-----Generated at Mon Sep 8 09:54:30 2025 by rpki-client