$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa File: 3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: JE5sa6AJ1Mld5tF+2Ipz0AdqItfZzJvAXpbXLSMBkkY= Subject key identifier: C2:8A:16:48:9D:0D:24:34:7B:26:15:55:D2:80:B4:E7:5A:A8:07:04 Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Certificate serial: 4AC820FFD7BADBDD0F3AF774DB2632F0B8286260 Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa Signing time: Thu 28 Aug 2025 16:00:00 +0000 ROA not before: Thu 28 Aug 2025 15:55:00 +0000 ROA not after: Thu 27 Aug 2026 16:00:00 +0000 asID: 140456 IP address blocks: 103.96.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 09:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:c8:20:ff:d7:ba:db:dd:0f:3a:f7:74:db:26:32:f0:b8:28:62:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Validity Not Before: Aug 28 15:55:00 2025 GMT Not After : Aug 27 16:00:00 2026 GMT Subject: CN=C28A16489D0D24347B261555D280B4E75AA80704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:87:16:e3:a4:d4:5b:29:d1:d5:87:99:f1:7f: 09:0b:aa:85:fb:d5:72:a7:ba:8e:3f:c7:86:44:4d: 20:19:b1:0a:a3:f5:c9:88:8e:3f:c7:b4:6c:6d:08: 0f:be:f9:e2:83:85:60:9d:15:0b:80:e1:50:d6:2a: a9:a9:a9:06:0b:21:d9:f8:64:f5:eb:52:a3:d0:0c: d9:b9:53:f7:89:be:cc:8b:3e:45:47:37:a9:b4:9d: 76:15:69:fc:0f:80:00:c6:4c:8e:ea:b9:68:9b:03: 0c:18:33:bc:1f:da:16:e2:9c:62:9b:f9:95:bb:bf: 00:eb:22:b4:96:65:fd:c7:88:38:c9:cb:d1:61:c4: 00:c6:af:09:a2:4c:df:5a:4e:8a:d4:60:d9:02:03: 78:a4:da:e0:d2:92:9b:f5:c2:bb:85:d6:49:44:32: b1:2e:64:25:71:b7:44:9e:b0:ae:2a:ac:aa:4b:0c: 09:5c:76:8b:8d:2a:34:f5:5e:fc:2f:2a:32:68:83: 7e:97:63:af:94:e1:c8:aa:81:61:17:b7:c1:8c:c4: 2b:c4:94:78:61:a1:8a:f4:2f:5b:24:d2:81:d0:40: d9:44:32:47:65:cc:b9:e5:9f:ac:b1:e7:68:26:50: 00:10:3d:0c:10:5c:a9:c7:cc:6a:52:6e:8b:e1:21: 04:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8A:16:48:9D:0D:24:34:7B:26:15:55:D2:80:B4:E7:5A:A8:07:04 X509v3 Authority Key Identifier: keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.147.0/24 Signature Algorithm: sha256WithRSAEncryption 78:b8:7f:62:55:32:09:7c:1e:65:7a:37:24:d2:e5:bf:20:c1: 59:92:fb:02:b0:c8:59:21:77:83:5f:17:db:e5:47:72:6e:7e: b6:2c:82:44:42:35:92:dc:34:35:26:50:65:c4:67:e6:77:5e: 26:df:11:8a:12:b6:ae:07:b5:5d:5a:96:0d:a7:73:91:3f:12: 73:b1:5c:34:a4:4d:66:59:bb:b0:86:14:5e:24:49:1d:29:2a: b0:38:66:82:75:bd:f6:dd:fe:04:86:b0:af:cc:7f:74:b2:b7: 55:de:2f:cf:3e:2b:2d:f4:ab:c6:63:99:a9:c3:cb:33:9a:b1: e2:e2:dd:44:3c:87:7d:69:33:6b:87:50:32:6a:74:a1:13:61: b6:07:60:c7:61:13:18:bd:ef:7e:5d:f4:02:ad:fe:1c:39:9b: 2b:ba:30:66:99:78:f2:41:c1:4d:82:6e:32:22:8b:43:3b:b7: 01:e5:57:4b:e0:7e:d9:e6:82:fd:32:3d:88:76:68:60:d1:e2: 81:0d:0e:b7:60:a0:f9:2f:ca:e4:0b:c4:2c:12:5e:51:f3:16: 69:13:f2:0b:01:f7:70:5b:ed:b1:8d:84:9a:d3:5a:a1:5d:2d: a3:5f:b8:49:79:4e:fd:f1:20:d7:b1:3b:a5:2e:2e:de:aa:79: 99:de:87:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSsgg/9e6290POvd02yYy8LgoYmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZG QTJEQ0QwQTAeFw0yNTA4MjgxNTU1MDBaFw0yNjA4MjcxNjAwMDBaMDMxMTAvBgNV BAMTKEMyOEExNjQ4OUQwRDI0MzQ3QjI2MTU1NUQyODBCNEU3NUFBODA3MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmhxbjpNRbKdHVh5nxfwkLqoX7 1XKnuo4/x4ZETSAZsQqj9cmIjj/HtGxtCA+++eKDhWCdFQuA4VDWKqmpqQYLIdn4 ZPXrUqPQDNm5U/eJvsyLPkVHN6m0nXYVafwPgADGTI7quWibAwwYM7wf2hbinGKb +ZW7vwDrIrSWZf3HiDjJy9FhxADGrwmiTN9aTorUYNkCA3ik2uDSkpv1wruF1klE MrEuZCVxt0SesK4qrKpLDAlcdouNKjT1XvwvKjJog36XY6+U4ciqgWEXt8GMxCvE lHhhoYr0L1sk0oHQQNlEMkdlzLnln6yx52gmUAAQPQwQXKnHzGpSbovhIQRpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwooWSJ0NJDR7JhVV0oC051qoBwQwHwYDVR0j BBgwFoAUgcIDz0WOSKj/NF+0pd2ExvotzQowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTQ3NDZiNy01ZmYyLTQ1NTYtOGEzZS01YTg2Y2JjYzg1OTgvMC84MUMyMDNDRjQ1 OEU0OEE4RkYzNDVGQjRBNUREODRDNkZBMkRDRDBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZGQTJE Q0QwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhNDc0NmI3LTVmZjItNDU1Ni04 YTNlLTVhODZjYmNjODU5OC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CTMA0GCSqG SIb3DQEBCwUAA4IBAQB4uH9iVTIJfB5lejck0uW/IMFZkvsCsMhZIXeDXxfb5Udy bn62LIJEQjWS3DQ1JlBlxGfmd14m3xGKErauB7VdWpYNp3ORPxJzsVw0pE1mWbuw hhReJEkdKSqwOGaCdb323f4EhrCvzH90srdV3i/PPist9KvGY5mpw8szmrHi4t1E PId9aTNrh1AyanShE2G2B2DHYRMYve9+XfQCrf4cOZsrujBmmXjyQcFNgm4yIotD O7cB5VdL4H7Z5oL9Mj2Idmhg0eKBDQ63YKD5L8rkC8QsEl5R8xZpE/ILAfdwW+2x jYSa01qhXS2jX7hJeU798SDXsTulLi7eqnmZ3oeR -----END CERTIFICATE-----Generated at Mon Sep 8 10:47:56 2025 by rpki-client