$ rpki-client -vvf repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: PrW1B+JOk51E9zyJqPaIkQOhvDojGNHgAHNsvo2TOSQ= Subject key identifier: 15:A1:DF:0F:74:0D:FB:A4:4E:0E:FB:C1:D0:CF:13:2C:2C:E9:55:18 Certificate issuer: /CN=A2D790243ED650B27D7A54EBD16ADC6811CF14BD Certificate serial: 1905BF9076E8E7A3658B43EF75F406FDE8CCAF17 Authority key identifier: A2:D7:90:24:3E:D6:50:B2:7D:7A:54:EB:D1:6A:DC:68:11:CF:14:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa Signing time: Tue 02 Sep 2025 05:02:53 +0000 ROA not before: Tue 02 Sep 2025 04:57:53 +0000 ROA not after: Tue 01 Sep 2026 05:02:53 +0000 asID: 17769 IP address blocks: 103.147.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.crl rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 17:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:05:bf:90:76:e8:e7:a3:65:8b:43:ef:75:f4:06:fd:e8:cc:af:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2D790243ED650B27D7A54EBD16ADC6811CF14BD Validity Not Before: Sep 2 04:57:53 2025 GMT Not After : Sep 1 05:02:53 2026 GMT Subject: CN=15A1DF0F740DFBA44E0EFBC1D0CF132C2CE95518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:3d:28:32:20:6d:ac:c4:33:4e:db:1d:59: 9e:3d:85:19:5f:59:20:08:d1:0a:bb:a7:23:e3:84: e0:87:fe:05:fe:0e:1e:e1:61:b2:b4:cc:9a:51:9b: 8c:01:0b:3b:30:c3:3f:28:6d:ec:30:5c:ec:70:bd: 21:a8:df:58:85:29:fe:9e:d2:03:98:7d:9d:0b:7a: 9b:dd:ea:04:6b:d7:f2:8d:06:ef:df:b1:bb:64:da: 39:bc:28:8c:c6:e0:25:84:25:72:19:3b:e5:38:8d: 73:0e:e9:34:3c:ea:d9:82:d4:e6:1e:5a:e1:07:7b: c8:34:0a:cd:e6:92:9e:47:bf:a5:48:05:01:3e:d5: 52:74:5c:53:de:47:a7:29:e0:58:2e:50:78:da:96: 2f:79:ca:1c:3b:9a:44:72:ef:4c:5f:93:87:8d:1d: 5d:6f:cc:9b:36:7c:fc:74:81:79:02:54:70:ff:99: b4:99:1a:41:9f:ec:ef:3e:1b:00:64:df:0e:2f:d6: 8f:27:41:65:91:4c:38:d4:9e:3d:41:16:0d:71:c6: 80:cd:86:1e:2b:05:46:dd:d6:b8:53:57:45:86:f4: b4:d9:65:8f:fd:63:d4:bb:7f:95:ab:eb:a7:4f:60: 72:35:be:71:7c:24:27:90:20:06:dc:4c:2e:32:2b: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A1:DF:0F:74:0D:FB:A4:4E:0E:FB:C1:D0:CF:13:2C:2C:E9:55:18 X509v3 Authority Key Identifier: keyid:A2:D7:90:24:3E:D6:50:B2:7D:7A:54:EB:D1:6A:DC:68:11:CF:14:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.142.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:f5:39:d9:fa:c0:04:9e:49:d1:66:e3:0e:cb:7e:a5:04:18: 27:33:4e:57:2b:0f:d3:af:4c:07:97:8c:64:61:0e:8d:93:bb: 55:bc:7a:d5:5f:43:94:df:80:0a:54:99:56:60:df:ff:5e:88: 67:6f:77:52:9a:d4:ce:02:61:79:ed:12:2e:7a:8f:7d:c5:80: 75:4e:19:2e:94:32:0c:95:2a:51:d4:d8:26:9d:8d:2a:2c:4c: 60:0e:e6:ff:f5:a9:9c:46:58:67:cf:b3:c8:ee:66:fc:22:91: cd:6f:a4:6e:4e:62:5c:fb:15:d3:fb:e4:89:ca:c0:06:08:28: 57:3a:76:e1:46:a4:c9:04:c9:ad:bb:55:2c:a8:fc:78:ba:99: 4f:c3:58:22:54:4e:67:f9:4b:10:bb:e8:90:c2:91:72:8c:e1: 03:98:b7:ba:f3:a7:52:de:2a:e2:ac:97:ec:ec:3d:dc:66:ad: b8:0a:df:67:7b:89:fd:05:ae:11:77:ab:d7:73:55:9e:be:3d: eb:00:83:a2:4a:c6:66:25:19:a3:b1:de:59:22:29:e0:b7:a6: c0:4f:94:e9:61:f8:d5:da:b1:fb:9a:d9:c5:a4:98:cd:7d:9c: 8b:e9:60:2f:cd:aa:c6:12:ec:d6:86:a6:c0:fb:8d:41:c3:c4: 1b:f7:18:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGQW/kHbo56Nli0PvdfQG/ejMrxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJENzkwMjQzRUQ2NTBCMjdEN0E1NEVCRDE2QURDNjgx MUNGMTRCRDAeFw0yNTA5MDIwNDU3NTNaFw0yNjA5MDEwNTAyNTNaMDMxMTAvBgNV BAMTKDE1QTFERjBGNzQwREZCQTQ0RTBFRkJDMUQwQ0YxMzJDMkNFOTU1MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/rT0oMiBtrMQzTtsdWZ49hRlf WSAI0Qq7pyPjhOCH/gX+Dh7hYbK0zJpRm4wBCzswwz8obewwXOxwvSGo31iFKf6e 0gOYfZ0Lepvd6gRr1/KNBu/fsbtk2jm8KIzG4CWEJXIZO+U4jXMO6TQ86tmC1OYe WuEHe8g0Cs3mkp5Hv6VIBQE+1VJ0XFPeR6cp4FguUHjali95yhw7mkRy70xfk4eN HV1vzJs2fPx0gXkCVHD/mbSZGkGf7O8+GwBk3w4v1o8nQWWRTDjUnj1BFg1xxoDN hh4rBUbd1rhTV0WG9LTZZY/9Y9S7f5Wr66dPYHI1vnF8JCeQIAbcTC4yK9M/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFaHfD3QN+6RODvvB0M8TLCzpVRgwHwYDVR0j BBgwFoAUoteQJD7WULJ9elTr0WrcaBHPFL0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmYwYWY2YS1jNjgwLTQ3MzEtOWI5Mi05YWE5M2Q5YzAxNmMvMC9BMkQ3OTAyNDNF RDY1MEIyN0Q3QTU0RUJEMTZBREM2ODExQ0YxNEJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJENzkwMjQzRUQ2NTBCMjdEN0E1NEVCRDE2QURDNjgxMUNG MTRCRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZjBhZjZhLWM2ODAtNDczMS05 YjkyLTlhYTkzZDljMDE2Yy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OOMA0GCSqG SIb3DQEBCwUAA4IBAQAq9TnZ+sAEnknRZuMOy36lBBgnM05XKw/Tr0wHl4xkYQ6N k7tVvHrVX0OU34AKVJlWYN//Xohnb3dSmtTOAmF57RIueo99xYB1ThkulDIMlSpR 1NgmnY0qLExgDub/9amcRlhnz7PI7mb8IpHNb6RuTmJc+xXT++SJysAGCChXOnbh RqTJBMmtu1UsqPx4uplPw1giVE5n+UsQu+iQwpFyjOEDmLe686dS3irirJfs7D3c Zq24Ct9ne4n9Ba4Rd6vXc1Wevj3rAIOiSsZmJRmjsd5ZIingt6bAT5TpYfjV2rH7 mtnFpJjNfZyL6WAvzarGEuzWhqbA+41Bw8Qb9xjB -----END CERTIFICATE-----Generated at Mon Sep 8 09:27:45 2025 by rpki-client