$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa File: 3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa (raw, json) Hash identifier: dkJQYTGEN+d871bmbCtyZrcgdRwxS2PuzfLsM/c0oM0= Subject key identifier: 0E:C3:B5:D9:39:3D:BE:E7:68:FD:33:CF:E8:5C:68:53:9B:3A:61:12 Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Certificate serial: 111E5A5D7D67FE821CD371E9D15B9A2295BBA96C Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa Signing time: Sun 22 Jun 2025 16:00:00 +0000 ROA not before: Sun 22 Jun 2025 15:55:00 +0000 ROA not after: Sun 21 Jun 2026 16:00:00 +0000 asID: 138115 IP address blocks: 103.147.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 02:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:1e:5a:5d:7d:67:fe:82:1c:d3:71:e9:d1:5b:9a:22:95:bb:a9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Validity Not Before: Jun 22 15:55:00 2025 GMT Not After : Jun 21 16:00:00 2026 GMT Subject: CN=0EC3B5D9393DBEE768FD33CFE85C68539B3A6112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:cd:73:59:bc:1f:ed:c4:1f:1f:33:09:f2: a1:48:62:28:4b:82:69:bc:85:bb:e0:9c:72:2f:0f: 19:b8:39:1c:64:49:9e:c9:b2:1f:74:34:2b:a7:4d: 9a:aa:c9:3d:47:67:52:7c:ef:35:df:b5:94:34:54: eb:b6:8a:6e:61:07:08:22:16:fe:13:48:0e:b4:2e: ac:e4:e1:ff:65:b1:94:74:b3:02:fc:00:f0:cf:02: f9:1a:73:45:00:a1:99:90:1e:38:2f:96:c1:6a:97: 2a:71:a5:1b:1f:6a:39:36:69:e8:74:cc:7f:e5:d9: 4e:29:6e:9f:0a:5d:7a:cb:97:80:3e:1c:f8:e9:0a: 67:5a:5e:a0:a5:92:fd:be:52:9e:91:59:8d:39:b8: ff:5a:ab:8b:ac:c6:06:26:98:05:d9:8e:ee:fb:25: 36:2f:df:ad:e3:7a:13:92:8f:13:9d:be:b4:3b:46: 33:03:ab:86:1e:3d:0f:3e:6c:50:bc:5c:35:1f:8c: 86:d6:2e:0c:b7:82:77:a6:d9:5a:5e:c0:b9:f1:bf: a3:09:9e:c7:b1:83:83:78:aa:15:a3:9f:2c:f4:d7: f7:1d:a1:ea:51:db:b8:49:1a:d4:d9:b3:0d:e4:34: 31:2e:e2:4f:f0:90:ee:f0:78:0c:ca:4a:7c:44:6c: a0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C3:B5:D9:39:3D:BE:E7:68:FD:33:CF:E8:5C:68:53:9B:3A:61:12 X509v3 Authority Key Identifier: keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.154.0/24 Signature Algorithm: sha256WithRSAEncryption 04:32:cc:6e:b5:b0:a6:37:b3:82:57:be:41:55:d3:d1:e1:d8: ec:fe:d5:77:40:26:e8:b1:1a:69:8b:1d:c7:08:c4:ed:94:75: 2c:1e:f9:0b:3a:5d:80:c4:48:1c:88:70:7e:54:58:11:99:22: c4:34:b2:76:f6:99:50:86:32:e2:45:71:0c:c2:e8:9f:87:c6: f2:c9:3c:68:86:a8:07:64:e5:70:82:9c:7b:ec:49:82:92:d8: 62:3c:94:ef:82:77:73:a5:f4:b8:84:70:3d:36:56:39:55:e3: 36:73:dd:8a:bf:8a:d3:41:62:55:09:9d:6e:d9:af:2f:03:a3: 9f:ee:20:b0:94:29:cd:05:b5:3b:ac:ed:e1:99:6b:d7:5a:6f: 7c:0e:e7:a9:2c:f4:e6:54:55:fb:47:f8:99:94:86:5b:f3:42: f6:7a:1c:9d:b8:50:cc:fb:d2:c6:60:8a:27:4c:de:30:24:b4: f3:4f:28:de:86:17:b9:8d:2f:89:2d:c7:17:b4:f2:85:7d:e2: 67:51:4d:81:16:45:3c:b3:62:85:c9:31:8e:95:8b:e7:02:6f: b8:44:82:78:36:6f:ea:f4:5e:31:f1:8e:a4:f7:88:f8:3c:44: 31:a0:a4:ee:5a:41:f9:88:f0:70:e7:02:1d:5f:d7:c6:ac:dd: a3:20:06:16 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUER5aXX1n/oIc03Hp0VuaIpW7qWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0 MTcyODc2ODAeFw0yNTA2MjIxNTU1MDBaFw0yNjA2MjExNjAwMDBaMDMxMTAvBgNV BAMTKDBFQzNCNUQ5MzkzREJFRTc2OEZEMzNDRkU4NUM2ODUzOUIzQTYxMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7MM1zWbwf7cQfHzMJ8qFIYihL gmm8hbvgnHIvDxm4ORxkSZ7Jsh90NCunTZqqyT1HZ1J87zXftZQ0VOu2im5hBwgi Fv4TSA60Lqzk4f9lsZR0swL8APDPAvkac0UAoZmQHjgvlsFqlypxpRsfajk2aeh0 zH/l2U4pbp8KXXrLl4A+HPjpCmdaXqClkv2+Up6RWY05uP9aq4usxgYmmAXZju77 JTYv363jehOSjxOdvrQ7RjMDq4YePQ8+bFC8XDUfjIbWLgy3gnem2VpewLnxv6MJ nsexg4N4qhWjnyz01/cdoepR27hJGtTZsw3kNDEu4k/wkO7weAzKSnxEbKCLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDsO12Tk9vudo/TPP6FxoU5s6YRIwHwYDVR0j BBgwFoAUne7rDLlJLa3eR7MWKazackFyh2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGNmNjMyZC1kNjFhLTQ4MjYtYjU3Mi05ZjE5NDhhZTU4MGMvMC85REVFRUIwQ0I5 NDkyREFEREU0N0IzMTYyOUFDREE3MjQxNzI4NzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0MTcy ODc2OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk5owDQYJ KoZIhvcNAQELBQADggEBAAQyzG61sKY3s4JXvkFV09Hh2Oz+1XdAJuixGmmLHccI xO2UdSwe+Qs6XYDESByIcH5UWBGZIsQ0snb2mVCGMuJFcQzC6J+HxvLJPGiGqAdk 5XCCnHvsSYKS2GI8lO+Cd3Ol9LiEcD02VjlV4zZz3Yq/itNBYlUJnW7Zry8Do5/u ILCUKc0FtTus7eGZa9dab3wO56ks9OZUVftH+JmUhlvzQvZ6HJ24UMz70sZgiidM 3jAktPNPKN6GF7mNL4ktxxe08oV94mdRTYEWRTyzYoXJMY6Vi+cCb7hEgng2b+r0 XjHxjqT3iPg8RDGgpO5aQfmI8HDnAh1f18as3aMgBhY= -----END CERTIFICATE-----Generated at Mon Jun 30 20:36:22 2025 by rpki-client