$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa File: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (raw, json) Hash identifier: KEUVODDrcsujN0g1v6DrUa6Mji4U9jJWIyDXhx1aJNY= Subject key identifier: 54:7B:7F:1F:FB:81:99:9E:B0:19:CB:E3:D7:E3:4F:15:1B:DD:78:AB Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 4BA979534FE5EAB4283217018F00B072A04958DE Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa Signing time: Fri 15 Aug 2025 05:00:00 +0000 ROA not before: Fri 15 Aug 2025 04:55:00 +0000 ROA not after: Fri 14 Aug 2026 05:00:00 +0000 asID: 139941 IP address blocks: 103.146.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a9:79:53:4f:e5:ea:b4:28:32:17:01:8f:00:b0:72:a0:49:58:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Aug 15 04:55:00 2025 GMT Not After : Aug 14 05:00:00 2026 GMT Subject: CN=547B7F1FFB81999EB019CBE3D7E34F151BDD78AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2d:83:55:91:42:f3:18:d1:b5:b8:45:af:68: cb:3c:6c:5d:3b:c2:97:21:8a:c6:4a:d1:fe:15:4c: e3:d1:ba:d9:0a:29:c2:0c:2d:54:40:d5:b6:ca:5f: 3c:c1:67:b8:2f:ec:56:a8:52:e4:db:d1:80:d0:00: 5e:8b:24:c5:a4:37:b0:c2:c5:05:60:10:1d:b4:07: a3:69:9d:2b:7d:d2:15:4f:25:77:f8:97:1b:50:25: e8:84:25:25:65:0b:5c:fb:ad:f8:2c:f3:7a:38:1e: 7b:8a:46:76:b3:28:4a:64:61:eb:b1:c5:d0:96:6d: a5:2a:8a:73:0b:76:13:bd:70:f5:d1:76:01:75:c1: 22:ce:33:19:f1:6b:ba:50:0b:9e:d3:1d:d0:52:d4: 6e:16:eb:ac:46:a7:55:82:e0:3d:9e:8e:cc:ab:2c: 96:30:69:f6:5d:4f:5a:74:d9:c9:71:18:43:9e:b1: df:f8:6e:de:1f:f9:f9:da:9f:f8:53:02:13:f5:f0: 18:07:d0:63:52:13:0a:e4:9f:85:2f:59:eb:33:5e: 64:76:a3:34:da:62:53:98:62:1e:f2:b1:bf:50:ba: 18:d4:58:3f:75:5e:c9:08:b5:81:a9:43:e1:1f:24: 7d:2e:d8:45:90:af:23:2d:6e:90:06:74:90:b4:ab: 85:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:7B:7F:1F:FB:81:99:9E:B0:19:CB:E3:D7:E3:4F:15:1B:DD:78:AB X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.196.0/23 Signature Algorithm: sha256WithRSAEncryption 92:3f:63:62:20:63:ec:7e:22:1e:c5:07:80:08:38:aa:83:c6: 38:95:17:c7:a1:22:2c:f2:39:66:c4:44:c3:bb:5b:a7:01:1c: 52:3c:53:68:9e:8c:67:ea:6d:6b:5b:e8:9a:b5:20:70:8f:07: 68:92:61:54:81:a3:d5:a1:b7:28:79:a7:40:da:c9:a3:a5:bf: 2b:25:96:07:2f:eb:0c:8d:0f:73:29:79:98:f4:8b:2b:82:5a: 24:03:f5:eb:f9:3d:49:9f:3a:22:2a:8b:42:b3:76:2d:28:08: 2c:5b:e1:e8:0d:be:68:b7:2f:1d:53:7f:3d:5e:65:6e:f2:b4: 32:b0:ca:00:36:14:8f:e7:da:48:6f:54:0e:af:21:5c:c1:02: cf:8a:3c:15:1d:e0:34:72:b8:6c:e2:34:42:58:d5:66:d4:d7: ca:b1:94:bb:eb:a0:80:30:1d:93:a8:e2:07:52:b7:65:98:89: aa:5e:b8:44:75:fc:bf:c9:d4:49:1d:9b:d0:7b:3d:fc:e5:4f: d4:07:4e:b4:83:fa:a2:9e:96:74:08:3b:a8:ca:5e:86:c8:d7: e1:4c:ea:2a:40:8d:c5:7e:f7:fb:27:29:f3:52:d4:0e:8e:a7: 1a:2d:bf:01:54:24:91:8f:30:49:e7:0c:15:0d:9b:65:4e:5c: 91:f7:10:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS6l5U0/l6rQoMhcBjwCwcqBJWN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNTA4MTUwNDU1MDBaFw0yNjA4MTQwNTAwMDBaMDMxMTAvBgNV BAMTKDU0N0I3RjFGRkI4MTk5OUVCMDE5Q0JFM0Q3RTM0RjE1MUJERDc4QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2LYNVkULzGNG1uEWvaMs8bF07 wpchisZK0f4VTOPRutkKKcIMLVRA1bbKXzzBZ7gv7FaoUuTb0YDQAF6LJMWkN7DC xQVgEB20B6NpnSt90hVPJXf4lxtQJeiEJSVlC1z7rfgs83o4HnuKRnazKEpkYeux xdCWbaUqinMLdhO9cPXRdgF1wSLOMxnxa7pQC57THdBS1G4W66xGp1WC4D2ejsyr LJYwafZdT1p02clxGEOesd/4bt4f+fnan/hTAhP18BgH0GNSEwrkn4UvWeszXmR2 ozTaYlOYYh7ysb9QuhjUWD91XskItYGpQ+EfJH0u2EWQryMtbpAGdJC0q4VfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVHt/H/uBmZ6wGcvj1+NPFRvdeKswHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzNTA0OGM2LThjY2QtNDYzZC1h ZDM0LWFlNzQyODY0N2E5Yy8wLzMxMzAzMzJlMzEzNDM2MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnksQwDQYJ KoZIhvcNAQELBQADggEBAJI/Y2IgY+x+Ih7FB4AIOKqDxjiVF8ehIizyOWbERMO7 W6cBHFI8U2iejGfqbWtb6Jq1IHCPB2iSYVSBo9Whtyh5p0DayaOlvysllgcv6wyN D3MpeZj0iyuCWiQD9ev5PUmfOiIqi0Kzdi0oCCxb4egNvmi3Lx1Tfz1eZW7ytDKw ygA2FI/n2khvVA6vIVzBAs+KPBUd4DRyuGziNEJY1WbU18qxlLvroIAwHZOo4gdS t2WYiapeuER1/L/J1Ekdm9B7PfzlT9QHTrSD+qKelnQIO6jKXobI1+FM6ipAjcV+ 9/snKfNS1A6OpxotvwFUJJGPMEnnDBUNm2VOXJH3EE8= -----END CERTIFICATE-----Generated at Sat Aug 23 20:59:08 2025 by rpki-client