$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa File: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (raw, json) Hash identifier: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA= Subject key identifier: 7D:50:F6:DF:BF:91:B6:85:8C:24:B6:B3:4E:14:E5:E8:4C:CF:39:75 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 6279F53661D8FE71968F4B959A3399B86753C03C Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa Signing time: Thu 26 Jun 2025 08:00:00 +0000 ROA not before: Thu 26 Jun 2025 07:55:00 +0000 ROA not after: Thu 25 Jun 2026 08:00:00 +0000 asID: 138139 IP address blocks: 103.133.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 15:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:79:f5:36:61:d8:fe:71:96:8f:4b:95:9a:33:99:b8:67:53:c0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jun 26 07:55:00 2025 GMT Not After : Jun 25 08:00:00 2026 GMT Subject: CN=7D50F6DFBF91B6858C24B6B34E14E5E84CCF3975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d6:8f:85:1e:0c:2b:b7:d8:8d:83:0a:06:20: c4:bd:57:a9:1f:7d:4c:e9:bc:36:e9:2f:33:3e:ee: ce:d0:cc:53:d5:88:03:c1:90:d7:f2:cf:14:f4:5e: 7f:73:cd:17:12:29:50:42:bd:73:f7:64:2d:70:c9: bc:d4:1f:cc:a6:1b:97:89:ce:33:e8:f2:a2:3d:e7: 08:ab:47:2e:f0:97:26:85:41:db:00:04:aa:e8:ab: 8b:eb:9b:b2:43:47:c4:6e:0a:17:f3:28:d0:15:d5: f9:92:f2:a8:04:3b:db:2c:1d:74:78:b6:c7:10:0b: e3:67:74:90:3c:32:fd:37:10:21:72:ce:a6:ab:cd: 67:f4:5c:19:19:19:07:58:05:d9:9a:9c:4a:5b:b6: 9c:a9:ca:89:48:3a:41:ba:9a:3a:cf:97:63:84:28: 44:b1:b1:1d:90:ee:8b:b8:37:74:b4:87:ce:04:7d: 69:ef:99:83:36:4e:8b:c7:be:04:d2:7e:75:7b:7f: 69:a1:eb:91:48:0d:8d:81:ce:c5:c7:1e:c3:a3:32: a2:4a:6d:e8:0a:21:6a:c0:11:0c:c8:53:87:0f:44: e2:97:e6:11:dc:73:aa:cc:ae:2e:bb:46:98:31:84: bc:51:9e:72:50:fb:4c:6a:fb:eb:30:a3:e6:a6:70: 87:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:50:F6:DF:BF:91:B6:85:8C:24:B6:B3:4E:14:E5:E8:4C:CF:39:75 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.147.0/24 Signature Algorithm: sha256WithRSAEncryption b2:3a:73:21:18:e3:27:86:a3:82:9e:0a:16:cf:bd:de:2b:50: b8:55:de:5d:b2:eb:e9:3a:26:cf:e0:73:cf:d7:06:cc:73:a0: f6:77:7e:de:ac:3a:c4:e2:6c:e2:b1:56:5a:c5:cd:06:44:45: 2c:64:0b:a0:0d:42:bd:dc:27:ae:5b:0a:f3:77:52:b9:d6:e8: ed:b4:1d:c6:69:dd:bf:a1:2b:e4:c3:87:cd:44:74:5d:29:a0: ce:86:d0:59:90:fb:5d:80:24:a9:32:1b:eb:63:10:30:03:cd: 10:7e:6c:b1:8f:f1:1c:96:f8:e1:55:bd:63:0c:15:48:20:1f: d7:83:cb:10:87:3a:cf:d7:40:2e:04:62:f9:ff:44:fc:21:0a: 6c:d2:a0:79:f0:19:9e:8d:25:db:34:32:2a:f6:e3:d1:6a:79: 06:70:0f:17:4e:79:6a:8f:84:06:45:64:38:f0:d4:ae:00:46: 96:63:c8:3b:6f:ed:7f:fd:44:69:28:47:f1:bd:91:b0:ee:6c: 7b:ca:93:c8:c8:8a:9d:9b:0e:05:bc:a5:1e:32:a0:a8:ca:07: ba:51:ca:33:12:5a:22:04:8b:85:0d:55:6c:67:83:43:04:bb: 6c:2a:0d:c8:a2:94:33:00:fc:97:31:33:dc:be:2b:7a:48:01: 1e:61:4d:fa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYnn1NmHY/nGWj0uVmjOZuGdTwDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNTA2MjYwNzU1MDBaFw0yNjA2MjUwODAwMDBaMDMxMTAvBgNV BAMTKDdENTBGNkRGQkY5MUI2ODU4QzI0QjZCMzRFMTRFNUU4NENDRjM5NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc1o+FHgwrt9iNgwoGIMS9V6kf fUzpvDbpLzM+7s7QzFPViAPBkNfyzxT0Xn9zzRcSKVBCvXP3ZC1wybzUH8ymG5eJ zjPo8qI95wirRy7wlyaFQdsABKroq4vrm7JDR8RuChfzKNAV1fmS8qgEO9ssHXR4 tscQC+NndJA8Mv03ECFyzqarzWf0XBkZGQdYBdmanEpbtpypyolIOkG6mjrPl2OE KESxsR2Q7ou4N3S0h84EfWnvmYM2TovHvgTSfnV7f2mh65FIDY2BzsXHHsOjMqJK begKIWrAEQzIU4cPROKX5hHcc6rMri67RpgxhLxRnnJQ+0xq++swo+amcIeJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfVD237+RtoWMJLazThTl6EzPOXUwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMxMzAzMzJlMzEzMzMzMmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhZMwDQYJ KoZIhvcNAQELBQADggEBALI6cyEY4yeGo4KeChbPvd4rULhV3l2y6+k6Js/gc8/X BsxzoPZ3ft6sOsTibOKxVlrFzQZERSxkC6ANQr3cJ65bCvN3UrnW6O20HcZp3b+h K+TDh81EdF0poM6G0FmQ+12AJKkyG+tjEDADzRB+bLGP8RyW+OFVvWMMFUggH9eD yxCHOs/XQC4EYvn/RPwhCmzSoHnwGZ6NJds0Mir249FqeQZwDxdOeWqPhAZFZDjw 1K4ARpZjyDtv7X/9RGkoR/G9kbDubHvKk8jIip2bDgW8pR4yoKjKB7pRyjMSWiIE i4UNVWxng0MEu2wqDciilDMA/JcxM9y+K3pIAR5hTfo= -----END CERTIFICATE-----Generated at Mon Jun 30 07:41:52 2025 by rpki-client