$ rpki-client -vvf repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa File: 3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa (raw, json) Hash identifier: Co4oCqQgIJlqQAiLFlbpmiRGvqJo8VYFhlYbFw0DIow= Subject key identifier: 46:37:BE:AB:C7:7A:E5:88:19:96:81:4C:4B:EC:52:42:1C:F9:35:29 Certificate issuer: /CN=47A9D99A8511F7CE54F9F71E1EF83EF548924274 Certificate serial: 5825B3CB4EF9637C7BD44AA65FDE39B7393760E6 Authority key identifier: 47:A9:D9:9A:85:11:F7:CE:54:F9:F7:1E:1E:F8:3E:F5:48:92:42:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47A9D99A8511F7CE54F9F71E1EF83EF548924274.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa Signing time: Wed 01 Oct 2025 11:00:00 +0000 ROA not before: Wed 01 Oct 2025 10:55:00 +0000 ROA not after: Wed 30 Sep 2026 11:00:00 +0000 asID: 150486 IP address blocks: 103.78.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/47A9D99A8511F7CE54F9F71E1EF83EF548924274.crl rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/47A9D99A8511F7CE54F9F71E1EF83EF548924274.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47A9D99A8511F7CE54F9F71E1EF83EF548924274.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:25:b3:cb:4e:f9:63:7c:7b:d4:4a:a6:5f:de:39:b7:39:37:60:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47A9D99A8511F7CE54F9F71E1EF83EF548924274 Validity Not Before: Oct 1 10:55:00 2025 GMT Not After : Sep 30 11:00:00 2026 GMT Subject: CN=4637BEABC77AE5881996814C4BEC52421CF93529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:26:ff:39:69:9e:a7:6c:fa:13:ec:57:c6: 65:c0:ce:da:bc:ab:ef:22:75:5f:cd:7c:8b:1a:56: 63:38:c0:a9:aa:f2:4a:c0:25:73:e7:41:b2:28:9d: bc:43:85:fa:80:6d:bb:7b:1e:56:b7:5d:9a:14:47: 47:79:51:6b:9d:ab:75:24:2a:37:01:0b:92:77:1d: e6:ed:87:f0:bf:da:07:1a:96:d4:06:6d:8a:1f:5d: 54:f9:aa:86:57:b3:84:c4:da:d3:6d:f3:d1:68:a2: 7c:25:32:17:ed:44:a8:c7:1b:34:da:24:52:46:a0: af:60:f2:30:c3:cf:75:00:80:8a:8c:03:f8:90:1b: 4f:dd:53:ce:97:ef:d4:79:6e:ef:aa:fd:00:6d:ea: fd:0f:81:f2:26:7d:44:dd:13:0b:38:97:6a:22:1a: 2f:42:c2:f3:4c:73:0b:a6:07:89:2f:c2:2e:d6:d1: 13:d9:b9:c6:e8:53:b9:c0:cd:ce:f0:70:79:c9:e2: a8:dd:46:75:4c:c9:ac:e3:4d:d0:b7:4a:fc:7d:62: 17:88:0e:87:b9:b2:99:53:bd:c6:c7:0d:8d:c9:0f: 79:a9:a3:bd:ca:9b:2c:31:3b:3d:8a:34:31:91:c4: aa:67:25:db:0e:04:a4:53:a2:05:47:96:62:1f:25: a7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:37:BE:AB:C7:7A:E5:88:19:96:81:4C:4B:EC:52:42:1C:F9:35:29 X509v3 Authority Key Identifier: keyid:47:A9:D9:9A:85:11:F7:CE:54:F9:F7:1E:1E:F8:3E:F5:48:92:42:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/47A9D99A8511F7CE54F9F71E1EF83EF548924274.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47A9D99A8511F7CE54F9F71E1EF83EF548924274.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.240.0/24 Signature Algorithm: sha256WithRSAEncryption 79:39:48:e7:d4:d5:60:29:43:0c:57:08:78:55:e6:e0:a7:c9: c9:07:5c:76:8f:64:96:91:91:aa:25:97:5b:c3:d2:f5:1c:18: 2e:62:c9:67:04:61:55:10:b2:28:78:b5:bd:17:6a:a0:06:be: 6c:a2:19:bb:27:03:97:f7:50:56:8f:a1:99:83:01:ec:fc:be: 16:ad:6e:af:8b:9e:47:c2:4b:1f:ca:53:61:2b:79:d9:c4:6b: df:ab:82:3c:e0:4b:5a:b7:f8:31:85:28:df:71:da:07:9b:a0: ae:ef:58:c7:bf:47:53:c7:9c:03:b8:9e:41:e0:ab:4a:a8:13: 72:98:29:74:7d:cc:81:eb:b4:5b:1a:15:24:1c:9b:c2:a5:5e: da:c8:83:2e:9b:49:c4:6e:9c:24:5c:01:ed:26:71:63:f3:7d: 77:9d:b0:35:14:f3:24:36:d6:6e:dd:de:c8:a6:e1:d1:00:3e: 56:9b:97:18:c6:6c:e9:ab:c4:9d:fe:ed:93:4c:31:2b:74:fe: 49:9c:bf:30:3f:e4:16:0b:17:c9:d0:22:b7:74:b6:23:40:16: 5b:ff:a2:5f:3d:4c:38:94:5b:84:7f:41:fd:aa:a3:db:3d:56: b0:fc:bd:2b:88:b3:cd:17:18:58:7c:ed:0b:0a:16:47:cc:34: 65:c9:ca:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWCWzy075Y3x71EqmX945tzk3YOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdBOUQ5OUE4NTExRjdDRTU0RjlGNzFFMUVGODNFRjU0 ODkyNDI3NDAeFw0yNTEwMDExMDU1MDBaFw0yNjA5MzAxMTAwMDBaMDMxMTAvBgNV BAMTKDQ2MzdCRUFCQzc3QUU1ODgxOTk2ODE0QzRCRUM1MjQyMUNGOTM1MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ8Sb/OWmep2z6E+xXxmXAztq8 q+8idV/NfIsaVmM4wKmq8krAJXPnQbIonbxDhfqAbbt7Hla3XZoUR0d5UWudq3Uk KjcBC5J3Hebth/C/2gcaltQGbYofXVT5qoZXs4TE2tNt89FoonwlMhftRKjHGzTa JFJGoK9g8jDDz3UAgIqMA/iQG0/dU86X79R5bu+q/QBt6v0PgfImfUTdEws4l2oi Gi9CwvNMcwumB4kvwi7W0RPZucboU7nAzc7wcHnJ4qjdRnVMyazjTdC3Svx9YheI Doe5splTvcbHDY3JD3mpo73KmywxOz2KNDGRxKpnJdsOBKRTogVHlmIfJadjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURje+q8d65YgZloFMS+xSQhz5NSkwHwYDVR0j BBgwFoAUR6nZmoUR985U+fceHvg+9UiSQnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i M2M5NzNkNS1mZTk0LTQwMGQtYmNiZi1mMjMzZThhYzU1MzcvMC80N0E5RDk5QTg1 MTFGN0NFNTRGOUY3MUUxRUY4M0VGNTQ4OTI0Mjc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdBOUQ5OUE4NTExRjdDRTU0RjlGNzFFMUVGODNFRjU0ODky NDI3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzYzk3M2Q1LWZlOTQtNDAwZC1i Y2JmLWYyMzNlOGFjNTUzNy8wLzMxMzAzMzJlMzczODJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ07wMA0GCSqG SIb3DQEBCwUAA4IBAQB5OUjn1NVgKUMMVwh4Vebgp8nJB1x2j2SWkZGqJZdbw9L1 HBguYslnBGFVELIoeLW9F2qgBr5sohm7JwOX91BWj6GZgwHs/L4WrW6vi55Hwksf ylNhK3nZxGvfq4I84Etat/gxhSjfcdoHm6Cu71jHv0dTx5wDuJ5B4KtKqBNymCl0 fcyB67RbGhUkHJvCpV7ayIMum0nEbpwkXAHtJnFj8313nbA1FPMkNtZu3d7IpuHR AD5Wm5cYxmzpq8Sd/u2TTDErdP5JnL8wP+QWCxfJ0CK3dLYjQBZb/6JfPUw4lFuE f0H9qqPbPVaw/L0riLPNFxhYfO0LChZHzDRlycrY -----END CERTIFICATE-----Generated at Tue Oct 21 08:37:27 2025 by rpki-client