$ rpki-client -vvf repo-rpki.idnic.net/repo/55ba47ce-3992-431c-abf1-681a4cc8ec48/0/3130332e3134372e3233362e302f32332d3234203d3e20313339393731.roa File: 3130332e3134372e3233362e302f32332d3234203d3e20313339393731.roa (raw, json) Hash identifier: Dk+kadZF8jy8Jr2gvM5PjhVeLC3W+zlB4SeDi9Hh4BA= Subject key identifier: A0:52:93:DA:A6:98:6F:6C:0D:35:AA:E1:7A:56:D6:F2:CC:7B:53:A3 Certificate issuer: /CN=07D6388316655597AEA703AEBFDD2869F80A8984 Certificate serial: 5BB97601DEE96E45749716BD8A4D5404A674EE37 Authority key identifier: 07:D6:38:83:16:65:55:97:AE:A7:03:AE:BF:DD:28:69:F8:0A:89:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07D6388316655597AEA703AEBFDD2869F80A8984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ba47ce-3992-431c-abf1-681a4cc8ec48/0/3130332e3134372e3233362e302f32332d3234203d3e20313339393731.roa Signing time: Tue 08 Jul 2025 08:00:01 +0000 ROA not before: Tue 08 Jul 2025 07:55:01 +0000 ROA not after: Tue 07 Jul 2026 08:00:01 +0000 asID: 139971 IP address blocks: 103.147.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ba47ce-3992-431c-abf1-681a4cc8ec48/0/07D6388316655597AEA703AEBFDD2869F80A8984.crl rsync://repo-rpki.idnic.net/repo/55ba47ce-3992-431c-abf1-681a4cc8ec48/0/07D6388316655597AEA703AEBFDD2869F80A8984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07D6388316655597AEA703AEBFDD2869F80A8984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 23:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b9:76:01:de:e9:6e:45:74:97:16:bd:8a:4d:54:04:a6:74:ee:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07D6388316655597AEA703AEBFDD2869F80A8984 Validity Not Before: Jul 8 07:55:01 2025 GMT Not After : Jul 7 08:00:01 2026 GMT Subject: CN=A05293DAA6986F6C0D35AAE17A56D6F2CC7B53A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:b2:04:64:57:ac:15:0f:af:56:2d:cc:f0: 79:f1:da:0f:a1:4b:b4:30:38:a0:04:d7:a1:41:db: 86:28:cc:38:64:c0:47:28:52:e2:01:90:a7:df:f5: 0d:6e:2a:ac:65:73:3a:25:cb:86:1d:cd:bc:1f:86: b1:c3:1a:52:c4:d1:a2:c7:f6:8f:e3:9e:fe:d3:19: c2:5a:68:b5:34:2c:b9:82:a9:37:58:00:e8:15:9d: 0c:3b:e1:29:ef:1e:77:d3:d0:b0:cb:48:59:6e:31: cd:48:a3:de:21:45:6f:29:33:c1:ee:ae:aa:19:1a: 6e:f9:7d:8d:9f:07:22:0f:51:03:b2:fd:59:26:71: 7c:be:3f:5f:51:9e:69:07:ad:9f:ca:74:72:6b:19: f4:18:1d:0e:d1:72:58:37:f2:a8:7d:3a:c1:16:f5: e8:69:74:5b:0c:0f:27:38:0d:7a:e2:70:ec:28:22: 27:df:2f:25:e5:c0:53:44:3d:a6:61:d5:75:a8:89: 0e:4c:cf:16:51:8a:31:24:a9:14:a9:85:80:bb:50: 66:cc:09:c2:c9:e7:ab:8d:7c:4c:4f:5a:e3:a7:d9: c0:91:78:f5:86:db:b7:e5:c3:93:d8:79:df:93:a7: a5:d1:57:53:86:ec:3f:9c:24:c4:81:27:25:82:17: d7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:52:93:DA:A6:98:6F:6C:0D:35:AA:E1:7A:56:D6:F2:CC:7B:53:A3 X509v3 Authority Key Identifier: keyid:07:D6:38:83:16:65:55:97:AE:A7:03:AE:BF:DD:28:69:F8:0A:89:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ba47ce-3992-431c-abf1-681a4cc8ec48/0/07D6388316655597AEA703AEBFDD2869F80A8984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07D6388316655597AEA703AEBFDD2869F80A8984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ba47ce-3992-431c-abf1-681a4cc8ec48/0/3130332e3134372e3233362e302f32332d3234203d3e20313339393731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.236.0/23 Signature Algorithm: sha256WithRSAEncryption 15:53:3a:8d:2e:20:4f:a9:81:fb:ad:52:6a:ec:62:96:81:d8: ea:16:64:04:23:00:b4:a8:a5:76:c6:e8:df:f2:c8:0d:6a:b6: 20:de:47:79:5a:16:47:52:14:ef:44:01:eb:a7:9b:2e:7f:63: 55:3f:45:39:53:a8:c3:8b:a7:33:a3:1a:44:8b:5e:bf:37:dd: 1d:95:cc:b2:08:f4:2b:0e:f8:1f:61:dc:33:da:bc:eb:38:91: ca:e5:ea:c2:2a:10:f6:b6:a2:47:80:72:6f:76:33:0d:6e:46: 88:29:ec:ac:d3:d9:39:38:ba:df:57:a9:bf:55:d5:fa:53:e5: 95:c5:ec:c4:55:e6:75:43:63:f9:ae:30:fc:cb:ac:e7:39:7e: be:4c:7c:69:1e:a0:64:35:4d:60:16:7c:5c:ad:b3:94:a3:ba: a8:ec:83:9d:44:d4:ce:75:cc:0c:57:82:f7:5d:70:97:0b:ec: be:00:56:cf:a2:fe:cb:83:6a:9a:7c:17:7f:dd:32:73:7b:d4: a6:5b:a4:7c:d0:ac:73:55:e2:cb:1a:51:6a:d9:3f:c4:c9:96: ba:a9:db:20:c7:32:6c:b7:cd:93:f3:2b:80:a8:2f:8b:a1:f7: 0a:a8:7b:98:8b:71:ca:c5:c9:8e:d6:b5:2c:d8:0a:8f:f7:a9: 5b:e9:ce:02 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW7l2Ad7pbkV0lxa9ik1UBKZ07jcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDdENjM4ODMxNjY1NTU5N0FFQTcwM0FFQkZERDI4NjlG ODBBODk4NDAeFw0yNTA3MDgwNzU1MDFaFw0yNjA3MDcwODAwMDFaMDMxMTAvBgNV BAMTKEEwNTI5M0RBQTY5ODZGNkMwRDM1QUFFMTdBNTZENkYyQ0M3QjUzQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCS7IEZFesFQ+vVi3M8Hnx2g+h S7QwOKAE16FB24YozDhkwEcoUuIBkKff9Q1uKqxlczoly4YdzbwfhrHDGlLE0aLH 9o/jnv7TGcJaaLU0LLmCqTdYAOgVnQw74SnvHnfT0LDLSFluMc1Io94hRW8pM8Hu rqoZGm75fY2fByIPUQOy/VkmcXy+P19RnmkHrZ/KdHJrGfQYHQ7Rclg38qh9OsEW 9ehpdFsMDyc4DXricOwoIiffLyXlwFNEPaZh1XWoiQ5MzxZRijEkqRSphYC7UGbM CcLJ56uNfExPWuOn2cCRePWG27flw5PYed+Tp6XRV1OG7D+cJMSBJyWCF9flAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoFKT2qaYb2wNNarhelbW8sx7U6MwHwYDVR0j BBgwFoAUB9Y4gxZlVZeupwOuv90oafgKiYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWJhNDdjZS0zOTkyLTQzMWMtYWJmMS02ODFhNGNjOGVjNDgvMC8wN0Q2Mzg4MzE2 NjU1NTk3QUVBNzAzQUVCRkREMjg2OUY4MEE4OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDdENjM4ODMxNjY1NTU5N0FFQTcwM0FFQkZERDI4NjlGODBB ODk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1YmE0N2NlLTM5OTItNDMxYy1h YmYxLTY4MWE0Y2M4ZWM0OC8wLzMxMzAzMzJlMzEzNDM3MmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk+wwDQYJ KoZIhvcNAQELBQADggEBABVTOo0uIE+pgfutUmrsYpaB2OoWZAQjALSopXbG6N/y yA1qtiDeR3laFkdSFO9EAeunmy5/Y1U/RTlTqMOLpzOjGkSLXr833R2VzLII9CsO +B9h3DPavOs4kcrl6sIqEPa2okeAcm92Mw1uRogp7KzT2Tk4ut9Xqb9V1fpT5ZXF 7MRV5nVDY/muMPzLrOc5fr5MfGkeoGQ1TWAWfFyts5Sjuqjsg51E1M51zAxXgvdd cJcL7L4AVs+i/suDapp8F3/dMnN71KZbpHzQrHNV4ssaUWrZP8TJlrqp2yDHMmy3 zZPzK4CoL4uh9wqoe5iLccrFyY7WtSzYCo/3qVvpzgI= -----END CERTIFICATE-----Generated at Sun Aug 10 10:42:34 2025 by rpki-client