$ rpki-client -vvf repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa File: 3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa (raw, json) Hash identifier: SREiQzAjfVMpOJnEfnQMUDFShy+UOiOi5qWZd3X3Wts= Subject key identifier: 47:CE:4A:91:68:9C:43:83:3B:9F:76:5A:1A:56:BF:18:F4:B2:3A:A1 Certificate issuer: /CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Certificate serial: 7E8C0EBCA7988B440AF2505BD7F73EC85204CA8C Authority key identifier: A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa Signing time: Tue 29 Jul 2025 08:33:11 +0000 ROA not before: Tue 29 Jul 2025 08:28:11 +0000 ROA not after: Tue 28 Jul 2026 08:33:11 +0000 asID: 134654 IP address blocks: 103.147.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 23:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8c:0e:bc:a7:98:8b:44:0a:f2:50:5b:d7:f7:3e:c8:52:04:ca:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Validity Not Before: Jul 29 08:28:11 2025 GMT Not After : Jul 28 08:33:11 2026 GMT Subject: CN=47CE4A91689C43833B9F765A1A56BF18F4B23AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:cc:33:47:d6:6f:db:f4:f2:d9:5b:f3:ad:ef: 7e:42:11:72:19:42:36:58:fd:f9:a9:a4:1f:75:2a: 42:92:df:6e:69:1d:1d:0e:04:3a:60:4b:f0:0a:83: 43:2b:21:93:66:b2:46:03:92:c4:d4:a5:73:79:6b: 6e:e3:8d:b5:86:3c:ec:d1:68:db:dd:5b:a8:15:69: 40:fb:b0:ad:f8:29:3e:fb:d3:f3:e5:84:e2:56:53: 0c:0a:4f:b8:6a:23:70:1b:91:21:47:31:c5:84:05: a8:75:64:f0:55:7f:e5:4c:18:b4:6f:ef:1c:99:22: a7:ab:ea:5a:30:76:81:37:7d:8a:60:dd:d3:a8:a1: 0d:15:b3:85:df:0f:86:1e:b8:69:4c:a3:dd:3a:3d: 2b:45:01:88:8e:8f:87:cb:40:b6:2c:52:21:c7:01: 70:4e:dc:ba:33:2a:b0:84:45:93:c9:02:4c:d0:5d: a2:b3:78:7e:6f:e0:30:83:40:c0:1e:f1:7c:4d:b8: 04:62:91:84:7e:1f:1e:66:55:d4:74:2e:11:44:d5: 4e:be:09:a0:2c:07:a5:d8:d7:9a:18:30:f6:4b:e8: 95:2f:4a:89:3f:b5:6d:95:f6:38:a0:9d:17:bc:5d: 4d:a8:fc:3a:b2:69:de:e3:94:36:b5:d8:98:a7:99: 96:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CE:4A:91:68:9C:43:83:3B:9F:76:5A:1A:56:BF:18:F4:B2:3A:A1 X509v3 Authority Key Identifier: keyid:A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.254.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:02:ab:4b:20:f7:d0:92:38:ed:e4:f6:2d:68:ff:f5:e5:c6: 86:e9:92:6c:c4:b2:41:33:8e:bc:54:59:68:4e:fa:59:30:77: 72:de:ab:cb:10:be:98:67:d4:fc:99:e0:8f:af:8b:ec:da:22: 48:ad:ab:7b:89:27:ed:53:52:57:ba:22:cf:e2:f3:f5:06:e6: 20:b4:1a:69:c9:6d:ce:7d:75:56:68:11:e3:a8:fb:3e:60:fe: 30:bd:5e:f0:dc:c3:03:ab:ca:c8:4b:2a:53:8a:3c:5d:de:a3: d8:37:5f:7d:69:d3:78:66:58:04:a9:87:c5:f4:3f:84:0e:cf: 72:09:4e:ef:a4:ec:69:a4:11:09:88:72:85:95:66:36:56:8b: ea:88:ce:b6:55:fe:2c:ff:72:ad:77:a2:79:f1:42:d4:b2:03: 74:99:10:c9:af:f9:88:52:3f:45:5b:71:24:fd:ba:ae:4c:d8: f9:3b:c8:a9:29:8d:6f:e5:af:19:f8:85:b1:29:85:f4:93:76: b7:3f:f6:a7:53:a0:e4:19:36:7b:d8:9c:af:c0:d2:84:c2:3b: 7b:d5:d1:12:13:5d:07:85:d0:4b:fa:17:1b:1c:ab:90:8b:a2: ef:6f:b5:37:5c:8d:56:03:53:02:cb:4c:72:b7:19:e6:d6:12: 2a:c7:d0:af -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfowOvKeYi0QK8lBb1/c+yFIEyowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3 QzRDOEUwRDAeFw0yNTA3MjkwODI4MTFaFw0yNjA3MjgwODMzMTFaMDMxMTAvBgNV BAMTKDQ3Q0U0QTkxNjg5QzQzODMzQjlGNzY1QTFBNTZCRjE4RjRCMjNBQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrzDNH1m/b9PLZW/Ot735CEXIZ QjZY/fmppB91KkKS325pHR0OBDpgS/AKg0MrIZNmskYDksTUpXN5a27jjbWGPOzR aNvdW6gVaUD7sK34KT770/PlhOJWUwwKT7hqI3AbkSFHMcWEBah1ZPBVf+VMGLRv 7xyZIqer6lowdoE3fYpg3dOooQ0Vs4XfD4YeuGlMo906PStFAYiOj4fLQLYsUiHH AXBO3LozKrCERZPJAkzQXaKzeH5v4DCDQMAe8XxNuARikYR+Hx5mVdR0LhFE1U6+ CaAsB6XY15oYMPZL6JUvSok/tW2V9jignRe8XU2o/Dqyad7jlDa12JinmZaJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUR85KkWicQ4M7n3ZaGla/GPSyOqEwHwYDVR0j BBgwFoAUpsexyguQiFXuWPGZHMyVtXxMjg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGU0NzUwZS00MzkzLTQzZWMtOWFiNS1kMjQ3YmJjMDdkODYvMC9BNkM3QjFDQTBC OTA4ODU1RUU1OEYxOTkxQ0NDOTVCNTdDNEM4RTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3QzRD OEUwRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMxMzAzMzJlMzEzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/4wDQYJ KoZIhvcNAQELBQADggEBAI0Cq0sg99CSOO3k9i1o//XlxobpkmzEskEzjrxUWWhO +lkwd3Leq8sQvphn1PyZ4I+vi+zaIkitq3uJJ+1TUle6Is/i8/UG5iC0GmnJbc59 dVZoEeOo+z5g/jC9XvDcwwOryshLKlOKPF3eo9g3X31p03hmWASph8X0P4QOz3IJ Tu+k7GmkEQmIcoWVZjZWi+qIzrZV/iz/cq13onnxQtSyA3SZEMmv+YhSP0VbcST9 uq5M2Pk7yKkpjW/lrxn4hbEphfSTdrc/9qdToOQZNnvYnK/A0oTCO3vV0RITXQeF 0Ev6Fxscq5CLou9vtTdcjVYDUwLLTHK3GebWEirH0K8= -----END CERTIFICATE-----Generated at Wed Nov 5 09:19:46 2025 by rpki-client