$ rpki-client -vvf repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235352e302f32342d3234203d3e20313334363534.roa File: 3130332e3134372e3235352e302f32342d3234203d3e20313334363534.roa (raw, json) Hash identifier: XIQ/lQWer2x/1W1XBHKNLMW19qN6bWGcY/8CJlO5tmY= Subject key identifier: 68:C2:E0:E4:10:CE:3E:59:16:2E:70:B5:1F:94:A3:57:64:EF:20:63 Certificate issuer: /CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Certificate serial: 57DC6C6F13B57244D56A038F5CD9AA9AFA863EF7 Authority key identifier: A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235352e302f32342d3234203d3e20313334363534.roa Signing time: Tue 29 Jul 2025 05:14:06 +0000 ROA not before: Tue 29 Jul 2025 05:09:06 +0000 ROA not after: Tue 28 Jul 2026 05:14:06 +0000 asID: 134654 IP address blocks: 103.147.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 23:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:dc:6c:6f:13:b5:72:44:d5:6a:03:8f:5c:d9:aa:9a:fa:86:3e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Validity Not Before: Jul 29 05:09:06 2025 GMT Not After : Jul 28 05:14:06 2026 GMT Subject: CN=68C2E0E410CE3E59162E70B51F94A35764EF2063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:34:48:5d:f1:85:18:dd:2e:34:77:a9:4b: ac:ef:d8:19:ab:a6:62:4b:c9:6e:01:32:a1:7a:db: 9e:53:6d:44:57:12:91:77:bf:c0:5b:d1:20:ae:7c: 68:f7:b3:d5:27:f4:43:86:e3:ca:2a:4f:23:c2:e8: 7c:d1:97:5c:49:ff:db:d4:53:0d:1e:0f:b8:ee:f0: 8f:46:e1:bd:a6:a8:18:44:29:22:b3:ad:93:3b:cf: 01:36:9a:7d:a2:fc:f4:03:e9:75:cb:ba:89:95:c2: 15:e5:10:b3:20:36:87:c3:ab:44:8a:04:23:3b:15: f2:e0:42:0a:c2:c2:18:fe:fa:5b:e1:c2:d1:99:4a: 16:97:d4:c0:16:3c:41:42:45:9e:99:25:7f:0d:7c: b5:28:6a:21:d5:3d:61:1a:df:64:4a:83:66:7e:f6: 0a:4a:8a:51:4d:f8:cd:e5:be:73:be:d1:5b:b2:99: a1:8b:da:7c:39:07:d6:0e:e9:3d:52:af:b0:9e:88: 3b:4a:f3:b8:46:eb:f6:83:f9:db:15:f7:74:0e:09: 08:20:40:cc:4a:aa:98:b6:1a:fa:f2:9d:e2:ee:24: 08:d7:f8:03:a8:82:c5:30:fd:f9:a5:9a:1f:7d:4c: 85:9f:63:a4:c8:09:df:f1:25:6d:d2:9c:f3:04:7f: 91:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C2:E0:E4:10:CE:3E:59:16:2E:70:B5:1F:94:A3:57:64:EF:20:63 X509v3 Authority Key Identifier: keyid:A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235352e302f32342d3234203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.255.0/24 Signature Algorithm: sha256WithRSAEncryption 47:2c:7e:dc:a4:b2:bf:38:82:0c:7e:2c:79:6f:5a:72:53:8b: 03:a3:00:8c:58:6c:46:2d:c4:94:d2:ff:8e:65:50:99:d4:b5: 1d:05:5c:4b:85:c8:86:99:51:2c:90:c9:02:e8:d8:a1:62:af: b2:57:ac:a4:01:f6:cf:44:0d:46:cb:84:ab:81:83:0f:0f:64: 9e:56:c8:91:ff:f3:a0:4a:dc:c5:68:23:fc:e4:cb:39:47:77: a0:e5:74:28:7f:a0:4b:60:44:88:7d:a1:b3:80:c2:a8:3a:e2: 4e:fa:e0:f1:c0:1c:43:f0:82:5c:c7:a3:c9:6f:74:b0:04:7b: 11:3d:bc:fa:5e:8b:71:9a:17:33:e1:c9:7c:48:36:35:16:a8: a2:2c:6e:ae:ea:20:ae:bb:61:3e:9b:69:38:c8:4c:42:cb:a5: 07:54:0b:59:60:9b:1b:b0:08:70:29:6b:8c:f2:b4:65:52:4a: 98:c1:aa:e2:bd:77:bd:66:93:ba:60:1e:a6:7c:48:ee:63:ae: 16:9b:ea:c1:d4:c0:98:c9:b6:52:a6:a3:a4:7c:03:b7:d1:59: a3:b2:f3:56:d6:6a:06:b2:69:e5:f4:96:9e:f3:39:d8:c2:04: 2b:0a:db:61:f4:73:76:ed:29:df:83:ea:6d:0f:b8:cb:91:82: 21:59:52:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV9xsbxO1ckTVagOPXNmqmvqGPvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3 QzRDOEUwRDAeFw0yNTA3MjkwNTA5MDZaFw0yNjA3MjgwNTE0MDZaMDMxMTAvBgNV BAMTKDY4QzJFMEU0MTBDRTNFNTkxNjJFNzBCNTFGOTRBMzU3NjRFRjIwNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEWDRIXfGFGN0uNHepS6zv2Bmr pmJLyW4BMqF6255TbURXEpF3v8Bb0SCufGj3s9Un9EOG48oqTyPC6HzRl1xJ/9vU Uw0eD7ju8I9G4b2mqBhEKSKzrZM7zwE2mn2i/PQD6XXLuomVwhXlELMgNofDq0SK BCM7FfLgQgrCwhj++lvhwtGZShaX1MAWPEFCRZ6ZJX8NfLUoaiHVPWEa32RKg2Z+ 9gpKilFN+M3lvnO+0VuymaGL2nw5B9YO6T1Sr7CeiDtK87hG6/aD+dsV93QOCQgg QMxKqpi2GvryneLuJAjX+AOogsUw/fmlmh99TIWfY6TICd/xJW3SnPMEf5H9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaMLg5BDOPlkWLnC1H5SjV2TvIGMwHwYDVR0j BBgwFoAUpsexyguQiFXuWPGZHMyVtXxMjg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGU0NzUwZS00MzkzLTQzZWMtOWFiNS1kMjQ3YmJjMDdkODYvMC9BNkM3QjFDQTBC OTA4ODU1RUU1OEYxOTkxQ0NDOTVCNTdDNEM4RTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3QzRD OEUwRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMxMzAzMzJlMzEzNDM3MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/8wDQYJ KoZIhvcNAQELBQADggEBAEcsftyksr84ggx+LHlvWnJTiwOjAIxYbEYtxJTS/45l UJnUtR0FXEuFyIaZUSyQyQLo2KFir7JXrKQB9s9EDUbLhKuBgw8PZJ5WyJH/86BK 3MVoI/zkyzlHd6DldCh/oEtgRIh9obOAwqg64k764PHAHEPwglzHo8lvdLAEexE9 vPpei3GaFzPhyXxINjUWqKIsbq7qIK67YT6baTjITELLpQdUC1lgmxuwCHApa4zy tGVSSpjBquK9d71mk7pgHqZ8SO5jrhab6sHUwJjJtlKmo6R8A7fRWaOy81bWagay aeX0lp7zOdjCBCsK22H0c3btKd+D6m0PuMuRgiFZUmA= -----END CERTIFICATE-----Generated at Mon Aug 11 06:09:25 2025 by rpki-client