$ rpki-client -vvf repo-rpki.idnic.net/repo/239ead81-ac12-4479-b2fb-998e01854551/0/3130332e35342e3231362e302f32322d3234203d3e20313331313131.roa File: 3130332e35342e3231362e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: zE8cXMxW8vFIwxCNk8JxKaXrpgeYvceF9mZckUGnv8M= Subject key identifier: E4:C7:F3:D6:99:C0:39:86:D7:28:DD:BF:56:54:8F:78:9C:D6:57:65 Certificate issuer: /CN=A53CE1A1762318BA9130A47CFA16027E8D1EBAC8 Certificate serial: 404E07D08E6CB3DF3051CA5418B0ADA2194499D2 Authority key identifier: A5:3C:E1:A1:76:23:18:BA:91:30:A4:7C:FA:16:02:7E:8D:1E:BA:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A53CE1A1762318BA9130A47CFA16027E8D1EBAC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/239ead81-ac12-4479-b2fb-998e01854551/0/3130332e35342e3231362e302f32322d3234203d3e20313331313131.roa Signing time: Wed 30 Apr 2025 08:00:00 +0000 ROA not before: Wed 30 Apr 2025 07:55:00 +0000 ROA not after: Wed 29 Apr 2026 08:00:00 +0000 asID: 131111 IP address blocks: 103.54.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/239ead81-ac12-4479-b2fb-998e01854551/0/A53CE1A1762318BA9130A47CFA16027E8D1EBAC8.crl rsync://repo-rpki.idnic.net/repo/239ead81-ac12-4479-b2fb-998e01854551/0/A53CE1A1762318BA9130A47CFA16027E8D1EBAC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A53CE1A1762318BA9130A47CFA16027E8D1EBAC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 15:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4e:07:d0:8e:6c:b3:df:30:51:ca:54:18:b0:ad:a2:19:44:99:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A53CE1A1762318BA9130A47CFA16027E8D1EBAC8 Validity Not Before: Apr 30 07:55:00 2025 GMT Not After : Apr 29 08:00:00 2026 GMT Subject: CN=E4C7F3D699C03986D728DDBF56548F789CD65765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ea:75:4b:49:39:3d:8e:b5:bd:db:b8:fe:1a: 32:8a:0c:2b:2f:c1:2b:72:c1:59:9b:90:8b:ad:53: d4:c9:f9:88:f4:16:fe:3a:c5:39:cd:bf:ad:8c:5c: 22:39:54:10:22:f2:24:df:35:be:a0:a5:1b:4b:7a: a3:c6:f7:cf:02:e7:bd:a4:63:bf:8d:e7:7b:31:d6: 22:be:00:2d:44:73:de:a8:fc:c1:b1:e6:19:b8:b7: 7e:76:53:dc:08:0b:ae:ec:14:fc:5d:69:74:08:1c: 9d:5e:6e:57:0c:24:d9:c2:a2:22:80:d2:14:cd:ba: 90:80:46:11:cc:02:a4:49:42:90:4b:e6:6c:03:be: d2:5a:57:86:64:d0:20:4b:33:d0:76:e0:ea:c3:75: 17:24:7d:f2:04:ae:b6:8c:fc:00:1d:b4:55:2e:3a: 4f:9c:ff:b4:1d:43:64:a8:0c:bd:ba:c8:1c:9c:c2: 73:1a:b6:79:a9:ca:5e:43:1b:fd:77:c8:ad:53:d1: e4:94:1d:79:14:cc:4e:d5:8f:15:96:0b:42:15:8a: 2a:4a:50:fe:be:4e:d9:30:c0:32:c0:1e:c0:c9:eb: c0:84:be:0e:81:8f:15:e5:db:66:d9:d7:03:8a:ad: 23:2d:ec:c6:f6:7c:9e:55:72:ee:23:ca:20:c6:42: 52:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C7:F3:D6:99:C0:39:86:D7:28:DD:BF:56:54:8F:78:9C:D6:57:65 X509v3 Authority Key Identifier: keyid:A5:3C:E1:A1:76:23:18:BA:91:30:A4:7C:FA:16:02:7E:8D:1E:BA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/239ead81-ac12-4479-b2fb-998e01854551/0/A53CE1A1762318BA9130A47CFA16027E8D1EBAC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A53CE1A1762318BA9130A47CFA16027E8D1EBAC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/239ead81-ac12-4479-b2fb-998e01854551/0/3130332e35342e3231362e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.216.0/22 Signature Algorithm: sha256WithRSAEncryption 76:a4:19:1a:0d:3a:c2:08:22:b7:b6:dc:e3:2f:b6:90:6d:4e: 6b:ff:4a:84:3d:6d:66:88:93:e9:6f:e5:e6:3b:cc:f5:2a:fd: 28:8a:18:1d:24:62:b1:1f:80:5a:b8:ee:06:a0:bd:e2:87:6d: 4b:56:93:bc:0c:10:fb:50:91:1f:9e:0c:c7:41:53:e4:7d:bb: 3e:4e:10:44:a1:23:58:40:cf:73:0a:cc:85:0e:68:a8:cb:0c: 04:ba:89:d0:cf:cd:bd:75:ce:29:8c:bf:d9:0e:19:9f:50:e3: 21:04:57:e5:4c:ed:09:e2:e1:0c:56:1e:79:d7:25:8d:af:4e: e7:0e:de:98:24:75:70:e7:22:cd:64:1b:20:c2:6b:27:f2:4a: 01:de:a1:14:4e:fc:50:34:63:a5:f4:84:d4:9e:9f:ed:4b:4c: 0f:57:66:6a:e6:9c:46:8b:1d:11:ba:81:14:5c:0b:61:d8:f7: 22:1a:68:7f:76:35:a3:b2:da:6f:d3:da:31:d8:48:41:73:52: a5:37:e6:5b:5b:5f:91:9c:8c:07:f1:22:c3:96:27:c1:f5:15: 7c:7a:9f:65:d9:44:60:85:ea:bd:10:f6:51:e7:6c:6c:ce:cd: e4:80:9c:d3:0c:c9:29:1a:78:6c:91:61:87:b4:67:77:70:16: 68:fe:ad:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQE4H0I5ss98wUcpUGLCtohlEmdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzQ0UxQTE3NjIzMThCQTkxMzBBNDdDRkExNjAyN0U4 RDFFQkFDODAeFw0yNTA0MzAwNzU1MDBaFw0yNjA0MjkwODAwMDBaMDMxMTAvBgNV BAMTKEU0QzdGM0Q2OTlDMDM5ODZENzI4RERCRjU2NTQ4Rjc4OUNENjU3NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp6nVLSTk9jrW927j+GjKKDCsv wStywVmbkIutU9TJ+Yj0Fv46xTnNv62MXCI5VBAi8iTfNb6gpRtLeqPG988C572k Y7+N53sx1iK+AC1Ec96o/MGx5hm4t352U9wIC67sFPxdaXQIHJ1eblcMJNnCoiKA 0hTNupCARhHMAqRJQpBL5mwDvtJaV4Zk0CBLM9B24OrDdRckffIErraM/AAdtFUu Ok+c/7QdQ2SoDL26yBycwnMatnmpyl5DG/13yK1T0eSUHXkUzE7VjxWWC0IViipK UP6+TtkwwDLAHsDJ68CEvg6BjxXl22bZ1wOKrSMt7Mb2fJ5Vcu4jyiDGQlJzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5Mfz1pnAOYbXKN2/VlSPeJzWV2UwHwYDVR0j BBgwFoAUpTzhoXYjGLqRMKR8+hYCfo0eusgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MzllYWQ4MS1hYzEyLTQ0NzktYjJmYi05OThlMDE4NTQ1NTEvMC9BNTNDRTFBMTc2 MjMxOEJBOTEzMEE0N0NGQTE2MDI3RThEMUVCQUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzQ0UxQTE3NjIzMThCQTkxMzBBNDdDRkExNjAyN0U4RDFF QkFDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzOWVhZDgxLWFjMTItNDQ3OS1i MmZiLTk5OGUwMTg1NDU1MS8wLzMxMzAzMzJlMzUzNDJlMzIzMTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzbYMA0GCSqG SIb3DQEBCwUAA4IBAQB2pBkaDTrCCCK3ttzjL7aQbU5r/0qEPW1miJPpb+XmO8z1 Kv0oihgdJGKxH4BauO4GoL3ih21LVpO8DBD7UJEfngzHQVPkfbs+ThBEoSNYQM9z CsyFDmioywwEuonQz829dc4pjL/ZDhmfUOMhBFflTO0J4uEMVh551yWNr07nDt6Y JHVw5yLNZBsgwmsn8koB3qEUTvxQNGOl9ITUnp/tS0wPV2Zq5pxGix0RuoEUXAth 2PciGmh/djWjstpv09ox2EhBc1KlN+ZbW1+RnIwH8SLDlifB9RV8ep9l2URgheq9 EPZR52xszs3kgJzTDMkpGnhskWGHtGd3cBZo/q0H -----END CERTIFICATE-----Generated at Sat May 10 05:09:00 2025 by rpki-client