$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa File: 3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: 9z7ZVj2rWK+5i6jgJ+YpLAQXRn/4DgMsF9g2sSGbA0k= Subject key identifier: 93:DF:C4:43:D7:4F:E9:FF:E8:61:CB:B3:AA:E5:C3:83:14:AA:0F:36 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 58AD0CB4A7329842B06127E949FA14887F3D05EC Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa Signing time: Tue 06 May 2025 18:22:52 +0000 ROA not before: Tue 06 May 2025 18:17:52 +0000 ROA not after: Tue 05 May 2026 18:22:52 +0000 asID: 139949 IP address blocks: 103.147.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 12:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ad:0c:b4:a7:32:98:42:b0:61:27:e9:49:fa:14:88:7f:3d:05:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: May 6 18:17:52 2025 GMT Not After : May 5 18:22:52 2026 GMT Subject: CN=93DFC443D74FE9FFE861CBB3AAE5C38314AA0F36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:55:22:ac:74:61:96:c0:e0:44:e2:d9:a5:af: 96:df:63:ea:4b:8e:1b:46:8d:43:be:48:57:3b:ba: ba:1f:f2:6f:12:4b:77:8e:7e:be:b1:67:0c:8a:28: 46:0d:37:c1:41:8d:79:6b:3a:41:fd:45:67:67:ee: 16:8d:6e:58:06:94:1e:0a:8c:77:7c:49:ee:cd:41: 56:a2:48:0d:05:b3:ab:31:7d:75:99:11:e7:83:5b: 4c:3b:7d:a7:da:5d:39:02:11:5a:f5:e3:ef:b2:89: 29:97:09:21:a8:e5:ce:86:7e:46:b8:c6:7e:7e:28: 5e:a3:23:8f:b4:56:e8:eb:91:2f:df:0c:54:e8:d6: 9e:fe:c4:67:62:d9:44:50:e0:70:ce:5c:36:d2:71: e8:8b:fc:37:8c:3d:28:1e:47:ff:d1:39:d7:e3:fd: be:2a:c1:76:c6:57:2f:55:3a:91:e0:e7:81:a1:ba: 5c:22:26:6a:0a:a2:a0:75:32:ed:5d:3d:cc:bf:3d: fb:f5:84:e3:1c:95:03:4a:da:29:cd:5f:27:77:42: 83:e8:29:5d:d5:d3:d8:a1:da:1d:ad:00:00:a5:a9: 2e:16:99:40:ff:45:30:6c:5c:f3:56:51:38:6a:69: d9:f2:97:f7:fc:7b:43:c0:73:b4:23:e4:82:a1:30: 35:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:DF:C4:43:D7:4F:E9:FF:E8:61:CB:B3:AA:E5:C3:83:14:AA:0F:36 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.53.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:92:f5:0d:3b:dd:9e:f4:88:64:d6:c9:ef:fa:75:4f:5a:17: a6:5e:c6:0b:0f:ee:05:b8:57:90:6c:dc:5f:0f:b3:76:ea:21: 29:82:6d:c9:e2:de:2e:6e:0a:7a:c5:57:dd:72:db:46:39:58: 98:bb:22:fc:a2:a3:07:f7:a6:de:c0:3a:9e:99:cc:74:fe:d9: 8a:ab:68:19:2b:6d:e5:22:44:4f:bf:79:19:ec:83:73:84:6d: 5d:24:0e:be:da:9d:06:d0:3c:2c:f3:6e:db:ce:4c:f3:3a:87: d2:83:c2:70:46:ae:a2:dd:5e:33:38:3d:6a:44:19:e2:fb:93: e4:70:6e:2c:5e:46:ef:d6:a6:e0:e4:5f:b2:01:f8:aa:ef:a6: 22:91:2b:73:7a:f7:14:a1:cb:32:86:9a:e7:65:96:49:5e:d5: c6:63:1d:19:c1:24:de:35:da:12:08:1a:a5:de:37:d3:f6:6c: d9:5b:a1:1a:8b:8e:f5:a5:ea:48:8b:f3:ae:f3:12:c9:73:fb: 3f:3e:77:07:95:9e:db:fc:a2:90:67:2f:c7:05:b1:3f:9d:3e: 33:5c:93:01:0f:30:12:43:e9:bf:e8:91:56:4f:76:11:7c:b1: 81:ed:47:54:de:75:2e:bc:27:38:66:fe:cc:45:81:28:2a:eb: 08:4d:1e:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWK0MtKcymEKwYSfpSfoUiH89BewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA1MDYxODE3NTJaFw0yNjA1MDUxODIyNTJaMDMxMTAvBgNV BAMTKDkzREZDNDQzRDc0RkU5RkZFODYxQ0JCM0FBRTVDMzgzMTRBQTBGMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgVSKsdGGWwOBE4tmlr5bfY+pL jhtGjUO+SFc7urof8m8SS3eOfr6xZwyKKEYNN8FBjXlrOkH9RWdn7haNblgGlB4K jHd8Se7NQVaiSA0Fs6sxfXWZEeeDW0w7fafaXTkCEVr14++yiSmXCSGo5c6Gfka4 xn5+KF6jI4+0VujrkS/fDFTo1p7+xGdi2URQ4HDOXDbSceiL/DeMPSgeR//ROdfj /b4qwXbGVy9VOpHg54GhulwiJmoKoqB1Mu1dPcy/Pfv1hOMclQNK2inNXyd3QoPo KV3V09ih2h2tAAClqS4WmUD/RTBsXPNWUThqadnyl/f8e0PAc7Qj5IKhMDVPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk9/EQ9dP6f/oYcuzquXDgxSqDzYwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M1MA0GCSqG SIb3DQEBCwUAA4IBAQBLkvUNO92e9Ihk1snv+nVPWhemXsYLD+4FuFeQbNxfD7N2 6iEpgm3J4t4ubgp6xVfdcttGOViYuyL8oqMH96bewDqemcx0/tmKq2gZK23lIkRP v3kZ7INzhG1dJA6+2p0G0Dws827bzkzzOofSg8JwRq6i3V4zOD1qRBni+5PkcG4s Xkbv1qbg5F+yAfiq76YikStzevcUocsyhprnZZZJXtXGYx0ZwSTeNdoSCBql3jfT 9mzZW6Eai471pepIi/Ou8xLJc/s/PncHlZ7b/KKQZy/HBbE/nT4zXJMBDzASQ+m/ 6JFWT3YRfLGB7UdU3nUuvCc4Zv7MRYEoKusITR6C -----END CERTIFICATE-----Generated at Sun May 11 12:46:46 2025 by rpki-client