$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa File: 3130332e3234382e35382e302f32332d3233203d3e203538383136.roa (raw, json) Hash identifier: CV4aj5c0qTtoAuk2gjVJIigxTtOqOHVk941GV0y4c2o= Subject key identifier: 47:46:49:72:3E:79:9D:5C:52:C4:D6:9A:8A:73:3A:EE:41:60:8E:1E Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 5839AEAACF6CEB8C1516A67E03DE97D2A1444BBD Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa Signing time: Tue 21 Jan 2025 06:00:00 +0000 ROA not before: Tue 21 Jan 2025 05:55:00 +0000 ROA not after: Tue 20 Jan 2026 06:00:00 +0000 asID: 58816 IP address blocks: 103.248.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 20:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:39:ae:aa:cf:6c:eb:8c:15:16:a6:7e:03:de:97:d2:a1:44:4b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Jan 21 05:55:00 2025 GMT Not After : Jan 20 06:00:00 2026 GMT Subject: CN=474649723E799D5C52C4D69A8A733AEE41608E1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fb:29:a9:b1:0e:99:d8:97:ef:cd:7b:52:e9: c4:11:2b:d3:d7:d6:b5:8f:b8:8b:3f:cb:ed:eb:95: c8:4e:41:e4:16:27:51:07:23:b9:44:da:59:00:0c: 7e:53:a0:1b:a7:b0:e6:55:82:8b:5c:84:fa:02:b5: fb:2f:91:83:1a:19:bc:aa:2e:88:65:ac:77:e5:e8: c5:b5:88:53:2c:d1:c2:df:17:05:74:c6:2b:a4:04: 1e:3b:49:46:8d:58:25:d8:cd:15:a7:05:8d:5c:00: bc:25:84:54:43:38:2e:e8:27:e4:b3:0a:ff:65:b6: 61:81:05:59:a8:97:e7:26:6f:66:dc:f6:51:c2:d7: e1:6b:bd:d6:2e:11:16:7e:05:a2:eb:13:7a:a4:1e: 84:b5:54:14:8d:b6:b2:86:c8:a3:c7:62:7a:b5:31: d6:04:2d:20:90:a8:3a:2c:c7:2b:17:e5:4e:46:98: 7e:ce:d3:7e:37:64:6a:ab:47:07:6f:e4:7f:07:57: 29:93:58:88:ea:bb:52:b0:32:37:55:3d:6c:49:a7: 70:a1:40:19:78:9c:8b:ca:03:f3:88:bb:35:98:0b: 88:df:4c:04:b3:59:ca:bb:25:9b:50:cf:d3:8d:3a: 35:b3:e5:2b:f1:12:ca:bb:e1:ec:d1:36:01:8f:bc: 9d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:46:49:72:3E:79:9D:5C:52:C4:D6:9A:8A:73:3A:EE:41:60:8E:1E X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.58.0/23 Signature Algorithm: sha256WithRSAEncryption aa:ef:da:e6:4e:89:2d:50:3f:6a:d8:72:39:e1:be:f5:e9:1f: 93:d5:ba:b3:11:08:79:66:37:03:fa:c8:34:07:cd:ea:14:1e: 8d:53:b4:f6:2d:e7:bb:21:c8:f3:2b:be:53:b5:87:c9:6f:ee: 1c:29:ed:81:ef:39:7c:cf:40:e0:30:93:e7:d3:f2:c5:a3:29: 5d:cd:c9:c9:9a:27:87:2a:3d:73:93:7a:82:46:7d:bf:6e:d1: e3:5e:7f:ab:c2:c1:04:c0:78:86:a2:1c:94:a6:ee:5d:13:c6: 7b:e1:39:49:da:3e:21:eb:24:29:67:4d:90:7c:39:80:4b:33: 74:c3:0a:8d:74:64:4c:86:64:6d:6a:b3:05:94:83:ec:14:a0: 26:74:7c:39:4b:c1:b0:38:d7:2a:9e:51:66:6b:f2:88:58:0e: 9e:0b:4a:b0:c8:7f:6a:05:2a:73:fb:eb:de:df:64:70:c2:bc: fa:00:fc:10:82:e0:3d:e2:06:23:46:53:5f:2c:af:87:ac:aa: 19:21:0c:76:31:00:7b:0f:94:73:9b:a5:7b:27:c1:71:ab:00: 2f:ed:2c:17:ba:f2:79:b5:4c:3f:7d:ed:bd:2c:1e:46:84:ad: 5c:6a:cd:06:6d:11:23:c6:52:57:69:e1:62:92:43:09:2c:be: 88:b2:d6:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWDmuqs9s64wVFqZ+A96X0qFES70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAxMjEwNTU1MDBaFw0yNjAxMjAwNjAwMDBaMDMxMTAvBgNV BAMTKDQ3NDY0OTcyM0U3OTlENUM1MkM0RDY5QThBNzMzQUVFNDE2MDhFMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv+ympsQ6Z2JfvzXtS6cQRK9PX 1rWPuIs/y+3rlchOQeQWJ1EHI7lE2lkADH5ToBunsOZVgotchPoCtfsvkYMaGbyq LohlrHfl6MW1iFMs0cLfFwV0xiukBB47SUaNWCXYzRWnBY1cALwlhFRDOC7oJ+Sz Cv9ltmGBBVmol+cmb2bc9lHC1+FrvdYuERZ+BaLrE3qkHoS1VBSNtrKGyKPHYnq1 MdYELSCQqDosxysX5U5GmH7O0343ZGqrRwdv5H8HVymTWIjqu1KwMjdVPWxJp3Ch QBl4nIvKA/OIuzWYC4jfTASzWcq7JZtQz9ONOjWz5SvxEsq74ezRNgGPvJ3JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR0ZJcj55nVxSxNaainM67kFgjh4wHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMxMzAzMzJlMzIzNDM4MmUzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf4OjANBgkqhkiG 9w0BAQsFAAOCAQEAqu/a5k6JLVA/athyOeG+9ekfk9W6sxEIeWY3A/rINAfN6hQe jVO09i3nuyHI8yu+U7WHyW/uHCntge85fM9A4DCT59PyxaMpXc3JyZonhyo9c5N6 gkZ9v27R415/q8LBBMB4hqIclKbuXRPGe+E5Sdo+IeskKWdNkHw5gEszdMMKjXRk TIZkbWqzBZSD7BSgJnR8OUvBsDjXKp5RZmvyiFgOngtKsMh/agUqc/vr3t9kcMK8 +gD8EILgPeIGI0ZTXyyvh6yqGSEMdjEAew+Uc5uleyfBcasAL+0sF7ryebVMP33t vSweRoStXGrNBm0RI8ZSV2nhYpJDCSy+iLLWzA== -----END CERTIFICATE-----Generated at Fri May 9 01:33:13 2025 by rpki-client