$ rpki-client -vvf repo-rpki.idnic.net/repo/7e8cd97e-56f5-4ca5-a85c-55a323f0608c/0/3130332e3235332e302e302f32322d3234203d3e203539313339.roa File: 3130332e3235332e302e302f32322d3234203d3e203539313339.roa (raw, json) Hash identifier: DyW9wD+/QVlej0CI+5sCilJX/+5ZDxLLSw8cy8l6+Ec= Subject key identifier: DD:4C:98:68:20:8D:1A:E5:AB:DF:9B:D1:2F:CD:BA:47:9C:A9:BE:68 Certificate issuer: /CN=EB7AB53449E52996F1539393C3DA704C6F12F359 Certificate serial: 32BEB14C25F6CCC79B42422378CCF5C2E3339599 Authority key identifier: EB:7A:B5:34:49:E5:29:96:F1:53:93:93:C3:DA:70:4C:6F:12:F3:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB7AB53449E52996F1539393C3DA704C6F12F359.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e8cd97e-56f5-4ca5-a85c-55a323f0608c/0/3130332e3235332e302e302f32322d3234203d3e203539313339.roa Signing time: Thu 01 May 2025 04:00:01 +0000 ROA not before: Thu 01 May 2025 03:55:01 +0000 ROA not after: Thu 30 Apr 2026 04:00:01 +0000 asID: 59139 IP address blocks: 103.253.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e8cd97e-56f5-4ca5-a85c-55a323f0608c/0/EB7AB53449E52996F1539393C3DA704C6F12F359.crl rsync://repo-rpki.idnic.net/repo/7e8cd97e-56f5-4ca5-a85c-55a323f0608c/0/EB7AB53449E52996F1539393C3DA704C6F12F359.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB7AB53449E52996F1539393C3DA704C6F12F359.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 05:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:be:b1:4c:25:f6:cc:c7:9b:42:42:23:78:cc:f5:c2:e3:33:95:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB7AB53449E52996F1539393C3DA704C6F12F359 Validity Not Before: May 1 03:55:01 2025 GMT Not After : Apr 30 04:00:01 2026 GMT Subject: CN=DD4C9868208D1AE5ABDF9BD12FCDBA479CA9BE68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b9:4e:4e:2c:53:e7:6f:bf:1a:f5:c9:d3:f1: 75:14:fc:84:9c:b0:31:fe:34:b7:a5:33:65:d0:3e: cb:87:7f:9a:cd:f1:c0:22:6c:2e:87:f2:af:25:2c: 07:70:44:af:71:76:35:27:00:01:a2:57:69:64:b6: 6c:9d:99:33:33:37:48:5f:7f:94:5b:1c:5b:fb:95: 13:2f:aa:04:36:88:a1:11:34:5b:21:0d:ad:76:6e: 42:aa:7a:62:f4:f3:43:24:e1:39:0c:01:da:de:ea: e9:98:3b:3f:6c:8d:76:16:fc:8d:22:94:f0:17:ff: a0:3c:82:d7:56:33:80:2f:26:11:51:20:5f:70:1a: 6f:dd:2d:be:84:ac:8f:4f:51:e0:4d:8e:6e:fb:a0: aa:3d:6b:47:e7:e7:7b:7b:92:0d:b6:55:48:11:e0: a8:6f:b3:50:99:b9:e4:38:cc:1f:b0:7f:54:37:0c: 66:f3:3c:0b:31:f1:66:84:8c:94:20:72:06:d1:93: 7c:e9:0d:20:d5:56:b2:d9:ef:71:aa:7d:72:ea:4d: 82:db:b5:80:71:d1:3d:e1:bc:c8:31:20:27:3c:c1: a5:13:1e:6d:61:81:7a:5e:c5:7d:3d:48:4f:61:af: 4c:86:3d:32:e7:2b:bd:8e:9f:0e:2a:5b:16:f8:cd: 30:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:4C:98:68:20:8D:1A:E5:AB:DF:9B:D1:2F:CD:BA:47:9C:A9:BE:68 X509v3 Authority Key Identifier: keyid:EB:7A:B5:34:49:E5:29:96:F1:53:93:93:C3:DA:70:4C:6F:12:F3:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e8cd97e-56f5-4ca5-a85c-55a323f0608c/0/EB7AB53449E52996F1539393C3DA704C6F12F359.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB7AB53449E52996F1539393C3DA704C6F12F359.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e8cd97e-56f5-4ca5-a85c-55a323f0608c/0/3130332e3235332e302e302f32322d3234203d3e203539313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.0.0/22 Signature Algorithm: sha256WithRSAEncryption 72:4d:01:b2:d7:ca:a3:e7:22:4b:49:99:d5:14:80:e4:dd:d1: a8:fb:91:58:66:e7:bf:3e:e0:0b:af:6b:e0:c4:70:e1:54:f6: e7:34:a6:ff:5d:12:32:93:de:a9:0e:dd:28:31:b2:24:ff:1d: 84:54:ce:34:a3:43:7f:c9:72:26:40:1f:b4:78:93:ae:16:f7: 55:3f:ec:7f:c9:9a:4c:98:82:b1:90:01:17:79:65:43:b1:24: c9:53:32:01:e5:5f:18:81:87:7a:09:ad:db:6b:eb:c3:71:3e: 1a:de:ad:54:fd:76:c6:58:d2:50:f3:0f:19:40:68:f7:b2:16: b8:d5:22:e2:11:18:12:77:c6:67:f2:ac:f5:e7:12:20:eb:5e: 7d:47:f4:01:33:c2:42:f8:89:a9:06:2b:60:7a:e0:1c:ac:49: 37:c4:e9:51:bc:b9:cf:0d:6a:15:88:fb:90:23:ae:9d:96:0e: db:3c:62:45:a5:72:cf:b2:6c:97:0d:68:71:3c:2e:a9:d7:c3: 74:c4:57:56:71:64:f0:94:c0:a5:49:33:e1:24:22:05:f5:0c: b1:87:51:ce:90:d7:38:0f:9e:ee:a6:5d:79:91:03:6e:a6:f5: 16:ef:a0:69:12:46:eb:97:a4:32:b1:26:7b:19:40:5a:8c:da: d4:5b:b8:b6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMr6xTCX2zMebQkIjeMz1wuMzlZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUI3QUI1MzQ0OUU1Mjk5NkYxNTM5MzkzQzNEQTcwNEM2 RjEyRjM1OTAeFw0yNTA1MDEwMzU1MDFaFw0yNjA0MzAwNDAwMDFaMDMxMTAvBgNV BAMTKERENEM5ODY4MjA4RDFBRTVBQkRGOUJEMTJGQ0RCQTQ3OUNBOUJFNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMuU5OLFPnb78a9cnT8XUU/ISc sDH+NLelM2XQPsuHf5rN8cAibC6H8q8lLAdwRK9xdjUnAAGiV2lktmydmTMzN0hf f5RbHFv7lRMvqgQ2iKERNFshDa12bkKqemL080Mk4TkMAdre6umYOz9sjXYW/I0i lPAX/6A8gtdWM4AvJhFRIF9wGm/dLb6ErI9PUeBNjm77oKo9a0fn53t7kg22VUgR 4Khvs1CZueQ4zB+wf1Q3DGbzPAsx8WaEjJQgcgbRk3zpDSDVVrLZ73GqfXLqTYLb tYBx0T3hvMgxICc8waUTHm1hgXpexX09SE9hr0yGPTLnK72Onw4qWxb4zTATAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3UyYaCCNGuWr35vRL826R5ypvmgwHwYDVR0j BBgwFoAU63q1NEnlKZbxU5OTw9pwTG8S81kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZThjZDk3ZS01NmY1LTRjYTUtYTg1Yy01NWEzMjNmMDYwOGMvMC9FQjdBQjUzNDQ5 RTUyOTk2RjE1MzkzOTNDM0RBNzA0QzZGMTJGMzU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUI3QUI1MzQ0OUU1Mjk5NkYxNTM5MzkzQzNEQTcwNEM2RjEy RjM1OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOGNkOTdlLTU2ZjUtNGNhNS1h ODVjLTU1YTMyM2YwNjA4Yy8wLzMxMzAzMzJlMzIzNTMzMmUzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzkzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/QAwDQYJKoZIhvcN AQELBQADggEBAHJNAbLXyqPnIktJmdUUgOTd0aj7kVhm578+4Auva+DEcOFU9uc0 pv9dEjKT3qkO3SgxsiT/HYRUzjSjQ3/JciZAH7R4k64W91U/7H/JmkyYgrGQARd5 ZUOxJMlTMgHlXxiBh3oJrdtr68NxPhrerVT9dsZY0lDzDxlAaPeyFrjVIuIRGBJ3 xmfyrPXnEiDrXn1H9AEzwkL4iakGK2B64BysSTfE6VG8uc8NahWI+5Ajrp2WDts8 YkWlcs+ybJcNaHE8LqnXw3TEV1ZxZPCUwKVJM+EkIgX1DLGHUc6Q1zgPnu6mXXmR A26m9RbvoGkSRuuXpDKxJnsZQFqM2tRbuLY= -----END CERTIFICATE-----Generated at Thu May 8 10:44:44 2025 by rpki-client