$ rpki-client -vvf repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/3130332e3233352e36352e302f32342d3234203d3e20313430343637.roa File: 3130332e3233352e36352e302f32342d3234203d3e20313430343637.roa (raw, json) Hash identifier: zg3C7UqiFNjk6v4cmaqyG4vvOgQ3amedsyfg+VEOO70= Subject key identifier: 23:40:90:74:2B:4E:82:74:AE:9D:44:AF:CA:6D:75:F3:36:F1:CA:35 Certificate issuer: /CN=47CBAD1A648715C5E867F1A2ED3558688608EE19 Certificate serial: 5F4BBB0E25563BAB876F9FD107FC3C84463F2A94 Authority key identifier: 47:CB:AD:1A:64:87:15:C5:E8:67:F1:A2:ED:35:58:68:86:08:EE:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47CBAD1A648715C5E867F1A2ED3558688608EE19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/3130332e3233352e36352e302f32342d3234203d3e20313430343637.roa Signing time: Mon 05 May 2025 09:00:00 +0000 ROA not before: Mon 05 May 2025 08:55:00 +0000 ROA not after: Mon 04 May 2026 09:00:00 +0000 asID: 140467 IP address blocks: 103.235.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/47CBAD1A648715C5E867F1A2ED3558688608EE19.crl rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/47CBAD1A648715C5E867F1A2ED3558688608EE19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47CBAD1A648715C5E867F1A2ED3558688608EE19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 19:55:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4b:bb:0e:25:56:3b:ab:87:6f:9f:d1:07:fc:3c:84:46:3f:2a:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47CBAD1A648715C5E867F1A2ED3558688608EE19 Validity Not Before: May 5 08:55:00 2025 GMT Not After : May 4 09:00:00 2026 GMT Subject: CN=234090742B4E8274AE9D44AFCA6D75F336F1CA35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bb:35:fd:dd:fc:fd:97:05:46:2f:2f:6c:15: 92:98:d7:4f:8c:98:2e:5e:a8:99:a1:eb:69:b9:3a: 65:ee:8e:75:8d:ea:88:fc:e1:96:8e:7e:6e:c8:50: 22:bc:28:00:4e:d5:40:5b:15:e7:a5:1f:dc:da:53: 1a:dd:13:5d:03:f5:9e:f8:12:34:2a:23:87:90:a2: 3c:de:50:86:46:5d:f7:c1:53:a2:8d:27:d8:e8:b7: d4:0d:d8:f1:9b:35:ee:88:9a:6d:4f:1f:2c:d6:e6: cf:41:12:9a:d5:c7:08:ee:35:58:ec:74:12:ff:8f: d5:df:d1:88:4c:34:6b:2a:47:49:6d:e2:a6:50:e1: 70:6c:a7:6e:02:10:b0:1d:1b:e1:38:4d:c3:35:86: 7a:0c:24:cf:f3:46:23:6e:ca:d1:8d:f5:08:55:5b: 36:8c:a5:7f:55:c9:9d:54:62:6d:7b:4e:71:fa:89: 48:e2:18:31:d6:ba:55:6c:9a:57:ec:16:43:c8:61: 37:2d:ea:95:ef:dd:c8:4d:e2:5d:59:dd:08:f9:7d: dc:17:8c:29:5d:65:0c:31:b7:8f:81:c4:26:0f:64: 3d:1f:35:10:86:e6:a8:55:f1:7d:9d:af:d3:ff:67: ba:37:d9:aa:78:08:37:51:1d:6c:a5:c0:36:57:c0: ab:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:40:90:74:2B:4E:82:74:AE:9D:44:AF:CA:6D:75:F3:36:F1:CA:35 X509v3 Authority Key Identifier: keyid:47:CB:AD:1A:64:87:15:C5:E8:67:F1:A2:ED:35:58:68:86:08:EE:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/47CBAD1A648715C5E867F1A2ED3558688608EE19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47CBAD1A648715C5E867F1A2ED3558688608EE19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/3130332e3233352e36352e302f32342d3234203d3e20313430343637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.65.0/24 Signature Algorithm: sha256WithRSAEncryption 28:ec:67:73:f2:2d:93:0b:c9:fc:1f:fa:4e:48:1c:1d:eb:a4: 89:40:bf:69:e2:86:4b:5d:96:dc:90:e6:33:e1:d5:a6:2b:a5: c5:b5:f1:cc:e8:9f:1e:cc:c9:06:59:45:ac:7e:78:06:14:da: 00:8e:fe:29:6a:98:d5:5e:40:7d:58:ab:b2:38:ec:c0:d3:a5: 26:e8:ec:ee:79:42:51:31:63:a4:8e:03:0f:94:cb:33:0a:e9: ee:56:0e:d8:8e:16:da:b3:17:bf:d7:00:b0:20:e8:04:06:10: f6:c5:4d:5f:bf:78:e3:42:7e:d0:94:f6:d4:a4:a5:71:0b:1f: a6:7a:c5:84:39:36:43:2a:8f:41:9d:ab:fe:e3:9a:d2:32:a6: 5d:cc:36:2f:ae:d9:68:5a:75:6e:43:9c:33:9f:75:db:7c:4f: 29:38:16:b5:77:92:6d:31:bf:6a:42:8b:b6:53:b7:e4:76:61: dc:44:1e:1b:3d:f2:f9:bd:8e:7d:4e:07:56:7a:de:f7:b4:fe: e8:f1:92:8b:47:ac:2d:4a:32:cc:7c:79:02:6e:c6:a3:4f:0e: c9:1e:3c:cb:ad:de:c3:d1:35:be:31:a8:a6:41:4f:65:ac:c6: 69:68:9f:ec:1a:f2:3e:2c:8f:2a:23:72:2c:01:33:4c:49:2b: 7d:80:98:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX0u7DiVWO6uHb5/RB/w8hEY/KpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDQkFEMUE2NDg3MTVDNUU4NjdGMUEyRUQzNTU4Njg4 NjA4RUUxOTAeFw0yNTA1MDUwODU1MDBaFw0yNjA1MDQwOTAwMDBaMDMxMTAvBgNV BAMTKDIzNDA5MDc0MkI0RTgyNzRBRTlENDRBRkNBNkQ3NUYzMzZGMUNBMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYuzX93fz9lwVGLy9sFZKY10+M mC5eqJmh62m5OmXujnWN6oj84ZaOfm7IUCK8KABO1UBbFeelH9zaUxrdE10D9Z74 EjQqI4eQojzeUIZGXffBU6KNJ9jot9QN2PGbNe6Imm1PHyzW5s9BEprVxwjuNVjs dBL/j9Xf0YhMNGsqR0lt4qZQ4XBsp24CELAdG+E4TcM1hnoMJM/zRiNuytGN9QhV WzaMpX9VyZ1UYm17TnH6iUjiGDHWulVsmlfsFkPIYTct6pXv3chN4l1Z3Qj5fdwX jCldZQwxt4+BxCYPZD0fNRCG5qhV8X2dr9P/Z7o32ap4CDdRHWylwDZXwKtdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI0CQdCtOgnSunUSvym118zbxyjUwHwYDVR0j BBgwFoAUR8utGmSHFcXoZ/Gi7TVYaIYI7hkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDk1NjUwNS1kNmIzLTQzZGMtOTA3MC1kNGRiZGI3Y2Y5NjMvMC80N0NCQUQxQTY0 ODcxNUM1RTg2N0YxQTJFRDM1NTg2ODg2MDhFRTE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdDQkFEMUE2NDg3MTVDNUU4NjdGMUEyRUQzNTU4Njg4NjA4 RUUxOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0OTU2NTA1LWQ2YjMtNDNkYy05 MDcwLWQ0ZGJkYjdjZjk2My8wLzMxMzAzMzJlMzIzMzM1MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tBMA0GCSqG SIb3DQEBCwUAA4IBAQAo7Gdz8i2TC8n8H/pOSBwd66SJQL9p4oZLXZbckOYz4dWm K6XFtfHM6J8ezMkGWUWsfngGFNoAjv4papjVXkB9WKuyOOzA06Um6OzueUJRMWOk jgMPlMszCunuVg7Yjhbasxe/1wCwIOgEBhD2xU1fv3jjQn7QlPbUpKVxCx+mesWE OTZDKo9Bnav+45rSMqZdzDYvrtloWnVuQ5wzn3XbfE8pOBa1d5JtMb9qQou2U7fk dmHcRB4bPfL5vY59TgdWet73tP7o8ZKLR6wtSjLMfHkCbsajTw7JHjzLrd7D0TW+ MaimQU9lrMZpaJ/sGvI+LI8qI3IsATNMSSt9gJhv -----END CERTIFICATE-----Generated at Fri May 9 18:44:02 2025 by rpki-client