$ rpki-client -vvf repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137302e302f32342d3234203d3e203536323631.roa File: 3130332e32392e3137302e302f32342d3234203d3e203536323631.roa (raw, json) Hash identifier: AbfmsPIM39RXP9giC5KqkIRrkD9RG/QaxNfAq/KCmcs= Subject key identifier: C5:5F:9A:D3:44:DA:36:05:95:7A:F2:ED:65:4B:C3:CD:27:F3:94:81 Certificate issuer: /CN=8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11 Certificate serial: 4C805EE713B09D35FD544B5147ED3E94F11757DE Authority key identifier: 89:32:E2:5F:54:C4:B1:0E:2A:E5:B7:1E:38:D2:AD:4D:1E:E3:BB:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137302e302f32342d3234203d3e203536323631.roa Signing time: Fri 09 May 2025 05:00:00 +0000 ROA not before: Fri 09 May 2025 04:55:00 +0000 ROA not after: Fri 08 May 2026 05:00:00 +0000 asID: 56261 IP address blocks: 103.29.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.crl rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 09:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:80:5e:e7:13:b0:9d:35:fd:54:4b:51:47:ed:3e:94:f1:17:57:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11 Validity Not Before: May 9 04:55:00 2025 GMT Not After : May 8 05:00:00 2026 GMT Subject: CN=C55F9AD344DA3605957AF2ED654BC3CD27F39481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e1:6b:f5:10:e8:96:5a:29:24:6c:50:81:dc: 0c:f1:f2:e4:90:f2:c0:77:0b:71:1e:38:10:eb:a9: 9a:29:2f:77:fb:a5:97:76:01:e7:27:8e:39:b6:ce: fe:61:a6:54:7c:13:ca:66:1d:d0:96:b1:ee:9b:10: 9c:c1:5b:e7:06:fe:82:fe:fc:d2:a0:8d:34:5e:61: 7e:f0:8c:e5:c1:8e:2e:ff:6d:aa:60:1b:e4:91:ea: 4b:4d:c0:16:8c:25:bf:12:3d:3e:c7:1c:ae:94:57: 82:b6:bd:f9:fd:56:46:ac:f5:9e:b2:6b:dc:74:5f: 8a:ca:7f:86:53:22:47:27:d2:cc:f6:91:f3:16:cd: cd:61:a2:11:34:c2:03:51:33:23:98:d3:51:ea:33: 47:5a:8b:7b:2d:32:2f:2c:0b:bd:70:5d:9c:b8:1f: 01:98:45:15:4b:53:06:7f:ea:64:95:a7:b2:48:4b: 48:b0:72:8a:e2:fb:1a:7a:17:24:3b:8a:a6:78:f8: 61:65:d0:a0:5b:94:7b:e5:6e:63:78:dd:48:f3:2c: 58:d7:c2:79:96:44:fe:d0:24:db:72:7a:89:e8:58: 7f:fb:6c:3c:9c:b3:82:8e:1d:19:95:aa:42:35:6e: ae:a4:55:4c:b0:b1:63:4f:1e:31:ab:7c:32:3c:ee: 8c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:5F:9A:D3:44:DA:36:05:95:7A:F2:ED:65:4B:C3:CD:27:F3:94:81 X509v3 Authority Key Identifier: keyid:89:32:E2:5F:54:C4:B1:0E:2A:E5:B7:1E:38:D2:AD:4D:1E:E3:BB:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137302e302f32342d3234203d3e203536323631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.170.0/24 Signature Algorithm: sha256WithRSAEncryption 74:f8:55:5c:f3:55:b2:0b:84:1c:de:df:9c:e3:7d:08:ad:8e: e4:7e:99:09:13:31:46:11:b2:ed:bc:46:f8:2c:82:b9:1e:71: f0:c5:36:eb:e8:1a:de:31:ca:8b:74:8e:16:72:86:7a:8b:74: 74:e1:7a:33:85:a4:d7:01:5c:f5:20:38:4b:91:fd:31:09:1b: f1:52:d4:8d:d5:e8:19:0e:ec:48:e9:8e:3e:6c:14:33:ed:58: 7c:12:80:5c:32:ed:b2:7f:90:06:f7:35:09:e2:45:76:97:8c: b2:71:04:41:54:d3:b3:53:d8:37:c9:95:da:ce:6e:1f:8c:85: 76:35:17:5e:bc:48:33:65:46:42:7c:4e:3b:d7:0f:88:d9:28: ad:f4:06:df:b0:de:d8:02:39:04:6f:b6:4f:18:f9:f4:b3:30: 9a:36:f2:cd:43:18:6d:d4:a2:95:02:b2:12:70:4a:ca:52:f3: 51:2f:58:5b:d6:7d:cf:de:88:06:ed:e4:c0:40:08:c9:b0:8b: 0f:1a:11:f9:b8:1c:51:78:c4:3a:11:19:8f:bc:d8:84:f9:bf: 8a:03:4c:73:c9:a8:81:70:f5:d7:66:8d:8f:fb:f7:c7:c3:1a: 98:e0:48:ad:05:ea:7b:73:f6:a4:93:c5:a1:71:d0:3f:b6:ea: 9f:09:86:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTIBe5xOwnTX9VEtRR+0+lPEXV94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzMkUyNUY1NEM0QjEwRTJBRTVCNzFFMzhEMkFENEQx RUUzQkIxMTAeFw0yNTA1MDkwNDU1MDBaFw0yNjA1MDgwNTAwMDBaMDMxMTAvBgNV BAMTKEM1NUY5QUQzNDREQTM2MDU5NTdBRjJFRDY1NEJDM0NEMjdGMzk0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv4Wv1EOiWWikkbFCB3Azx8uSQ 8sB3C3EeOBDrqZopL3f7pZd2Aecnjjm2zv5hplR8E8pmHdCWse6bEJzBW+cG/oL+ /NKgjTReYX7wjOXBji7/bapgG+SR6ktNwBaMJb8SPT7HHK6UV4K2vfn9Vkas9Z6y a9x0X4rKf4ZTIkcn0sz2kfMWzc1hohE0wgNRMyOY01HqM0dai3stMi8sC71wXZy4 HwGYRRVLUwZ/6mSVp7JIS0iwcori+xp6FyQ7iqZ4+GFl0KBblHvlbmN43UjzLFjX wnmWRP7QJNtyeonoWH/7bDycs4KOHRmVqkI1bq6kVUywsWNPHjGrfDI87ozBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxV+a00TaNgWVevLtZUvDzSfzlIEwHwYDVR0j BBgwFoAUiTLiX1TEsQ4q5bceONKtTR7juxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzgwOTM4NC05YjFjLTRmNWEtYWE2Yi05ZGUzYjUyYTljMDUvMC84OTMyRTI1RjU0 QzRCMTBFMkFFNUI3MUUzOEQyQUQ0RDFFRTNCQjExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODkzMkUyNUY1NEM0QjEwRTJBRTVCNzFFMzhEMkFENEQxRUUz QkIxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzODA5Mzg0LTliMWMtNGY1YS1h YTZiLTlkZTNiNTJhOWMwNS8wLzMxMzAzMzJlMzIzOTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcdqjANBgkqhkiG 9w0BAQsFAAOCAQEAdPhVXPNVsguEHN7fnON9CK2O5H6ZCRMxRhGy7bxG+CyCuR5x 8MU26+ga3jHKi3SOFnKGeot0dOF6M4Wk1wFc9SA4S5H9MQkb8VLUjdXoGQ7sSOmO PmwUM+1YfBKAXDLtsn+QBvc1CeJFdpeMsnEEQVTTs1PYN8mV2s5uH4yFdjUXXrxI M2VGQnxOO9cPiNkorfQG37De2AI5BG+2Txj59LMwmjbyzUMYbdSilQKyEnBKylLz US9YW9Z9z96IBu3kwEAIybCLDxoR+bgcUXjEOhEZj7zYhPm/igNMc8mogXD112aN j/v3x8MamOBIrQXqe3P2pJPFoXHQP7bqnwmG3w== -----END CERTIFICATE-----Generated at Sat May 10 20:09:31 2025 by rpki-client