$ rpki-client -vvf repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa File: 3130332e3137322e33342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: FHzMEbRY0GUv7uZMGg/BZG/YZusPXZ52OHFP1+MW/+A= Subject key identifier: 5B:2C:5B:B8:66:13:7E:56:8D:62:09:6B:8B:30:A1:62:AF:CE:2F:25 Certificate issuer: /CN=5562ED3E2B75AA4CE36165EE02F7696CCB8045E1 Certificate serial: 67C8C43CBF8611E92794C9932B2D96D61D910559 Authority key identifier: 55:62:ED:3E:2B:75:AA:4C:E3:61:65:EE:02:F7:69:6C:CB:80:45:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa Signing time: Fri 02 May 2025 03:00:01 +0000 ROA not before: Fri 02 May 2025 02:55:01 +0000 ROA not after: Fri 01 May 2026 03:00:01 +0000 asID: 58821 IP address blocks: 103.172.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.crl rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 16:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c8:c4:3c:bf:86:11:e9:27:94:c9:93:2b:2d:96:d6:1d:91:05:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5562ED3E2B75AA4CE36165EE02F7696CCB8045E1 Validity Not Before: May 2 02:55:01 2025 GMT Not After : May 1 03:00:01 2026 GMT Subject: CN=5B2C5BB866137E568D62096B8B30A162AFCE2F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:37:2d:a2:24:b9:0e:f0:96:af:26:a7:38:d9: e7:38:5a:52:5b:ce:95:96:e3:01:d3:4b:ab:c0:35: dc:75:5d:5b:e8:7c:79:bc:15:0c:09:61:e8:59:85: 0c:8f:d3:77:ef:d8:5b:8e:d1:f1:ff:56:9f:f1:a3: c9:ab:4a:9a:ee:2b:8c:9e:50:56:4d:c1:2f:5c:17: 9f:8b:14:d3:18:d2:c4:6e:ac:f9:73:63:5d:11:46: 2a:93:f8:5e:88:96:e4:fd:6a:14:e6:02:df:34:15: 37:f1:ec:58:5c:a5:5b:27:d4:fa:21:ac:17:e8:39: 25:2e:2d:c4:f9:6d:8f:f3:c7:3e:61:e8:4a:f8:d0: dc:12:e2:5d:87:c6:25:91:6f:e9:16:5c:b0:30:70: 52:8d:8a:0f:a4:d2:c9:d8:e7:9d:f0:d8:c1:35:f1: 18:91:d7:ac:da:6d:9d:8c:e8:da:9f:7c:69:3b:b8: 04:68:c0:9c:de:79:52:24:29:13:33:f3:fe:9c:37: d0:b9:5f:81:2b:df:54:3b:ff:0d:94:b2:fd:8b:98: 43:9e:7d:e8:32:ec:c7:f0:94:6d:44:ca:4f:9f:54: 3d:e9:9b:ed:9d:92:06:ce:fc:9a:4e:00:45:be:0a: 13:48:8a:21:70:32:9b:5a:22:cc:9d:fe:5c:e4:6a: 1d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2C:5B:B8:66:13:7E:56:8D:62:09:6B:8B:30:A1:62:AF:CE:2F:25 X509v3 Authority Key Identifier: keyid:55:62:ED:3E:2B:75:AA:4C:E3:61:65:EE:02:F7:69:6C:CB:80:45:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.34.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:dd:6e:ea:43:54:49:25:2f:34:31:3c:b8:b4:ba:a1:8d:fd: d7:3d:b4:83:0d:a4:c8:82:d5:b7:1a:f5:55:d4:19:52:d5:2d: 93:31:d1:2f:d9:0b:7c:c7:cf:9c:69:cd:00:d4:b0:d3:d1:10: 95:fb:56:dc:34:e6:c1:0f:3e:30:f9:b6:3d:a9:5c:90:e9:27: 91:06:71:7c:23:82:1e:44:a1:db:93:96:c4:eb:6f:07:db:72: 1c:a0:6a:d8:1b:b0:93:51:e7:ed:02:e3:a5:1f:37:aa:f3:44: 87:fb:6c:90:d6:1e:60:74:d6:b1:2e:3d:fa:ee:80:a2:c6:03: bb:b7:f9:7f:48:dc:f7:1d:ee:04:a8:a7:3e:cc:76:2e:a9:11: 6f:dc:81:3c:7b:db:f5:91:e0:25:62:4b:a4:50:70:8d:f5:7b: bb:97:16:9a:9c:bd:7a:c9:f5:73:f3:24:b8:f2:81:73:82:68: bf:34:3f:34:9d:4d:d0:62:89:2a:1e:17:85:2a:c7:da:16:81: 10:ec:d5:97:ad:aa:22:a5:5a:9c:ff:d3:7d:59:88:88:bb:6e: 11:c4:2b:a5:56:e6:60:80:ac:fb:b6:9d:f4:d1:75:60:95:85: 66:d5:a5:c7:07:c9:35:93:4f:2f:0c:ea:27:cb:55:b0:5f:ec: 86:00:b8:6a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ8jEPL+GEeknlMmTKy2W1h2RBVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2MkVEM0UyQjc1QUE0Q0UzNjE2NUVFMDJGNzY5NkND QjgwNDVFMTAeFw0yNTA1MDIwMjU1MDFaFw0yNjA1MDEwMzAwMDFaMDMxMTAvBgNV BAMTKDVCMkM1QkI4NjYxMzdFNTY4RDYyMDk2QjhCMzBBMTYyQUZDRTJGMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Ny2iJLkO8JavJqc42ec4WlJb zpWW4wHTS6vANdx1XVvofHm8FQwJYehZhQyP03fv2FuO0fH/Vp/xo8mrSpruK4ye UFZNwS9cF5+LFNMY0sRurPlzY10RRiqT+F6IluT9ahTmAt80FTfx7FhcpVsn1Poh rBfoOSUuLcT5bY/zxz5h6Er40NwS4l2HxiWRb+kWXLAwcFKNig+k0snY553w2ME1 8RiR16zabZ2M6NqffGk7uARowJzeeVIkKRMz8/6cN9C5X4Er31Q7/w2Usv2LmEOe fegy7MfwlG1Eyk+fVD3pm+2dkgbO/JpOAEW+ChNIiiFwMptaIsyd/lzkah3FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWyxbuGYTflaNYglrizChYq/OLyUwHwYDVR0j BBgwFoAUVWLtPit1qkzjYWXuAvdpbMuAReEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l N2EzZTkwYS0wMzNhLTRjOGQtOTA3Ny0wZGFmODA1MGZhOGIvMC81NTYyRUQzRTJC NzVBQTRDRTM2MTY1RUUwMkY3Njk2Q0NCODA0NUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2MkVEM0UyQjc1QUE0Q0UzNjE2NUVFMDJGNzY5NkNDQjgw NDVFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3YTNlOTBhLTAzM2EtNGM4ZC05 MDc3LTBkYWY4MDUwZmE4Yi8wLzMxMzAzMzJlMzEzNzMyMmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWesIjANBgkqhkiG 9w0BAQsFAAOCAQEAf91u6kNUSSUvNDE8uLS6oY391z20gw2kyILVtxr1VdQZUtUt kzHRL9kLfMfPnGnNANSw09EQlftW3DTmwQ8+MPm2PalckOknkQZxfCOCHkSh25OW xOtvB9tyHKBq2Buwk1Hn7QLjpR83qvNEh/tskNYeYHTWsS49+u6AosYDu7f5f0jc 9x3uBKinPsx2LqkRb9yBPHvb9ZHgJWJLpFBwjfV7u5cWmpy9esn1c/MkuPKBc4Jo vzQ/NJ1N0GKJKh4XhSrH2haBEOzVl62qIqVanP/TfVmIiLtuEcQrpVbmYICs+7ad 9NF1YJWFZtWlxwfJNZNPLwzqJ8tVsF/shgC4ag== -----END CERTIFICATE-----Generated at Tue May 6 12:50:40 2025 by rpki-client