$ rpki-client -vvf repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/3130332e35382e3134362e302f32342d3234203d3e20313333383335.roa File: 3130332e35382e3134362e302f32342d3234203d3e20313333383335.roa (raw, json) Hash identifier: RZTZbSxb2PRYobjmO198JK6HQHDPb0oKEJ95ldcpw5Y= Subject key identifier: CC:54:62:A1:63:13:49:56:F4:BC:EA:F4:DC:63:23:19:26:7F:1C:46 Certificate issuer: /CN=BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641 Certificate serial: 5F0B85743EE86589E5946C010A95C1ACAB18F03C Authority key identifier: BE:A8:C6:D5:F4:B4:24:A9:EA:BF:C2:F6:8F:71:B0:50:5B:7E:36:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/3130332e35382e3134362e302f32342d3234203d3e20313333383335.roa Signing time: Thu 01 May 2025 06:02:23 +0000 ROA not before: Thu 01 May 2025 05:57:23 +0000 ROA not after: Thu 30 Apr 2026 06:02:23 +0000 asID: 133835 IP address blocks: 103.58.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.crl rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 11:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:0b:85:74:3e:e8:65:89:e5:94:6c:01:0a:95:c1:ac:ab:18:f0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641 Validity Not Before: May 1 05:57:23 2025 GMT Not After : Apr 30 06:02:23 2026 GMT Subject: CN=CC5462A163134956F4BCEAF4DC632319267F1C46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:9c:30:10:8d:2b:de:6e:e1:85:6e:3b:e5: ab:5e:72:63:cb:cb:c9:6e:81:4f:a4:6c:1b:d7:3d: 87:c7:cf:be:25:2f:38:da:53:e6:c6:db:f4:d8:6f: 72:1d:4f:ed:96:f8:59:48:f9:99:43:8c:0a:7e:8e: 6f:db:14:72:ec:00:a9:fb:4c:99:2f:aa:1f:8f:a3: 72:30:3d:05:8d:63:ad:db:b0:fe:c0:98:64:32:15: 81:fe:ad:1a:1c:26:a2:dd:cf:c0:b3:20:50:56:55: 8d:18:f5:89:1b:0e:ae:88:54:f5:9b:57:2c:f3:82: 23:08:11:f3:3d:ff:b2:85:39:e1:bc:37:b7:a4:a2: be:6d:a5:a5:df:b9:8c:b0:8c:99:44:af:15:2a:3b: 9d:9b:c7:29:c0:9f:dd:9f:78:62:1e:c5:4f:72:21: a0:78:71:40:49:73:d3:e3:49:4a:cf:2a:34:77:04: b1:da:6a:64:b5:55:1d:24:2c:15:79:64:a5:9f:77: 4d:47:39:f6:1d:f2:4a:23:2c:e2:d1:13:79:13:5b: 13:39:32:14:9e:9e:9a:bb:6c:ba:d9:c2:a0:82:27: 82:c4:64:8f:bb:5a:fb:af:7a:f1:c9:72:51:c0:b2: 1b:e3:c4:2c:21:a7:84:05:0a:87:58:df:36:d6:ad: 4f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:54:62:A1:63:13:49:56:F4:BC:EA:F4:DC:63:23:19:26:7F:1C:46 X509v3 Authority Key Identifier: keyid:BE:A8:C6:D5:F4:B4:24:A9:EA:BF:C2:F6:8F:71:B0:50:5B:7E:36:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEA8C6D5F4B424A9EABFC2F68F71B0505B7E3641.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/3130332e35382e3134362e302f32342d3234203d3e20313333383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.146.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:0a:f7:d0:0f:ce:2a:70:c0:d2:d0:60:93:56:17:27:25:db: 0d:b1:76:e1:dc:9b:90:79:f7:9e:86:e0:39:fc:83:2f:a1:ba: fb:19:ba:54:d2:e8:82:91:c3:4d:19:14:52:b5:23:58:90:61: 5b:cc:60:86:73:5e:6f:61:f9:8d:27:a3:08:e8:12:16:72:4f: 0a:0a:3d:b6:39:4e:5e:3c:c4:6b:9d:b7:7b:c5:17:86:b2:0e: 0b:cf:e4:b1:99:a4:e1:12:b2:df:ac:6a:bf:ac:6d:58:32:04: 52:92:3c:2f:a9:8d:3e:b7:5e:24:0f:27:56:47:38:bb:62:b8: ea:ed:42:02:5a:69:1e:5e:62:0e:6c:a7:9d:36:95:ed:ca:51: 13:0e:d3:3b:15:08:55:14:06:5e:1f:e8:04:69:35:2b:ba:2f: f9:a4:8b:4b:8c:da:3e:45:18:70:17:e5:d4:07:a5:c2:f4:fc: 8a:54:6f:ff:5d:62:4d:c9:d3:59:73:34:52:7d:63:38:1f:fa: c5:f9:d4:9b:aa:04:12:3a:e4:df:c8:0f:ad:f4:99:1e:3c:b9: 86:c1:23:01:38:1f:aa:76:e9:e9:a0:c2:73:30:4e:25:80:8d: 80:dd:59:e3:fa:a6:2d:c6:b0:76:24:49:72:fe:5e:ec:ef:d5: 7b:fc:31:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXwuFdD7oZYnllGwBCpXBrKsY8DwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVBOEM2RDVGNEI0MjRBOUVBQkZDMkY2OEY3MUIwNTA1 QjdFMzY0MTAeFw0yNTA1MDEwNTU3MjNaFw0yNjA0MzAwNjAyMjNaMDMxMTAvBgNV BAMTKENDNTQ2MkExNjMxMzQ5NTZGNEJDRUFGNERDNjMyMzE5MjY3RjFDNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWI5wwEI0r3m7hhW475atecmPL y8lugU+kbBvXPYfHz74lLzjaU+bG2/TYb3IdT+2W+FlI+ZlDjAp+jm/bFHLsAKn7 TJkvqh+Po3IwPQWNY63bsP7AmGQyFYH+rRocJqLdz8CzIFBWVY0Y9YkbDq6IVPWb VyzzgiMIEfM9/7KFOeG8N7ekor5tpaXfuYywjJlErxUqO52bxynAn92feGIexU9y IaB4cUBJc9PjSUrPKjR3BLHaamS1VR0kLBV5ZKWfd01HOfYd8kojLOLRE3kTWxM5 MhSenpq7bLrZwqCCJ4LEZI+7WvuvevHJclHAshvjxCwhp4QFCodY3zbWrU/lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzFRioWMTSVb0vOr03GMjGSZ/HEYwHwYDVR0j BBgwFoAUvqjG1fS0JKnqv8L2j3GwUFt+NkEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OGZjYTQyZi04MzZhLTQwZWMtYTc2Zi1iNjA0NzExZjMzNjQvMC9CRUE4QzZENUY0 QjQyNEE5RUFCRkMyRjY4RjcxQjA1MDVCN0UzNjQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVBOEM2RDVGNEI0MjRBOUVBQkZDMkY2OEY3MUIwNTA1QjdF MzY0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4ZmNhNDJmLTgzNmEtNDBlYy1h NzZmLWI2MDQ3MTFmMzM2NC8wLzMxMzAzMzJlMzUzODJlMzEzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzqSMA0GCSqG SIb3DQEBCwUAA4IBAQBaCvfQD84qcMDS0GCTVhcnJdsNsXbh3JuQefeehuA5/IMv obr7GbpU0uiCkcNNGRRStSNYkGFbzGCGc15vYfmNJ6MI6BIWck8KCj22OU5ePMRr nbd7xReGsg4Lz+SxmaThErLfrGq/rG1YMgRSkjwvqY0+t14kDydWRzi7Yrjq7UIC WmkeXmIObKedNpXtylETDtM7FQhVFAZeH+gEaTUrui/5pItLjNo+RRhwF+XUB6XC 9PyKVG//XWJNydNZczRSfWM4H/rF+dSbqgQSOuTfyA+t9JkePLmGwSMBOB+qdunp oMJzME4lgI2A3Vnj+qYtxrB2JEly/l7s79V7/DF1 -----END CERTIFICATE-----Generated at Sat May 10 06:10:07 2025 by rpki-client