$ rpki-client -vvf repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3130332e39302e3139362e302f32322d3234203d3e20313331373637.roa File: 3130332e39302e3139362e302f32322d3234203d3e20313331373637.roa (raw, json) Hash identifier: 0If+6/mMOFFyP2FqyKGK3txMDLzFU3f4sqXMr4WKhzY= Subject key identifier: 58:E6:7C:64:BF:E4:EB:46:39:7A:25:62:0A:4D:E8:6B:35:23:12:3C Certificate issuer: /CN=4FA812FE6A4A85F790CB2740EF08836883716912 Certificate serial: 1058AF5532F943C798086E647AD880F332222388 Authority key identifier: 4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3130332e39302e3139362e302f32322d3234203d3e20313331373637.roa Signing time: Fri 11 Jul 2025 06:00:00 +0000 ROA not before: Fri 11 Jul 2025 05:55:00 +0000 ROA not after: Fri 10 Jul 2026 06:00:00 +0000 asID: 131767 IP address blocks: 103.90.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:58:af:55:32:f9:43:c7:98:08:6e:64:7a:d8:80:f3:32:22:23:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA812FE6A4A85F790CB2740EF08836883716912 Validity Not Before: Jul 11 05:55:00 2025 GMT Not After : Jul 10 06:00:00 2026 GMT Subject: CN=58E67C64BFE4EB46397A25620A4DE86B3523123C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ac:86:ce:71:67:fd:84:c9:f5:1a:d4:84:74: 1e:e8:0c:ea:29:4d:4c:94:32:c6:4c:d1:20:7d:96: 03:c5:a5:ad:10:8f:4f:62:c3:32:43:89:a8:48:53: d6:21:81:2c:a9:43:b8:fc:c2:1d:46:20:41:5b:e9: 5d:e8:c8:11:f7:19:51:6a:67:ba:12:44:11:18:88: ad:b7:9b:8f:33:eb:c3:70:df:76:ac:c5:80:9b:e1: ef:18:a7:45:18:2a:b9:ec:18:1a:d3:70:85:f3:64: d6:c4:6e:98:83:3f:c3:9e:e3:c3:64:5b:86:1d:c4: 07:f7:95:e3:f3:e7:15:48:34:83:48:40:ea:4a:4d: a2:c7:4a:22:14:3d:56:18:93:cd:de:8c:b3:11:3b: 13:5b:2c:55:fa:48:3f:c1:e2:5b:92:61:c3:d5:6a: d7:0b:04:f3:39:53:f8:b2:72:a4:fc:aa:a7:35:03: f0:04:24:61:2b:3f:1a:99:71:bc:a8:31:59:ed:29: 03:f1:de:3e:5a:75:d1:93:2b:eb:6a:52:8b:d3:99: 43:79:5e:6d:6b:e6:6a:21:63:a1:9e:6a:c3:a0:6b: 89:ba:31:20:cf:6c:a9:d9:5b:47:9e:8d:84:01:73: 02:08:49:be:4f:fb:7c:28:6c:8a:f4:c8:c2:12:3f: 27:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:E6:7C:64:BF:E4:EB:46:39:7A:25:62:0A:4D:E8:6B:35:23:12:3C X509v3 Authority Key Identifier: keyid:4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3130332e39302e3139362e302f32322d3234203d3e20313331373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.196.0/22 Signature Algorithm: sha256WithRSAEncryption 65:46:6b:c7:f5:6f:b6:0a:04:00:a6:1f:82:08:1a:95:a5:f2: 5c:c4:eb:e5:96:01:a2:b6:a9:b8:8a:4e:97:48:7d:6e:e0:ec: 93:ab:ab:5e:fa:99:ac:68:9b:29:7b:b3:68:86:68:04:a3:e2: 22:d7:59:c4:42:a9:29:ef:53:29:37:71:fa:33:6e:16:83:48: 46:1c:78:89:cc:db:4f:50:dc:7d:13:5e:ba:b7:c4:e3:82:07: 5e:5d:71:cd:5e:4d:93:9c:57:d5:d6:04:93:d0:ba:94:e4:48: e0:0e:77:5c:ee:0a:d0:d1:6c:d3:da:3a:6e:54:54:7e:7d:59: 99:dc:fb:2b:71:33:21:56:dc:2e:da:49:4a:b5:2e:89:a3:be: 0b:03:ad:09:d4:43:42:e4:cb:c8:19:6b:dd:1a:13:36:f7:97: 4b:12:e5:cf:98:90:58:ad:b5:01:90:c4:dc:b8:2c:0d:c6:64: f0:ca:37:a5:62:77:70:55:f0:1a:c6:f0:01:5b:e9:eb:4d:f9: 29:58:67:67:1f:a5:c5:d3:c0:89:26:34:5a:4a:df:57:a8:e3: 50:cd:78:25:e1:c0:c1:d9:04:52:fc:64:e2:1b:d7:f9:46:aa: e3:78:3b:7d:93:b6:27:8a:e0:75:b9:0e:61:ac:b0:ff:6c:22: 47:f1:77:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEFivVTL5Q8eYCG5ketiA8zIiI4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4 MzcxNjkxMjAeFw0yNTA3MTEwNTU1MDBaFw0yNjA3MTAwNjAwMDBaMDMxMTAvBgNV BAMTKDU4RTY3QzY0QkZFNEVCNDYzOTdBMjU2MjBBNERFODZCMzUyMzEyM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmrIbOcWf9hMn1GtSEdB7oDOop TUyUMsZM0SB9lgPFpa0Qj09iwzJDiahIU9YhgSypQ7j8wh1GIEFb6V3oyBH3GVFq Z7oSRBEYiK23m48z68Nw33asxYCb4e8Yp0UYKrnsGBrTcIXzZNbEbpiDP8Oe48Nk W4YdxAf3lePz5xVININIQOpKTaLHSiIUPVYYk83ejLMROxNbLFX6SD/B4luSYcPV atcLBPM5U/iycqT8qqc1A/AEJGErPxqZcbyoMVntKQPx3j5addGTK+tqUovTmUN5 Xm1r5mohY6GeasOga4m6MSDPbKnZW0eejYQBcwIISb5P+3wobIr0yMISPydFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWOZ8ZL/k60Y5eiViCk3oazUjEjwwHwYDVR0j BBgwFoAUT6gS/mpKhfeQyydA7wiDaINxaRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGQxMDhmNy0wOGIyLTQwOWYtOGE3MC1hOWM2N2FlNWVkMjIvMC80RkE4MTJGRTZB NEE4NUY3OTBDQjI3NDBFRjA4ODM2ODgzNzE2OTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4Mzcx NjkxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0ZDEwOGY3LTA4YjItNDA5Zi04 YTcwLWE5YzY3YWU1ZWQyMi8wLzMxMzAzMzJlMzkzMDJlMzEzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1rEMA0GCSqG SIb3DQEBCwUAA4IBAQBlRmvH9W+2CgQAph+CCBqVpfJcxOvllgGitqm4ik6XSH1u 4OyTq6te+pmsaJspe7NohmgEo+Ii11nEQqkp71MpN3H6M24Wg0hGHHiJzNtPUNx9 E166t8TjggdeXXHNXk2TnFfV1gST0LqU5EjgDndc7grQ0WzT2jpuVFR+fVmZ3Psr cTMhVtwu2klKtS6Jo74LA60J1ENC5MvIGWvdGhM295dLEuXPmJBYrbUBkMTcuCwN xmTwyjelYndwVfAaxvABW+nrTfkpWGdnH6XF08CJJjRaSt9XqONQzXgl4cDB2QRS /GTiG9f5RqrjeDt9k7YniuB1uQ5hrLD/bCJH8XcC -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:36 2025 by rpki-client