$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa File: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (raw, json) Hash identifier: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI= Subject key identifier: E9:C9:C2:41:A5:F8:FB:A3:A1:8B:48:9B:7F:74:83:1C:6B:08:6F:D5 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 3704536394CA514C507CD0ACBA84C13792922F32 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa Signing time: Wed 23 Jul 2025 03:02:53 +0000 ROA not before: Wed 23 Jul 2025 02:57:53 +0000 ROA not after: Wed 22 Jul 2026 03:02:53 +0000 asID: 149883 IP address blocks: 103.184.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:04:53:63:94:ca:51:4c:50:7c:d0:ac:ba:84:c1:37:92:92:2f:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Jul 23 02:57:53 2025 GMT Not After : Jul 22 03:02:53 2026 GMT Subject: CN=E9C9C241A5F8FBA3A18B489B7F74831C6B086FD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0c:f6:35:53:32:08:a0:be:63:f1:82:8d:07: c7:64:04:99:30:30:37:99:8a:f5:b2:b6:bb:ed:2e: bc:28:c3:ac:5e:9d:70:d1:1e:b7:c1:03:52:d6:b0: d2:be:1b:89:2a:4c:69:94:b4:61:6c:82:b7:76:b4: cd:04:ff:81:20:2b:82:c4:3e:07:43:1d:ad:90:72: 94:27:98:c6:2c:2e:dd:df:10:1e:5e:40:00:3f:c0: 01:1d:d5:28:89:48:8b:26:72:a4:6d:e7:62:00:94: 69:b6:47:1b:69:5c:7c:61:b6:bb:41:e1:a3:09:25: 35:9c:07:09:d4:43:2f:8f:ea:8b:c4:9d:cd:f9:85: c0:6a:1c:ab:d5:1e:42:b9:dd:a0:b6:32:14:65:d3: c2:2b:91:27:6c:99:07:21:9f:e8:eb:47:2c:e1:b1: 94:00:b1:68:01:2a:02:76:b0:4e:c1:6f:53:31:0c: 07:07:f2:64:5b:82:5d:e4:46:f3:df:35:87:8d:83: d1:c6:82:9e:2d:e5:6c:65:bf:c5:2b:96:7d:be:6c: 7a:24:94:89:81:e6:f9:23:0f:3b:df:1a:09:dd:1c: 71:f4:5a:ef:2e:34:70:bf:57:dd:6b:d4:f9:f1:fc: 73:09:24:ee:e5:5c:d9:d9:f7:14:d6:92:34:ad:69: 75:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C9:C2:41:A5:F8:FB:A3:A1:8B:48:9B:7F:74:83:1C:6B:08:6F:D5 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/23 Signature Algorithm: sha256WithRSAEncryption 84:e0:a6:61:6c:82:55:53:64:98:72:4e:ef:c0:d5:b6:ed:15: 4e:76:0d:2a:23:f2:88:b4:48:ce:42:6a:55:51:e4:9f:8c:ab: af:62:df:09:62:99:4e:1b:0d:82:db:c1:03:f3:4c:45:e4:73: f6:5d:4e:e9:c7:ac:e5:46:6e:7c:b8:71:a7:77:74:58:19:d9: a1:31:3d:db:4e:23:74:ec:72:d5:56:42:1e:e8:7c:dd:fd:0d: 55:c2:cd:25:d4:eb:1d:29:d3:c6:09:80:72:39:1f:b4:e8:9b: 1f:aa:c0:9f:a4:ef:18:28:5e:d7:7d:7d:51:1e:e4:56:07:58: dd:49:37:f1:78:78:e6:8c:23:77:de:50:da:a4:81:b0:72:f5: 68:4a:df:f8:b3:45:01:01:62:7c:23:4b:cb:2a:e8:22:fa:09: be:a1:cd:cf:8a:11:a4:1d:78:61:7f:04:c0:0d:1a:8e:dd:e4: 5a:dd:3d:7e:fa:1a:27:88:86:3c:4d:74:fb:b5:2a:ac:b1:b8: b2:7a:d7:33:e2:22:5e:5f:02:ee:5d:c0:96:a3:4e:6d:16:21: 29:1a:f6:c1:e7:0c:66:7c:7f:75:79:6b:e5:21:91:6a:17:79: f7:d9:70:83:d6:f5:ec:44:af:62:fd:38:ca:cb:9f:4f:06:e2: b9:c9:ba:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNwRTY5TKUUxQfNCsuoTBN5KSLzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTA3MjMwMjU3NTNaFw0yNjA3MjIwMzAyNTNaMDMxMTAvBgNV BAMTKEU5QzlDMjQxQTVGOEZCQTNBMThCNDg5QjdGNzQ4MzFDNkIwODZGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZDPY1UzIIoL5j8YKNB8dkBJkw MDeZivWytrvtLrwow6xenXDRHrfBA1LWsNK+G4kqTGmUtGFsgrd2tM0E/4EgK4LE PgdDHa2QcpQnmMYsLt3fEB5eQAA/wAEd1SiJSIsmcqRt52IAlGm2RxtpXHxhtrtB 4aMJJTWcBwnUQy+P6ovEnc35hcBqHKvVHkK53aC2MhRl08IrkSdsmQchn+jrRyzh sZQAsWgBKgJ2sE7Bb1MxDAcH8mRbgl3kRvPfNYeNg9HGgp4t5Wxlv8Urln2+bHok lImB5vkjDzvfGgndHHH0Wu8uNHC/V91r1Pnx/HMJJO7lXNnZ9xTWkjStaXWZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6cnCQaX4+6Ohi0ibf3SDHGsIb9UwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7gUMA0GCSqG SIb3DQEBCwUAA4IBAQCE4KZhbIJVU2SYck7vwNW27RVOdg0qI/KItEjOQmpVUeSf jKuvYt8JYplOGw2C28ED80xF5HP2XU7px6zlRm58uHGnd3RYGdmhMT3bTiN07HLV VkIe6Hzd/Q1Vws0l1OsdKdPGCYByOR+06JsfqsCfpO8YKF7XfX1RHuRWB1jdSTfx eHjmjCN33lDapIGwcvVoSt/4s0UBAWJ8I0vLKugi+gm+oc3PihGkHXhhfwTADRqO 3eRa3T1++honiIY8TXT7tSqssbiyetcz4iJeXwLuXcCWo05tFiEpGvbB5wxmfH91 eWvlIZFqF3n32XCD1vXsRK9i/TjKy59PBuK5ybpL -----END CERTIFICATE-----Generated at Sat Jul 26 00:23:18 2025 by rpki-client