$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa File: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk= Subject key identifier: E1:B3:F6:79:32:BE:5A:AD:17:62:1D:EA:76:44:6D:6B:FC:66:74:8D Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 4EF5F36C4735CFBA2EE63B2E5E5E46FDD29C4168 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa Signing time: Wed 23 Jul 2025 03:02:52 +0000 ROA not before: Wed 23 Jul 2025 02:57:52 +0000 ROA not after: Wed 22 Jul 2026 03:02:52 +0000 asID: 149883 IP address blocks: 103.184.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f5:f3:6c:47:35:cf:ba:2e:e6:3b:2e:5e:5e:46:fd:d2:9c:41:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Jul 23 02:57:52 2025 GMT Not After : Jul 22 03:02:52 2026 GMT Subject: CN=E1B3F67932BE5AAD17621DEA76446D6BFC66748D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6b:58:e3:05:e9:19:3d:3f:0b:ae:3f:92:ac: 36:68:b9:1c:1e:0b:1b:e2:e3:98:16:e1:3f:dd:4e: b6:09:64:20:65:b4:c2:ad:f4:7f:c0:24:39:aa:bc: 4d:3b:fb:ad:3c:42:df:d9:d8:c8:cc:bf:b1:08:40: 99:b5:81:5b:13:b7:08:f9:78:17:fe:3d:39:db:6b: ac:aa:40:56:2a:7a:2e:0b:aa:a4:bc:bc:c7:e4:8c: d4:3c:df:9a:4b:59:cc:56:77:e5:72:0e:d4:5a:c0: 6e:34:c7:a5:30:30:04:d0:54:ba:7c:96:7d:7b:4b: 25:e2:f6:fd:76:c5:78:a5:11:74:75:45:95:b6:83: 2d:49:9f:8f:10:53:5e:c7:03:ad:81:2d:7f:52:a7: eb:1a:7b:37:f2:b0:a0:16:20:f8:f1:34:00:39:a7: 44:8b:5d:fc:45:cf:2b:ad:6e:7b:4e:88:ad:69:31: 3b:a1:1b:f3:0b:22:86:c0:f5:bf:0c:7d:65:1e:c2: b4:9d:33:ef:e4:6f:90:70:0c:48:6c:bb:73:05:a8: 92:32:ed:ec:4e:3c:49:19:78:ca:6b:55:ab:b1:10: be:f2:e8:7e:75:51:b3:cf:d5:3f:5c:c2:40:a5:e9: 27:78:06:8b:f0:e4:65:0e:51:b9:da:47:15:4f:ee: 57:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B3:F6:79:32:BE:5A:AD:17:62:1D:EA:76:44:6D:6B:FC:66:74:8D X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/24 Signature Algorithm: sha256WithRSAEncryption 01:17:9d:83:50:e2:0b:9a:fc:62:76:3e:d0:ec:19:b1:83:b5: 07:a2:37:42:41:17:89:71:bf:b2:43:06:74:29:da:91:8d:af: 6d:78:d4:f4:fc:57:3e:03:d2:26:1b:4c:32:90:72:c1:63:d8: 18:e0:7d:e7:64:2f:13:20:15:ce:0a:f6:e1:a2:e4:a2:fe:a2: 01:22:96:7d:bf:a1:8b:bd:20:fb:f8:49:46:f1:cd:cd:60:d2: 0a:df:85:ca:42:1b:1a:78:5d:69:96:3d:60:1a:d5:5e:7b:7d: 17:d2:11:54:5b:96:89:cf:7e:7e:2a:af:5e:b9:e9:f3:fc:56: 05:52:4c:1b:7a:4f:2a:15:32:59:cf:55:f0:ce:74:e5:c6:7a: e6:d4:59:63:db:1c:9c:2b:30:97:e8:d4:25:ab:7c:c3:44:0c: 95:c1:b1:30:4c:6a:a0:01:e8:fb:ab:e3:50:f7:7e:c5:cf:94: ff:71:d6:e2:03:e2:50:f6:db:17:04:6f:57:0a:12:c9:e6:68: cb:b4:a7:af:3c:2a:53:9c:a8:fc:4c:d1:64:27:97:3f:e9:a9: f8:55:cf:42:23:51:56:5d:43:9e:ec:47:d5:98:18:d1:ff:e2: 2c:c7:99:ae:d0:e8:2d:13:4d:91:d5:31:3c:97:e0:c9:8a:f9: c9:85:fb:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTvXzbEc1z7ou5jsuXl5G/dKcQWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTA3MjMwMjU3NTJaFw0yNjA3MjIwMzAyNTJaMDMxMTAvBgNV BAMTKEUxQjNGNjc5MzJCRTVBQUQxNzYyMURFQTc2NDQ2RDZCRkM2Njc0OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoa1jjBekZPT8Lrj+SrDZouRwe Cxvi45gW4T/dTrYJZCBltMKt9H/AJDmqvE07+608Qt/Z2MjMv7EIQJm1gVsTtwj5 eBf+PTnba6yqQFYqei4LqqS8vMfkjNQ835pLWcxWd+VyDtRawG40x6UwMATQVLp8 ln17SyXi9v12xXilEXR1RZW2gy1Jn48QU17HA62BLX9Sp+saezfysKAWIPjxNAA5 p0SLXfxFzyutbntOiK1pMTuhG/MLIobA9b8MfWUewrSdM+/kb5BwDEhsu3MFqJIy 7exOPEkZeMprVauxEL7y6H51UbPP1T9cwkCl6Sd4Bovw5GUOUbnaRxVP7leNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4bP2eTK+Wq0XYh3qdkRta/xmdI0wHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gUMA0GCSqG SIb3DQEBCwUAA4IBAQABF52DUOILmvxidj7Q7Bmxg7UHojdCQReJcb+yQwZ0KdqR ja9teNT0/Fc+A9ImG0wykHLBY9gY4H3nZC8TIBXOCvbhouSi/qIBIpZ9v6GLvSD7 +ElG8c3NYNIK34XKQhsaeF1plj1gGtVee30X0hFUW5aJz35+Kq9euenz/FYFUkwb ek8qFTJZz1XwznTlxnrm1Flj2xycKzCX6NQlq3zDRAyVwbEwTGqgAej7q+NQ937F z5T/cdbiA+JQ9tsXBG9XChLJ5mjLtKevPCpTnKj8TNFkJ5c/6an4Vc9CI1FWXUOe 7EfVmBjR/+Isx5mu0OgtE02R1TE8l+DJivnJhfsN -----END CERTIFICATE-----Generated at Sat Jul 26 11:27:36 2025 by rpki-client