$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa File: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0= Subject key identifier: EC:38:75:D4:C2:3B:6D:CE:5D:3F:31:43:A1:19:FD:55:7C:A6:82:69 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 046E94D28BFFEF5AB0C20DBA8D0265CDE2E64572 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa Signing time: Wed 23 Jul 2025 03:02:53 +0000 ROA not before: Wed 23 Jul 2025 02:57:53 +0000 ROA not after: Wed 22 Jul 2026 03:02:53 +0000 asID: 149883 IP address blocks: 103.184.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:6e:94:d2:8b:ff:ef:5a:b0:c2:0d:ba:8d:02:65:cd:e2:e6:45:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Jul 23 02:57:53 2025 GMT Not After : Jul 22 03:02:53 2026 GMT Subject: CN=EC3875D4C23B6DCE5D3F3143A119FD557CA68269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:22:c7:e8:27:78:2f:c5:b8:6b:ba:4b:43: 7d:97:88:86:17:f8:ff:49:5b:17:47:b6:d5:ce:2e: 93:8b:16:e4:78:9b:b5:59:d6:c6:0e:5d:0c:36:7f: b8:77:7c:c4:00:49:8f:1e:3e:ab:b1:17:38:c0:f4: 1f:aa:39:8c:c8:79:3a:cb:4c:de:d9:9d:92:1b:2a: 97:20:e4:9f:00:1e:69:8f:6e:9f:e8:0a:b7:e1:c5: f8:05:e7:3a:bf:48:36:2e:78:cb:1c:cc:de:f2:ee: 19:4f:d9:49:9e:0e:41:75:2e:09:e8:d1:e9:af:69: e6:fa:83:1c:5c:7e:7f:25:6a:12:2f:a8:37:b2:31: 02:b2:67:7b:e7:b3:ac:43:2e:bd:aa:fc:e6:af:f6: 6c:77:e9:e7:76:68:5f:47:3a:e0:85:8a:c2:4c:49: cf:b3:66:ff:a5:c3:d1:c6:9b:d6:74:4a:ba:a5:73: 06:14:f4:e7:07:b1:4b:1c:ad:5e:f6:95:d1:88:f7: 4d:fc:a3:c3:4d:d2:d8:93:b4:61:cc:52:7f:d9:60: 56:62:e0:f3:17:10:e2:26:6f:36:07:1d:28:2a:21: 1f:b1:76:d2:9a:0d:e0:02:e2:f3:af:3c:8e:62:88: 02:f3:2e:f8:35:e0:f6:87:d5:59:a9:39:68:54:0f: 10:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:38:75:D4:C2:3B:6D:CE:5D:3F:31:43:A1:19:FD:55:7C:A6:82:69 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.21.0/24 Signature Algorithm: sha256WithRSAEncryption 55:a0:ba:d7:4a:be:b7:65:3b:57:6d:f3:8e:6c:ee:27:b5:76: 51:d3:2b:d8:67:e4:2e:e5:0f:b4:16:a3:ad:8b:74:e5:ad:5f: de:4f:33:a2:fb:39:2a:c9:a7:bf:46:b1:6a:6f:8b:03:e8:f3: e9:8a:9a:21:28:bc:f2:f8:48:4e:a6:81:ee:ac:e0:70:d8:dc: 49:e9:fb:9d:bf:c3:7d:41:26:28:62:3b:0c:82:8f:6b:86:3b: 31:aa:8a:c6:bd:87:2e:08:c9:01:88:fc:44:d7:de:86:1a:47: 33:d7:92:d8:6b:b5:ac:56:b9:a6:19:b9:b1:4d:5b:85:7c:b0: dd:e0:3c:a3:24:c8:39:47:df:cf:4f:90:63:24:0d:3a:41:1e: c1:53:d1:42:61:49:44:32:60:0b:60:79:e6:16:81:90:6c:61: 7d:0e:7a:8d:63:b8:82:e0:4f:77:96:5e:c6:b7:56:d4:9d:f0: 79:0f:c4:b4:55:36:13:ec:38:e3:cb:36:97:7b:eb:3e:42:dd: 6d:3c:8c:e2:1a:9b:6d:12:4e:3c:3e:2e:99:96:78:28:fb:c1: 47:88:75:0a:16:7e:4c:11:bc:5d:13:e0:e8:23:31:96:22:eb: 55:d8:77:2a:72:47:83:5e:3f:55:13:c4:22:08:b2:26:93:41: f9:ba:74:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBG6U0ov/71qwwg26jQJlzeLmRXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTA3MjMwMjU3NTNaFw0yNjA3MjIwMzAyNTNaMDMxMTAvBgNV BAMTKEVDMzg3NUQ0QzIzQjZEQ0U1RDNGMzE0M0ExMTlGRDU1N0NBNjgyNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFmCLH6Cd4L8W4a7pLQ32XiIYX +P9JWxdHttXOLpOLFuR4m7VZ1sYOXQw2f7h3fMQASY8ePquxFzjA9B+qOYzIeTrL TN7ZnZIbKpcg5J8AHmmPbp/oCrfhxfgF5zq/SDYueMsczN7y7hlP2UmeDkF1Lgno 0emvaeb6gxxcfn8lahIvqDeyMQKyZ3vns6xDLr2q/Oav9mx36ed2aF9HOuCFisJM Sc+zZv+lw9HGm9Z0SrqlcwYU9OcHsUscrV72ldGI9038o8NN0tiTtGHMUn/ZYFZi 4PMXEOImbzYHHSgqIR+xdtKaDeAC4vOvPI5iiALzLvg14PaH1VmpOWhUDxBtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7Dh11MI7bc5dPzFDoRn9VXymgmkwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gVMA0GCSqG SIb3DQEBCwUAA4IBAQBVoLrXSr63ZTtXbfOObO4ntXZR0yvYZ+Qu5Q+0FqOti3Tl rV/eTzOi+zkqyae/RrFqb4sD6PPpipohKLzy+EhOpoHurOBw2NxJ6fudv8N9QSYo YjsMgo9rhjsxqorGvYcuCMkBiPxE196GGkcz15LYa7WsVrmmGbmxTVuFfLDd4Dyj JMg5R9/PT5BjJA06QR7BU9FCYUlEMmALYHnmFoGQbGF9DnqNY7iC4E93ll7Gt1bU nfB5D8S0VTYT7DjjyzaXe+s+Qt1tPIziGpttEk48Pi6Zlngo+8FHiHUKFn5MEbxd E+DoIzGWIutV2HcqckeDXj9VE8QiCLImk0H5unSm -----END CERTIFICATE-----Generated at Sat Jul 26 00:23:05 2025 by rpki-client