$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa File: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70= Subject key identifier: 85:07:AF:AE:E1:AD:BC:8A:67:1F:0D:61:43:C5:14:65:D2:B3:43:43 Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 1F6DC39F54AABEE4E3BDE81E0BCA837C0221AC70 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa Signing time: Sun 06 Jul 2025 11:00:01 +0000 ROA not before: Sun 06 Jul 2025 10:55:01 +0000 ROA not after: Sun 05 Jul 2026 11:00:01 +0000 asID: 135636 IP address blocks: 103.103.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 01:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6d:c3:9f:54:aa:be:e4:e3:bd:e8:1e:0b:ca:83:7c:02:21:ac:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jul 6 10:55:01 2025 GMT Not After : Jul 5 11:00:01 2026 GMT Subject: CN=8507AFAEE1ADBC8A671F0D6143C51465D2B34343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:9e:36:89:3f:29:cc:a0:fc:f3:15:a5:b8: c4:39:ca:9f:76:70:bf:b9:16:85:1e:6b:3d:01:d0: a0:ee:58:3a:f3:01:da:96:7f:8c:24:a6:d3:e2:de: d9:d6:5d:b2:9a:c9:58:32:ae:cd:3d:dd:9a:e5:d4: 8b:ea:7f:df:8f:56:a4:c2:08:e6:78:5f:33:83:d8: 89:ba:93:95:fc:e3:88:00:03:a8:6e:d5:b9:4f:c8: f2:e9:6b:a5:70:67:63:2d:19:61:2b:2d:f2:38:33: 2b:d1:ae:4a:73:82:a8:b3:7f:f9:82:6b:2e:a2:67: 05:78:72:46:15:85:75:09:d0:e6:26:50:a6:2f:26: f3:21:7a:9b:a6:0f:bd:38:68:bc:da:cf:b1:36:44: 5b:0a:79:dc:bf:61:d2:bd:25:26:bf:58:1b:70:41: b5:42:0c:e7:8c:a6:8d:95:84:cb:f2:a4:35:44:fb: 1b:2a:fe:18:b4:db:24:56:85:31:e0:d9:33:5d:35: 01:45:73:a3:99:b3:f1:ed:d4:88:87:ef:90:30:85: 07:05:c3:ee:6f:e2:ac:ed:37:ed:87:fd:c9:6d:bb: 42:93:30:e9:ae:61:36:bf:31:68:9d:5d:af:a7:5f: e1:a6:f8:6b:69:4d:7b:01:17:4c:3e:11:aa:46:49: 29:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:07:AF:AE:E1:AD:BC:8A:67:1F:0D:61:43:C5:14:65:D2:B3:43:43 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.175.0/24 Signature Algorithm: sha256WithRSAEncryption 59:b3:c4:8c:27:7d:63:68:33:39:bb:ce:30:26:75:7f:ad:67: 76:12:bd:59:30:21:91:29:82:66:74:63:7c:a1:9d:52:62:a8: fa:06:9f:d1:02:9b:31:99:20:62:48:48:dc:d3:1f:f2:2c:93: c2:35:c3:4b:a4:98:8a:e8:ae:eb:4b:72:b6:9a:4e:31:b3:c2: e3:09:92:75:ae:83:ac:c6:10:4e:a8:37:1d:ea:b5:66:4d:fb: 92:bd:3b:ec:00:64:98:c2:18:e2:1d:89:b4:53:8b:c2:e3:04: 23:cc:9d:c2:92:f3:17:ca:ad:cc:3d:fc:2c:24:20:5d:25:1a: f3:a3:00:1f:6a:87:5a:9f:42:92:9c:3f:c7:54:5c:2d:07:6b: 8d:4b:0e:f7:33:7b:ef:e2:57:80:d2:c6:3b:75:be:5f:6d:9a: f8:6b:b2:7f:43:60:14:13:a3:a5:bf:73:ba:9b:09:6f:82:9c: d4:00:37:38:99:11:24:15:05:01:68:53:dd:d7:ad:08:95:97: ab:7c:ba:be:41:f2:02:0d:58:8c:68:da:06:90:50:72:59:54: b4:09:23:c1:53:bc:09:44:49:e5:c0:d3:86:69:82:fb:f8:20: e2:5f:14:47:22:f7:24:c6:c4:f3:42:0c:1e:09:1a:f9:f6:3b: f1:68:b5:e4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH23Dn1SqvuTjvegeC8qDfAIhrHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA3MDYxMDU1MDFaFw0yNjA3MDUxMTAwMDFaMDMxMTAvBgNV BAMTKDg1MDdBRkFFRTFBREJDOEE2NzFGMEQ2MTQzQzUxNDY1RDJCMzQzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5gp42iT8pzKD88xWluMQ5yp92 cL+5FoUeaz0B0KDuWDrzAdqWf4wkptPi3tnWXbKayVgyrs093Zrl1Ivqf9+PVqTC COZ4XzOD2Im6k5X844gAA6hu1blPyPLpa6VwZ2MtGWErLfI4MyvRrkpzgqizf/mC ay6iZwV4ckYVhXUJ0OYmUKYvJvMhepumD704aLzaz7E2RFsKedy/YdK9JSa/WBtw QbVCDOeMpo2VhMvypDVE+xsq/hi02yRWhTHg2TNdNQFFc6OZs/Ht1IiH75AwhQcF w+5v4qztN+2H/cltu0KTMOmuYTa/MWidXa+nX+Gm+GtpTXsBF0w+EapGSSntAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhQevruGtvIpnHw1hQ8UUZdKzQ0MwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYmJhZGIzLTlhYzgtNDZkZi1h YjkxLWJmMzlkZmVlMWJkMC8wLzMxMzAzMzJlMzEzMDMzMmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNjMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZ68wDQYJ KoZIhvcNAQELBQADggEBAFmzxIwnfWNoMzm7zjAmdX+tZ3YSvVkwIZEpgmZ0Y3yh nVJiqPoGn9ECmzGZIGJISNzTH/Isk8I1w0ukmIrorutLcraaTjGzwuMJknWug6zG EE6oNx3qtWZN+5K9O+wAZJjCGOIdibRTi8LjBCPMncKS8xfKrcw9/CwkIF0lGvOj AB9qh1qfQpKcP8dUXC0Ha41LDvcze+/iV4DSxjt1vl9tmvhrsn9DYBQTo6W/c7qb CW+CnNQANziZESQVBQFoU93XrQiVl6t8ur5B8gINWIxo2gaQUHJZVLQJI8FTvAlE SeXA04Zpgvv4IOJfFEci9yTGxPNCDB4JGvn2O/FoteQ= -----END CERTIFICATE-----Generated at Mon Jul 21 08:03:28 2025 by rpki-client