$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa File: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU= Subject key identifier: C6:D0:E1:A4:6D:D7:2E:96:CA:B4:26:12:C1:84:EB:52:1A:5C:6C:23 Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 718406FF58273E671A0DD619F0052345CD1F2175 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa Signing time: Sun 06 Jul 2025 11:00:01 +0000 ROA not before: Sun 06 Jul 2025 10:55:01 +0000 ROA not after: Sun 05 Jul 2026 11:00:01 +0000 asID: 135636 IP address blocks: 103.103.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 03:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:84:06:ff:58:27:3e:67:1a:0d:d6:19:f0:05:23:45:cd:1f:21:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jul 6 10:55:01 2025 GMT Not After : Jul 5 11:00:01 2026 GMT Subject: CN=C6D0E1A46DD72E96CAB42612C184EB521A5C6C23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d7:19:0a:b3:2d:d0:b8:a3:04:c2:88:f3:1e: 74:b1:51:00:7a:d2:dd:5c:44:4c:fb:60:4a:1c:70: 88:4b:65:99:55:ae:eb:08:63:72:e0:c5:66:6f:66: 58:84:16:6a:42:60:b5:66:92:53:d9:14:fb:d5:7f: 26:3e:63:7a:47:87:f3:44:9f:68:4a:9f:fe:aa:cd: 08:08:f6:e2:3c:b9:5e:6e:f4:ff:5c:2c:72:96:32: 1e:22:e2:0f:77:c9:d5:e8:c6:66:3d:3c:80:a6:33: da:4a:4b:6e:a1:97:7b:5d:e1:6f:c8:ff:7f:7e:d7: e9:2e:41:61:a7:ca:d3:95:29:e8:66:fd:2a:c6:45: 57:aa:46:a0:47:30:da:8f:84:ac:e2:46:17:15:41: 6a:02:48:7d:35:c7:7c:4a:bc:0b:8a:d1:7b:1c:4d: d9:72:c7:9f:c0:55:af:86:a6:81:2b:e7:b9:a9:7e: 96:a2:63:24:f8:6d:6f:1a:8b:d2:67:12:18:4a:ff: b4:91:41:6a:90:5c:d8:cd:eb:c9:27:8b:ad:43:03: 06:72:4a:cc:21:fd:c9:a8:14:01:99:45:05:5b:81: 2a:ef:08:75:81:f0:2b:e4:e8:7d:20:bb:da:f2:65: e7:ef:5e:96:51:bf:da:92:c8:74:77:81:08:2b:81: 37:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D0:E1:A4:6D:D7:2E:96:CA:B4:26:12:C1:84:EB:52:1A:5C:6C:23 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.193.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:73:c9:95:a3:fa:17:2d:24:c5:db:68:bd:ea:d7:0d:a7:8d: e2:b3:4b:cf:2f:02:6c:51:69:c1:77:e6:ae:d3:1b:9e:51:35: 5e:08:c4:37:56:53:28:ad:5b:b5:b5:59:ab:d4:97:81:31:45: ab:2f:5f:d0:c1:02:48:56:d9:7f:d0:ce:65:e1:e9:ba:ee:e2: 2b:8c:e0:a2:bd:cc:6f:cf:38:9c:34:61:c6:19:27:56:b5:b9: ec:d0:9f:41:73:f6:07:e6:3a:44:98:2e:b6:9c:80:47:47:20: c1:a1:e7:ff:33:1f:24:08:fa:9f:d9:99:71:9a:34:b5:5f:f5: c2:e1:68:89:84:63:ea:85:45:e2:a9:8f:e3:c2:b4:42:f3:db: 84:e9:f8:d4:d9:aa:83:46:f1:ea:1c:43:4b:cd:65:e2:76:49: df:61:38:b8:1c:4b:8b:b4:f2:c5:5d:27:e4:b4:34:6e:58:d1: 7d:c0:0d:ec:f2:79:e0:b5:29:61:e7:db:6d:71:38:c9:c2:7f: 3e:83:69:e9:ac:f1:b3:71:32:aa:c2:21:c7:db:b0:d5:cf:fe: a1:d3:02:1d:5e:f6:11:76:c3:14:99:f5:be:72:71:65:4c:c7: 28:6d:ab:53:04:f0:ff:62:db:f9:c5:fb:ab:9e:fa:dd:e5:aa: 7c:bf:9e:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcYQG/1gnPmcaDdYZ8AUjRc0fIXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA3MDYxMDU1MDFaFw0yNjA3MDUxMTAwMDFaMDMxMTAvBgNV BAMTKEM2RDBFMUE0NkRENzJFOTZDQUI0MjYxMkMxODRFQjUyMUE1QzZDMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX1xkKsy3QuKMEwojzHnSxUQB6 0t1cREz7YEoccIhLZZlVrusIY3LgxWZvZliEFmpCYLVmklPZFPvVfyY+Y3pHh/NE n2hKn/6qzQgI9uI8uV5u9P9cLHKWMh4i4g93ydXoxmY9PICmM9pKS26hl3td4W/I /39+1+kuQWGnytOVKehm/SrGRVeqRqBHMNqPhKziRhcVQWoCSH01x3xKvAuK0Xsc Tdlyx5/AVa+GpoEr57mpfpaiYyT4bW8ai9JnEhhK/7SRQWqQXNjN68kni61DAwZy Sswh/cmoFAGZRQVbgSrvCHWB8Cvk6H0gu9ryZefvXpZRv9qSyHR3gQgrgTdPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxtDhpG3XLpbKtCYSwYTrUhpcbCMwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYmJhZGIzLTlhYzgtNDZkZi1h YjkxLWJmMzlkZmVlMWJkMC8wLzMxMzAzMzJlMzEzMDMzMmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNjMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZ8EwDQYJ KoZIhvcNAQELBQADggEBAEtzyZWj+hctJMXbaL3q1w2njeKzS88vAmxRacF35q7T G55RNV4IxDdWUyitW7W1WavUl4ExRasvX9DBAkhW2X/QzmXh6bru4iuM4KK9zG/P OJw0YcYZJ1a1uezQn0Fz9gfmOkSYLracgEdHIMGh5/8zHyQI+p/ZmXGaNLVf9cLh aImEY+qFReKpj+PCtELz24Tp+NTZqoNG8eocQ0vNZeJ2Sd9hOLgcS4u08sVdJ+S0 NG5Y0X3ADezyeeC1KWHn221xOMnCfz6Daems8bNxMqrCIcfbsNXP/qHTAh1e9hF2 wxSZ9b5ycWVMxyhtq1ME8P9i2/nF+6ue+t3lqny/nmE= -----END CERTIFICATE-----Generated at Tue Jul 22 04:31:26 2025 by rpki-client