$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa File: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM= Subject key identifier: 4D:17:53:F8:ED:5D:2A:51:4D:F8:9E:75:BA:BE:15:AA:CB:6D:6F:E8 Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 330EE08439792F673AD34DC35A592765D28CEA54 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa Signing time: Sun 06 Jul 2025 11:00:02 +0000 ROA not before: Sun 06 Jul 2025 10:55:02 +0000 ROA not after: Sun 05 Jul 2026 11:00:02 +0000 asID: 135636 IP address blocks: 103.98.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 01:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:0e:e0:84:39:79:2f:67:3a:d3:4d:c3:5a:59:27:65:d2:8c:ea:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jul 6 10:55:02 2025 GMT Not After : Jul 5 11:00:02 2026 GMT Subject: CN=4D1753F8ED5D2A514DF89E75BABE15AACB6D6FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ee:a8:14:85:a1:8a:ac:25:65:b0:40:21:83: bb:a8:27:a3:b1:c0:83:bb:f8:85:46:93:f4:09:53: 5b:73:07:22:88:87:b1:94:9c:29:73:9c:b3:5a:11: c9:fe:02:18:ee:9c:a7:ad:ec:ee:3b:e5:63:cb:40: 38:de:3e:55:cd:16:4f:41:c6:73:f1:29:3a:b7:d3: c3:28:eb:2d:d6:f2:f0:79:44:54:6e:0d:22:68:20: 28:a7:1d:44:66:8e:2a:1b:67:ff:f9:ff:52:af:82: 0e:81:cd:ac:d3:0b:0e:9d:be:af:7e:60:08:49:b4: 9e:da:67:77:e3:1a:af:8e:d4:79:ce:20:ef:6a:ad: f2:0b:d7:b1:94:bb:f0:d2:1d:85:db:a2:d9:a7:67: 88:91:4f:7e:a4:45:36:2d:24:cb:fa:7e:a8:48:34: 32:6f:0b:a8:9e:5a:73:9f:6c:a5:97:1f:63:60:8d: 84:bc:ee:87:78:88:5c:05:fc:1b:ae:f8:f4:0e:dc: ab:82:b3:56:66:7d:d9:62:9b:0a:0a:db:d2:64:b9: 4d:89:58:aa:0e:00:ea:64:f7:d6:09:34:c5:9d:5b: 28:35:f0:22:4c:5a:82:9f:fd:70:f4:b0:ee:75:93: b5:8f:9d:b4:53:6c:14:ed:c4:ef:99:9e:d6:09:de: 01:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:17:53:F8:ED:5D:2A:51:4D:F8:9E:75:BA:BE:15:AA:CB:6D:6F:E8 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.121.0/24 Signature Algorithm: sha256WithRSAEncryption 47:6a:62:40:55:96:cd:d4:aa:c9:2a:71:f5:b2:8d:cf:f5:db: a8:aa:92:9c:75:83:66:6f:9d:6d:89:ab:3e:3b:ad:d9:c5:88: 0f:e8:ca:2b:c2:1d:41:6a:e3:30:ec:75:44:ff:d6:7e:4f:de: 4d:40:4a:74:01:f3:9e:01:e8:19:c8:fb:4c:6c:21:8b:8b:b2: 17:66:bc:f2:d4:11:9b:d0:3d:89:29:92:f7:f6:7e:d9:c6:00: 09:a4:70:00:e2:98:fd:af:08:b8:01:07:53:75:27:f8:3a:32: c7:10:5e:8e:d6:a5:5d:f4:54:d7:d0:d2:a2:11:30:51:d4:76: a4:5d:c1:9d:e0:aa:c7:d6:0f:53:0d:79:a4:f9:c5:ac:0b:a3: 77:e9:4d:98:84:c7:4c:93:a7:5e:76:54:10:d5:46:0d:5f:90: 84:a8:bc:50:d2:9a:27:9a:ac:b0:3f:10:b9:f9:92:2f:30:14: 97:95:c4:2d:da:f2:e6:20:39:e8:77:49:67:7c:d9:01:75:ce: 2e:93:2b:02:5f:04:c0:42:7f:28:54:b0:d2:8e:9d:04:21:f0: 9d:9f:1b:05:ca:6d:30:f8:52:5c:1d:3b:ba:7b:19:e0:56:2f: 96:75:59:cd:3f:25:96:46:e8:27:35:39:05:2f:66:83:5b:b9: 35:b9:4b:c5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMw7ghDl5L2c6003DWlknZdKM6lQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA3MDYxMDU1MDJaFw0yNjA3MDUxMTAwMDJaMDMxMTAvBgNV BAMTKDREMTc1M0Y4RUQ1RDJBNTE0REY4OUU3NUJBQkUxNUFBQ0I2RDZGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ7qgUhaGKrCVlsEAhg7uoJ6Ox wIO7+IVGk/QJU1tzByKIh7GUnClznLNaEcn+AhjunKet7O475WPLQDjePlXNFk9B xnPxKTq308Mo6y3W8vB5RFRuDSJoICinHURmjiobZ//5/1Kvgg6BzazTCw6dvq9+ YAhJtJ7aZ3fjGq+O1HnOIO9qrfIL17GUu/DSHYXbotmnZ4iRT36kRTYtJMv6fqhI NDJvC6ieWnOfbKWXH2NgjYS87od4iFwF/Buu+PQO3KuCs1ZmfdlimwoK29JkuU2J WKoOAOpk99YJNMWdWyg18CJMWoKf/XD0sO51k7WPnbRTbBTtxO+ZntYJ3gFTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTRdT+O1dKlFN+J51ur4Vqsttb+gwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYmJhZGIzLTlhYzgtNDZkZi1h YjkxLWJmMzlkZmVlMWJkMC8wLzMxMzAzMzJlMzkzODJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzYzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J5MA0GCSqG SIb3DQEBCwUAA4IBAQBHamJAVZbN1KrJKnH1so3P9duoqpKcdYNmb51tias+O63Z xYgP6Morwh1BauMw7HVE/9Z+T95NQEp0AfOeAegZyPtMbCGLi7IXZrzy1BGb0D2J KZL39n7ZxgAJpHAA4pj9rwi4AQdTdSf4OjLHEF6O1qVd9FTX0NKiETBR1HakXcGd 4KrH1g9TDXmk+cWsC6N36U2YhMdMk6dedlQQ1UYNX5CEqLxQ0ponmqywPxC5+ZIv MBSXlcQt2vLmIDnod0lnfNkBdc4ukysCXwTAQn8oVLDSjp0EIfCdnxsFym0w+FJc HTu6exngVi+WdVnNPyWWRugnNTkFL2aDW7k1uUvF -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:51 2025 by rpki-client