$ rpki-client -vvf repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa File: 3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa (raw, json) Hash identifier: AdQ+JO/REhdDwDAu63+KE7Cs+bTRN78/P47D5a5DoZI= Subject key identifier: AD:35:B3:59:FA:5C:B6:8F:DB:3A:2B:76:19:DF:C3:85:7C:B5:7F:F6 Certificate issuer: /CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Certificate serial: 58D1593625F1E46006BA1E34685219744F2638C9 Authority key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa Signing time: Wed 14 May 2025 07:01:10 +0000 ROA not before: Wed 14 May 2025 06:56:10 +0000 ROA not after: Wed 13 May 2026 07:01:10 +0000 asID: 141909 IP address blocks: 103.164.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d1:59:36:25:f1:e4:60:06:ba:1e:34:68:52:19:74:4f:26:38:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Validity Not Before: May 14 06:56:10 2025 GMT Not After : May 13 07:01:10 2026 GMT Subject: CN=AD35B359FA5CB68FDB3A2B7619DFC3857CB57FF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ca:6e:fb:c4:2f:ce:21:6f:d2:9b:02:bd:57: 02:47:66:43:75:06:a9:26:8d:9b:23:85:9b:be:16: 78:62:8a:cb:7e:e4:b4:6c:18:d6:d7:cb:3d:54:77: d7:bb:08:95:7e:55:d0:c4:06:d4:7c:2a:83:aa:e8: 75:f0:59:bf:7e:8b:b8:1b:7c:de:47:71:04:75:b4: ea:75:48:f3:21:ce:ea:10:a1:22:d5:d6:cf:b9:e5: d4:f7:3f:75:63:59:1a:1e:17:06:5e:ab:a6:98:54: 56:73:4d:be:cb:ec:4f:ab:fe:14:92:e8:4c:13:6c: c6:2a:54:2d:45:45:bd:a4:c7:2f:b6:b8:6c:1c:b9: b3:ff:d4:b1:e5:aa:32:98:d0:75:42:d2:5f:b3:5a: d3:22:26:cd:2d:7d:86:dc:14:96:14:f7:02:10:ab: 14:5a:26:f9:32:9f:6d:26:61:80:d7:8e:56:ff:7c: 19:f0:f9:8a:b3:14:92:56:f9:e1:5f:40:f0:04:59: 01:90:37:f0:f0:c0:3a:ce:81:c4:e0:ac:c7:b2:26: b3:89:11:7c:9d:e5:6c:6d:20:9a:a7:cd:83:66:d8: fc:e6:ae:3f:cf:58:6a:67:04:0c:92:75:9a:eb:5f: 34:4c:30:ea:8c:92:7a:ab:62:60:69:1c:70:e6:7b: 18:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:35:B3:59:FA:5C:B6:8F:DB:3A:2B:76:19:DF:C3:85:7C:B5:7F:F6 X509v3 Authority Key Identifier: keyid:5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.151.0/24 Signature Algorithm: sha256WithRSAEncryption c5:f3:69:83:da:55:83:c2:35:42:e7:39:10:74:9c:c3:a1:e6: 28:0e:43:e0:82:01:97:57:0d:a8:6f:13:52:02:ad:e5:20:7e: d3:e6:c0:a7:a0:4a:02:45:07:7b:e1:17:a6:b4:85:1d:b6:7b: 6c:f7:84:97:92:83:77:3a:55:2e:81:4e:0f:0c:28:c6:20:67: 6b:c2:1a:e9:67:01:c7:b7:b5:d4:15:cf:6a:64:ff:ab:cc:7b: c9:cc:7e:00:6e:6d:dc:87:fd:5f:4b:d0:05:2c:72:9f:5a:92: de:b4:bc:ad:48:ab:b4:85:62:53:3e:c5:f2:6a:15:0e:49:23: cd:c2:4b:8a:54:10:93:f6:b6:0a:0b:73:f5:37:c3:f8:69:f5: 55:b2:80:08:29:19:09:2f:2f:47:99:3b:af:b4:92:c0:18:24: 90:d2:d6:6a:83:8d:e1:9c:21:4b:e5:b3:66:45:92:34:71:22: 53:0c:0d:27:f5:b8:e6:f3:3d:e1:74:e1:b8:a2:6b:eb:4a:cb: d9:78:67:b1:10:7c:d9:83:98:a4:9f:24:47:6f:c4:ed:a5:53: f2:bc:65:00:71:9b:db:8f:1c:4e:11:50:68:53:f0:31:85:38: e7:80:55:3d:9c:f4:52:bb:b8:e8:d8:07:bd:f4:41:06:0f:e8: ad:41:3d:9b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWNFZNiXx5GAGuh40aFIZdE8mOMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0My RTZCM0Q4RjAeFw0yNTA1MTQwNjU2MTBaFw0yNjA1MTMwNzAxMTBaMDMxMTAvBgNV BAMTKEFEMzVCMzU5RkE1Q0I2OEZEQjNBMkI3NjE5REZDMzg1N0NCNTdGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSym77xC/OIW/SmwK9VwJHZkN1 BqkmjZsjhZu+Fnhiist+5LRsGNbXyz1Ud9e7CJV+VdDEBtR8KoOq6HXwWb9+i7gb fN5HcQR1tOp1SPMhzuoQoSLV1s+55dT3P3VjWRoeFwZeq6aYVFZzTb7L7E+r/hSS 6EwTbMYqVC1FRb2kxy+2uGwcubP/1LHlqjKY0HVC0l+zWtMiJs0tfYbcFJYU9wIQ qxRaJvkyn20mYYDXjlb/fBnw+YqzFJJW+eFfQPAEWQGQN/DwwDrOgcTgrMeyJrOJ EXyd5WxtIJqnzYNm2Pzmrj/PWGpnBAySdZrrXzRMMOqMknqrYmBpHHDmexjXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrTWzWfpcto/bOit2Gd/DhXy1f/YwHwYDVR0j BBgwFoAUXB3H6HRXqR81kVrx3j+7zC5rPY8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMC81QzFEQzdFODc0 NTdBOTFGMzU5MTVBRjFERTNGQkJDQzJFNkIzRDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0MyRTZC M0Q4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJiLWM0OGUtNGJhMC04 YWQ3LTU4ZTEyNjNjNmRjNy8wLzMxMzAzMzJlMzEzNjM0MmUzMTM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpJcwDQYJ KoZIhvcNAQELBQADggEBAMXzaYPaVYPCNULnORB0nMOh5igOQ+CCAZdXDahvE1IC reUgftPmwKegSgJFB3vhF6a0hR22e2z3hJeSg3c6VS6BTg8MKMYgZ2vCGulnAce3 tdQVz2pk/6vMe8nMfgBubdyH/V9L0AUscp9akt60vK1Iq7SFYlM+xfJqFQ5JI83C S4pUEJP2tgoLc/U3w/hp9VWygAgpGQkvL0eZO6+0ksAYJJDS1mqDjeGcIUvls2ZF kjRxIlMMDSf1uObzPeF04biia+tKy9l4Z7EQfNmDmKSfJEdvxO2lU/K8ZQBxm9uP HE4RUGhT8DGFOOeAVT2c9FK7uOjYB730QQYP6K1BPZs= -----END CERTIFICATE-----Generated at Sat Jun 7 21:06:13 2025 by rpki-client