$ rpki-client -vvf repo-rpki.idnic.net/repo/44a2322f-f351-428d-a747-90dfd322b541/0/3130332e3233312e3139362e302f32332d3234203d3e203338373538.roa File: 3130332e3233312e3139362e302f32332d3234203d3e203338373538.roa (raw, json) Hash identifier: 55PcLzem2BCpJqiABflzpPI/pSTP6UsU+JbaeHq127k= Subject key identifier: 42:EF:CC:AF:92:56:FE:58:CC:83:A3:AF:A4:27:99:C5:E1:A2:B9:25 Certificate issuer: /CN=0C58EE25E7BF70128274D39368F0EADEB0C624BC Certificate serial: 475994D0606070DE8E880926C855190FDB5B36FD Authority key identifier: 0C:58:EE:25:E7:BF:70:12:82:74:D3:93:68:F0:EA:DE:B0:C6:24:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0C58EE25E7BF70128274D39368F0EADEB0C624BC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44a2322f-f351-428d-a747-90dfd322b541/0/3130332e3233312e3139362e302f32332d3234203d3e203338373538.roa Signing time: Mon 02 Jun 2025 02:03:57 +0000 ROA not before: Mon 02 Jun 2025 01:58:57 +0000 ROA not after: Mon 01 Jun 2026 02:03:57 +0000 asID: 38758 IP address blocks: 103.231.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44a2322f-f351-428d-a747-90dfd322b541/0/0C58EE25E7BF70128274D39368F0EADEB0C624BC.crl rsync://repo-rpki.idnic.net/repo/44a2322f-f351-428d-a747-90dfd322b541/0/0C58EE25E7BF70128274D39368F0EADEB0C624BC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0C58EE25E7BF70128274D39368F0EADEB0C624BC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:59:94:d0:60:60:70:de:8e:88:09:26:c8:55:19:0f:db:5b:36:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C58EE25E7BF70128274D39368F0EADEB0C624BC Validity Not Before: Jun 2 01:58:57 2025 GMT Not After : Jun 1 02:03:57 2026 GMT Subject: CN=42EFCCAF9256FE58CC83A3AFA42799C5E1A2B925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ec:9f:de:8e:27:44:60:e7:ab:16:93:86:e3: f2:b8:ce:f4:06:2e:4b:01:b3:0b:3e:af:d9:1b:4c: c5:0e:d2:e5:8b:bc:83:d3:2f:0d:92:20:e6:0e:87: ce:46:b1:06:f2:d8:e9:6e:a4:86:a3:6f:2b:70:1e: 06:cd:72:f5:ad:75:d6:f3:e1:ed:35:fc:c1:74:c6: 44:c4:74:be:4a:20:0c:6a:99:30:55:66:25:14:d1: 57:0e:06:80:83:b0:09:4a:f5:58:5b:7e:23:f7:f1: de:e1:ca:9c:02:b6:f6:27:98:19:91:dc:71:df:35: 0e:f4:65:5c:12:2b:c0:ce:ea:16:60:43:c2:f7:f6: 36:ed:da:87:65:a9:a1:de:bd:c0:84:0e:02:b2:1d: 24:13:7a:f4:47:cd:9a:fa:a1:3d:a0:c1:6d:b5:60: ab:c5:bd:a3:ba:59:e3:06:45:2b:95:bf:db:e8:c7: 09:68:d6:ba:45:bb:8f:aa:e2:40:ae:56:2f:e8:b7: fc:64:3d:1d:a6:c5:cd:a2:de:09:4e:c2:eb:e7:a3: 4a:e8:e3:0b:93:a0:ab:a0:a3:da:d4:d3:a5:56:b6: c9:72:82:7e:d3:f4:e8:9c:69:ce:16:82:52:c3:ec: b2:46:34:c7:4e:48:5c:4d:05:d2:2c:52:8e:a7:8f: 9f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EF:CC:AF:92:56:FE:58:CC:83:A3:AF:A4:27:99:C5:E1:A2:B9:25 X509v3 Authority Key Identifier: keyid:0C:58:EE:25:E7:BF:70:12:82:74:D3:93:68:F0:EA:DE:B0:C6:24:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44a2322f-f351-428d-a747-90dfd322b541/0/0C58EE25E7BF70128274D39368F0EADEB0C624BC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0C58EE25E7BF70128274D39368F0EADEB0C624BC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44a2322f-f351-428d-a747-90dfd322b541/0/3130332e3233312e3139362e302f32332d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.196.0/23 Signature Algorithm: sha256WithRSAEncryption a1:68:ae:8c:2f:af:e9:fa:5c:ce:ab:58:83:5f:9e:e7:44:38: 14:d8:0c:2f:64:6d:08:a9:5c:12:83:7c:14:1d:6a:e2:b1:1f: ba:37:5e:91:95:af:28:21:e3:d3:ec:ea:81:a7:39:c1:27:73: ac:5b:2a:6f:1c:a4:1b:01:64:34:5f:93:c3:5b:3e:0a:cb:76: fb:41:df:48:21:29:05:00:60:fd:44:07:e8:03:c6:23:5d:b6: 2b:c3:1b:97:51:51:a7:fa:15:be:84:5a:b8:72:0f:c3:c7:2c: 34:cc:5c:1c:2b:05:d7:9e:5f:63:44:0b:79:6a:1d:48:35:66: 30:74:aa:bc:69:8e:f4:8b:4d:42:ff:80:a2:7f:08:a4:af:65: 58:08:be:d8:6f:c9:f5:e8:78:68:9a:97:33:6e:1b:ec:c0:a2: 05:1a:61:ee:c2:10:e9:ec:55:30:44:8e:cb:48:aa:71:a0:8a: 39:5f:2c:d7:41:f1:40:6b:69:a3:d9:f0:04:05:b0:a7:bb:da: 5b:1e:e9:02:4a:57:69:16:8c:ff:35:6f:60:50:73:93:54:bf: 4c:c8:3a:56:4a:5f:b1:9e:56:68:f7:59:dd:bd:58:5b:f3:ec: 19:41:c3:cd:1b:38:12:18:90:4e:ac:f0:22:93:ab:d8:83:ba: 55:3c:d2:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR1mU0GBgcN6OiAkmyFUZD9tbNv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEM1OEVFMjVFN0JGNzAxMjgyNzREMzkzNjhGMEVBREVC MEM2MjRCQzAeFw0yNTA2MDIwMTU4NTdaFw0yNjA2MDEwMjAzNTdaMDMxMTAvBgNV BAMTKDQyRUZDQ0FGOTI1NkZFNThDQzgzQTNBRkE0Mjc5OUM1RTFBMkI5MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo7J/ejidEYOerFpOG4/K4zvQG LksBsws+r9kbTMUO0uWLvIPTLw2SIOYOh85GsQby2OlupIajbytwHgbNcvWtddbz 4e01/MF0xkTEdL5KIAxqmTBVZiUU0VcOBoCDsAlK9VhbfiP38d7hypwCtvYnmBmR 3HHfNQ70ZVwSK8DO6hZgQ8L39jbt2odlqaHevcCEDgKyHSQTevRHzZr6oT2gwW21 YKvFvaO6WeMGRSuVv9voxwlo1rpFu4+q4kCuVi/ot/xkPR2mxc2i3glOwuvno0ro 4wuToKugo9rU06VWtslygn7T9Oicac4WglLD7LJGNMdOSFxNBdIsUo6nj5/dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQu/Mr5JW/ljMg6OvpCeZxeGiuSUwHwYDVR0j BBgwFoAUDFjuJee/cBKCdNOTaPDq3rDGJLwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGEyMzIyZi1mMzUxLTQyOGQtYTc0Ny05MGRmZDMyMmI1NDEvMC8wQzU4RUUyNUU3 QkY3MDEyODI3NEQzOTM2OEYwRUFERUIwQzYyNEJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEM1OEVFMjVFN0JGNzAxMjgyNzREMzkzNjhGMEVBREVCMEM2 MjRCQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YTIzMjJmLWYzNTEtNDI4ZC1h NzQ3LTkwZGZkMzIyYjU0MS8wLzMxMzAzMzJlMzIzMzMxMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+fEMA0GCSqG SIb3DQEBCwUAA4IBAQChaK6ML6/p+lzOq1iDX57nRDgU2AwvZG0IqVwSg3wUHWri sR+6N16Rla8oIePT7OqBpznBJ3OsWypvHKQbAWQ0X5PDWz4Ky3b7Qd9IISkFAGD9 RAfoA8YjXbYrwxuXUVGn+hW+hFq4cg/Dxyw0zFwcKwXXnl9jRAt5ah1INWYwdKq8 aY70i01C/4Cifwikr2VYCL7Yb8n16HhompczbhvswKIFGmHuwhDp7FUwRI7LSKpx oIo5XyzXQfFAa2mj2fAEBbCnu9pbHukCSldpFoz/NW9gUHOTVL9MyDpWSl+xnlZo 91ndvVhb8+wZQcPNGzgSGJBOrPAik6vYg7pVPNIa -----END CERTIFICATE-----Generated at Sat Jun 7 12:28:15 2025 by rpki-client