$ rpki-client -vvf repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa File: 3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa (raw, json) Hash identifier: zYQUx+ql30PPLkUcmDWdEwPKMJFZU5b5VUJfAZqzXL8= Subject key identifier: 25:87:57:58:12:9C:F6:8B:52:68:C4:27:24:EF:1F:B9:42:4B:3B:37 Certificate issuer: /CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Certificate serial: 385F51D722FC1DCEBA589AE0915AE694F0B76760 Authority key identifier: 59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa Signing time: Mon 02 Jun 2025 02:04:48 +0000 ROA not before: Mon 02 Jun 2025 01:59:48 +0000 ROA not after: Mon 01 Jun 2026 02:04:48 +0000 asID: 135472 IP address blocks: 103.71.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5f:51:d7:22:fc:1d:ce:ba:58:9a:e0:91:5a:e6:94:f0:b7:67:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Validity Not Before: Jun 2 01:59:48 2025 GMT Not After : Jun 1 02:04:48 2026 GMT Subject: CN=25875758129CF68B5268C42724EF1FB9424B3B37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:ae:3b:2a:40:ee:6d:12:6f:c1:3c:c4:bf: 17:6f:13:33:27:6e:84:05:fc:76:47:5b:14:3f:26: a5:df:32:15:17:2b:3c:68:2e:cf:aa:60:1a:6e:84: 7b:7c:42:ce:c9:37:0a:2f:f5:60:15:96:54:1c:a3: e2:3d:69:11:14:69:41:6f:19:c1:6a:5d:91:83:60: 26:dc:97:f9:6c:0f:e9:9d:1e:d6:29:45:e3:f0:97: ae:57:35:e2:91:68:da:0c:d7:94:d5:86:34:62:e5: 90:d3:52:9c:35:2f:34:1e:c6:d1:97:55:01:63:09: fc:86:f4:ca:30:e4:f7:5e:70:10:b3:af:a9:e4:37: a6:68:0a:5f:eb:38:a9:ab:8e:39:08:ff:d4:6a:4c: 0b:50:f6:d3:99:bf:25:3d:bc:b7:2c:11:5a:d8:3f: 11:27:35:75:f5:ba:e1:91:a9:95:12:1a:a0:ad:78: dd:e0:77:2f:83:48:32:61:95:ac:50:a6:fd:a5:4a: 6c:ae:68:83:dc:be:31:8c:61:54:98:d9:9f:7e:c6: 1e:7e:1b:42:f8:85:99:df:49:93:31:24:4c:a5:b5: 8d:17:d0:80:cd:33:b4:c0:fb:99:a3:61:07:5f:e4: 67:c7:ce:19:ac:20:d5:c5:96:33:3e:3c:a7:3e:df: 9a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:87:57:58:12:9C:F6:8B:52:68:C4:27:24:EF:1F:B9:42:4B:3B:37 X509v3 Authority Key Identifier: keyid:59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.190.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:22:a7:95:e2:42:6f:b1:b5:81:f7:72:3a:dc:00:eb:51:cf: 9e:cb:c3:12:12:6f:77:6d:6f:2a:65:03:7c:7c:ed:11:6e:d0: 75:9c:42:33:25:ff:1f:44:c7:23:0b:cc:cc:bb:6e:1d:59:14: bd:72:98:1e:3c:9a:c9:ba:88:df:59:fb:bb:f8:2a:3e:8f:02: e0:39:0b:c8:7b:df:cc:ba:75:32:f8:54:08:82:60:f8:fa:5a: 91:18:1f:c3:6a:8f:b5:89:3c:8e:ce:9f:28:2b:6e:42:eb:6a: 6c:c2:f8:b9:94:05:97:51:31:f8:0c:16:c5:d0:52:99:98:42: 25:c3:07:c8:df:0e:73:49:d8:a0:cc:21:d2:09:2c:ef:5b:8e: 9c:98:19:01:56:05:65:c7:71:8e:95:9d:4c:41:82:15:a0:2f: aa:e1:e6:b4:c1:c7:85:49:56:0d:d4:42:7f:5c:52:e7:ef:4a: b1:b7:98:ec:69:82:b2:e2:3f:85:ba:f6:45:1e:56:4a:0f:96: de:d3:6d:ef:38:d3:b8:cd:e3:46:02:f0:12:ff:c7:71:53:65: 41:c5:16:74:a3:7e:e8:e0:ee:a1:9b:44:f1:95:01:a3:8d:2a: 17:b8:2b:40:90:c2:26:fe:da:ec:36:06:ef:5d:9a:87:c4:a5: 31:c3:0a:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOF9R1yL8Hc66WJrgkVrmlPC3Z2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5 OUZCMTg1NDAeFw0yNTA2MDIwMTU5NDhaFw0yNjA2MDEwMjA0NDhaMDMxMTAvBgNV BAMTKDI1ODc1NzU4MTI5Q0Y2OEI1MjY4QzQyNzI0RUYxRkI5NDI0QjNCMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDaa47KkDubRJvwTzEvxdvEzMn boQF/HZHWxQ/JqXfMhUXKzxoLs+qYBpuhHt8Qs7JNwov9WAVllQco+I9aREUaUFv GcFqXZGDYCbcl/lsD+mdHtYpRePwl65XNeKRaNoM15TVhjRi5ZDTUpw1LzQextGX VQFjCfyG9Mow5PdecBCzr6nkN6ZoCl/rOKmrjjkI/9RqTAtQ9tOZvyU9vLcsEVrY PxEnNXX1uuGRqZUSGqCteN3gdy+DSDJhlaxQpv2lSmyuaIPcvjGMYVSY2Z9+xh5+ G0L4hZnfSZMxJEyltY0X0IDNM7TA+5mjYQdf5GfHzhmsINXFljM+PKc+35ptAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJYdXWBKc9otSaMQnJO8fuUJLOzcwHwYDVR0j BBgwFoAUWbGd0dZGeT9fF9icQqwvY5n7GFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjA0ODA2NC04N2RlLTRkZTctYjBiZC0xMmZhMGRlYjhlMzIvMC81OUIxOUREMUQ2 NDY3OTNGNUYxN0Q4OUM0MkFDMkY2Mzk5RkIxODU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5OUZC MTg1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMDQ4MDY0LTg3ZGUtNGRlNy1i MGJkLTEyZmEwZGViOGUzMi8wLzMxMzAzMzJlMzczMTJlMzEzOTMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM1MzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0e+MA0GCSqG SIb3DQEBCwUAA4IBAQCdIqeV4kJvsbWB93I63ADrUc+ey8MSEm93bW8qZQN8fO0R btB1nEIzJf8fRMcjC8zMu24dWRS9cpgePJrJuojfWfu7+Co+jwLgOQvIe9/MunUy +FQIgmD4+lqRGB/Dao+1iTyOzp8oK25C62pswvi5lAWXUTH4DBbF0FKZmEIlwwfI 3w5zSdigzCHSCSzvW46cmBkBVgVlx3GOlZ1MQYIVoC+q4ea0wceFSVYN1EJ/XFLn 70qxt5jsaYKy4j+FuvZFHlZKD5be023vONO4zeNGAvAS/8dxU2VBxRZ0o37o4O6h m0TxlQGjjSoXuCtAkMIm/trsNgbvXZqHxKUxwwqP -----END CERTIFICATE-----Generated at Sat Oct 25 09:33:56 2025 by rpki-client