$ rpki-client -vvf repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa File: 3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa (raw, json) Hash identifier: G0VeuaYXS/KgF8/ez14lbGq6IneUYgvcmaO4bAZiGEU= Subject key identifier: 87:FF:C5:F2:80:BB:34:DB:30:93:36:8F:E4:FC:03:8B:57:CD:D5:D2 Certificate issuer: /CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Certificate serial: 05A1F298A5B2E428636F02A89900A093C746337D Authority key identifier: 59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa Signing time: Mon 02 Jun 2025 02:04:49 +0000 ROA not before: Mon 02 Jun 2025 01:59:49 +0000 ROA not after: Mon 01 Jun 2026 02:04:49 +0000 asID: 135472 IP address blocks: 103.71.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a1:f2:98:a5:b2:e4:28:63:6f:02:a8:99:00:a0:93:c7:46:33:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Validity Not Before: Jun 2 01:59:49 2025 GMT Not After : Jun 1 02:04:49 2026 GMT Subject: CN=87FFC5F280BB34DB3093368FE4FC038B57CDD5D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d1:44:6b:07:11:7d:b0:1c:58:9a:c0:ff:19: f5:ff:ec:b3:24:27:77:5e:a0:87:33:76:b5:32:ea: 14:35:d3:c5:c9:8c:15:70:ee:c1:53:a2:60:d0:2f: bb:b6:f0:3f:ca:05:61:bf:2f:b6:b8:5d:a3:54:e0: 22:cb:82:a9:89:dd:d6:11:99:88:2e:e8:43:be:77: a9:91:a3:27:62:8a:45:9c:84:d1:ab:ed:57:c4:99: 7b:02:9c:a4:66:10:0e:68:31:44:5b:09:7b:ac:fe: 45:0c:e8:a5:23:0c:42:ea:ac:07:ec:43:e2:cf:89: 96:f8:6b:e5:eb:b8:e9:52:25:cd:43:c2:10:53:4a: d5:f2:82:f3:f5:59:46:ab:67:b8:3f:d5:a5:b8:a3: c4:62:5d:c0:3f:c5:37:e6:21:bf:34:5c:fb:ae:7a: 1e:ea:36:ff:f3:30:d4:61:43:53:c5:5c:eb:13:5f: e7:e4:be:33:6f:04:ad:3d:d9:59:7d:e6:4c:b0:28: bb:54:47:d7:9c:4b:a9:d0:e2:fa:6a:ab:9d:d6:56: 92:a5:c2:28:30:89:50:30:49:50:42:91:b6:94:ed: 35:67:f6:01:fc:a0:73:bd:63:ec:48:25:21:e1:28: 88:5a:53:35:49:ce:32:d8:9c:04:e4:57:12:ca:a6: 2a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:FF:C5:F2:80:BB:34:DB:30:93:36:8F:E4:FC:03:8B:57:CD:D5:D2 X509v3 Authority Key Identifier: keyid:59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.190.0/24 Signature Algorithm: sha256WithRSAEncryption a7:38:78:ee:59:f8:7a:fb:29:47:a9:37:08:8c:1d:56:26:ad: 57:9e:c3:2c:1c:27:33:48:2f:31:52:ea:b4:ba:73:4e:28:31: f7:07:75:6f:21:84:c9:97:56:c2:32:37:71:1f:c3:5d:28:c0: 49:e9:6b:38:6a:f2:9c:9d:21:d7:c4:09:bc:48:a5:71:66:ea: 84:36:57:42:53:0e:2f:f0:08:82:82:1b:db:60:b5:2f:85:75: 61:25:ef:9d:fe:3c:f1:6c:7b:a5:88:5b:a8:bc:c3:08:9d:f2: 43:66:d9:9a:51:1f:38:9c:49:93:7f:26:c8:87:4a:a9:df:64: 41:7b:ba:74:de:a7:d2:e0:be:82:cb:52:8f:72:5a:15:2e:7f: a7:ba:74:25:18:d6:66:85:1b:b2:8e:98:78:4f:8f:49:eb:95: d2:7b:a1:0c:d0:eb:ad:89:66:7d:ee:d2:42:fa:3a:d5:c8:f6: 10:8a:80:03:17:b7:d6:8a:6f:ea:5d:7c:b2:48:bc:27:a9:c0: 64:1d:11:2e:cd:ab:1a:d7:55:06:10:5f:b8:4e:a4:9e:34:67: 21:63:b5:87:ff:12:cd:7b:ec:c4:fb:73:76:03:bc:b3:10:ce: 4c:db:ef:27:e4:9f:36:47:2a:10:5c:92:53:a1:73:8c:fd:ed: 27:83:ac:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBaHymKWy5ChjbwKomQCgk8dGM30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5 OUZCMTg1NDAeFw0yNTA2MDIwMTU5NDlaFw0yNjA2MDEwMjA0NDlaMDMxMTAvBgNV BAMTKDg3RkZDNUYyODBCQjM0REIzMDkzMzY4RkU0RkMwMzhCNTdDREQ1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA0URrBxF9sBxYmsD/GfX/7LMk J3deoIczdrUy6hQ108XJjBVw7sFTomDQL7u28D/KBWG/L7a4XaNU4CLLgqmJ3dYR mYgu6EO+d6mRoydiikWchNGr7VfEmXsCnKRmEA5oMURbCXus/kUM6KUjDELqrAfs Q+LPiZb4a+XruOlSJc1DwhBTStXygvP1WUarZ7g/1aW4o8RiXcA/xTfmIb80XPuu eh7qNv/zMNRhQ1PFXOsTX+fkvjNvBK092Vl95kywKLtUR9ecS6nQ4vpqq53WVpKl wigwiVAwSVBCkbaU7TVn9gH8oHO9Y+xIJSHhKIhaUzVJzjLYnATkVxLKpiprAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUh//F8oC7NNswkzaP5PwDi1fN1dIwHwYDVR0j BBgwFoAUWbGd0dZGeT9fF9icQqwvY5n7GFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjA0ODA2NC04N2RlLTRkZTctYjBiZC0xMmZhMGRlYjhlMzIvMC81OUIxOUREMUQ2 NDY3OTNGNUYxN0Q4OUM0MkFDMkY2Mzk5RkIxODU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5OUZC MTg1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMDQ4MDY0LTg3ZGUtNGRlNy1i MGJkLTEyZmEwZGViOGUzMi8wLzMxMzAzMzJlMzczMTJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0e+MA0GCSqG SIb3DQEBCwUAA4IBAQCnOHjuWfh6+ylHqTcIjB1WJq1XnsMsHCczSC8xUuq0unNO KDH3B3VvIYTJl1bCMjdxH8NdKMBJ6Ws4avKcnSHXxAm8SKVxZuqENldCUw4v8AiC ghvbYLUvhXVhJe+d/jzxbHuliFuovMMInfJDZtmaUR84nEmTfybIh0qp32RBe7p0 3qfS4L6Cy1KPcloVLn+nunQlGNZmhRuyjph4T49J65XSe6EM0OutiWZ97tJC+jrV yPYQioADF7fWim/qXXyySLwnqcBkHREuzasa11UGEF+4TqSeNGchY7WH/xLNe+zE +3N2A7yzEM5M2+8n5J82RyoQXJJToXOM/e0ng6wG -----END CERTIFICATE-----Generated at Sat Jun 7 05:02:30 2025 by rpki-client