$ rpki-client -vvf repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139312e302f32342d3234203d3e20313335343732.roa File: 3130332e37312e3139312e302f32342d3234203d3e20313335343732.roa (raw, json) Hash identifier: 1EZSjvRP2SRnr2FbtmEkuDAZWdhz/ERYDxYK2+TR5jA= Subject key identifier: D7:78:95:84:26:16:26:3D:7B:B8:72:F8:70:16:29:55:B3:DB:32:4D Certificate issuer: /CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Certificate serial: 6F9AAAD4F3240F696E7DD425F1E0C3F641B00928 Authority key identifier: 59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139312e302f32342d3234203d3e20313335343732.roa Signing time: Mon 02 Jun 2025 02:04:48 +0000 ROA not before: Mon 02 Jun 2025 01:59:48 +0000 ROA not after: Mon 01 Jun 2026 02:04:48 +0000 asID: 135472 IP address blocks: 103.71.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:9a:aa:d4:f3:24:0f:69:6e:7d:d4:25:f1:e0:c3:f6:41:b0:09:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Validity Not Before: Jun 2 01:59:48 2025 GMT Not After : Jun 1 02:04:48 2026 GMT Subject: CN=D77895842616263D7BB872F870162955B3DB324D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ee:df:66:bf:5d:a7:62:98:89:ca:e7:f0:f1: 1c:e9:f8:56:dd:79:d7:49:3c:70:be:d6:6f:be:5b: 1b:1a:49:33:63:01:5a:b1:8b:1d:7b:8d:0c:58:bf: 12:79:c4:12:68:07:f2:45:8a:bf:be:ec:e2:bc:12: 9a:f8:12:29:ca:41:65:a8:9a:7c:c4:b5:7b:26:b6: 7e:ba:3f:bb:6b:db:c0:94:d4:de:27:ba:fb:d3:ba: 4b:57:10:68:71:fa:d1:53:ba:40:f1:8e:90:6f:4f: 41:b2:76:00:5a:2a:23:c9:63:57:3d:28:5a:d5:40: db:96:2e:98:14:91:01:7d:da:a1:ed:dd:10:c7:52: 4f:e2:ea:45:aa:c0:a8:e5:02:5a:0e:64:6e:a2:07: dc:4e:93:1d:d8:d6:4c:ce:25:d6:bc:a4:e1:8e:4a: 81:e3:26:4b:69:5b:aa:f9:ec:41:40:61:c4:1b:c7: 18:d1:15:ba:a0:19:69:4b:44:e9:59:3e:1a:a5:33: 4b:47:8b:1b:b8:95:fc:a1:73:ad:8f:4f:61:05:d6: 57:63:91:d1:67:a1:3f:35:bf:35:d1:83:8e:60:d5: 0a:68:d5:2d:13:4a:50:ef:7c:98:77:71:7a:d1:1c: 0e:cd:a1:35:3b:99:ba:04:77:6f:35:dc:c1:39:71: 8f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:78:95:84:26:16:26:3D:7B:B8:72:F8:70:16:29:55:B3:DB:32:4D X509v3 Authority Key Identifier: keyid:59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139312e302f32342d3234203d3e20313335343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.191.0/24 Signature Algorithm: sha256WithRSAEncryption b7:e1:15:7a:1d:ab:ef:b3:e0:28:3c:39:16:6c:d8:4f:18:5d: e3:62:f1:d6:da:7c:01:3a:c3:8c:59:1d:c5:34:34:3c:6f:20: d8:cc:c3:e3:f8:2b:d7:16:b8:1d:9d:38:fe:e0:a1:d0:1a:7e: 88:14:2b:2b:d5:55:37:10:e1:98:31:79:33:1c:12:08:ce:5b: 77:f3:c0:1d:e5:30:cc:ec:83:e3:97:d4:fa:a5:d6:76:1a:94: 83:f9:eb:6f:75:c6:13:36:f5:ea:55:a6:96:a5:5b:f4:e8:96: d8:e5:e6:f4:f1:fd:9e:5a:ff:21:23:48:19:38:56:a3:6c:b4: 35:11:a6:c1:92:ef:c4:36:b3:73:96:f2:d0:9a:a2:bc:0a:fb: 31:bc:e3:bb:91:0e:f0:da:9b:ee:6c:47:0a:f7:e2:40:33:17: 72:09:aa:f1:4d:32:93:d1:8b:0c:70:50:ee:08:a9:f0:55:b3: eb:21:55:4c:f9:0b:07:4d:19:60:25:fa:9e:4a:26:50:1f:f5: fa:61:15:19:14:ac:47:32:4f:85:1f:ad:87:d4:5c:57:6b:38: f8:cb:0e:63:3e:95:c8:90:2f:8b:e8:a9:f8:59:9e:68:b5:c5: 6f:b7:25:eb:c9:6f:df:05:18:11:3b:29:4b:57:c4:b5:a3:11: e8:77:ed:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb5qq1PMkD2lufdQl8eDD9kGwCSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5 OUZCMTg1NDAeFw0yNTA2MDIwMTU5NDhaFw0yNjA2MDEwMjA0NDhaMDMxMTAvBgNV BAMTKEQ3Nzg5NTg0MjYxNjI2M0Q3QkI4NzJGODcwMTYyOTU1QjNEQjMyNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU7t9mv12nYpiJyufw8Rzp+Fbd eddJPHC+1m++WxsaSTNjAVqxix17jQxYvxJ5xBJoB/JFir++7OK8Epr4EinKQWWo mnzEtXsmtn66P7tr28CU1N4nuvvTuktXEGhx+tFTukDxjpBvT0GydgBaKiPJY1c9 KFrVQNuWLpgUkQF92qHt3RDHUk/i6kWqwKjlAloOZG6iB9xOkx3Y1kzOJda8pOGO SoHjJktpW6r57EFAYcQbxxjRFbqgGWlLROlZPhqlM0tHixu4lfyhc62PT2EF1ldj kdFnoT81vzXRg45g1Qpo1S0TSlDvfJh3cXrRHA7NoTU7mboEd2813ME5cY+rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU13iVhCYWJj17uHL4cBYpVbPbMk0wHwYDVR0j BBgwFoAUWbGd0dZGeT9fF9icQqwvY5n7GFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjA0ODA2NC04N2RlLTRkZTctYjBiZC0xMmZhMGRlYjhlMzIvMC81OUIxOUREMUQ2 NDY3OTNGNUYxN0Q4OUM0MkFDMkY2Mzk5RkIxODU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5OUZC MTg1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMDQ4MDY0LTg3ZGUtNGRlNy1i MGJkLTEyZmEwZGViOGUzMi8wLzMxMzAzMzJlMzczMTJlMzEzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0e/MA0GCSqG SIb3DQEBCwUAA4IBAQC34RV6Havvs+AoPDkWbNhPGF3jYvHW2nwBOsOMWR3FNDQ8 byDYzMPj+CvXFrgdnTj+4KHQGn6IFCsr1VU3EOGYMXkzHBIIzlt388Ad5TDM7IPj l9T6pdZ2GpSD+etvdcYTNvXqVaaWpVv06JbY5eb08f2eWv8hI0gZOFajbLQ1EabB ku/ENrNzlvLQmqK8CvsxvOO7kQ7w2pvubEcK9+JAMxdyCarxTTKT0YsMcFDuCKnw VbPrIVVM+QsHTRlgJfqeSiZQH/X6YRUZFKxHMk+FH62H1FxXazj4yw5jPpXIkC+L 6Kn4WZ5otcVvtyXryW/fBRgROylLV8S1oxHod+1a -----END CERTIFICATE-----Generated at Sat Jun 7 12:13:06 2025 by rpki-client