$ rpki-client -vvf repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa File: 3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa (raw, json) Hash identifier: PmPPRQTTkJqVTyMLWeDylYP3YNddNNCX4NFRmE7faZ4= Subject key identifier: 4D:21:F3:10:0F:FB:E3:1F:D3:9A:29:DF:9E:0E:2B:83:16:F4:69:9C Certificate issuer: /CN=DE39DBDBFB23D179870083C94A086E2890E8B7AD Certificate serial: 4DE0555983C780D082720F9922AC5AB02D03B191 Authority key identifier: DE:39:DB:DB:FB:23:D1:79:87:00:83:C9:4A:08:6E:28:90:E8:B7:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa Signing time: Mon 05 May 2025 05:00:00 +0000 ROA not before: Mon 05 May 2025 04:55:00 +0000 ROA not after: Mon 04 May 2026 05:00:00 +0000 asID: 150266 IP address blocks: 103.91.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.crl rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e0:55:59:83:c7:80:d0:82:72:0f:99:22:ac:5a:b0:2d:03:b1:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE39DBDBFB23D179870083C94A086E2890E8B7AD Validity Not Before: May 5 04:55:00 2025 GMT Not After : May 4 05:00:00 2026 GMT Subject: CN=4D21F3100FFBE31FD39A29DF9E0E2B8316F4699C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6f:d9:4b:05:84:2f:e3:4a:ae:36:ae:bd:24: 38:38:59:da:b4:79:30:ab:12:60:41:4b:e4:78:a0: d0:77:22:ef:c6:cd:5c:15:62:8a:55:a3:60:7c:74: 6d:45:fa:c3:31:c9:2d:73:1f:08:14:5f:0f:f7:d1: c1:d3:84:47:25:5c:9e:98:c0:47:8a:41:c4:cd:a6: a1:6a:46:4d:3d:a8:89:04:68:2e:0b:86:29:1e:33: a0:8c:db:6a:6c:d0:0f:c4:cc:88:82:04:ac:7b:4e: 21:d4:1a:ea:41:7c:b0:35:24:d8:fb:f4:5c:df:9e: 12:81:b4:9d:23:f5:66:37:4c:a7:8b:39:77:65:9c: 14:f1:dc:97:4e:1d:b9:69:b7:23:2b:ea:50:b6:43: 1a:e0:74:d5:22:43:6e:f9:96:11:de:21:ea:bc:87: 30:12:37:54:f6:04:ae:bd:61:b1:fb:be:9b:d9:6f: 48:3b:96:d9:d4:d1:6c:31:54:26:41:41:89:f8:1a: 37:b1:61:49:83:16:ab:f9:d3:3c:5c:20:ec:f5:8e: fd:d1:5d:1a:cd:37:76:8c:24:92:66:2b:3e:36:eb: f8:c6:c8:69:a6:a4:c5:eb:04:07:8c:b7:20:6d:4a: df:16:5f:9e:04:c6:34:c6:8a:74:0d:34:e8:54:9b: 33:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:21:F3:10:0F:FB:E3:1F:D3:9A:29:DF:9E:0E:2B:83:16:F4:69:9C X509v3 Authority Key Identifier: keyid:DE:39:DB:DB:FB:23:D1:79:87:00:83:C9:4A:08:6E:28:90:E8:B7:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/DE39DBDBFB23D179870083C94A086E2890E8B7AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE39DBDBFB23D179870083C94A086E2890E8B7AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/552beae1-3480-4e92-a3a9-5a54fbbacd2d/0/3130332e39312e3133372e302f32342d3234203d3e20313530323636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.137.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:94:a5:65:2f:26:9d:b0:5b:c9:a7:cb:e4:4d:e8:bd:10:01: e9:40:27:12:ff:4b:45:7a:27:06:e3:18:aa:61:d1:c1:b0:f0: 82:ba:bf:1d:1d:e9:3f:80:49:db:63:d6:da:5b:54:aa:16:17: 82:2b:e8:b5:7f:26:23:93:e9:93:f5:b4:45:15:83:41:48:90: 3b:42:a5:2c:04:a8:c4:f5:b4:04:7a:7a:53:d0:ea:74:0f:32: 24:16:ff:9a:2b:c2:94:b1:ea:0a:77:fa:20:59:50:d5:cb:64: 1f:71:74:6c:e0:ea:95:72:50:28:40:c1:ee:31:c8:22:a1:fc: 3a:84:4d:e7:97:5e:92:79:7e:a5:13:34:2f:2a:b2:60:12:70: 35:5c:1c:3d:6e:af:bb:85:91:82:03:b2:21:ac:0c:00:a5:a9: 11:26:27:00:8b:38:3a:4f:e5:87:0a:a8:db:b6:70:f4:24:b6: 22:27:62:08:57:dd:6b:a2:66:ce:81:70:18:62:2b:80:42:83: e4:b8:20:5f:9c:08:88:15:8e:09:ef:33:c7:a5:35:69:ec:fe: e7:ed:7b:58:2b:6e:04:d5:0e:64:b1:e7:66:c2:54:91:36:98: af:45:37:47:fb:8a:db:62:7f:fc:e4:06:66:8d:88:74:02:17: be:83:23:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTeBVWYPHgNCCcg+ZIqxasC0DsZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUzOURCREJGQjIzRDE3OTg3MDA4M0M5NEEwODZFMjg5 MEU4QjdBRDAeFw0yNTA1MDUwNDU1MDBaFw0yNjA1MDQwNTAwMDBaMDMxMTAvBgNV BAMTKDREMjFGMzEwMEZGQkUzMUZEMzlBMjlERjlFMEUyQjgzMTZGNDY5OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpb9lLBYQv40quNq69JDg4Wdq0 eTCrEmBBS+R4oNB3Iu/GzVwVYopVo2B8dG1F+sMxyS1zHwgUXw/30cHThEclXJ6Y wEeKQcTNpqFqRk09qIkEaC4LhikeM6CM22ps0A/EzIiCBKx7TiHUGupBfLA1JNj7 9FzfnhKBtJ0j9WY3TKeLOXdlnBTx3JdOHblptyMr6lC2QxrgdNUiQ275lhHeIeq8 hzASN1T2BK69YbH7vpvZb0g7ltnU0WwxVCZBQYn4GjexYUmDFqv50zxcIOz1jv3R XRrNN3aMJJJmKz426/jGyGmmpMXrBAeMtyBtSt8WX54ExjTGinQNNOhUmzMBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTSHzEA/74x/Tminfng4rgxb0aZwwHwYDVR0j BBgwFoAU3jnb2/sj0XmHAIPJSghuKJDot60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTJiZWFlMS0zNDgwLTRlOTItYTNhOS01YTU0ZmJiYWNkMmQvMC9ERTM5REJEQkZC MjNEMTc5ODcwMDgzQzk0QTA4NkUyODkwRThCN0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREUzOURCREJGQjIzRDE3OTg3MDA4M0M5NEEwODZFMjg5MEU4 QjdBRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1MmJlYWUxLTM0ODAtNGU5Mi1h M2E5LTVhNTRmYmJhY2QyZC8wLzMxMzAzMzJlMzkzMTJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1uJMA0GCSqG SIb3DQEBCwUAA4IBAQBflKVlLyadsFvJp8vkTei9EAHpQCcS/0tFeicG4xiqYdHB sPCCur8dHek/gEnbY9baW1SqFheCK+i1fyYjk+mT9bRFFYNBSJA7QqUsBKjE9bQE enpT0Op0DzIkFv+aK8KUseoKd/ogWVDVy2QfcXRs4OqVclAoQMHuMcgiofw6hE3n l16SeX6lEzQvKrJgEnA1XBw9bq+7hZGCA7IhrAwApakRJicAizg6T+WHCqjbtnD0 JLYiJ2IIV91rombOgXAYYiuAQoPkuCBfnAiIFY4J7zPHpTVp7P7n7XtYK24E1Q5k sedmwlSRNpivRTdH+4rbYn/85AZmjYh0Ahe+gyOU -----END CERTIFICATE-----Generated at Sat Jun 7 23:23:50 2025 by rpki-client