$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32392e302f32342d3234203d3e203538353532.roa File: 3130332e31312e32392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: 3It7IVIyGpVr6ouxoTRIdi/Jf95KIHXaDpSZx3LrNUA= Subject key identifier: A7:D7:87:9A:91:DE:B3:E1:7C:E3:8F:FD:1E:81:3C:A6:6F:2C:3E:AD Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 3902AD4BF5AEA203C6328E84B9B9FE9E851E9E91 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32392e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 01:03:10 +0000 ROA not before: Mon 02 Jun 2025 00:58:10 +0000 ROA not after: Mon 01 Jun 2026 01:03:10 +0000 asID: 58552 IP address blocks: 103.11.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:02:ad:4b:f5:ae:a2:03:c6:32:8e:84:b9:b9:fe:9e:85:1e:9e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:10 2025 GMT Not After : Jun 1 01:03:10 2026 GMT Subject: CN=A7D7879A91DEB3E17CE38FFD1E813CA66F2C3EAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:aa:38:48:12:89:8e:fd:b2:31:29:64:0d:48: 38:6c:f8:1c:dd:b7:4b:63:ca:6b:e1:db:9a:58:55: 6d:a8:49:17:a1:00:ac:c2:4c:62:e1:f6:11:f4:85: d1:77:31:f0:f1:10:c5:1d:08:68:f3:21:ba:d8:a8: 17:ef:fd:0e:1d:4f:12:91:86:fe:66:11:11:a6:92: 20:09:b3:cd:b0:a6:cd:b7:92:fe:b5:de:cd:20:31: ef:7a:4f:b8:c9:dd:4a:fb:72:6a:cc:38:b9:d0:b9: 6a:49:4a:32:10:8c:0b:9d:06:d0:0a:81:8f:47:c5: 92:aa:54:31:2d:df:15:74:e6:0a:71:6c:b1:69:98: 53:b9:d4:dd:1f:25:16:0f:04:18:66:99:8f:37:5c: 9a:ab:4e:40:08:fb:4e:fa:46:c0:8e:d5:22:e0:2b: 97:03:e9:51:b8:3d:3a:37:87:64:6e:2a:ba:33:72: b1:bf:55:64:b9:df:a0:f2:eb:2f:ee:47:9b:d5:cc: ac:94:1f:5f:45:08:5d:ed:ed:ca:de:d8:dc:f0:f3: ba:90:05:e3:8d:94:ef:2d:20:a5:c3:a9:19:b9:6a: de:36:9d:d6:ac:75:8d:be:fa:ed:65:44:8f:28:50: 50:72:5d:3b:64:f8:ce:af:98:e1:a9:1a:10:b7:6a: 8a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D7:87:9A:91:DE:B3:E1:7C:E3:8F:FD:1E:81:3C:A6:6F:2C:3E:AD X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.29.0/24 Signature Algorithm: sha256WithRSAEncryption 61:ec:24:9a:f1:e5:63:da:f3:23:71:2e:10:98:bb:33:12:81: 85:d3:da:a9:78:9a:f1:53:ac:86:c7:e6:c9:13:b4:76:a7:e9: 8d:6e:78:47:d3:39:51:93:6b:8b:0f:1a:33:93:f3:d6:b4:bd: ff:fa:d2:52:4b:03:cd:c0:ae:4a:03:51:36:15:db:db:3c:d8: 16:a5:f8:bf:e6:e8:91:7b:7b:ca:ac:ff:7b:80:94:84:85:a4: 61:f6:40:9f:5d:83:cf:bc:10:2b:7a:14:bd:d7:1f:ae:70:7d: 6e:7e:a0:75:39:e0:69:a4:5f:33:ae:30:c0:d6:80:ac:b0:ca: b9:c7:98:4d:3b:49:29:3f:29:69:a7:40:49:c1:12:6a:29:98: 37:80:aa:3b:5d:2e:86:47:4e:94:c9:e1:96:78:d6:c5:14:6d: 23:34:bd:51:d5:58:75:80:f2:50:10:5c:ff:0d:73:22:32:8d: 4b:58:ff:17:c2:ee:d7:7c:e6:ef:dc:2e:39:08:50:6c:64:a4: 84:cb:b3:b8:be:c4:54:8a:b6:cd:e2:25:1b:bb:30:fd:42:9c: 53:e5:81:9a:76:a8:7f:59:51:8c:db:48:60:07:20:c7:7e:f4: 70:9b:8c:6a:77:b4:ee:7f:36:e4:51:6f:00:34:e0:71:67:c9: 6b:ea:0e:bb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOQKtS/WuogPGMo6Eubn+noUenpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MTBaFw0yNjA2MDEwMTAzMTBaMDMxMTAvBgNV BAMTKEE3RDc4NzlBOTFERUIzRTE3Q0UzOEZGRDFFODEzQ0E2NkYyQzNFQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoqjhIEomO/bIxKWQNSDhs+Bzd t0tjymvh25pYVW2oSRehAKzCTGLh9hH0hdF3MfDxEMUdCGjzIbrYqBfv/Q4dTxKR hv5mERGmkiAJs82wps23kv613s0gMe96T7jJ3Ur7cmrMOLnQuWpJSjIQjAudBtAK gY9HxZKqVDEt3xV05gpxbLFpmFO51N0fJRYPBBhmmY83XJqrTkAI+076RsCO1SLg K5cD6VG4PTo3h2RuKrozcrG/VWS536Dy6y/uR5vVzKyUH19FCF3t7cre2Nzw87qQ BeONlO8tIKXDqRm5at42ndasdY2++u1lRI8oUFByXTtk+M6vmOGpGhC3aorzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUp9eHmpHes+F844/9HoE8pm8sPq0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMTJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnCx0wDQYJKoZIhvcN AQELBQADggEBAGHsJJrx5WPa8yNxLhCYuzMSgYXT2ql4mvFTrIbH5skTtHan6Y1u eEfTOVGTa4sPGjOT89a0vf/60lJLA83ArkoDUTYV29s82Bal+L/m6JF7e8qs/3uA lISFpGH2QJ9dg8+8ECt6FL3XH65wfW5+oHU54GmkXzOuMMDWgKywyrnHmE07SSk/ KWmnQEnBEmopmDeAqjtdLoZHTpTJ4ZZ41sUUbSM0vVHVWHWA8lAQXP8NcyIyjUtY /xfC7td85u/cLjkIUGxkpITLs7i+xFSKts3iJRu7MP1CnFPlgZp2qH9ZUYzbSGAH IMd+9HCbjGp3tO5/NuRRbwA04HFnyWvqDrs= -----END CERTIFICATE-----Generated at Sat Jun 7 15:29:43 2025 by rpki-client