$ rpki-client -vvf repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa File: 3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa (raw, json) Hash identifier: 4Y2+me1T7YOW0mP4kEwSrY0/8rA8cOe6GeK5fECPb4g= Subject key identifier: 58:B1:63:A7:4F:51:23:AA:9F:14:E2:D9:BE:21:10:38:8B:74:6A:43 Certificate issuer: /CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Certificate serial: 5A3419C9C5C0346B00C1CE9E7F55EEFA550C3DB1 Authority key identifier: 54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa Signing time: Mon 02 Jun 2025 02:04:03 +0000 ROA not before: Mon 02 Jun 2025 01:59:03 +0000 ROA not after: Mon 01 Jun 2026 02:04:03 +0000 asID: 132643 IP address blocks: 103.123.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:34:19:c9:c5:c0:34:6b:00:c1:ce:9e:7f:55:ee:fa:55:0c:3d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Validity Not Before: Jun 2 01:59:03 2025 GMT Not After : Jun 1 02:04:03 2026 GMT Subject: CN=58B163A74F5123AA9F14E2D9BE2110388B746A43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:40:f9:47:ac:91:50:47:d5:25:ba:89:7c:a5: df:e3:56:b3:d8:63:2f:6d:7b:79:eb:64:19:63:2d: 0d:af:a6:e8:3b:e1:b9:e3:0e:56:7b:95:22:d1:f2: 57:a0:96:aa:39:1a:74:01:8d:2b:25:8e:58:c1:1d: d3:64:ec:d5:87:ef:24:11:7f:58:42:af:6e:ba:63: 71:d8:9b:0a:86:71:f2:b0:46:ac:86:e8:cb:ac:09: e1:0d:bf:ca:e9:2c:a9:a7:4a:27:9d:5f:ab:7a:c5: 8d:15:3d:4a:d8:ea:88:dc:dc:af:92:a4:08:23:c9: 49:4b:0f:d6:c6:8e:6b:0f:d9:d2:f3:fe:5f:a3:55: fe:e2:0e:b9:03:d1:f2:e3:b4:07:69:a4:64:6a:f1: 4c:f1:05:ab:10:80:2d:26:4e:3b:ff:80:be:0d:17: 8e:6c:29:bb:94:75:3c:57:4c:19:53:0e:b3:db:f5: 7a:72:0b:0e:8e:69:48:3d:a4:58:d8:82:0c:1f:b5: cb:15:86:a1:3c:e8:33:4f:d8:68:34:7d:86:c2:2a: 23:66:2f:de:91:21:6b:f5:2c:23:5f:6f:e5:1d:20: 87:d0:93:9c:d7:1d:3b:ba:d8:24:2c:b2:44:dd:0b: a4:b0:7b:97:13:1d:db:f5:2a:87:05:9b:91:e2:99: f4:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B1:63:A7:4F:51:23:AA:9F:14:E2:D9:BE:21:10:38:8B:74:6A:43 X509v3 Authority Key Identifier: keyid:54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e3132332e3135382e302f32342d3234203d3e20313332363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.158.0/24 Signature Algorithm: sha256WithRSAEncryption 75:25:40:20:07:07:b7:2c:2e:8a:91:62:76:0d:5d:01:53:bf: 46:f4:43:2d:29:84:92:12:ae:3a:a1:73:38:6f:fc:64:a2:e7: 7c:34:31:ad:23:3d:3a:fa:36:3d:5b:8d:55:a1:46:dc:76:3d: 5e:6b:cf:98:04:9e:85:31:1b:bb:70:79:c1:f2:87:2c:1d:5b: 98:cb:a4:d5:9a:f1:f2:f5:f6:13:c8:93:32:18:e7:34:df:71: ad:80:ba:e6:eb:e7:f7:40:0d:94:e6:fa:b1:e1:7e:4a:77:5f: f3:13:73:43:33:79:25:5e:d4:a0:a8:8d:fa:8c:d2:46:20:ec: bc:aa:d1:90:d5:2b:aa:cd:e8:22:e5:2c:a7:22:ec:cf:e5:61: 7c:4b:37:1a:55:65:05:56:07:a7:a4:e0:85:8a:ee:1f:18:64: 60:fa:39:dc:b3:51:ca:0c:31:84:30:5c:98:12:85:a6:e7:4f: b0:bb:a3:71:f0:ad:6c:27:79:95:e7:e7:05:15:f6:73:25:78: a4:0f:88:07:24:58:49:4f:6d:8a:09:27:c9:3f:84:aa:99:61: 59:ff:1e:b9:a1:a8:44:af:b9:d4:15:38:db:f4:a9:31:70:a7: 2d:6a:f3:b3:f5:6a:10:54:3f:74:a8:1c:d8:01:4d:b8:91:37: 03:78:eb:d6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWjQZycXANGsAwc6ef1Xu+lUMPbEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRG NjYxOENCRTAeFw0yNTA2MDIwMTU5MDNaFw0yNjA2MDEwMjA0MDNaMDMxMTAvBgNV BAMTKDU4QjE2M0E3NEY1MTIzQUE5RjE0RTJEOUJFMjExMDM4OEI3NDZBNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpQPlHrJFQR9Uluol8pd/jVrPY Yy9te3nrZBljLQ2vpug74bnjDlZ7lSLR8leglqo5GnQBjSsljljBHdNk7NWH7yQR f1hCr266Y3HYmwqGcfKwRqyG6MusCeENv8rpLKmnSiedX6t6xY0VPUrY6ojc3K+S pAgjyUlLD9bGjmsP2dLz/l+jVf7iDrkD0fLjtAdppGRq8UzxBasQgC0mTjv/gL4N F45sKbuUdTxXTBlTDrPb9XpyCw6OaUg9pFjYggwftcsVhqE86DNP2Gg0fYbCKiNm L96RIWv1LCNfb+UdIIfQk5zXHTu62CQsskTdC6Swe5cTHdv1KocFm5HimfTLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWLFjp09RI6qfFOLZviEQOIt0akMwHwYDVR0j BBgwFoAUVP8UG+lgE/5rwIFtmRvPtPZhjL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2FmMjcxZi1jODNkLTQ0MWUtYmVhOS0xOGEyNDRkMGUwMGUvMC81NEZGMTQxQkU5 NjAxM0ZFNkJDMDgxNkQ5OTFCQ0ZCNEY2NjE4Q0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRGNjYx OENCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYWYyNzFmLWM4M2QtNDQxZS1i ZWE5LTE4YTI0NGQwZTAwZS8wLzMxMzAzMzJlMzEzMjMzMmUzMTM1MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne54wDQYJ KoZIhvcNAQELBQADggEBAHUlQCAHB7csLoqRYnYNXQFTv0b0Qy0phJISrjqhczhv /GSi53w0Ma0jPTr6Nj1bjVWhRtx2PV5rz5gEnoUxG7twecHyhywdW5jLpNWa8fL1 9hPIkzIY5zTfca2Auubr5/dADZTm+rHhfkp3X/MTc0MzeSVe1KCojfqM0kYg7Lyq 0ZDVK6rN6CLlLKci7M/lYXxLNxpVZQVWB6ek4IWK7h8YZGD6OdyzUcoMMYQwXJgS habnT7C7o3HwrWwneZXn5wUV9nMleKQPiAckWElPbYoJJ8k/hKqZYVn/HrmhqESv udQVONv0qTFwpy1q87P1ahBUP3SoHNgBTbiRNwN469Y= -----END CERTIFICATE-----Generated at Sat Jun 7 23:01:23 2025 by rpki-client