$ rpki-client -vvf repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa File: 3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa (raw, json) Hash identifier: HoilO9KAsNDvqhA1QW+xRWbMVFCIXL/5ZP3Wb1KxcsY= Subject key identifier: 58:BC:BB:EC:DF:53:81:A3:67:D4:B5:E2:B4:09:A3:7D:12:49:06:0D Certificate issuer: /CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Certificate serial: 2669F9ADE20C3D54408EB79CE0D1E3308ECBB1BF Authority key identifier: 54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa Signing time: Mon 02 Jun 2025 02:04:03 +0000 ROA not before: Mon 02 Jun 2025 01:59:03 +0000 ROA not after: Mon 01 Jun 2026 02:04:03 +0000 asID: 132643 IP address blocks: 103.21.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:69:f9:ad:e2:0c:3d:54:40:8e:b7:9c:e0:d1:e3:30:8e:cb:b1:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Validity Not Before: Jun 2 01:59:03 2025 GMT Not After : Jun 1 02:04:03 2026 GMT Subject: CN=58BCBBECDF5381A367D4B5E2B409A37D1249060D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ac:10:8a:91:2d:4d:58:af:6e:e9:72:25:59: 8c:32:7e:04:9c:1a:e4:ca:af:f3:b1:76:8d:79:c3: c2:2d:ff:1a:01:94:f0:7c:3c:35:fd:27:ab:4a:66: ff:37:78:06:da:74:e8:03:d7:9e:6e:0e:b4:bb:e0: 8f:48:30:d3:80:d8:f3:54:e7:7f:ae:e8:57:4c:cc: f1:15:80:af:0a:42:f9:45:91:e8:0d:5f:c8:cc:8e: c1:d9:34:81:e1:ec:ee:17:7b:55:d1:cb:ef:ae:5e: 55:41:e2:65:78:7d:30:a1:7f:1e:04:eb:00:7b:6c: 92:e2:c8:e1:30:43:60:9d:fe:69:2e:d7:42:58:aa: 7e:74:62:b6:ea:e9:ea:3a:8e:bb:70:d0:22:ed:9a: bb:ae:4f:82:aa:3b:b6:b5:30:96:f5:a7:2a:48:b5: 0f:3b:7d:fc:01:ad:7c:b6:d6:00:94:19:a6:5a:85: 57:51:cc:51:60:46:56:02:23:51:15:7f:be:37:99: ae:5b:fb:23:28:c8:c3:b2:78:39:de:1d:01:06:f3: b7:8d:6b:b3:f1:29:aa:dd:22:2a:78:ef:8d:de:f2: 20:7d:a8:43:38:c2:38:37:9f:9d:52:ca:56:dd:5b: 8e:36:54:5f:58:2b:51:b5:26:52:ef:e4:57:8f:c6: 81:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BC:BB:EC:DF:53:81:A3:67:D4:B5:E2:B4:09:A3:7D:12:49:06:0D X509v3 Authority Key Identifier: keyid:54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.228.0/24 Signature Algorithm: sha256WithRSAEncryption 94:0e:45:ab:15:b4:9a:00:b3:1d:2f:c7:41:a3:92:89:b8:28: 29:16:79:77:fc:5e:f7:2d:87:e2:1d:79:35:ec:62:6b:62:08: a0:8c:1c:ed:13:87:13:09:ad:45:d7:86:9c:4e:7a:d6:ae:91: 6b:38:d8:26:ef:ed:60:dc:fe:ed:8a:ea:b9:81:6c:92:d2:fa: be:36:cd:be:df:ff:77:0f:9b:27:0c:0f:92:f1:ac:76:60:17: d1:63:72:cd:d6:62:85:9b:d0:60:ce:d4:61:cf:0b:ef:0c:ac: 6b:03:54:72:32:5d:68:5d:fc:6e:f5:2f:9e:bc:ec:44:9f:4e: 99:02:11:59:81:47:1b:81:b1:9f:43:71:06:ff:1b:e1:1f:3b: d9:11:4e:ba:26:73:7b:6e:fe:58:27:fb:45:0b:83:e8:2d:66: 3c:31:b5:d6:3e:1c:5b:b7:ff:bf:f0:d1:c5:94:17:64:4b:15: 6a:88:94:03:6f:e4:8e:19:a9:ee:fb:8f:d4:e9:80:e1:0f:4a: 6c:62:89:1a:c6:f8:56:3c:f3:8c:31:22:c0:b9:99:e2:59:21: c3:00:36:02:23:c7:97:22:b2:9a:e1:4d:6c:48:6f:b9:6b:16: 80:a0:b7:2b:11:d0:e1:28:a6:d9:c9:be:75:d0:0c:01:a6:29: b8:a7:8a:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJmn5reIMPVRAjrec4NHjMI7Lsb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRG NjYxOENCRTAeFw0yNTA2MDIwMTU5MDNaFw0yNjA2MDEwMjA0MDNaMDMxMTAvBgNV BAMTKDU4QkNCQkVDREY1MzgxQTM2N0Q0QjVFMkI0MDlBMzdEMTI0OTA2MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWrBCKkS1NWK9u6XIlWYwyfgSc GuTKr/Oxdo15w8It/xoBlPB8PDX9J6tKZv83eAbadOgD155uDrS74I9IMNOA2PNU 53+u6FdMzPEVgK8KQvlFkegNX8jMjsHZNIHh7O4Xe1XRy++uXlVB4mV4fTChfx4E 6wB7bJLiyOEwQ2Cd/mku10JYqn50Yrbq6eo6jrtw0CLtmruuT4KqO7a1MJb1pypI tQ87ffwBrXy21gCUGaZahVdRzFFgRlYCI1EVf743ma5b+yMoyMOyeDneHQEG87eN a7PxKardIip4743e8iB9qEM4wjg3n51SylbdW442VF9YK1G1JlLv5FePxoGVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWLy77N9TgaNn1LXitAmjfRJJBg0wHwYDVR0j BBgwFoAUVP8UG+lgE/5rwIFtmRvPtPZhjL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2FmMjcxZi1jODNkLTQ0MWUtYmVhOS0xOGEyNDRkMGUwMGUvMC81NEZGMTQxQkU5 NjAxM0ZFNkJDMDgxNkQ5OTFCQ0ZCNEY2NjE4Q0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRGNjYx OENCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYWYyNzFmLWM4M2QtNDQxZS1i ZWE5LTE4YTI0NGQwZTAwZS8wLzMxMzAzMzJlMzIzMTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXkMA0GCSqG SIb3DQEBCwUAA4IBAQCUDkWrFbSaALMdL8dBo5KJuCgpFnl3/F73LYfiHXk17GJr YgigjBztE4cTCa1F14acTnrWrpFrONgm7+1g3P7tiuq5gWyS0vq+Ns2+3/93D5sn DA+S8ax2YBfRY3LN1mKFm9BgztRhzwvvDKxrA1RyMl1oXfxu9S+evOxEn06ZAhFZ gUcbgbGfQ3EG/xvhHzvZEU66JnN7bv5YJ/tFC4PoLWY8MbXWPhxbt/+/8NHFlBdk SxVqiJQDb+SOGanu+4/U6YDhD0psYokaxvhWPPOMMSLAuZniWSHDADYCI8eXIrKa 4U1sSG+5axaAoLcrEdDhKKbZyb510AwBpim4p4pU -----END CERTIFICATE-----Generated at Sat Jun 7 22:50:11 2025 by rpki-client