$ rpki-client -vvf repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137312e302f32342d3234203d3e203538333738.roa File: 3130332e32392e3137312e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: VGUNPT+EvshoEIe2DkaARFh/LWXkGNwN7useeVXqqQc= Subject key identifier: 11:D1:FF:52:25:3E:08:9E:7B:3B:A7:23:55:D4:94:2E:7B:B6:9D:03 Certificate issuer: /CN=8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11 Certificate serial: 3F3CE592551144CFFAEA7B9613BC3EAB43E0C936 Authority key identifier: 89:32:E2:5F:54:C4:B1:0E:2A:E5:B7:1E:38:D2:AD:4D:1E:E3:BB:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137312e302f32342d3234203d3e203538333738.roa Signing time: Fri 09 May 2025 05:00:00 +0000 ROA not before: Fri 09 May 2025 04:55:00 +0000 ROA not after: Fri 08 May 2026 05:00:00 +0000 asID: 58378 IP address blocks: 103.29.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.crl rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:3c:e5:92:55:11:44:cf:fa:ea:7b:96:13:bc:3e:ab:43:e0:c9:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11 Validity Not Before: May 9 04:55:00 2025 GMT Not After : May 8 05:00:00 2026 GMT Subject: CN=11D1FF52253E089E7B3BA72355D4942E7BB69D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:14:ce:16:7d:78:d4:fc:90:ec:cc:f0:00: 7d:61:13:40:a0:3a:16:59:75:e5:96:79:4d:20:d8: 32:07:1f:c0:28:c3:60:09:a6:ac:cc:73:da:a4:50: cb:96:ed:13:92:a0:93:32:51:24:6a:29:20:ec:91: 69:1c:fa:0f:0e:12:c1:72:3e:33:c0:9b:5d:37:a0: a8:2d:bb:6a:07:89:c1:7a:43:50:6d:f2:74:2c:29: ef:c5:b4:e3:be:e2:78:eb:87:56:99:1c:6a:4c:bb: 76:2b:a8:13:e9:4e:de:0d:34:40:73:91:7e:ec:cf: 17:61:b7:ab:4c:57:b3:18:b6:c7:44:dc:28:dd:66: 91:8e:02:82:cb:1d:e3:91:90:a8:3d:3d:31:37:ee: 5f:07:85:15:28:66:7d:0b:0f:cf:eb:df:22:ba:97: 33:65:4e:bc:a1:8b:e1:38:51:2b:92:18:ba:a5:18: 56:25:de:7d:f1:e9:f9:4e:e2:89:d1:a5:18:87:72: c6:f1:10:c6:9f:e3:ee:b1:b5:e8:57:7f:96:c8:7c: 5d:9c:20:14:c1:71:0b:f0:e8:8e:af:da:73:7d:e4: 57:12:a6:46:8b:41:9c:97:be:96:45:ef:df:66:c1: a5:d4:a0:db:a8:cb:69:91:67:b1:dc:37:4b:33:61: ea:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D1:FF:52:25:3E:08:9E:7B:3B:A7:23:55:D4:94:2E:7B:B6:9D:03 X509v3 Authority Key Identifier: keyid:89:32:E2:5F:54:C4:B1:0E:2A:E5:B7:1E:38:D2:AD:4D:1E:E3:BB:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8932E25F54C4B10E2AE5B71E38D2AD4D1EE3BB11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3809384-9b1c-4f5a-aa6b-9de3b52a9c05/0/3130332e32392e3137312e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.171.0/24 Signature Algorithm: sha256WithRSAEncryption 22:60:b3:b3:4b:46:d1:bf:86:40:2e:56:8f:22:62:a4:eb:1a: 16:ff:46:ae:a8:1a:be:6b:82:24:eb:c7:b1:ae:c6:dc:b3:d3: 63:4c:7c:7d:9c:fa:54:b6:4f:45:9e:f0:22:3d:48:08:ec:44: 51:e2:63:02:15:2d:16:14:9c:81:37:47:71:47:5c:ea:93:5b: 28:7e:91:70:c3:b6:04:f4:51:31:b7:d5:f6:6d:3d:3d:8f:26: ee:11:0c:b1:a1:aa:86:6f:ef:1c:76:6f:33:79:4d:06:cb:4e: 8c:14:c5:9b:94:4b:ce:cb:0d:ae:80:ee:93:41:67:70:d0:18: 91:36:81:3c:80:90:5c:c0:1d:0c:87:81:75:d6:e2:5e:bb:bb: bd:00:99:22:8a:4e:a0:b1:a5:9b:bc:76:e5:69:a7:65:41:77: d1:34:0a:ff:6d:78:d8:d3:7d:91:c8:d3:54:a1:57:53:9c:f4: f5:d5:f2:ba:9d:90:27:2e:ff:52:0a:e1:a6:a6:6c:5b:a9:2c: cc:cb:74:98:f9:9e:89:78:a9:ac:0b:bf:c5:ae:8b:69:ff:2e: d6:f2:24:5b:5b:38:44:d3:17:7f:af:16:3b:93:a6:3e:dd:b3: 12:20:3f:b6:fe:80:18:b2:a2:f4:0a:7b:77:27:02:84:3b:b2: 47:79:bc:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPzzlklURRM/66nuWE7w+q0PgyTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzMkUyNUY1NEM0QjEwRTJBRTVCNzFFMzhEMkFENEQx RUUzQkIxMTAeFw0yNTA1MDkwNDU1MDBaFw0yNjA1MDgwNTAwMDBaMDMxMTAvBgNV BAMTKDExRDFGRjUyMjUzRTA4OUU3QjNCQTcyMzU1RDQ5NDJFN0JCNjlEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4JRTOFn141PyQ7MzwAH1hE0Cg OhZZdeWWeU0g2DIHH8Aow2AJpqzMc9qkUMuW7ROSoJMyUSRqKSDskWkc+g8OEsFy PjPAm103oKgtu2oHicF6Q1Bt8nQsKe/FtOO+4njrh1aZHGpMu3YrqBPpTt4NNEBz kX7szxdht6tMV7MYtsdE3CjdZpGOAoLLHeORkKg9PTE37l8HhRUoZn0LD8/r3yK6 lzNlTryhi+E4USuSGLqlGFYl3n3x6flO4onRpRiHcsbxEMaf4+6xtehXf5bIfF2c IBTBcQvw6I6v2nN95FcSpkaLQZyXvpZF799mwaXUoNuoy2mRZ7HcN0szYeqJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEdH/UiU+CJ57O6cjVdSULnu2nQMwHwYDVR0j BBgwFoAUiTLiX1TEsQ4q5bceONKtTR7juxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzgwOTM4NC05YjFjLTRmNWEtYWE2Yi05ZGUzYjUyYTljMDUvMC84OTMyRTI1RjU0 QzRCMTBFMkFFNUI3MUUzOEQyQUQ0RDFFRTNCQjExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODkzMkUyNUY1NEM0QjEwRTJBRTVCNzFFMzhEMkFENEQxRUUz QkIxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzODA5Mzg0LTliMWMtNGY1YS1h YTZiLTlkZTNiNTJhOWMwNS8wLzMxMzAzMzJlMzIzOTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcdqzANBgkqhkiG 9w0BAQsFAAOCAQEAImCzs0tG0b+GQC5WjyJipOsaFv9GrqgavmuCJOvHsa7G3LPT Y0x8fZz6VLZPRZ7wIj1ICOxEUeJjAhUtFhScgTdHcUdc6pNbKH6RcMO2BPRRMbfV 9m09PY8m7hEMsaGqhm/vHHZvM3lNBstOjBTFm5RLzssNroDuk0FncNAYkTaBPICQ XMAdDIeBddbiXru7vQCZIopOoLGlm7x25WmnZUF30TQK/2142NN9kcjTVKFXU5z0 9dXyup2QJy7/UgrhpqZsW6kszMt0mPmeiXiprAu/xa6Laf8u1vIkW1s4RNMXf68W O5OmPt2zEiA/tv6AGLKi9Ap7dycChDuyR3m8nA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:27 2025 by rpki-client