$ rpki-client -vvf repo-rpki.idnic.net/repo/32a98c8b-cad9-49e1-b178-1daf3b62ef59/0/3130332e3134322e3230302e302f32332d3234203d3e20313339333739.roa File: 3130332e3134322e3230302e302f32332d3234203d3e20313339333739.roa (raw, json) Hash identifier: CW38hcQKuGx3OYMIBYq8S0wTy4MYcrKf3ZrGBJO/Jz8= Subject key identifier: 58:73:43:70:84:BE:8A:9E:E8:10:2D:04:FB:5C:56:24:FF:5F:52:D4 Certificate issuer: /CN=F520C5AEC051FBD03954D15F7A52EAB852DC4D63 Certificate serial: 4A3B17383EF96EB5A6EE8F4AB84FA1AA7E64EF7C Authority key identifier: F5:20:C5:AE:C0:51:FB:D0:39:54:D1:5F:7A:52:EA:B8:52:DC:4D:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F520C5AEC051FBD03954D15F7A52EAB852DC4D63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32a98c8b-cad9-49e1-b178-1daf3b62ef59/0/3130332e3134322e3230302e302f32332d3234203d3e20313339333739.roa Signing time: Mon 02 Jun 2025 02:03:13 +0000 ROA not before: Mon 02 Jun 2025 01:58:13 +0000 ROA not after: Mon 01 Jun 2026 02:03:13 +0000 asID: 139379 IP address blocks: 103.142.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32a98c8b-cad9-49e1-b178-1daf3b62ef59/0/F520C5AEC051FBD03954D15F7A52EAB852DC4D63.crl rsync://repo-rpki.idnic.net/repo/32a98c8b-cad9-49e1-b178-1daf3b62ef59/0/F520C5AEC051FBD03954D15F7A52EAB852DC4D63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F520C5AEC051FBD03954D15F7A52EAB852DC4D63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 22:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:3b:17:38:3e:f9:6e:b5:a6:ee:8f:4a:b8:4f:a1:aa:7e:64:ef:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F520C5AEC051FBD03954D15F7A52EAB852DC4D63 Validity Not Before: Jun 2 01:58:13 2025 GMT Not After : Jun 1 02:03:13 2026 GMT Subject: CN=5873437084BE8A9EE8102D04FB5C5624FF5F52D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:39:5e:88:4c:0d:2f:5a:fa:ee:ed:96:78:b4: a0:89:5c:8e:77:ea:ef:5d:82:14:91:30:71:45:40: da:48:5a:a2:5c:cc:7c:3a:81:31:90:6f:e9:9e:fe: 13:20:05:1d:7f:18:26:30:27:44:77:e9:81:7b:d6: 71:59:e3:c9:52:dd:2b:a7:9e:97:d6:40:e9:aa:ff: cb:14:b8:63:31:3d:f5:e5:2a:b8:52:ed:8d:3c:c3: bc:fe:35:04:62:f0:e2:a3:ef:73:3a:b5:2a:86:4b: d9:fc:a9:8c:b7:32:79:da:c0:bd:b9:90:59:25:2b: 05:b9:eb:ad:b4:ab:13:b9:e4:7b:3c:68:fc:20:6d: 28:14:8c:1b:fb:7d:91:cb:34:0c:60:5d:d5:37:66: 63:c6:36:14:0e:c6:d7:23:34:d8:bd:f4:0a:c7:08: b6:23:b4:e2:da:b9:af:d7:d9:3d:e1:b7:a7:3e:4f: d1:b9:8e:89:f6:ba:43:33:e2:00:83:53:a5:96:34: c5:93:b2:2f:0e:e7:29:5a:5f:bd:0a:8c:e5:4a:b8: 95:56:7b:85:0f:30:7e:f0:c3:70:58:35:41:e7:f0: 51:a5:5b:d6:58:91:f3:0d:b4:40:18:3e:4c:9f:df: f1:a4:cf:83:4f:5e:3d:3c:77:b1:3f:1a:4e:b0:9e: f4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:73:43:70:84:BE:8A:9E:E8:10:2D:04:FB:5C:56:24:FF:5F:52:D4 X509v3 Authority Key Identifier: keyid:F5:20:C5:AE:C0:51:FB:D0:39:54:D1:5F:7A:52:EA:B8:52:DC:4D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32a98c8b-cad9-49e1-b178-1daf3b62ef59/0/F520C5AEC051FBD03954D15F7A52EAB852DC4D63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F520C5AEC051FBD03954D15F7A52EAB852DC4D63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32a98c8b-cad9-49e1-b178-1daf3b62ef59/0/3130332e3134322e3230302e302f32332d3234203d3e20313339333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.200.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:79:4d:8c:f8:aa:00:60:f8:fd:fa:3f:ef:e4:d0:5a:2d:45: 1f:f4:de:fe:f9:3c:05:6b:5a:aa:2f:0b:d8:ff:16:a0:42:c2: 9e:d1:e5:c8:2e:10:a7:8a:b8:c8:a7:55:1b:ac:05:ba:8f:ba: ba:9e:9e:6c:07:66:5a:ed:20:84:ef:4c:6a:b6:02:d9:44:cf: 93:e8:63:67:17:97:ff:4d:e1:0a:8d:44:45:45:d9:db:27:d4: 60:31:97:a2:aa:96:18:ae:58:f6:6d:f5:c6:c4:94:1b:2d:a0: 97:1a:0c:8a:50:72:a4:34:89:63:08:42:51:a5:83:6f:a5:b8: 9f:52:c4:b0:02:e1:24:c8:05:5c:d9:be:6c:8f:0a:cd:eb:05: 20:63:b6:c4:02:74:c9:86:ce:a4:bb:b5:ed:aa:c3:fc:2b:7d: 4b:d8:a4:46:da:ff:71:e6:b8:f7:ea:0f:7d:d9:95:41:d7:47: 95:da:99:e0:57:bd:7e:92:8a:cb:a1:93:d9:51:b7:e0:65:42: 3e:bb:49:70:19:3c:18:1d:22:25:46:c1:ef:45:db:dd:e5:79: 6f:f0:e1:70:e5:1d:d8:d3:bd:79:a2:3c:10:0c:6f:62:f1:24: 0c:bb:ee:18:35:14:7a:06:34:76:2b:5c:ba:d2:1e:23:69:0b: 3a:dd:c2:eb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSjsXOD75brWm7o9KuE+hqn5k73wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjUyMEM1QUVDMDUxRkJEMDM5NTREMTVGN0E1MkVBQjg1 MkRDNEQ2MzAeFw0yNTA2MDIwMTU4MTNaFw0yNjA2MDEwMjAzMTNaMDMxMTAvBgNV BAMTKDU4NzM0MzcwODRCRThBOUVFODEwMkQwNEZCNUM1NjI0RkY1RjUyRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOV6ITA0vWvru7ZZ4tKCJXI53 6u9dghSRMHFFQNpIWqJczHw6gTGQb+me/hMgBR1/GCYwJ0R36YF71nFZ48lS3Sun npfWQOmq/8sUuGMxPfXlKrhS7Y08w7z+NQRi8OKj73M6tSqGS9n8qYy3MnnawL25 kFklKwW56620qxO55Hs8aPwgbSgUjBv7fZHLNAxgXdU3ZmPGNhQOxtcjNNi99ArH CLYjtOLaua/X2T3ht6c+T9G5jon2ukMz4gCDU6WWNMWTsi8O5ylaX70KjOVKuJVW e4UPMH7ww3BYNUHn8FGlW9ZYkfMNtEAYPkyf3/Gkz4NPXj08d7E/Gk6wnvSNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWHNDcIS+ip7oEC0E+1xWJP9fUtQwHwYDVR0j BBgwFoAU9SDFrsBR+9A5VNFfelLquFLcTWMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmE5OGM4Yi1jYWQ5LTQ5ZTEtYjE3OC0xZGFmM2I2MmVmNTkvMC9GNTIwQzVBRUMw NTFGQkQwMzk1NEQxNUY3QTUyRUFCODUyREM0RDYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjUyMEM1QUVDMDUxRkJEMDM5NTREMTVGN0E1MkVBQjg1MkRD NEQ2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYTk4YzhiLWNhZDktNDllMS1i MTc4LTFkYWYzYjYyZWY1OS8wLzMxMzAzMzJlMzEzNDMyMmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjsgwDQYJ KoZIhvcNAQELBQADggEBAEt5TYz4qgBg+P36P+/k0FotRR/03v75PAVrWqovC9j/ FqBCwp7R5cguEKeKuMinVRusBbqPurqenmwHZlrtIITvTGq2AtlEz5PoY2cXl/9N 4QqNREVF2dsn1GAxl6KqlhiuWPZt9cbElBstoJcaDIpQcqQ0iWMIQlGlg2+luJ9S xLAC4STIBVzZvmyPCs3rBSBjtsQCdMmGzqS7te2qw/wrfUvYpEba/3HmuPfqD33Z lUHXR5XameBXvX6Sisuhk9lRt+BlQj67SXAZPBgdIiVGwe9F293leW/w4XDlHdjT vXmiPBAMb2LxJAy77hg1FHoGNHYrXLrSHiNpCzrdwus= -----END CERTIFICATE-----Generated at Mon Jun 16 19:37:00 2025 by rpki-client