$ rpki-client -vvf repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/3130332e3138382e3137342e302f32342d3234203d3e203538333639.roa File: 3130332e3138382e3137342e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: GHHb1yqE1wOoGtgYPHtE6eZxVJDfpmBbJSSPPvGdsuE= Subject key identifier: E4:D5:71:92:E7:2C:8D:98:54:35:86:3A:BB:89:2D:C1:9F:27:19:FE Certificate issuer: /CN=DC19ED76CCD72AB435328C48847EF794698443FE Certificate serial: 578A3453A8A1F27F5337FF54EA05C1FAC19B1D11 Authority key identifier: DC:19:ED:76:CC:D7:2A:B4:35:32:8C:48:84:7E:F7:94:69:84:43:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC19ED76CCD72AB435328C48847EF794698443FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/3130332e3138382e3137342e302f32342d3234203d3e203538333639.roa Signing time: Mon 19 May 2025 07:00:44 +0000 ROA not before: Mon 19 May 2025 06:55:44 +0000 ROA not after: Mon 18 May 2026 07:00:44 +0000 asID: 58369 IP address blocks: 103.188.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/DC19ED76CCD72AB435328C48847EF794698443FE.crl rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/DC19ED76CCD72AB435328C48847EF794698443FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC19ED76CCD72AB435328C48847EF794698443FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:8a:34:53:a8:a1:f2:7f:53:37:ff:54:ea:05:c1:fa:c1:9b:1d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC19ED76CCD72AB435328C48847EF794698443FE Validity Not Before: May 19 06:55:44 2025 GMT Not After : May 18 07:00:44 2026 GMT Subject: CN=E4D57192E72C8D985435863ABB892DC19F2719FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:88:3f:44:a0:e8:e5:4b:c6:5a:0c:ff:79:d1: ab:0c:ba:ec:20:6e:1d:f3:e8:b2:bd:60:48:f0:eb: 0c:33:26:d5:c0:53:e1:0a:9f:91:e9:29:2e:86:1e: f3:ef:fe:9b:aa:11:51:70:d2:2f:5f:3b:8e:8a:a9: c1:79:b7:d3:18:4c:0b:c8:04:d6:e9:54:f7:0f:c6: af:a9:12:84:c5:f8:6c:11:65:61:6d:d6:3c:9f:09: 99:87:c8:97:3b:a8:72:76:a0:3e:6d:65:46:98:79: d4:ef:6c:fa:f5:c8:c9:94:3d:69:6a:ec:15:31:40: b6:67:5f:db:40:cf:db:dc:ae:f3:d0:11:04:ef:8f: e3:a6:33:17:85:30:2a:29:35:b1:ea:8e:98:81:a7: 9e:22:0a:ae:9b:e1:af:5c:7c:11:54:16:c2:22:f3: 50:17:5c:28:b8:94:27:48:95:e7:81:f1:33:8d:19: 81:94:65:4c:00:3b:d6:00:9a:92:da:3e:a7:7f:5a: 95:0c:a7:92:02:56:50:da:46:a9:aa:a7:cd:26:49: 95:e5:1c:5b:d0:6f:ad:bb:05:bd:4a:ce:a4:2e:f9: 24:c7:ba:45:3f:b9:b5:ae:f6:0e:06:6a:2a:bc:d4: 00:90:ae:81:3c:fb:bc:d6:30:05:5f:dd:83:1c:81: b5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D5:71:92:E7:2C:8D:98:54:35:86:3A:BB:89:2D:C1:9F:27:19:FE X509v3 Authority Key Identifier: keyid:DC:19:ED:76:CC:D7:2A:B4:35:32:8C:48:84:7E:F7:94:69:84:43:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/DC19ED76CCD72AB435328C48847EF794698443FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC19ED76CCD72AB435328C48847EF794698443FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/3130332e3138382e3137342e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.174.0/24 Signature Algorithm: sha256WithRSAEncryption 56:5c:b1:0c:05:54:1a:03:08:8a:3f:de:94:96:2f:ef:7f:f4: 69:5b:34:fe:5e:5c:4a:1c:e5:d8:10:e3:99:2b:75:f6:ab:c8: cf:45:76:fc:d7:10:fd:45:02:24:d9:0e:7e:ea:06:3a:a8:8d: 7f:d8:76:ad:8c:10:8e:98:29:8c:e5:64:1c:8d:08:fa:34:5e: dc:1e:a6:70:15:bf:58:bb:b6:98:a6:c4:1b:1a:20:a3:3b:65: 75:dd:a3:b4:96:f2:c3:f4:ea:60:cf:f7:fe:85:7f:3e:c6:f2: 0f:7a:02:95:3c:e8:46:ca:00:53:54:94:05:34:63:70:47:52: 23:60:01:db:2a:cf:6b:a5:1b:3f:e8:29:0d:fc:cc:c7:58:d4: 0a:db:9d:d1:e0:fa:54:eb:7a:e5:33:d8:5f:8b:14:1e:92:34: 06:53:70:7c:6b:85:99:d8:33:f7:1f:6f:34:79:d5:87:3d:2b: fa:98:05:70:16:e8:51:42:23:bf:7b:b0:ea:16:bc:96:1d:bc: 0d:a3:04:aa:5d:7f:5f:6d:fe:47:03:0d:be:ea:d5:40:e2:f5: 5d:ac:d9:b1:d1:c2:97:ca:d4:30:04:51:7e:1f:d1:fb:7c:fa: d8:c9:ca:84:58:fa:17:5d:9a:bc:68:7c:55:95:df:2a:8d:71: 5b:96:c7:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV4o0U6ih8n9TN/9U6gXB+sGbHREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxOUVENzZDQ0Q3MkFCNDM1MzI4QzQ4ODQ3RUY3OTQ2 OTg0NDNGRTAeFw0yNTA1MTkwNjU1NDRaFw0yNjA1MTgwNzAwNDRaMDMxMTAvBgNV BAMTKEU0RDU3MTkyRTcyQzhEOTg1NDM1ODYzQUJCODkyREMxOUYyNzE5RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsiD9EoOjlS8ZaDP950asMuuwg bh3z6LK9YEjw6wwzJtXAU+EKn5HpKS6GHvPv/puqEVFw0i9fO46KqcF5t9MYTAvI BNbpVPcPxq+pEoTF+GwRZWFt1jyfCZmHyJc7qHJ2oD5tZUaYedTvbPr1yMmUPWlq 7BUxQLZnX9tAz9vcrvPQEQTvj+OmMxeFMCopNbHqjpiBp54iCq6b4a9cfBFUFsIi 81AXXCi4lCdIleeB8TONGYGUZUwAO9YAmpLaPqd/WpUMp5ICVlDaRqmqp80mSZXl HFvQb627Bb1KzqQu+STHukU/ubWu9g4Gaiq81ACQroE8+7zWMAVf3YMcgbW3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5NVxkucsjZhUNYY6u4ktwZ8nGf4wHwYDVR0j BBgwFoAU3BntdszXKrQ1MoxIhH73lGmEQ/4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmJkNTUzOC00MjcwLTQxMmQtOWQ2Ni1jMmI1MTU3ZDNkNmUvMC9EQzE5RUQ3NkND RDcyQUI0MzUzMjhDNDg4NDdFRjc5NDY5ODQ0M0ZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxOUVENzZDQ0Q3MkFCNDM1MzI4QzQ4ODQ3RUY3OTQ2OTg0 NDNGRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2YmQ1NTM4LTQyNzAtNDEyZC05 ZDY2LWMyYjUxNTdkM2Q2ZS8wLzMxMzAzMzJlMzEzODM4MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7yuMA0GCSqG SIb3DQEBCwUAA4IBAQBWXLEMBVQaAwiKP96Uli/vf/RpWzT+XlxKHOXYEOOZK3X2 q8jPRXb81xD9RQIk2Q5+6gY6qI1/2HatjBCOmCmM5WQcjQj6NF7cHqZwFb9Yu7aY psQbGiCjO2V13aO0lvLD9Opgz/f+hX8+xvIPegKVPOhGygBTVJQFNGNwR1IjYAHb Ks9rpRs/6CkN/MzHWNQK253R4PpU63rlM9hfixQekjQGU3B8a4WZ2DP3H280edWH PSv6mAVwFuhRQiO/e7DqFryWHbwNowSqXX9fbf5HAw2+6tVA4vVdrNmx0cKXytQw BFF+H9H7fPrYycqEWPoXXZq8aHxVld8qjXFblscn -----END CERTIFICATE-----Generated at Tue Jun 17 11:10:22 2025 by rpki-client