$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136312e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3136312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 9hU5w6690eEx9HQ9C/D1qkWr4kK9Azvt4N9aN/gkF9U= Subject key identifier: 8A:84:8C:15:7A:A2:20:8C:67:0C:00:85:8D:B1:8A:50:AC:90:33:03 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 1227935DB4955E3571787F438184658845A4DAF7 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136312e302f32342d3234203d3e2039333431.roa Signing time: Sun 23 Mar 2025 04:00:01 +0000 ROA not before: Sun 23 Mar 2025 03:55:01 +0000 ROA not after: Sun 22 Mar 2026 04:00:01 +0000 asID: 9341 IP address blocks: 119.252.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:27:93:5d:b4:95:5e:35:71:78:7f:43:81:84:65:88:45:a4:da:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 23 03:55:01 2025 GMT Not After : Mar 22 04:00:01 2026 GMT Subject: CN=8A848C157AA2208C670C00858DB18A50AC903303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3d:2b:07:87:a4:f7:f8:6a:68:6c:15:be:e6: f8:c6:d6:b5:c0:52:8c:80:62:dc:6e:59:34:44:be: fe:83:f2:dc:0d:8f:8f:17:de:66:f0:cf:38:9d:eb: 9f:63:50:9a:3a:67:8a:17:94:3d:3e:2f:eb:84:1d: a4:01:16:8c:d3:76:4c:c5:9f:d2:2d:6e:8f:f1:c4: fb:50:86:f0:5e:64:af:1e:d1:a8:b7:40:a1:49:f2: f9:f1:4e:7b:6c:37:60:24:a1:bb:86:0a:95:a0:85: db:b5:1f:9a:51:fa:02:75:ee:64:02:5a:7b:1e:c9: ce:62:df:88:cd:03:ea:81:8a:62:1a:20:0a:f4:76: 8b:45:38:40:5f:5b:ca:3f:73:eb:60:ca:21:99:70: 25:59:21:b9:3a:16:32:4b:87:fe:54:ed:54:95:bd: fb:55:c4:d3:b6:9e:5c:0a:79:73:b1:4d:04:2c:9b: d7:a1:b5:a8:48:8b:c0:c8:f1:87:c6:42:49:02:97: bc:bd:18:aa:19:87:2b:d4:44:50:b0:d8:68:35:c5: 25:e4:bf:34:3d:30:59:d1:cd:c2:0e:4b:28:af:1c: eb:d2:cf:3f:b6:aa:d3:da:5e:5e:ae:7f:b2:8f:59: e6:65:7b:5e:f3:00:59:2b:52:4f:e2:d3:2d:80:db: 58:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:84:8C:15:7A:A2:20:8C:67:0C:00:85:8D:B1:8A:50:AC:90:33:03 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.161.0/24 Signature Algorithm: sha256WithRSAEncryption 89:6e:c2:1e:2a:0f:39:ce:00:c8:0c:09:1c:68:ae:a2:a4:ea: 99:81:ee:b5:61:b7:d6:c9:75:6b:5b:b2:f3:84:c8:29:eb:c3: 26:6d:dd:e2:7e:73:84:b4:a9:15:c3:59:38:eb:f3:aa:f2:c5: 52:45:e9:bc:ac:56:63:0e:ee:8a:81:a4:71:8e:2e:bb:5d:a6: 58:4a:49:ba:6a:92:90:2f:a4:eb:e2:95:18:eb:ae:fd:02:ac: 0f:ba:21:92:70:46:d2:fe:dc:12:ed:49:08:cd:ed:00:78:d2: a3:99:ee:71:b9:de:80:49:02:38:10:36:80:d4:3a:a6:c5:ed: 8a:92:b6:a7:df:b4:e3:f3:d4:ff:58:f1:9a:86:07:0e:5b:55: 2e:d7:6c:d7:b6:19:aa:22:ea:59:7e:ed:9d:71:68:a4:3e:78: 87:f6:bd:6a:fe:2c:74:04:7c:57:dc:26:bc:d8:b4:9d:fd:35: 7a:ff:a1:c4:1d:90:2c:bb:ca:d7:0a:0d:e9:a8:45:bb:38:0e: f0:ee:e1:79:3c:29:2a:df:1d:62:11:38:1b:bf:89:05:a9:aa: 5a:b2:47:35:04:74:37:3b:c9:32:3c:7b:1e:fc:6c:24:a4:9c: 16:ce:9a:5f:15:7e:c7:e3:6d:0a:97:f0:61:17:d5:95:ec:a2: 66:3e:39:26 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEieTXbSVXjVxeH9DgYRliEWk2vcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTAzMjMwMzU1MDFaFw0yNjAzMjIwNDAwMDFaMDMxMTAvBgNV BAMTKDhBODQ4QzE1N0FBMjIwOEM2NzBDMDA4NThEQjE4QTUwQUM5MDMzMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3PSsHh6T3+GpobBW+5vjG1rXA UoyAYtxuWTREvv6D8twNj48X3mbwzzid659jUJo6Z4oXlD0+L+uEHaQBFozTdkzF n9Itbo/xxPtQhvBeZK8e0ai3QKFJ8vnxTntsN2AkobuGCpWghdu1H5pR+gJ17mQC Wnseyc5i34jNA+qBimIaIAr0dotFOEBfW8o/c+tgyiGZcCVZIbk6FjJLh/5U7VSV vftVxNO2nlwKeXOxTQQsm9ehtahIi8DI8YfGQkkCl7y9GKoZhyvURFCw2Gg1xSXk vzQ9MFnRzcIOSyivHOvSzz+2qtPaXl6uf7KPWeZle17zAFkrUk/i0y2A21jHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUioSMFXqiIIxnDACFjbGKUKyQMwMwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8oTANBgkqhkiG 9w0BAQsFAAOCAQEAiW7CHioPOc4AyAwJHGiuoqTqmYHutWG31sl1a1uy84TIKevD Jm3d4n5zhLSpFcNZOOvzqvLFUkXpvKxWYw7uioGkcY4uu12mWEpJumqSkC+k6+KV GOuu/QKsD7ohknBG0v7cEu1JCM3tAHjSo5nucbnegEkCOBA2gNQ6psXtipK2p9+0 4/PU/1jxmoYHDltVLtds17YZqiLqWX7tnXFopD54h/a9av4sdAR8V9wmvNi0nf01 ev+hxB2QLLvK1woN6ahFuzgO8O7heTwpKt8dYhE4G7+JBamqWrJHNQR0NzvJMjx7 HvxsJKScFs6aXxV+x+NtCpfwYRfVleyiZj45Jg== -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:37 2025 by rpki-client