$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 1OtTrO7o+zeF2mFGiPsyK3ItvypTWmeuAvJ5CUG3LBQ= Subject key identifier: BB:6D:53:E5:AE:89:20:DE:13:AD:51:E1:DF:A5:22:7E:2A:F0:1C:01 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 28ECF0F75AB04DE85385D97B40B4D290298C5A07 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa Signing time: Sun 23 Mar 2025 06:00:02 +0000 ROA not before: Sun 23 Mar 2025 05:55:02 +0000 ROA not after: Sun 22 Mar 2026 06:00:02 +0000 asID: 9341 IP address blocks: 119.252.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ec:f0:f7:5a:b0:4d:e8:53:85:d9:7b:40:b4:d2:90:29:8c:5a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 23 05:55:02 2025 GMT Not After : Mar 22 06:00:02 2026 GMT Subject: CN=BB6D53E5AE8920DE13AD51E1DFA5227E2AF01C01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:19:c4:d1:28:94:01:35:e6:e7:28:b1:80:61: ac:57:54:88:d6:ca:6a:3b:29:eb:d9:03:3f:dd:30: 26:a4:47:1b:e1:c2:f2:c7:22:12:5d:0b:e1:1a:13: 69:13:12:54:ce:b9:eb:54:1a:81:52:4b:6b:e9:e7: 56:86:2f:e7:2a:21:50:bd:58:df:00:e0:5f:64:da: 15:5a:55:08:8f:69:b1:b1:04:ca:4c:f8:8d:64:e3: 66:28:6f:b4:7a:6a:06:7f:fc:fd:4c:20:ba:17:5e: ce:23:fd:65:dc:b5:19:e0:97:11:a4:37:7c:e3:8e: 55:ce:08:d0:b9:67:65:3b:cd:bc:e9:4b:e6:9d:ec: 52:88:09:2b:54:d7:ae:98:1b:5c:2c:1c:29:95:1d: 20:1b:07:86:62:82:9d:b4:3e:ed:53:01:02:00:8f: 02:33:26:5f:9d:81:6e:bf:c8:d6:9d:80:d5:07:f4: 9c:b3:2a:3a:ca:11:c7:6f:9c:d3:a0:e4:d7:aa:9b: d6:51:b6:de:65:fb:eb:5c:b9:1e:54:04:d7:ff:74: b8:9b:af:fc:2d:98:f9:5f:a9:5a:0b:9d:2a:dd:27: 81:fd:bf:ef:ce:71:e9:20:45:cf:0e:34:23:25:f1: e5:5e:e1:3d:bf:c7:84:08:b6:62:e9:47:8e:11:6e: cc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6D:53:E5:AE:89:20:DE:13:AD:51:E1:DF:A5:22:7E:2A:F0:1C:01 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3136382e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.168.0/24 Signature Algorithm: sha256WithRSAEncryption 80:da:05:fc:ad:83:9f:f1:20:8e:6d:2f:71:16:7f:8d:8a:35: 83:6a:f9:e5:3e:cd:44:41:c3:5c:d4:fb:be:49:87:53:7c:e1: 7c:32:27:e1:20:5b:bc:08:5e:11:ab:61:1d:e0:a7:47:3b:b9: 46:66:82:77:1d:fd:9b:ab:f9:bb:44:64:87:63:60:85:f6:c5: 6d:bd:16:6f:a3:c5:c6:f5:9f:aa:e6:4e:18:21:36:62:19:3c: 24:ed:45:7c:e1:e0:f6:66:27:56:d6:04:da:a0:0e:8f:8b:94: e1:09:c8:f8:8c:d2:c4:a0:41:1e:b6:fd:7c:3a:36:9c:c2:d0: f7:88:06:f0:f5:ea:74:c9:04:d7:c6:2c:bf:73:3c:75:4b:74: 4c:e1:17:e6:93:f4:3b:43:cd:55:51:75:0a:ad:a5:f4:42:57: cf:75:e8:5a:17:12:33:34:5c:8a:30:fc:23:c9:2f:94:39:4f: 57:d6:7a:fe:1e:e1:98:61:39:86:ca:f8:1d:1b:b2:d7:33:26: ef:64:02:e7:85:df:14:04:35:60:b2:83:f3:eb:14:f6:8b:9d: 8d:47:0c:9a:25:6f:7d:4a:47:e1:75:82:23:1c:66:d4:02:e1: 4a:ed:52:de:b2:f2:92:04:f6:83:ad:1b:14:85:fd:82:25:ff: ce:f6:1f:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKOzw91qwTehThdl7QLTSkCmMWgcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNTAzMjMwNTU1MDJaFw0yNjAzMjIwNjAwMDJaMDMxMTAvBgNV BAMTKEJCNkQ1M0U1QUU4OTIwREUxM0FENTFFMURGQTUyMjdFMkFGMDFDMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkGcTRKJQBNebnKLGAYaxXVIjW ymo7KevZAz/dMCakRxvhwvLHIhJdC+EaE2kTElTOuetUGoFSS2vp51aGL+cqIVC9 WN8A4F9k2hVaVQiPabGxBMpM+I1k42Yob7R6agZ//P1MILoXXs4j/WXctRnglxGk N3zjjlXOCNC5Z2U7zbzpS+ad7FKICStU166YG1wsHCmVHSAbB4Zigp20Pu1TAQIA jwIzJl+dgW6/yNadgNUH9JyzKjrKEcdvnNOg5Neqm9ZRtt5l++tcuR5UBNf/dLib r/wtmPlfqVoLnSrdJ4H9v+/OcekgRc8ONCMl8eVe4T2/x4QItmLpR44RbsyHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu21T5a6JIN4TrVHh36UifirwHAEwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8qDANBgkqhkiG 9w0BAQsFAAOCAQEAgNoF/K2Dn/Egjm0vcRZ/jYo1g2r55T7NREHDXNT7vkmHU3zh fDIn4SBbvAheEathHeCnRzu5RmaCdx39m6v5u0Rkh2NghfbFbb0Wb6PFxvWfquZO GCE2Yhk8JO1FfOHg9mYnVtYE2qAOj4uU4QnI+IzSxKBBHrb9fDo2nMLQ94gG8PXq dMkE18Ysv3M8dUt0TOEX5pP0O0PNVVF1Cq2l9EJXz3XoWhcSMzRcijD8I8kvlDlP V9Z6/h7hmGE5hsr4HRuy1zMm72QC54XfFAQ1YLKD8+sU9oudjUcMmiVvfUpH4XWC Ixxm1ALhSu1S3rLykgT2g60bFIX9giX/zvYfmQ== -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:45 2025 by rpki-client