$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31372e302f32342d3234203d3e20313331313138.roa File: 3130312e35302e31372e302f32342d3234203d3e20313331313138.roa (raw, json) Hash identifier: CAi9lZltH8q+DDS7ug4SFWT+z9g3FwLe+FaW2a+gIko= Subject key identifier: 24:95:27:99:81:50:F6:DC:C4:C4:0C:4E:FD:B0:63:72:57:11:11:F1 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 4A75E288373B8DADF1DB66EA81F5E2277027A218 Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31372e302f32342d3234203d3e20313331313138.roa Signing time: Tue 01 Jul 2025 03:00:00 +0000 ROA not before: Tue 01 Jul 2025 02:55:00 +0000 ROA not after: Tue 30 Jun 2026 03:00:00 +0000 asID: 131118 IP address blocks: 101.50.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 15:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:75:e2:88:37:3b:8d:ad:f1:db:66:ea:81:f5:e2:27:70:27:a2:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 1 02:55:00 2025 GMT Not After : Jun 30 03:00:00 2026 GMT Subject: CN=249527998150F6DCC4C40C4EFDB06372571111F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f1:4c:6c:59:df:37:a8:c8:33:9c:01:08:7d: a8:a6:bf:b5:56:6a:1f:b7:7a:14:83:58:25:ba:49: 16:f4:ea:05:84:a8:ae:ec:87:36:8f:98:8d:63:c8: 7f:26:b1:c6:ff:91:c4:34:1a:69:18:f5:e6:84:ee: 6a:66:a5:64:01:e4:4c:fd:a8:55:27:a6:f2:79:e3: 53:d5:c1:24:e9:31:3d:c5:de:83:47:1b:d8:02:8d: 58:98:76:63:ae:48:f5:d4:19:65:1a:75:91:3c:af: 84:27:df:4b:23:7d:b4:d9:5f:4e:39:3e:59:c8:9d: b2:08:88:27:78:75:56:93:36:7c:e2:81:8b:21:95: e0:ed:82:fc:46:ea:21:62:0d:44:4e:09:47:d2:83: d7:a8:74:58:8d:44:8a:28:c4:ac:cb:98:96:9c:c0: 82:b6:d2:89:a7:b0:00:c6:44:88:c4:52:3b:6f:a0: 11:24:a8:e2:84:9c:ce:bf:c4:c0:84:39:15:79:2f: 75:64:17:03:09:e0:e8:e3:46:41:b7:3f:68:15:b9: ed:d2:2e:14:bb:c8:e2:04:b2:64:40:d1:64:40:b1: f1:a9:0c:4a:84:8b:e2:a3:96:aa:4a:ad:54:b6:8a: 36:c9:ad:dd:f8:ee:3c:cd:f6:13:54:b0:7c:f5:d3: 88:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:95:27:99:81:50:F6:DC:C4:C4:0C:4E:FD:B0:63:72:57:11:11:F1 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31372e302f32342d3234203d3e20313331313138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.50.17.0/24 Signature Algorithm: sha256WithRSAEncryption 76:33:4a:ee:1a:fa:0a:f9:db:15:d6:c5:2f:69:be:23:58:00: d8:75:fb:03:79:88:f2:76:64:d8:00:27:ba:6d:76:76:aa:cb: fe:dc:f6:7d:02:9d:95:21:2f:cc:42:e4:aa:5c:35:65:84:8c: cb:7f:fb:fc:33:27:18:20:55:59:5c:dd:fe:af:80:d1:ec:f3: 68:fa:cd:28:9e:5b:b0:b8:c3:50:27:c7:fe:23:92:af:33:6e: 97:5b:64:a1:d6:27:45:59:ed:6a:d2:bd:a8:b7:2d:f9:03:80: 55:a2:68:27:78:dc:5c:65:58:01:e0:34:50:79:9b:d0:f3:e5: a3:cb:23:2a:f0:b0:b4:5d:8e:58:2b:ed:18:d5:79:43:21:d8: 0f:1a:54:aa:cb:02:a7:7a:6e:bb:70:ff:cf:1d:54:74:f0:34: 45:56:b6:a7:9f:b7:af:8d:9c:6a:da:f6:f0:07:25:67:c3:c1: 21:69:27:21:05:45:9b:f2:e9:7a:e1:90:dc:d5:ff:e9:57:64: 4f:da:be:4b:33:d6:8e:81:c1:14:f0:2f:5c:bf:b2:a2:44:0d: e8:a8:f3:86:17:64:fd:75:fa:bd:c3:55:03:69:41:30:95:df: 8f:f5:a6:91:01:03:79:c3:3e:e4:5b:a6:76:1d:9e:50:00:73: 1a:e1:60:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSnXiiDc7ja3x22bqgfXiJ3AnohgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNTA3MDEwMjU1MDBaFw0yNjA2MzAwMzAwMDBaMDMxMTAvBgNV BAMTKDI0OTUyNzk5ODE1MEY2RENDNEM0MEM0RUZEQjA2MzcyNTcxMTExRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY8UxsWd83qMgznAEIfaimv7VW ah+3ehSDWCW6SRb06gWEqK7shzaPmI1jyH8mscb/kcQ0GmkY9eaE7mpmpWQB5Ez9 qFUnpvJ541PVwSTpMT3F3oNHG9gCjViYdmOuSPXUGWUadZE8r4Qn30sjfbTZX045 PlnInbIIiCd4dVaTNnzigYshleDtgvxG6iFiDUROCUfSg9eodFiNRIooxKzLmJac wIK20omnsADGRIjEUjtvoBEkqOKEnM6/xMCEORV5L3VkFwMJ4OjjRkG3P2gVue3S LhS7yOIEsmRA0WRAsfGpDEqEi+KjlqpKrVS2ijbJrd347jzN9hNUsHz104h9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJJUnmYFQ9tzExAxO/bBjclcREfEwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzAzMTJlMzUzMDJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTMxMzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGUyETANBgkqhkiG 9w0BAQsFAAOCAQEAdjNK7hr6CvnbFdbFL2m+I1gA2HX7A3mI8nZk2AAnum12dqrL /tz2fQKdlSEvzELkqlw1ZYSMy3/7/DMnGCBVWVzd/q+A0ezzaPrNKJ5bsLjDUCfH /iOSrzNul1tkodYnRVntatK9qLct+QOAVaJoJ3jcXGVYAeA0UHmb0PPlo8sjKvCw tF2OWCvtGNV5QyHYDxpUqssCp3puu3D/zx1UdPA0RVa2p5+3r42catr28AclZ8PB IWknIQVFm/LpeuGQ3NX/6VdkT9q+SzPWjoHBFPAvXL+yokQN6Kjzhhdk/XX6vcNV A2lBMJXfj/WmkQEDecM+5Fumdh2eUABzGuFgKw== -----END CERTIFICATE-----Generated at Mon Jul 21 23:23:18 2025 by rpki-client