$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa File: 3131392e38322e3234302e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: UQj5o2r9jrF7gwD6zEDeivAaIC1EoryECU1Z4pufDeg= Subject key identifier: 01:63:F0:37:ED:D6:D9:45:2E:B2:BC:8E:6E:D1:29:9F:6D:E2:17:4F Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 4D95B3A3CB7630A852A2D58F644903625B965C97 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa Signing time: Mon 02 Jun 2025 02:02:53 +0000 ROA not before: Mon 02 Jun 2025 01:57:53 +0000 ROA not after: Mon 01 Jun 2026 02:02:53 +0000 asID: 24521 IP address blocks: 119.82.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:95:b3:a3:cb:76:30:a8:52:a2:d5:8f:64:49:03:62:5b:96:5c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jun 2 01:57:53 2025 GMT Not After : Jun 1 02:02:53 2026 GMT Subject: CN=0163F037EDD6D9452EB2BC8E6ED1299F6DE2174F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8d:70:14:57:17:55:29:8f:42:68:55:8a:80: 10:d9:60:a0:e0:ea:c9:27:b1:0d:44:ae:5b:6c:3c: d2:2f:80:0f:9c:ad:a4:72:e7:74:70:25:19:74:01: e6:76:f4:00:a9:29:56:32:b8:9d:30:b3:8f:4f:bc: a8:47:6e:9b:28:bb:43:3f:47:fc:cc:91:ec:24:b5: 80:4d:75:6d:bd:b0:04:9d:8d:9c:d4:8c:0d:5e:09: e5:c6:c5:08:e8:bb:00:bc:b3:6e:f0:51:e5:9b:5b: e8:7b:b8:4c:d5:3d:d2:45:fe:cb:e8:31:88:8e:c4: bd:4f:a0:40:83:87:9b:92:af:f9:eb:ef:3a:ef:da: 22:e5:bf:fe:0c:b4:19:9e:12:8a:fd:ad:cd:e7:1a: 89:5d:7e:06:0f:46:0a:2b:72:41:7d:97:6d:a5:0a: cf:f4:39:71:a1:b5:b8:56:1a:ab:c1:25:02:c5:7c: bc:78:23:63:d4:7d:6c:96:49:14:3a:70:d8:45:50: 8c:e6:c1:71:96:b4:20:83:c9:bd:5d:fc:bc:4b:c2: a4:64:21:36:ab:74:d8:9d:52:49:19:ff:9f:5c:0a: 8c:91:98:3a:b4:44:77:04:9a:10:50:3f:96:59:7a: 64:3a:a8:e0:4e:e9:34:f8:f5:bc:04:d9:b4:5e:91: 31:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:63:F0:37:ED:D6:D9:45:2E:B2:BC:8E:6E:D1:29:9F:6D:E2:17:4F X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.82.240.0/21 Signature Algorithm: sha256WithRSAEncryption d9:19:e6:ab:ee:d2:2c:77:c2:df:01:78:77:a0:25:df:39:eb: 90:08:40:0a:b8:70:b7:6d:db:69:a9:30:2c:a3:ce:78:f6:e6: 1f:8a:e5:75:6f:af:b5:33:31:94:e2:02:53:f6:14:0c:77:20: 92:65:ad:45:22:7b:39:f3:c6:82:de:d6:48:49:2b:3d:f3:aa: 12:2a:55:4a:22:b2:51:fc:1e:a0:f6:ea:be:8e:2e:6b:c2:ff: 6d:e3:e3:46:b8:89:64:48:3c:8a:90:47:eb:18:a0:f6:b6:a9: 70:3e:35:11:a1:45:28:73:09:f3:f2:ac:75:fd:d9:cb:b4:8f: 0f:18:5a:8f:11:e5:9d:ee:e5:ac:9a:1e:8c:54:04:44:b5:4b: c3:8f:b6:a4:61:d3:da:fd:0e:41:52:0c:23:01:f9:c0:5e:39: 2c:d4:fb:8e:0f:3e:fa:85:3b:18:4f:61:43:98:df:fe:2d:4e: 12:b9:16:47:e8:95:70:fe:09:5b:b9:20:94:a8:eb:da:a7:5b: 01:bc:14:f4:57:d4:f4:81:35:96:4c:42:b3:fc:43:3b:2b:bc: c3:2b:3b:50:b8:c6:7f:ed:8a:d7:ae:6b:84:e7:5a:21:b1:af: 46:ed:8e:15:e2:eb:50:11:df:ea:83:ca:21:d3:02:de:57:c4: cd:42:0c:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTZWzo8t2MKhSotWPZEkDYluWXJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA2MDIwMTU3NTNaFw0yNjA2MDEwMjAyNTNaMDMxMTAvBgNV BAMTKDAxNjNGMDM3RURENkQ5NDUyRUIyQkM4RTZFRDEyOTlGNkRFMjE3NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTjXAUVxdVKY9CaFWKgBDZYKDg 6sknsQ1ErltsPNIvgA+craRy53RwJRl0AeZ29ACpKVYyuJ0ws49PvKhHbpsou0M/ R/zMkewktYBNdW29sASdjZzUjA1eCeXGxQjouwC8s27wUeWbW+h7uEzVPdJF/svo MYiOxL1PoECDh5uSr/nr7zrv2iLlv/4MtBmeEor9rc3nGoldfgYPRgorckF9l22l Cs/0OXGhtbhWGqvBJQLFfLx4I2PUfWyWSRQ6cNhFUIzmwXGWtCCDyb1d/LxLwqRk ITardNidUkkZ/59cCoyRmDq0RHcEmhBQP5ZZemQ6qOBO6TT49bwE2bRekTEvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAWPwN+3W2UUusryObtEpn23iF08wHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzEzOTJlMzgzMjJlMzIzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3dS8DANBgkqhkiG 9w0BAQsFAAOCAQEA2Rnmq+7SLHfC3wF4d6Al3znrkAhACrhwt23baakwLKPOePbm H4rldW+vtTMxlOICU/YUDHcgkmWtRSJ7OfPGgt7WSEkrPfOqEipVSiKyUfweoPbq vo4ua8L/bePjRriJZEg8ipBH6xig9rapcD41EaFFKHMJ8/Ksdf3Zy7SPDxhajxHl ne7lrJoejFQERLVLw4+2pGHT2v0OQVIMIwH5wF45LNT7jg8++oU7GE9hQ5jf/i1O ErkWR+iVcP4JW7kglKjr2qdbAbwU9FfU9IE1lkxCs/xDOyu8wys7ULjGf+2K165r hOdaIbGvRu2OFeLrUBHf6oPKIdMC3lfEzUIM9A== -----END CERTIFICATE-----Generated at Thu Jun 5 19:11:56 2025 by rpki-client