$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3131392e38322e3232342e302f32302d3234203d3e203234323133.roa File: 3131392e38322e3232342e302f32302d3234203d3e203234323133.roa (raw, json) Hash identifier: rMCMSl1s+WWM7uToBUHib02Gf8GW78oaPsE3tZQeKpc= Subject key identifier: 56:85:11:F2:2F:3B:FB:A6:BA:51:D8:20:FA:5D:F6:79:9F:B7:FB:2F Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70 Certificate serial: 7D4354E50AF0814C188767EFDC883034E038DEA4 Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3131392e38322e3232342e302f32302d3234203d3e203234323133.roa Signing time: Fri 06 Jun 2025 02:00:52 +0000 ROA not before: Fri 06 Jun 2025 01:55:52 +0000 ROA not after: Fri 05 Jun 2026 02:00:52 +0000 asID: 24213 IP address blocks: 119.82.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:43:54:e5:0a:f0:81:4c:18:87:67:ef:dc:88:30:34:e0:38:de:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70 Validity Not Before: Jun 6 01:55:52 2025 GMT Not After : Jun 5 02:00:52 2026 GMT Subject: CN=568511F22F3BFBA6BA51D820FA5DF6799FB7FB2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d5:de:68:b0:8d:bd:df:f6:d2:de:f2:d1:33: e5:ab:61:27:b7:72:f8:36:23:7d:80:96:73:d7:57: 18:f3:f4:bb:24:0b:57:bb:73:b4:24:e2:1c:b4:58: d6:1c:0c:78:bd:83:75:dc:1f:01:e2:b1:d7:b5:65: 3c:6d:41:14:82:37:57:7c:fd:9b:53:6e:0b:40:d0: 74:41:14:d9:35:35:a4:3d:1d:b8:b3:17:c7:de:91: 9e:e1:e1:cd:20:5e:87:1d:88:ee:7d:7c:77:1a:11: 8a:6e:d0:ba:d0:9e:2d:7a:76:60:69:07:d8:a2:f8: 61:ec:bc:7d:97:ca:15:83:2d:50:34:1c:ea:10:a7: c8:49:81:84:da:ee:2a:85:cf:0b:31:e2:90:16:4f: 28:4a:7c:e4:de:96:df:74:82:1e:ce:b1:f1:4d:38: 62:84:24:dd:57:d6:66:6e:17:db:39:98:40:b7:47: 01:ec:d7:e7:e5:7f:2b:49:c8:c0:76:00:49:5d:c2: 40:5c:a6:c8:09:eb:db:92:cc:7c:cd:d9:6e:12:58: f7:a2:93:7d:56:b2:1a:ce:85:b9:7f:6b:4f:46:f0: a8:51:d9:d6:f9:3b:fa:70:7f:7e:78:6e:03:19:c9: cf:9f:aa:80:9b:56:93:30:24:a9:34:5f:55:69:c2: 24:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:85:11:F2:2F:3B:FB:A6:BA:51:D8:20:FA:5D:F6:79:9F:B7:FB:2F X509v3 Authority Key Identifier: keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3131392e38322e3232342e302f32302d3234203d3e203234323133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.82.224.0/20 Signature Algorithm: sha256WithRSAEncryption 6c:59:92:2b:6b:0c:f9:67:1c:8d:30:5c:18:b7:d6:37:c6:16: 49:cf:df:66:23:e6:6e:83:f2:06:06:99:67:9f:81:de:d8:81: f6:54:e6:08:af:ab:fc:57:61:7b:77:e1:2e:0a:96:fb:c9:11: 5f:5f:28:e1:e9:84:15:be:4a:74:9a:ce:1b:e1:85:91:20:80: 9a:a3:6f:25:5d:ca:82:13:90:f8:0e:29:39:e2:e6:28:14:78: e8:e4:18:c8:f2:ca:f5:80:de:b4:83:31:00:49:83:dc:35:0e: 82:56:f9:81:84:8e:ca:b9:93:56:39:3b:9c:5e:18:aa:ab:b2: 74:45:c8:08:c8:8c:44:45:23:5c:73:ca:a0:fa:6c:cf:c9:cb: f3:95:0b:51:5b:f8:57:b2:16:f0:cb:f3:1b:2c:72:17:e9:fb: d4:3b:da:bf:36:5a:13:0a:a9:f8:70:8e:1a:7d:d2:57:1b:1e: db:03:4e:01:d4:7c:3c:f8:ee:9f:75:8c:2d:24:49:bf:48:e7: f7:e8:ef:d1:d6:09:3a:ce:b0:fa:cc:0b:fa:d2:f5:19:5e:44: 6d:c6:7b:ee:35:ab:c2:8a:b3:23:6b:c5:b7:c8:0a:bd:f2:8e: 54:7a:f1:7e:94:9a:bf:60:63:d0:cb:48:59:85:5a:b5:b1:34: 36:0a:ca:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfUNU5QrwgUwYh2fv3IgwNOA43qQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NC MjM5QkU3MDAeFw0yNTA2MDYwMTU1NTJaFw0yNjA2MDUwMjAwNTJaMDMxMTAvBgNV BAMTKDU2ODUxMUYyMkYzQkZCQTZCQTUxRDgyMEZBNURGNjc5OUZCN0ZCMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM1d5osI293/bS3vLRM+WrYSe3 cvg2I32AlnPXVxjz9LskC1e7c7Qk4hy0WNYcDHi9g3XcHwHisde1ZTxtQRSCN1d8 /ZtTbgtA0HRBFNk1NaQ9HbizF8fekZ7h4c0gXocdiO59fHcaEYpu0LrQni16dmBp B9ii+GHsvH2XyhWDLVA0HOoQp8hJgYTa7iqFzwsx4pAWTyhKfOTelt90gh7OsfFN OGKEJN1X1mZuF9s5mEC3RwHs1+flfytJyMB2AEldwkBcpsgJ69uSzHzN2W4SWPei k31WshrOhbl/a09G8KhR2db5O/pwf354bgMZyc+fqoCbVpMwJKk0X1VpwiSZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVoUR8i87+6a6Udgg+l32eZ+3+y8wHwYDVR0j BBgwFoAUPKgl6T/ogwN27zhnhr+EfLI5vnAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OGI4YzFiNS0zYmU4LTRhYTctYTRjNi0yMWJjYzhmM2ZhNDAvMC8zQ0E4MjVFOTNG RTg4MzAzNzZFRjM4Njc4NkJGODQ3Q0IyMzlCRTcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NCMjM5 QkU3MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA4YjhjMWI1LTNiZTgtNGFhNy1h NGM2LTIxYmNjOGYzZmE0MC8wLzMxMzEzOTJlMzgzMjJlMzIzMjM0MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzNDMyMzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHdS4DANBgkqhkiG 9w0BAQsFAAOCAQEAbFmSK2sM+WccjTBcGLfWN8YWSc/fZiPmboPyBgaZZ5+B3tiB 9lTmCK+r/Fdhe3fhLgqW+8kRX18o4emEFb5KdJrOG+GFkSCAmqNvJV3KghOQ+A4p OeLmKBR46OQYyPLK9YDetIMxAEmD3DUOglb5gYSOyrmTVjk7nF4YqquydEXICMiM REUjXHPKoPpsz8nL85ULUVv4V7IW8MvzGyxyF+n71DvavzZaEwqp+HCOGn3SVxse 2wNOAdR8PPjun3WMLSRJv0jn9+jv0dYJOs6w+swL+tL1GV5EbcZ77jWrwoqzI2vF t8gKvfKOVHrxfpSav2Bj0MtIWYVatbE0NgrK8w== -----END CERTIFICATE-----Generated at Sat Jun 7 20:45:30 2025 by rpki-client