$ rpki-client -vvf repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32342d3234203d3e2030.roa File: 3131372e3132312e3230302e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: L0AVu48seGOzT+OjNs4+vHM51Bl8/YcZdTcHUeJSvtI= Subject key identifier: 16:F0:EC:AD:C1:41:2E:A9:A6:F0:FF:23:56:87:32:95:60:F8:47:80 Certificate issuer: /CN=45FD71C7EFF830D20E960225B4A971A14B081364 Certificate serial: 5D13429B7337000D41CE37E79A2AA61F34B45B89 Authority key identifier: 45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject info access: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32342d3234203d3e2030.roa Signing time: Fri 14 Mar 2025 13:32:30 +0000 ROA not before: Fri 14 Mar 2025 13:27:30 +0000 ROA not after: Fri 13 Mar 2026 13:32:30 +0000 asID: 0 IP address blocks: 117.121.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 00:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:13:42:9b:73:37:00:0d:41:ce:37:e7:9a:2a:a6:1f:34:b4:5b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45FD71C7EFF830D20E960225B4A971A14B081364 Validity Not Before: Mar 14 13:27:30 2025 GMT Not After : Mar 13 13:32:30 2026 GMT Subject: CN=16F0ECADC1412EA9A6F0FF235687329560F84780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ee:0a:79:37:ee:e8:c8:19:2d:30:96:d4:0d: 3d:21:4e:3d:16:8e:68:78:35:69:bd:b5:a2:a0:fb: 1c:7e:4e:18:0a:e8:d5:90:d8:a4:35:31:7d:6a:a0: fb:f6:9a:a7:5d:96:c4:ca:fc:27:f0:5c:2c:7a:df: b8:b5:df:81:2e:6f:26:42:5f:09:68:e0:33:a2:74: 2a:36:8b:31:3d:01:ca:ea:b5:aa:83:98:9c:0e:a5: 7b:38:f4:6a:6b:b3:e9:0e:e1:a3:54:63:e2:75:50: 1b:81:55:9f:7a:a3:61:f5:25:3c:2c:44:c8:20:3c: b7:ab:90:ab:c1:35:28:15:c4:fd:4a:5f:c0:a6:a0: 3a:2d:46:f7:28:46:6f:01:47:6a:6d:02:eb:18:e8: 00:79:ac:61:30:e7:a7:e2:d4:7d:0b:cc:cc:a1:a4: e0:e3:ce:fd:0d:d3:9d:a0:5d:28:54:3b:cf:7e:d8: 64:9d:23:50:fd:3c:43:58:0f:54:b4:73:96:b3:5a: 81:0c:96:9f:be:2a:ba:99:f9:ec:0a:f8:26:08:57: dd:ee:83:99:31:af:3f:36:62:6c:15:fd:e7:92:fa: 79:d3:d4:ef:bc:93:e2:7b:58:a2:8b:ea:3d:3a:cd: ea:47:26:52:f4:0e:bb:6e:99:34:63:47:eb:75:15: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F0:EC:AD:C1:41:2E:A9:A6:F0:FF:23:56:87:32:95:60:F8:47:80 X509v3 Authority Key Identifier: keyid:45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.200.0/24 Signature Algorithm: sha256WithRSAEncryption 73:71:98:20:38:8e:2f:9b:22:a9:96:49:86:11:bd:9d:a7:02: 03:80:73:96:8a:fa:50:31:12:34:6f:d3:cf:91:81:00:f4:b7: d9:80:7e:59:bb:53:34:b7:6a:13:4a:a1:2d:9c:69:6c:bb:b5: b6:76:17:43:38:71:a6:93:71:4a:0f:eb:30:1d:09:f8:24:11: cd:10:bb:a1:81:8e:11:18:53:db:3e:ed:ad:64:00:41:ac:2a: 01:26:9e:7d:e9:14:5b:36:ed:be:b4:93:f4:c3:89:62:61:87: 79:0c:c0:2b:96:46:6c:0d:30:be:e6:a3:13:75:6e:f4:76:cb: 05:70:5d:34:e8:a9:42:04:a6:94:3a:5a:f7:fc:44:cd:22:fa: 50:6f:ae:d9:e7:32:b2:42:7a:c4:98:11:6d:34:d6:3a:39:14: 74:22:83:da:5f:e4:b0:5b:8e:ff:e8:15:6d:cf:4c:a9:bd:e5: fc:7c:29:51:cb:7e:3a:ae:cc:df:c5:a9:46:12:6a:f5:c5:06: 8f:9b:00:16:c4:d5:50:04:ea:72:a7:75:b7:d8:4f:1e:02:c8: a4:ce:dc:48:29:98:b1:34:fd:ce:28:3c:a5:6f:d4:5c:cd:13: d2:96:cf:66:3f:e1:8a:2f:6e:07:67:17:a7:15:48:c3:0c:02: 7b:42:6f:8c -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUXRNCm3M3AA1BzjfnmiqmHzS0W4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0 QjA4MTM2NDAeFw0yNTAzMTQxMzI3MzBaFw0yNjAzMTMxMzMyMzBaMDMxMTAvBgNV BAMTKDE2RjBFQ0FEQzE0MTJFQTlBNkYwRkYyMzU2ODczMjk1NjBGODQ3ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW7gp5N+7oyBktMJbUDT0hTj0W jmh4NWm9taKg+xx+ThgK6NWQ2KQ1MX1qoPv2mqddlsTK/CfwXCx637i134EubyZC Xwlo4DOidCo2izE9AcrqtaqDmJwOpXs49Gprs+kO4aNUY+J1UBuBVZ96o2H1JTws RMggPLerkKvBNSgVxP1KX8CmoDotRvcoRm8BR2ptAusY6AB5rGEw56fi1H0LzMyh pODjzv0N052gXShUO89+2GSdI1D9PENYD1S0c5azWoEMlp++KrqZ+ewK+CYIV93u g5kxrz82YmwV/eeS+nnT1O+8k+J7WKKL6j06zepHJlL0DrtumTRjR+t1FeWxAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUFvDsrcFBLqmm8P8jVocylWD4R4AwHwYDVR0j BBgwFoAURf1xx+/4MNIOlgIltKlxoUsIE2QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTNiMDY3Yy1lY2M5LTRkY2EtOTg3ZC1iOTU3NjgxNWY4NTUvMC80NUZENzFDN0VG RjgzMEQyMEU5NjAyMjVCNEE5NzFBMTRCMDgxMzY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0QjA4 MTM2NC5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTUzYjA2N2MtZWNjOS00ZGNhLTk4 N2QtYjk1NzY4MTVmODU1LzAvMzEzMTM3MmUzMTMyMzEyZTMyMzAzMDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdXnIMA0GCSqGSIb3DQEBCwUA A4IBAQBzcZggOI4vmyKplkmGEb2dpwIDgHOWivpQMRI0b9PPkYEA9LfZgH5Zu1M0 t2oTSqEtnGlsu7W2dhdDOHGmk3FKD+swHQn4JBHNELuhgY4RGFPbPu2tZABBrCoB Jp596RRbNu2+tJP0w4liYYd5DMArlkZsDTC+5qMTdW70dssFcF006KlCBKaUOlr3 /ETNIvpQb67Z5zKyQnrEmBFtNNY6ORR0IoPaX+SwW47/6BVtz0ypveX8fClRy346 rszfxalGEmr1xQaPmwAWxNVQBOpyp3W32E8eAsikztxIKZixNP3OKDylb9RczRPS ls9mP+GKL24HZxenFUjDDAJ7Qm+M -----END CERTIFICATE-----Generated at Sun Apr 6 12:02:10 2025 by rpki-client