$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32312d3231203d3e203538333639.roa File: 3131362e3139372e3132382e302f32312d3231203d3e203538333639.roa (raw, json) Hash identifier: +c+SJzAiLwTTHayavjiwBoiR2ywxWzjuc9zI5I0TeTQ= Subject key identifier: AF:1F:76:7D:87:F8:69:4C:B4:8A:92:7C:69:2F:19:90:1A:A9:BF:EE Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 02AAA4E8FF28EB806458179EC9BEBC05B7AF4D9F Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32312d3231203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:39 +0000 ROA not before: Mon 02 Jun 2025 01:58:39 +0000 ROA not after: Mon 01 Jun 2026 02:03:39 +0000 asID: 58369 IP address blocks: 116.197.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:aa:a4:e8:ff:28:eb:80:64:58:17:9e:c9:be:bc:05:b7:af:4d:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:39 2025 GMT Not After : Jun 1 02:03:39 2026 GMT Subject: CN=AF1F767D87F8694CB48A927C692F19901AA9BFEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:1a:56:9c:c5:7d:41:69:05:a8:75:dd:0b: bd:bf:b9:5d:6a:bb:bd:ce:72:c7:1e:31:cb:44:56: 5a:d2:39:98:fe:3d:0a:1e:db:10:af:65:03:c3:1a: 82:d8:65:0c:74:b0:d4:e4:67:cc:8a:84:62:3d:2f: 9e:43:fa:91:8a:0f:b4:e4:67:10:b2:02:61:39:0c: 38:7b:23:5a:f5:c6:9f:a7:b6:c2:ea:77:b2:01:54: d5:37:28:6d:44:39:51:b0:37:0e:99:4d:7a:95:bd: 58:96:80:47:c0:5e:e3:5e:31:26:64:f7:2c:47:dc: 25:95:1d:6d:ee:f1:a1:2c:2d:32:eb:72:16:51:b0: d4:e5:39:04:bd:10:fa:89:34:2b:7b:60:72:09:bd: 64:5c:e9:ea:9f:9b:bf:25:61:2f:d0:70:a8:7b:6f: ce:2f:7c:b9:95:12:76:44:21:dd:61:e1:df:1c:bd: 34:23:b5:a7:8a:2f:fe:f5:81:23:9c:8b:f2:f3:31: 44:d8:f4:be:2f:6c:36:5c:e9:35:e8:c6:6d:c6:1a: e9:f3:03:96:ee:a5:38:4c:ee:12:de:34:4f:f2:75: 95:75:ea:ea:1a:01:a5:67:14:02:b1:da:bf:c8:ec: 65:ec:ed:2b:4d:68:b4:7d:8e:80:61:cc:f3:04:ac: 1f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1F:76:7D:87:F8:69:4C:B4:8A:92:7C:69:2F:19:90:1A:A9:BF:EE X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32312d3231203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.128.0/21 Signature Algorithm: sha256WithRSAEncryption 44:8f:67:99:61:89:8b:82:f1:43:78:2c:95:8d:2e:fd:5d:75: d5:7c:ef:51:50:ae:32:52:70:e9:a8:43:82:18:6d:af:6c:c1: 14:77:ef:36:fd:ba:a4:db:aa:66:c3:5b:45:26:a6:9b:4f:aa: 3a:88:32:61:2a:4a:d5:97:0e:e9:7b:42:5e:f1:3e:86:4a:e7: 69:bc:71:cc:60:42:6a:b7:b0:1d:f2:66:c6:cf:f3:74:34:b8: 68:21:df:d0:1d:0e:a8:d1:16:b0:da:e7:aa:ed:de:6f:4f:c1: 7b:37:ae:58:98:64:d0:28:78:1b:cd:17:c0:52:7b:ad:d1:12: 91:53:96:ef:6d:70:b4:b4:1f:16:0f:e3:6c:f8:75:da:30:3f: 25:58:76:3b:f9:ed:e9:5e:e2:c5:f8:01:cf:0a:a6:a4:cd:b2: 8a:aa:d9:3c:99:4b:5b:a4:a5:04:77:13:40:84:6a:af:1e:85: 77:5a:59:03:5d:49:0d:4e:fb:5e:ef:26:97:b0:a2:3c:a4:00: 6d:92:f8:5b:18:61:c9:65:f2:11:56:73:11:3a:6e:e5:dc:16: cc:64:d3:87:da:36:b2:de:75:f0:45:f3:61:ee:c7:6d:26:c5: 3c:38:a1:ca:7f:11:f2:ac:2e:2c:48:45:7f:7d:14:46:3d:18: e0:60:9b:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAqqk6P8o64BkWBeeyb68BbevTZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzlaFw0yNjA2MDEwMjAzMzlaMDMxMTAvBgNV BAMTKEFGMUY3NjdEODdGODY5NENCNDhBOTI3QzY5MkYxOTkwMUFBOUJGRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpQRpWnMV9QWkFqHXdC72/uV1q u73OcsceMctEVlrSOZj+PQoe2xCvZQPDGoLYZQx0sNTkZ8yKhGI9L55D+pGKD7Tk ZxCyAmE5DDh7I1r1xp+ntsLqd7IBVNU3KG1EOVGwNw6ZTXqVvViWgEfAXuNeMSZk 9yxH3CWVHW3u8aEsLTLrchZRsNTlOQS9EPqJNCt7YHIJvWRc6eqfm78lYS/QcKh7 b84vfLmVEnZEId1h4d8cvTQjtaeKL/71gSOci/LzMUTY9L4vbDZc6TXoxm3GGunz A5bupThM7hLeNE/ydZV16uoaAaVnFAKx2r/I7GXs7StNaLR9joBhzPMErB/bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrx92fYf4aUy0ipJ8aS8ZkBqpv+4wHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMyMzgyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdMWAMA0GCSqG SIb3DQEBCwUAA4IBAQBEj2eZYYmLgvFDeCyVjS79XXXVfO9RUK4yUnDpqEOCGG2v bMEUd+82/bqk26pmw1tFJqabT6o6iDJhKkrVlw7pe0Je8T6GSudpvHHMYEJqt7Ad 8mbGz/N0NLhoId/QHQ6o0Raw2ueq7d5vT8F7N65YmGTQKHgbzRfAUnut0RKRU5bv bXC0tB8WD+Ns+HXaMD8lWHY7+e3pXuLF+AHPCqakzbKKqtk8mUtbpKUEdxNAhGqv HoV3WlkDXUkNTvte7yaXsKI8pABtkvhbGGHJZfIRVnMROm7l3BbMZNOH2jay3nXw RfNh7sdtJsU8OKHKfxHyrC4sSEV/fRRGPRjgYJvb -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:13 2025 by rpki-client