$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133312e302f32342d3234203d3e203538333639.roa File: 3131362e3139372e3133312e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: oWTZcYt7B+mGKSl/vLDaO0K0SUgDmm2V7AGHsTqPoCs= Subject key identifier: 2B:B0:8E:59:03:62:66:5D:A3:CD:8B:2A:66:AB:D0:DD:3E:D1:3C:79 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 177E88480430CA67D5228A1D52FE5F69780BEC04 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133312e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:38 +0000 ROA not before: Mon 02 Jun 2025 01:58:38 +0000 ROA not after: Mon 01 Jun 2026 02:03:38 +0000 asID: 58369 IP address blocks: 116.197.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7e:88:48:04:30:ca:67:d5:22:8a:1d:52:fe:5f:69:78:0b:ec:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:38 2025 GMT Not After : Jun 1 02:03:38 2026 GMT Subject: CN=2BB08E590362665DA3CD8B2A66ABD0DD3ED13C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:32:f1:16:5b:50:33:86:11:f7:84:79:c4:ac: e1:3c:e5:87:78:ce:8d:2d:ff:7f:e0:da:30:c0:91: b4:63:ad:3b:23:f9:cc:19:7a:8b:50:09:1b:96:c7: 65:29:55:67:a4:aa:29:48:2e:71:90:d1:06:4d:25: 19:42:cb:3a:44:97:19:4a:4d:2e:f2:95:3c:13:5f: 34:7f:9d:38:85:06:68:ca:11:89:2e:93:36:4a:03: 7c:9f:b2:01:f5:df:97:15:08:93:83:e8:35:2d:f9: 88:28:95:17:89:1d:92:7b:fa:f6:65:75:41:b2:ad: 16:34:8a:8c:98:df:60:30:be:71:27:25:6c:2d:eb: 37:3a:6b:26:57:5b:ab:65:1e:da:68:12:31:23:a9: 64:36:bf:83:2c:27:2f:01:31:01:6f:0c:d0:52:25: bf:dd:cc:b6:db:4f:71:1b:55:74:30:aa:b0:fa:17: d5:47:66:80:36:d1:5d:6e:89:d4:a9:94:2d:b8:ef: 74:ae:aa:a0:2d:a8:93:5c:43:37:ef:29:dd:94:c9: 46:0e:e4:dd:55:9a:43:8a:03:49:c2:c0:f6:82:37: 1d:37:bd:97:84:22:b4:7d:fc:6f:40:22:6b:d6:b9: 67:b7:dc:f4:50:22:b6:14:57:f3:c6:09:ea:db:83: 20:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B0:8E:59:03:62:66:5D:A3:CD:8B:2A:66:AB:D0:DD:3E:D1:3C:79 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133312e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.131.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:13:04:a1:3d:8c:83:84:08:4c:59:ff:f1:26:1f:6c:9d:8b: 7f:df:6e:59:09:f1:ad:22:45:6a:74:e1:b6:00:f3:79:a7:28: 99:98:87:05:65:6b:58:cb:3c:04:0f:07:19:6b:79:c4:72:29: ee:3a:e1:80:17:02:6c:9c:0f:34:65:f4:e8:5a:37:21:96:81: d6:70:f9:aa:83:c6:cd:2a:71:df:b1:f7:49:27:59:4b:1e:93: 95:ab:0b:4d:ec:f6:07:00:d2:75:99:21:c1:da:b7:d5:27:aa: 0d:0a:d8:a6:ad:7d:89:63:5a:04:17:6e:9c:9c:07:4b:d3:7b: 42:1b:03:99:bb:ea:4d:d8:f8:2f:77:b9:6b:fa:82:98:31:0d: ed:e0:40:e4:41:34:95:13:7c:b6:3d:64:de:07:52:7e:07:89: 7b:97:2d:d0:dc:33:08:33:ee:34:6a:0e:85:7e:ee:e4:fa:91: 30:3e:90:7a:99:36:6e:24:14:78:d4:47:a9:5b:4b:b1:b5:4e: c4:94:d9:5b:97:dd:36:d1:08:da:3b:40:0a:57:84:78:cc:86: 5b:1d:30:49:83:79:ee:19:14:94:e8:54:9c:97:f2:c6:d6:f4: 12:5d:72:6c:37:01:e6:f9:8b:ca:2d:0c:ca:eb:24:89:77:80: 90:83:1c:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF36ISAQwymfVIoodUv5faXgL7AQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4MzhaFw0yNjA2MDEwMjAzMzhaMDMxMTAvBgNV BAMTKDJCQjA4RTU5MDM2MjY2NURBM0NEOEIyQTY2QUJEMEREM0VEMTNDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8MvEWW1AzhhH3hHnErOE85Yd4 zo0t/3/g2jDAkbRjrTsj+cwZeotQCRuWx2UpVWekqilILnGQ0QZNJRlCyzpElxlK TS7ylTwTXzR/nTiFBmjKEYkukzZKA3yfsgH135cVCJOD6DUt+YgolReJHZJ7+vZl dUGyrRY0ioyY32AwvnEnJWwt6zc6ayZXW6tlHtpoEjEjqWQ2v4MsJy8BMQFvDNBS Jb/dzLbbT3EbVXQwqrD6F9VHZoA20V1uidSplC2473SuqqAtqJNcQzfvKd2UyUYO 5N1VmkOKA0nCwPaCNx03vZeEIrR9/G9AImvWuWe33PRQIrYUV/PGCerbgyDdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUK7COWQNiZl2jzYsqZqvQ3T7RPHkwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdMWDMA0GCSqG SIb3DQEBCwUAA4IBAQCOEwShPYyDhAhMWf/xJh9snYt/325ZCfGtIkVqdOG2APN5 pyiZmIcFZWtYyzwEDwcZa3nEcinuOuGAFwJsnA80ZfToWjchloHWcPmqg8bNKnHf sfdJJ1lLHpOVqwtN7PYHANJ1mSHB2rfVJ6oNCtimrX2JY1oEF26cnAdL03tCGwOZ u+pN2Pgvd7lr+oKYMQ3t4EDkQTSVE3y2PWTeB1J+B4l7ly3Q3DMIM+40ag6Ffu7k +pEwPpB6mTZuJBR41EepW0uxtU7ElNlbl9020QjaO0AKV4R4zIZbHTBJg3nuGRSU 6FScl/LG1vQSXXJsNwHm+YvKLQzK6ySJd4CQgxx9 -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:59 2025 by rpki-client