$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133322e302f32342d3234203d3e203538333639.roa File: 3131362e3139372e3133322e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: w2/zJ7DoLGOHLBl+6Obzez3utBGNPU2J1vJSFFze8dw= Subject key identifier: 25:69:9A:BB:95:55:24:D4:B1:A0:A2:25:CA:7D:76:78:F9:98:B1:28 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 1008CDF3089DDA4C7848F8596C3C9405AB1BCE66 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133322e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:03:40 +0000 ROA not before: Mon 02 Jun 2025 01:58:40 +0000 ROA not after: Mon 01 Jun 2026 02:03:40 +0000 asID: 58369 IP address blocks: 116.197.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:08:cd:f3:08:9d:da:4c:78:48:f8:59:6c:3c:94:05:ab:1b:ce:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jun 2 01:58:40 2025 GMT Not After : Jun 1 02:03:40 2026 GMT Subject: CN=25699ABB955524D4B1A0A225CA7D7678F998B128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e6:28:95:71:e4:21:8f:1f:c3:28:79:63:82: 27:f4:7f:ae:4b:38:6b:ba:d7:44:ae:13:65:b0:6c: 92:f2:63:e2:57:2c:c9:ee:61:59:bd:27:4b:94:d1: 73:e1:ac:77:8b:b6:bf:61:4e:f9:82:d3:f4:c8:ec: 58:ed:00:45:16:c7:a7:e4:89:38:d2:07:b0:a4:06: ce:1e:30:08:85:64:e6:ac:74:20:b0:68:18:c3:ae: 0b:0f:89:23:a4:e9:1c:f7:c0:ac:4b:ea:e9:e5:51: d1:6b:3b:00:7c:ed:f9:1e:99:20:82:a4:65:aa:d5: 51:be:19:d1:59:df:67:c3:63:04:c4:4c:08:28:c8: a2:e4:32:f2:b3:73:a8:01:8a:10:bb:4a:5d:9b:12: 6b:10:19:18:7c:7a:5f:2f:17:45:e0:14:37:9b:ab: 07:ab:73:ee:25:1c:ab:17:41:9b:13:14:16:4c:25: 17:7d:7a:39:72:ce:cb:af:63:6d:18:11:89:b5:30: a2:00:c6:33:c9:71:4e:2d:e6:a7:ec:96:9a:98:3d: 21:1b:76:c2:0f:b7:32:6f:a3:d6:d5:20:50:65:44: e7:5c:99:70:e6:e5:4e:a9:ff:8a:b2:9d:02:b6:55: 63:b3:5c:60:90:d3:03:46:93:2f:0c:3b:fb:c4:dd: 4f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:69:9A:BB:95:55:24:D4:B1:A0:A2:25:CA:7D:76:78:F9:98:B1:28 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3133322e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.132.0/24 Signature Algorithm: sha256WithRSAEncryption 69:8c:07:ec:ce:93:6a:7a:80:ff:2e:55:3c:cf:62:32:37:e0: 79:39:16:9e:7e:23:a5:98:03:95:45:77:ee:bf:5e:b7:1f:57: e6:a2:bc:1f:37:ca:40:97:d0:f5:3e:84:3e:d0:ff:3d:65:cf: 91:4f:11:5a:2b:cd:0e:97:f9:e4:e4:22:10:43:71:76:6d:af: 0c:49:a1:a7:c9:ff:e6:a1:e1:42:fc:81:b3:eb:87:83:82:9e: 90:ea:87:d6:68:22:f8:3e:41:4e:a4:80:23:32:1a:4a:df:23: e9:43:88:31:d0:ba:8e:7c:02:3c:6e:c2:da:97:e3:3d:7b:c5: 5e:e2:0b:6e:a9:6d:a6:10:c0:7f:f4:1f:af:f9:2b:b4:fc:af: 5b:45:2b:13:ab:44:5e:7b:2d:d8:14:11:d3:32:d2:97:a1:61: 08:77:a5:43:09:5f:70:c0:93:36:c4:63:cb:a3:71:dd:91:a6: 83:92:da:bf:45:d8:de:f3:93:ad:0e:30:40:2c:11:1a:ee:67: 3d:51:50:bd:61:78:aa:6f:79:d7:df:87:52:34:d6:7b:68:e0: ee:03:6a:25:1a:cc:a9:39:47:0c:99:73:51:57:6f:21:9b:91: 5c:7a:03:40:a5:67:f4:af:5e:fc:14:36:e1:ac:94:7b:ff:8c: 02:7f:36:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEAjN8wid2kx4SPhZbDyUBasbzmYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTA2MDIwMTU4NDBaFw0yNjA2MDEwMjAzNDBaMDMxMTAvBgNV BAMTKDI1Njk5QUJCOTU1NTI0RDRCMUEwQTIyNUNBN0Q3Njc4Rjk5OEIxMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH5iiVceQhjx/DKHljgif0f65L OGu610SuE2WwbJLyY+JXLMnuYVm9J0uU0XPhrHeLtr9hTvmC0/TI7FjtAEUWx6fk iTjSB7CkBs4eMAiFZOasdCCwaBjDrgsPiSOk6Rz3wKxL6unlUdFrOwB87fkemSCC pGWq1VG+GdFZ32fDYwTETAgoyKLkMvKzc6gBihC7Sl2bEmsQGRh8el8vF0XgFDeb qwerc+4lHKsXQZsTFBZMJRd9ejlyzsuvY20YEYm1MKIAxjPJcU4t5qfslpqYPSEb dsIPtzJvo9bVIFBlROdcmXDm5U6p/4qynQK2VWOzXGCQ0wNGky8MO/vE3U+dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJWmau5VVJNSxoKIlyn12ePmYsSgwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdMWEMA0GCSqG SIb3DQEBCwUAA4IBAQBpjAfszpNqeoD/LlU8z2IyN+B5ORaefiOlmAOVRXfuv163 H1fmorwfN8pAl9D1PoQ+0P89Zc+RTxFaK80Ol/nk5CIQQ3F2ba8MSaGnyf/moeFC /IGz64eDgp6Q6ofWaCL4PkFOpIAjMhpK3yPpQ4gx0LqOfAI8bsLal+M9e8Ve4gtu qW2mEMB/9B+v+Su0/K9bRSsTq0Reey3YFBHTMtKXoWEId6VDCV9wwJM2xGPLo3Hd kaaDktq/Rdje85OtDjBALBEa7mc9UVC9YXiqb3nX34dSNNZ7aODuA2olGsypOUcM mXNRV28hm5FcegNApWf0r178FDbhrJR7/4wCfzZx -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:56 2025 by rpki-client